Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bWUK8XJES1IRanpn10qsffilXhw.cer
File: bWUK8XJES1IRanpn10qsffilXhw.cer (raw, json)
Hash identifier: W8PZVsGQbTb0JsPZBOj9yWka/F6nIOCJotsX8O3iqfA=
Subject key identifier: 6D:65:0A:F1:72:44:4B:52:11:6A:7A:67:D7:4A:AC:7D:F8:A5:5E:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56E511E65697B7BF0AE676206D3B411
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/20/b7ca89-70f2-408f-a4e4-b4a0cb8ed821/1/bWUK8XJES1IRanpn10qsffilXhw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/20/b7ca89-70f2-408f-a4e4-b4a0cb8ed821/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:29:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43129
IP: 185.190.249.0/24
IP: 2a0a:11c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:51:1e:65:69:7b:7b:f0:ae:67:62:06:d3:b4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d650af172444b52116a7a67d74aac7df8a55e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:15:d4:2a:91:5c:8c:f5:3d:6c:e4:f7:85:
6f:2c:8d:41:aa:fe:05:34:71:e8:e7:42:7f:0f:4d:
ab:1b:45:8f:57:79:88:85:84:9f:d5:f8:94:14:60:
87:9f:6c:f2:6a:91:46:28:35:40:3a:dc:71:e1:74:
11:2b:6b:52:74:97:85:53:4e:db:88:7c:db:9d:ef:
02:0d:47:c0:13:fc:78:95:11:08:aa:26:7e:d7:a9:
71:cc:13:84:96:b3:e8:20:40:19:77:e1:78:b9:3d:
2c:13:7d:18:3c:ec:67:47:e0:dd:6f:29:d3:f9:f0:
f9:6d:52:2b:1a:41:bc:87:32:be:85:3d:65:f8:1a:
3d:10:7c:52:9a:0c:f9:a8:fe:87:a5:ac:fd:36:c0:
3b:b8:b9:4b:e5:1d:12:c5:36:01:e1:89:c3:a5:0f:
5c:a3:05:1b:5f:b0:a6:14:81:89:e2:8e:d8:ab:b4:
58:63:53:c4:bc:e0:96:78:2b:50:49:fd:42:36:a7:
cc:cc:fd:db:4d:88:67:f0:af:1b:a7:db:44:1d:c5:
67:bf:6c:90:5a:8b:ba:e4:a5:0e:d0:cd:4e:3c:93:
0f:2f:3d:00:60:1b:80:dd:e9:e5:7d:ce:f0:fd:e9:
9f:ca:22:17:ad:8d:c0:b9:74:77:b7:e3:49:04:02:
e2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:65:0A:F1:72:44:4B:52:11:6A:7A:67:D7:4A:AC:7D:F8:A5:5E:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b7ca89-70f2-408f-a4e4-b4a0cb8ed821/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b7ca89-70f2-408f-a4e4-b4a0cb8ed821/1/bWUK8XJES1IRanpn10qsffilXhw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.249.0/24
IPv6:
2a0a:11c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43129
Signature Algorithm: sha256WithRSAEncryption
53:ed:10:42:49:b3:15:da:30:58:c9:69:a1:7d:a8:44:ff:f2:
20:e8:15:a6:8c:42:56:62:a1:a3:bd:5f:c4:b8:c9:79:89:af:
89:30:e1:70:c2:9a:18:25:ed:15:ff:c8:dd:8a:00:c7:1c:36:
02:45:4e:f1:ca:bb:a7:06:41:e5:52:8e:c6:a1:f3:12:a8:dc:
81:bc:55:89:01:b6:ad:64:dd:aa:3a:34:bb:91:bb:28:0a:3f:
85:a2:03:5d:05:17:29:b2:cf:46:97:e6:f6:25:46:e1:16:96:
74:25:26:ea:c8:8c:3c:a4:12:9a:40:e5:54:95:d8:65:18:9e:
7f:1d:c3:01:be:c4:62:21:70:bb:ad:08:17:b9:dd:5d:65:63:
d7:09:b4:07:ab:e4:39:0b:99:bd:11:96:fc:3f:63:6e:f4:55:
67:f7:54:aa:fb:7e:ba:66:5d:f2:8a:1d:8d:76:8a:b4:7c:2c:
62:2b:8c:7c:fd:fd:9d:90:c5:cb:f1:5b:50:dd:0c:8d:dc:8d:
68:a9:34:ea:c3:43:44:ca:05:5c:64:03:df:d2:fd:69:b3:59:
a9:f6:52:1f:19:86:d6:d3:82:11:3f:6d:12:9a:80:fd:9a:4f:
d8:6d:d9:26:78:4b:48:cf:75:13:7d:3b:fd:28:eb:86:be:8e:
cf:87:60:8a
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzFblEeZWl7e/CuZ2IG07QRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTQyOTUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDY1MGFmMTcyNDQ0YjUyMTE2YTdhNjdkNzRhYWM3ZGY4YTU1ZTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+AV1CqRXIz1PWzk94VvLI1Bqv4F
NHHo50J/D02rG0WPV3mIhYSf1fiUFGCHn2zyapFGKDVAOtxx4XQRK2tSdJeFU07b
iHzbne8CDUfAE/x4lREIqiZ+16lxzBOElrPoIEAZd+F4uT0sE30YPOxnR+DdbynT
+fD5bVIrGkG8hzK+hT1l+Bo9EHxSmgz5qP6Hpaz9NsA7uLlL5R0SxTYB4YnDpQ9c
owUbX7CmFIGJ4o7Yq7RYY1PEvOCWeCtQSf1CNqfMzP3bTYhn8K8bp9tEHcVnv2yQ
Wou65KUO0M1OPJMPLz0AYBuA3enlfc7w/emfyiIXrY3AuXR3t+NJBALi/wIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFG1lCvFyREtSEWp6Z9dKrH34pV4cMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIwL2I3Y2E4
OS03MGYyLTQwOGYtYTRlNC1iNGEwY2I4ZWQ4MjEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjAvYjdjYTg5
LTcwZjItNDA4Zi1hNGU0LWI0YTBjYjhlZDgyMS8xL2JXVUs4WEpFUzFJUmFucG4x
MHFzZmZpbFhody5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAub75MA0EAgACMAcDBQMqChHAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwCoeTANBgkqhkiG9w0BAQsFAAOCAQEAU+0QQkmzFdow
WMlpoX2oRP/yIOgVpoxCVmKho71fxLjJeYmviTDhcMKaGCXtFf/I3YoAxxw2AkVO
8cq7pwZB5VKOxqHzEqjcgbxViQG2rWTdqjo0u5G7KAo/haIDXQUXKbLPRpfm9iVG
4RaWdCUm6siMPKQSmkDlVJXYZRiefx3DAb7EYiFwu60IF7ndXWVj1wm0B6vkOQuZ
vRGW/D9jbvRVZ/dUqvt+umZd8oodjXaKtHwsYiuMfP39nZDFy/FbUN0MjdyNaKk0
6sNDRMoFXGQD39L9abNZqfZSHxmG1tOCET9tEpqA/ZpP2G3ZJnhLSM91E307/Sjr
hr6Oz4dgig==
-----END CERTIFICATE-----
Generated at Fri May 3 07:50:23 2024 by rpki-client on console-fra.rpki-client.org