Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer
File: fdw2QUyZG_qNkvYCflMINwsitqY.cer (raw, json)
Hash identifier: JLdABhlqaWlTlXHmTYyNlklzBYHHMsCs90UwH9PSAf4=
Subject key identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727334A1B94322D63664EB626901890
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203825
IP: 185.122.188.0/22
IP: 193.110.166.0/23
IP: 193.110.196.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:33:4a:1b:94:32:2d:63:66:4e:b6:26:90:18:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ea:00:9f:0a:de:f0:c6:47:c5:9d:bc:20:42:
78:ec:49:37:48:42:90:a0:b6:68:cf:3c:bb:00:5f:
eb:37:9a:b7:ea:67:20:d7:6f:c6:a6:60:d2:14:06:
55:ce:ae:6b:f6:7d:70:4c:b2:2d:75:a2:88:80:5c:
f6:a3:f3:b7:ad:5e:c6:30:8a:d9:07:17:4f:5d:96:
ed:01:e7:0d:ab:3a:8e:fc:35:6c:b9:88:96:aa:a7:
e2:ab:77:22:ab:54:47:e3:70:94:b3:1d:9a:2e:f6:
da:41:28:42:c3:99:11:9c:b7:14:73:99:26:a1:1f:
1c:61:6b:28:db:cf:3b:af:2b:ba:4e:b1:6e:17:7a:
b1:e3:75:6b:cc:64:34:95:af:7b:47:11:2f:e4:88:
6f:44:ee:f2:c3:5a:af:8f:13:5e:4f:b5:73:75:8e:
03:56:5f:28:89:f9:f6:c9:e4:9f:87:ed:31:83:8b:
9b:db:35:04:9a:a1:93:1a:3b:cb:43:7b:42:22:3d:
9e:f8:f2:86:3c:6c:79:9f:e2:5e:6d:75:83:d3:fd:
36:54:c4:65:21:65:cc:00:b4:15:69:3e:c8:85:60:
95:2a:64:fb:16:0c:3f:3d:6a:a3:5e:44:95:85:07:
f8:8d:e5:07:27:cf:1d:71:2c:cb:e7:e0:03:d0:ea:
5b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.188.0/22
193.110.166.0/23
193.110.196.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203825
Signature Algorithm: sha256WithRSAEncryption
26:6f:22:20:0c:cf:82:49:c3:c0:50:83:72:33:80:00:aa:11:
36:71:2b:33:46:bd:ae:ee:f3:e4:1e:5d:6e:23:8c:19:53:0a:
e3:ed:bf:01:e9:60:c4:d9:00:1e:e5:dd:38:99:b4:00:08:b3:
0a:06:81:ad:c7:d8:28:00:1f:cc:38:98:6f:0f:90:c2:17:c1:
ba:80:93:3f:0e:c0:05:8f:68:ee:ab:3d:d1:cb:2e:55:04:23:
1e:09:a1:f3:fb:bb:17:e3:03:70:6c:1f:a0:58:d5:7a:d5:a4:
51:0c:4a:3f:37:33:36:a6:04:2c:13:8f:10:a6:90:3c:d6:44:
0b:b2:d8:ff:af:92:4a:cb:c0:6b:7a:80:25:c8:33:32:bf:3b:
57:e1:a6:4a:63:4f:5d:66:fb:63:12:97:01:7d:96:d5:c9:85:
fd:3f:0f:0a:54:a9:12:1e:31:de:27:76:39:f5:d9:f2:23:ed:
fb:3f:4c:19:39:f0:4c:c6:a4:28:5f:49:73:a8:6f:76:bf:0b:
3c:08:a9:22:30:34:81:4c:41:6b:4e:c1:2c:e1:66:7b:48:44:
36:95:cb:a9:77:13:8e:99:b5:14:e5:78:65:5c:be:c0:d2:7e:
36:46:92:4e:2c:63:e1:56:24:5c:05:61:4d:35:8b:9c:c1:37:
c4:b2:44:65
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgISAYzHJzNKG5QyLWNmTrYmkBiQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjIzMTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGRjMzY0MTRjOTkxYmZhOGQ5MmY2MDI3ZTUzMDgzNzBiMjJiNmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OoAnwre8MZHxZ28IEJ47Ek3SEKQ
oLZozzy7AF/rN5q36mcg12/GpmDSFAZVzq5r9n1wTLItdaKIgFz2o/O3rV7GMIrZ
BxdPXZbtAecNqzqO/DVsuYiWqqfiq3ciq1RH43CUsx2aLvbaQShCw5kRnLcUc5km
oR8cYWso2887ryu6TrFuF3qx43VrzGQ0la97RxEv5IhvRO7yw1qvjxNeT7VzdY4D
Vl8oifn2yeSfh+0xg4ub2zUEmqGTGjvLQ3tCIj2e+PKGPGx5n+JebXWD0/02VMRl
IWXMALQVaT7IhWCVKmT7Fgw/PWqjXkSVhQf4jeUHJ88dcSzL5+AD0OpbRwIDAQAB
o4ICrDCCAqgwHQYDVR0OBBYEFH3cNkFMmRv6jZL2An5TCDcLIramMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk3L2FhY2Rj
Yy1hYTE3LTQyZjgtOWFkZS03YzM3OWE1NTFjMTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcvYWFjZGNj
LWFhMTctNDJmOC05YWRlLTdjMzc5YTU1MWMxMi8xL2ZkdzJRVXlaR19xTmt2WUNm
bE1JTndzaXRxWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF
BwEHAQH/BBwwGjAYBAIAATASAwQCuXq8AwQBwW6mAwQCwW7EMBoGCCsGAQUFBwEI
AQH/BAswCaAHMAUCAwMcMTANBgkqhkiG9w0BAQsFAAOCAQEAJm8iIAzPgknDwFCD
cjOAAKoRNnErM0a9ru7z5B5dbiOMGVMK4+2/AelgxNkAHuXdOJm0AAizCgaBrcfY
KAAfzDiYbw+QwhfBuoCTPw7ABY9o7qs90csuVQQjHgmh8/u7F+MDcGwfoFjVetWk
UQxKPzczNqYELBOPEKaQPNZEC7LY/6+SSsvAa3qAJcgzMr87V+GmSmNPXWb7YxKX
AX2W1cmF/T8PClSpEh4x3id2OfXZ8iPt+z9MGTnwTMakKF9Jc6hvdr8LPAipIjA0
gUxBa07BLOFme0hENpXLqXcTjpm1FOV4ZVy+wNJ+NkaSTixj4VYkXAVhTTWLnME3
xLJEZQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:01:53 2024 by rpki-client on console-ams.rpki-client.org