Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dFkBtALUgvPW3Sko6oztLuts5BI.cer
File: dFkBtALUgvPW3Sko6oztLuts5BI.cer (raw, json)
Hash identifier: Z5f22+43RFhA+7pQfZc5JK23sUqgjf9JnUghi7Duv24=
Subject key identifier: 74:59:01:B4:02:D4:82:F3:D6:DD:29:28:EA:8C:ED:2E:EB:6C:E4:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64AC63CBD8B9DFE4C1D8D7441224796
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/dFkBtALUgvPW3Sko6oztLuts5BI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:30:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34249
AS: 41706
IP: 91.142.135.0/24
IP: 193.30.236.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:c6:3c:bd:8b:9d:fe:4c:1d:8d:74:41:22:47:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:30:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=745901b402d482f3d6dd2928ea8ced2eeb6ce412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:51:35:2e:b4:f5:21:3f:6a:87:54:46:69:
d6:80:c8:4e:19:f4:d0:98:32:5f:a3:25:98:c6:3b:
1a:54:c7:68:c5:32:d3:06:11:be:b1:09:82:d3:ee:
56:45:ba:4f:75:9f:35:1e:e1:db:37:c4:e5:0b:d8:
02:5a:02:b2:00:5b:86:bd:59:81:7f:f8:f6:ca:1a:
30:a3:80:75:cb:63:04:76:a9:26:e4:91:92:ef:bc:
37:ce:5d:13:f6:4d:cf:eb:30:b6:b0:c3:d6:ec:35:
1e:5d:5a:0f:38:dd:b1:5a:c7:68:d5:9a:44:af:75:
52:95:8c:50:d4:0f:f0:a4:99:b5:cf:77:87:40:83:
d5:10:04:0d:3e:56:72:01:c6:30:9d:7b:97:dc:bb:
2b:37:ea:bb:42:8a:e8:42:4a:d7:90:25:9e:8b:a2:
79:7e:27:c0:1e:a3:2e:ca:37:ef:b5:6f:79:22:fc:
98:a3:52:13:41:d9:b4:5d:03:6f:de:b4:52:df:40:
17:1f:3f:21:60:f8:c4:77:0e:ad:0f:ef:0c:26:b6:
be:db:cf:a6:a4:d5:23:1e:1c:52:4c:ed:35:db:84:
c2:b3:43:09:a6:42:ee:84:6e:1f:53:28:5e:e2:01:
db:0a:98:31:81:fe:a7:9f:d1:2c:a9:67:97:60:15:
1c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:59:01:B4:02:D4:82:F3:D6:DD:29:28:EA:8C:ED:2E:EB:6C:E4:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/dFkBtALUgvPW3Sko6oztLuts5BI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.135.0/24
193.30.236.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34249
41706
Signature Algorithm: sha256WithRSAEncryption
48:6f:24:25:9a:f7:48:98:bf:32:0f:bf:a5:6a:7d:14:73:12:
48:b3:9c:ab:72:92:17:2e:93:eb:dc:ee:48:af:1e:89:75:77:
6e:da:82:e3:2b:b9:2e:89:07:57:50:dd:2f:a8:dc:72:2f:4c:
26:e3:0b:47:7d:d3:e0:bb:72:e3:7b:b5:74:c3:0f:96:6e:99:
28:4d:fc:c8:05:37:6e:1a:2a:73:7a:60:99:fc:2e:9e:8f:3c:
85:6d:02:77:06:62:4f:2e:73:e3:0f:19:63:cf:6e:8f:4d:4e:
05:55:f2:e0:f0:1a:e7:84:88:d8:e5:e5:32:c3:52:8c:8b:a7:
6f:00:bf:0d:d6:2d:e5:da:26:5c:19:52:84:6a:1f:37:40:05:
99:4b:49:08:d6:0f:56:d9:cd:db:9c:ac:08:55:f1:75:27:bf:
a1:01:0a:42:07:f0:bf:71:b8:d0:8f:43:db:8e:d2:a4:08:96:
47:00:91:6a:ab:5f:cb:55:e0:83:fe:78:a4:7d:df:c7:c1:b8:
aa:66:38:ca:cf:82:85:59:78:77:d3:3e:5e:66:74:f7:5c:f9:
0f:c3:f5:01:00:9f:e1:f1:45:d5:fc:fa:e0:31:8e:ec:ea:cd:
b2:74:ea:4c:c0:37:ff:97:6d:04:4a:17:b5:33:8c:b4:5d:ff:
1b:22:44:67
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAYzGSsY8vYud/kwdjXRBIkeWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTgzMDM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDU5MDFiNDAyZDQ4MmYzZDZkZDI5MjhlYThjZWQyZWViNmNlNDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAxRNS609SE/aodURmnWgMhOGfTQ
mDJfoyWYxjsaVMdoxTLTBhG+sQmC0+5WRbpPdZ81HuHbN8TlC9gCWgKyAFuGvVmB
f/j2yhowo4B1y2MEdqkm5JGS77w3zl0T9k3P6zC2sMPW7DUeXVoPON2xWsdo1ZpE
r3VSlYxQ1A/wpJm1z3eHQIPVEAQNPlZyAcYwnXuX3LsrN+q7QoroQkrXkCWei6J5
fifAHqMuyjfvtW95IvyYo1ITQdm0XQNv3rRS30AXHz8hYPjEdw6tD+8MJra+28+m
pNUjHhxSTO0124TCs0MJpkLuhG4fUyhe4gHbCpgxgf6nn9EsqWeXYBUcPwIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFHRZAbQC1ILz1t0pKOqM7S7rbOQSMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EyLzhmZDZk
Zi0zMDEyLTRlNDYtYmJkOC1kN2MzNmUxNWNmMGUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIvOGZkNmRm
LTMwMTItNGU0Ni1iYmQ4LWQ3YzM2ZTE1Y2YwZS8xL2RGa0J0QUxVZ3ZQVzNTa282
b3p0THV0czVCSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQAW46HAwQCwR7sMB8GCCsGAQUFBwEIAQH/BBAw
DqAMMAoCAwCFyQIDAKLqMA0GCSqGSIb3DQEBCwUAA4IBAQBIbyQlmvdImL8yD7+l
an0UcxJIs5yrcpIXLpPr3O5Irx6JdXdu2oLjK7kuiQdXUN0vqNxyL0wm4wtHfdPg
u3Lje7V0ww+WbpkoTfzIBTduGipzemCZ/C6ejzyFbQJ3BmJPLnPjDxljz26PTU4F
VfLg8BrnhIjY5eUyw1KMi6dvAL8N1i3l2iZcGVKEah83QAWZS0kI1g9W2c3bnKwI
VfF1J7+hAQpCB/C/cbjQj0PbjtKkCJZHAJFqq1/LVeCD/nikfd/HwbiqZjjKz4KF
WXh30z5eZnT3XPkPw/UBAJ/h8UXV/PrgMY7s6s2ydOpMwDf/l20EShe1M4y0Xf8b
IkRn
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:58:09 2024 by rpki-client on console-ams.rpki-client.org