Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/femPSOmIeQ0OB5NTeUG0E9LmAwY.cer
File: femPSOmIeQ0OB5NTeUG0E9LmAwY.cer (raw, json)
Hash identifier: Dse8GfKPxrQOVaBLLJqqprijgMLTCHghoge7XrT4e+U=
Subject key identifier: 7D:E9:8F:48:E9:88:79:0D:0E:07:93:53:79:41:B4:13:D2:E6:03:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F81B798CBA8208F1C671EE269250FF585
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/femPSOmIeQ0OB5NTeUG0E9LmAwY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 16 May 2024 14:04:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35762
AS: 41849
IP: 5.252.44.0/22
IP: 91.102.128.0/21
IP: 2a01:7140::/32
IP: 2a09:4340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:b7:98:cb:a8:20:8f:1c:67:1e:e2:69:25:0f:f5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 16 14:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7de98f48e988790d0e0793537941b413d2e60306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7d:f0:d5:e7:bc:01:94:dc:59:a8:21:f3:8d:
3e:a7:f8:6e:12:3e:37:89:d4:fe:5b:58:95:36:b8:
fa:1b:6f:fe:27:0a:9d:02:16:4f:41:9f:e0:f3:75:
76:6c:00:b9:46:1f:ae:9a:22:1f:69:89:58:ba:cc:
87:25:bb:49:d7:42:85:1c:23:5d:12:ae:39:95:42:
2e:3e:3f:cc:9c:69:bc:9c:3f:b5:5a:ce:54:10:8c:
47:a0:52:85:16:a5:ce:55:bf:5a:ff:cf:48:2d:f0:
fe:9e:39:94:9a:da:60:4e:69:e3:0d:db:bc:92:d8:
aa:8e:6f:eb:b8:f6:38:78:ef:43:16:e6:c0:89:36:
90:8b:e3:77:50:0c:4e:ee:d6:7c:30:f2:ef:f3:ce:
1d:a9:a3:a5:54:c4:61:0d:a7:63:24:68:5c:41:e0:
b9:1c:ee:1e:aa:66:18:ae:12:73:13:7b:8d:03:9a:
1c:26:00:cd:51:5e:8a:1e:e8:85:8a:97:6c:69:a1:
f4:b5:14:7e:b8:24:dd:cd:c5:d7:8a:d2:3a:2c:76:
ee:ba:82:85:44:66:81:74:07:7a:56:63:96:54:ae:
75:00:07:9b:1f:27:78:89:fa:4e:ed:ee:fb:a6:bb:
11:38:b9:0b:66:9f:f5:bc:d5:07:a2:67:11:2a:23:
ce:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E9:8F:48:E9:88:79:0D:0E:07:93:53:79:41:B4:13:D2:E6:03:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/c0fc0a-15d4-46cc-a8b9-47632cb5b854/1/femPSOmIeQ0OB5NTeUG0E9LmAwY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.44.0/22
91.102.128.0/21
IPv6:
2a01:7140::/32
2a09:4340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35762
41849
Signature Algorithm: sha256WithRSAEncryption
ad:1f:0b:61:f7:e4:3d:ef:ef:29:eb:89:6a:78:f0:1e:28:91:
f2:42:94:d3:36:73:69:36:f2:68:c3:fe:e2:60:43:be:10:bf:
20:09:01:9e:3b:58:e3:0d:9a:e7:8e:c0:83:8c:ce:46:57:5e:
a1:2f:b9:32:9d:a5:81:d4:01:fd:6c:89:28:35:d4:90:5a:df:
9d:3a:2d:04:43:b5:c2:53:b8:28:36:c6:b4:c9:a2:11:70:af:
34:85:d0:2e:49:5e:f5:dc:fd:0f:34:3d:d5:fe:71:13:de:db:
ef:dd:c6:63:ee:95:e3:4d:c6:59:17:86:9e:98:c0:64:9b:06:
13:04:41:9d:37:dd:c4:83:97:7f:9b:50:2e:e2:4b:8f:62:fb:
20:27:bd:75:91:3e:40:21:43:75:52:d9:c4:06:6c:bb:06:6b:
1d:09:0c:6a:cc:6f:f7:2a:83:70:5c:67:bd:1e:aa:de:2b:67:
63:49:5c:3f:da:3b:e0:95:46:28:a6:d7:d6:00:fe:4e:dd:82:
80:1e:62:30:0a:26:35:f9:e8:98:0e:90:f7:a4:5d:c3:86:94:
57:56:d4:75:3a:a5:e6:f1:fe:9e:c8:ae:28:18:a1:39:86:05:
db:aa:be:92:7c:d9:77:b8:ea:5e:b7:4f:11:7c:18:f3:c5:c4:
f9:1b:fa:81
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAY+Bt5jLqCCPHGce4mklD/WFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNTE2MTQwNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGU5OGY0OGU5ODg3OTBkMGUwNzkzNTM3OTQxYjQxM2QyZTYwMzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArH3w1ee8AZTcWagh840+p/huEj43
idT+W1iVNrj6G2/+JwqdAhZPQZ/g83V2bAC5Rh+umiIfaYlYusyHJbtJ10KFHCNd
Eq45lUIuPj/MnGm8nD+1Ws5UEIxHoFKFFqXOVb9a/89ILfD+njmUmtpgTmnjDdu8
ktiqjm/ruPY4eO9DFubAiTaQi+N3UAxO7tZ8MPLv884dqaOlVMRhDadjJGhcQeC5
HO4eqmYYrhJzE3uNA5ocJgDNUV6KHuiFipdsaaH0tRR+uCTdzcXXitI6LHbuuoKF
RGaBdAd6VmOWVK51AAebHyd4ifpO7e77prsROLkLZp/1vNUHomcRKiPOWwIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFH3pj0jpiHkNDgeTU3lBtBPS5gMGMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJkL2MwZmMw
YS0xNWQ0LTQ2Y2MtYThiOS00NzYzMmNiNWI4NTQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQvYzBmYzBh
LTE1ZDQtNDZjYy1hOGI5LTQ3NjMyY2I1Yjg1NC8xL2ZlbVBTT21JZVEwT0I1TlRl
VUcwRTlMbUF3WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDsGCCsGAQUF
BwEHAQH/BCwwKjASBAIAATAMAwQCBfwsAwQDW2aAMBQEAgACMA4DBQAqAXFAAwUD
KglDQDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMAi7ICAwCjeTANBgkqhkiG9w0B
AQsFAAOCAQEArR8LYffkPe/vKeuJanjwHiiR8kKU0zZzaTbyaMP+4mBDvhC/IAkB
njtY4w2a547Ag4zORldeoS+5Mp2lgdQB/WyJKDXUkFrfnTotBEO1wlO4KDbGtMmi
EXCvNIXQLkle9dz9DzQ91f5xE97b793GY+6V403GWReGnpjAZJsGEwRBnTfdxIOX
f5tQLuJLj2L7ICe9dZE+QCFDdVLZxAZsuwZrHQkMasxv9yqDcFxnvR6q3itnY0lc
P9o74JVGKKbX1gD+Tt2CgB5iMAomNfnomA6Q96Rdw4aUV1bUdTql5vH+nsiuKBih
OYYF26q+knzZd7jqXrdPEXwY88XE+Rv6gQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:15 2024 by rpki-client on console-fra.rpki-client.org