Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f_sBFcSs3dG0rcQHN4Byas_AGvk.cer
File: f_sBFcSs3dG0rcQHN4Byas_AGvk.cer (raw, json)
Hash identifier: 6vlu1UREqrZtxQt+7LfJjL3PBefNvzFGhWsMd7r+Gl8=
Subject key identifier: 7F:FB:01:15:C4:AC:DD:D1:B4:AD:C4:07:37:80:72:6A:CF:C0:1A:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726EE6D8BD97E0B0946EF1D3473B55E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/f_sBFcSs3dG0rcQHN4Byas_AGvk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31129
IP: 91.211.252.0/22
IP: 193.23.51.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:ee:6d:8b:d9:7e:0b:09:46:ef:1d:34:73:b5:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ffb0115c4acddd1b4adc4073780726acfc01af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5d:74:99:4e:69:0b:ea:e5:11:ef:8c:c5:f8:
ac:70:f8:92:fd:83:89:73:13:c1:a9:a4:8a:88:b2:
0b:4d:05:83:51:fa:57:47:0c:84:4c:56:26:73:93:
e1:96:07:e0:b6:4b:41:5a:81:fc:34:e9:3c:f0:68:
e1:2d:00:fd:6f:27:a8:17:8c:74:a6:53:5a:bd:8c:
fd:bf:2a:2a:7b:45:ac:53:7d:b0:73:15:ae:5e:f7:
37:e0:7b:0e:e0:ad:04:b1:d2:af:9b:dc:ab:31:1d:
d7:76:dd:02:6a:1f:18:65:3a:3a:5d:6d:17:6b:be:
f9:07:57:3d:d8:8e:bc:91:42:58:70:7c:d4:e5:6e:
26:9f:25:77:62:c6:2e:92:9f:77:1e:00:0e:a9:97:
71:3c:90:32:6c:18:eb:c7:b3:68:e7:86:26:31:77:
86:22:9c:5c:18:6f:fc:4a:5c:6a:b8:9d:71:ba:34:
75:cd:f7:78:dd:e9:fb:05:9e:5c:6a:83:20:f7:21:
bb:bd:c5:d7:e3:3d:39:8f:71:73:1e:1f:5c:fd:99:
96:ff:38:6f:cf:00:fb:51:8b:47:85:91:fc:c2:72:
f8:5b:8f:15:a5:6d:78:b2:e7:13:57:5f:72:56:39:
a5:bf:c1:a1:af:50:ed:a3:ef:21:de:95:b5:8f:cc:
cd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FB:01:15:C4:AC:DD:D1:B4:AD:C4:07:37:80:72:6A:CF:C0:1A:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5268fc-cfee-4aa8-97bf-cbe020665efe/1/f_sBFcSs3dG0rcQHN4Byas_AGvk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.252.0/22
193.23.51.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31129
Signature Algorithm: sha256WithRSAEncryption
1c:cc:fc:ed:10:e9:cd:8d:cb:e7:33:60:cf:76:9c:86:c8:3c:
1f:27:14:c0:81:9c:c5:fc:cf:9b:fa:a7:4c:c6:03:1e:ca:ad:
57:f5:8b:95:d6:d2:3d:2f:33:1c:a1:e1:b1:32:82:c4:40:34:
03:37:4c:e3:b0:05:9d:8c:b6:8f:7b:fe:65:52:e7:e9:de:85:
3c:69:3a:2e:84:21:56:b2:e1:b1:a4:80:fa:fb:57:26:f4:2d:
c9:97:ad:fe:c1:71:ab:41:32:65:8e:65:bb:d5:ff:fc:59:c4:
1a:72:95:97:12:ed:15:23:51:dc:1f:a1:ce:d7:1a:3b:29:36:
7e:fc:e2:4a:f7:60:a0:53:10:cd:e8:02:71:0b:f0:84:84:63:
c5:f6:8a:73:91:7d:56:4d:2e:b0:13:d7:4b:8c:0b:ce:a3:87:
a1:5d:dc:84:d2:4a:35:33:db:e6:a8:10:15:12:93:7e:6b:35:
11:8d:1b:74:63:99:d8:35:4c:8d:24:d1:8a:6c:66:21:9f:13:
3c:67:f5:a7:90:6d:c5:9c:26:99:1e:98:36:b7:de:95:7e:f0:
31:d5:1c:a4:fb:13:62:5e:d4:fd:b8:63:30:11:70:07:ae:f8:
9a:bd:d9:bc:1a:23:18:ae:c5:81:fa:df:64:a1:0d:76:0d:dc:
71:f5:75:e6
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgISAYzHJu5ti9l+CwlG7x00c7VeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmZiMDExNWM0YWNkZGQxYjRhZGM0MDczNzgwNzI2YWNmYzAxYWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6V10mU5pC+rlEe+MxfiscPiS/YOJ
cxPBqaSKiLILTQWDUfpXRwyETFYmc5PhlgfgtktBWoH8NOk88GjhLQD9byeoF4x0
plNavYz9vyoqe0WsU32wcxWuXvc34HsO4K0EsdKvm9yrMR3Xdt0Cah8YZTo6XW0X
a775B1c92I68kUJYcHzU5W4mnyV3YsYukp93HgAOqZdxPJAybBjrx7No54YmMXeG
IpxcGG/8SlxquJ1xujR1zfd43en7BZ5caoMg9yG7vcXX4z05j3FzHh9c/ZmW/zhv
zwD7UYtHhZH8wnL4W48VpW14sucTV19yVjmlv8Ghr1Dto+8h3pW1j8zN8QIDAQAB
o4ICpTCCAqEwHQYDVR0OBBYEFH/7ARXErN3RtK3EBzeAcmrPwBr5MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxLzUyNjhm
Yy1jZmVlLTRhYTgtOTdiZi1jYmUwMjA2NjVlZmUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvNTI2OGZj
LWNmZWUtNGFhOC05N2JmLWNiZTAyMDY2NWVmZS8xL2Zfc0JGY1NzM2RHMHJjUUhO
NEJ5YXNfQUd2ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQCW9P8AwQAwRczMBkGCCsGAQUFBwEIAQH/BAow
CKAGMAQCAnmZMA0GCSqGSIb3DQEBCwUAA4IBAQAczPztEOnNjcvnM2DPdpyGyDwf
JxTAgZzF/M+b+qdMxgMeyq1X9YuV1tI9LzMcoeGxMoLEQDQDN0zjsAWdjLaPe/5l
Uufp3oU8aTouhCFWsuGxpID6+1cm9C3Jl63+wXGrQTJljmW71f/8WcQacpWXEu0V
I1HcH6HO1xo7KTZ+/OJK92CgUxDN6AJxC/CEhGPF9opzkX1WTS6wE9dLjAvOo4eh
XdyE0ko1M9vmqBAVEpN+azURjRt0Y5nYNUyNJNGKbGYhnxM8Z/WnkG3FnCaZHpg2
t96VfvAx1Ryk+xNiXtT9uGMwEXAHrviavdm8GiMYrsWB+t9koQ12Ddxx9XXm
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:18:51 2024 by rpki-client on console-fra.rpki-client.org