Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fiCwNOLEl7GIRIje8QaXJwR2UCk.cer
File: fiCwNOLEl7GIRIje8QaXJwR2UCk.cer (raw, json)
Hash identifier: B72w9mY9/9BjjcIldEuQx2Ile083e33f1GHmflyBWrw=
Subject key identifier: 7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC50075B3B5FB2EB75AA050EF5421ABEB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 5571
AS: 6727
AS: 8844
AS: 12554
AS: 12606
AS: 12852
AS: 15482
AS: 15565
AS: 20500
AS: 35694
AS: 50173
IP: 5.83.96.0/21
IP: 37.1.152.0/21
IP: 46.34.0.0/19
IP: 78.154.96.0/19
IP: 79.121.128.0/17
IP: 80.68.208.0/20
IP: 80.82.128.0/20
IP: 82.108.0.0/14
IP: 82.138.192.0/18
IP: 82.151.224.0/19
IP: 83.148.128.0/18
IP: 85.189.0.0/16
IP: 86.53.0.0/16
IP: 87.82.0.0 -- 87.87.255.255
IP: 91.143.176.0/20
IP: 91.195.166.0/23
IP: 92.54.128.0/18
IP: 92.244.160.0/19
IP: 93.152.0.0/17
IP: 93.157.216.0/21
IP: 94.185.128.0/17
IP: 95.152.192.0/18
IP: 95.177.0.0/17
IP: 109.71.168.0/21
IP: 109.174.128.0/17
IP: 109.204.0.0/17
IP: 141.0.32.0/19
IP: 149.126.104.0/21
IP: 185.3.72.0/22
IP: 185.4.164.0/22
IP: 185.25.220.0/22
IP: 193.33.72.0/23
IP: 193.238.164.0/22
IP: 194.6.96.0/19
IP: 194.42.224.0/19
IP: 194.145.222.0/23
IP: 194.154.96.0/19
IP: 194.242.128.0/19
IP: 195.40.0.0/16
IP: 195.72.160.0/19
IP: 195.128.190.0/23
IP: 195.172.0.0/16
IP: 212.2.0.0/19
IP: 212.74.0.0/19
IP: 212.134.0.0/15
IP: 212.212.0.0/16
IP: 213.160.96.0/19
IP: 213.177.224.0/19
IP: 213.235.0.0/18
IP: 217.79.96.0/19
IP: 217.145.112.0/20
IP: 217.204.0.0/14
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:75:b3:b5:fb:2e:b7:5a:a0:50:ef:54:21:ab:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e20b034e2c497b1884488def106972704765029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:50:69:17:16:fb:76:20:ec:e3:59:bb:ea:2c:
1f:fa:b2:83:3c:d3:1a:af:4f:41:59:41:b4:b7:a9:
dd:c7:d3:68:79:d0:43:5c:b5:14:97:e8:ba:00:7e:
05:96:6e:eb:ab:30:98:3d:18:6e:55:0c:8f:98:a5:
5f:a8:19:2f:4b:18:cf:89:71:04:b5:92:54:60:9a:
ed:88:59:c7:b8:8f:20:18:b0:d8:28:8e:2f:21:a6:
2a:03:14:6f:b3:c0:eb:0b:55:4f:ae:8d:77:bc:9c:
f9:73:fb:a0:dd:3b:78:ce:bc:b1:59:dc:28:43:1a:
3b:e5:b9:31:a7:bb:9b:a0:fa:89:87:92:c3:a4:a2:
d2:64:26:1c:0a:a3:3e:85:68:d9:c0:29:e9:c4:30:
76:56:3c:23:e3:37:16:46:4e:50:ca:ab:fc:a5:49:
34:87:22:31:cc:89:83:1c:d6:f9:fb:94:b7:05:ca:
15:39:01:74:e7:40:b1:89:57:f8:fe:d9:27:f5:bd:
1c:dc:cf:61:90:5d:c0:8d:b2:c4:96:b8:dc:98:18:
44:85:b4:5a:c3:ce:a0:c7:74:60:02:f2:7b:9f:34:
e5:99:88:34:75:6e:9b:ef:c0:23:29:7b:99:1c:90:
e9:2d:4c:ec:e6:c8:e9:66:45:e1:09:53:7b:38:35:
78:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:20:B0:34:E2:C4:97:B1:88:44:88:DE:F1:06:97:27:04:76:50:29
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/6b662d-02a1-46e7-b9cd-035d977f4216/1/fiCwNOLEl7GIRIje8QaXJwR2UCk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.96.0/21
37.1.152.0/21
46.34.0.0/19
78.154.96.0/19
79.121.128.0/17
80.68.208.0/20
80.82.128.0/20
82.108.0.0/14
82.138.192.0/18
82.151.224.0/19
83.148.128.0/18
85.189.0.0/16
86.53.0.0/16
87.82.0.0-87.87.255.255
91.143.176.0/20
91.195.166.0/23
92.54.128.0/18
92.244.160.0/19
93.152.0.0/17
93.157.216.0/21
94.185.128.0/17
95.152.192.0/18
95.177.0.0/17
109.71.168.0/21
109.174.128.0/17
109.204.0.0/17
141.0.32.0/19
149.126.104.0/21
185.3.72.0/22
185.4.164.0/22
185.25.220.0/22
193.33.72.0/23
193.238.164.0/22
194.6.96.0/19
194.42.224.0/19
194.145.222.0/23
194.154.96.0/19
194.242.128.0/19
195.40.0.0/16
195.72.160.0/19
195.128.190.0/23
195.172.0.0/16
212.2.0.0/19
212.74.0.0/19
212.134.0.0/15
212.212.0.0/16
213.160.96.0/19
213.177.224.0/19
213.235.0.0/18
217.79.96.0/19
217.145.112.0/20
217.204.0.0/14
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5571
6727
8844
12554
12606
12852
15482
15565
20500
35694
50173
Signature Algorithm: sha256WithRSAEncryption
46:01:33:aa:ca:45:0d:88:fa:0c:f6:67:f8:8b:f6:d5:35:49:
6a:8a:f2:e4:8e:f2:af:23:9b:73:2e:b0:db:a2:bf:d0:92:7e:
09:6c:fa:75:66:c5:71:69:9f:20:a2:2b:59:90:31:76:0a:b2:
86:44:a2:4c:e5:3f:c7:44:f0:00:2b:1d:aa:3f:8a:97:68:51:
7e:cf:f0:79:e7:ad:74:68:8d:9a:24:1a:65:97:d4:ff:d8:9e:
1a:c5:4c:b5:f3:ff:d0:9a:ec:54:5d:8a:65:c4:58:ff:61:f2:
30:e0:76:f8:db:7d:a2:60:7a:34:79:38:70:d6:c3:5f:8a:c3:
50:08:67:03:fd:08:fc:f3:b6:9c:ec:00:11:9f:85:ce:50:b9:
58:ac:34:46:a2:bf:35:77:84:28:ea:41:34:62:58:47:1e:90:
98:d7:95:4c:cd:39:a3:78:e7:dc:75:2d:1b:c7:93:d5:10:e0:
90:57:52:89:6d:e7:ea:ac:07:99:9f:24:15:50:6d:04:8e:7e:
e9:6b:8b:62:e5:2e:2a:52:0b:a9:c1:00:bb:2c:cc:a2:96:64:
3a:f5:4f:1b:50:47:72:0f:92:00:be:a3:ef:47:46:04:8f:8e:
2b:4c:04:e4:fb:c2:62:cc:38:1d:12:e4:ff:a2:a2:c3:e4:66:
41:b2:7d:2c
-----BEGIN CERTIFICATE-----
MIIG9zCCBd+gAwIBAgISAYzFAHWztfsut1qgUO9UIavrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIyOTUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTIwYjAzNGUyYzQ5N2IxODg0NDg4ZGVmMTA2OTcyNzA0NzY1MDI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VBpFxb7diDs41m76iwf+rKDPNMa
r09BWUG0t6ndx9NoedBDXLUUl+i6AH4Flm7rqzCYPRhuVQyPmKVfqBkvSxjPiXEE
tZJUYJrtiFnHuI8gGLDYKI4vIaYqAxRvs8DrC1VPro13vJz5c/ug3Tt4zryxWdwo
Qxo75bkxp7uboPqJh5LDpKLSZCYcCqM+hWjZwCnpxDB2Vjwj4zcWRk5Qyqv8pUk0
hyIxzImDHNb5+5S3BcoVOQF050CxiVf4/tkn9b0c3M9hkF3AjbLElrjcmBhEhbRa
w86gx3RgAvJ7nzTlmYg0dW6b78AjKXuZHJDpLUzs5sjpZkXhCVN7ODV4UQIDAQAB
o4IEAzCCA/8wHQYDVR0OBBYEFH4gsDTixJexiESI3vEGlycEdlApMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgwLzZiNjYy
ZC0wMmExLTQ2ZTctYjljZC0wMzVkOTc3ZjQyMTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAvNmI2NjJk
LTAyYTEtNDZlNy1iOWNkLTAzNWQ5NzdmNDIxNi8xL2ZpQ3dOT0xFbDdHSVJJamU4
UWFYSndSMlVDay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBVwYIKwYB
BQUHAQcBAf8EggFGMIIBQjCCAT4EAgABMIIBNgMEAwVTYAMEAyUBmAMEBS4iAAME
BU6aYAMEB095gAMEBFBE0AMEBFBSgAMDAlJsAwQGUorAAwQFUpfgAwQGU5SAAwMA
Vb0DAwBWNTAKAwMBV1IDAwNXUAMEBFuPsAMEAVvDpgMEBlw2gAMEBVz0oAMEB12Y
AAMEA12d2AMEB165gAMEBl+YwAMEB1+xAAMEA21HqAMEB22ugAMEB23MAAMEBY0A
IAMEA5V+aAMEArkDSAMEArkEpAMEArkZ3AMEAcEhSAMEAsHupAMEBcIGYAMEBcIq
4AMEAcKR3gMEBcKaYAMEBcLygAMDAMMoAwQFw0igAwQBw4C+AwMAw6wDBAXUAgAD
BAXUSgADAwHUhgMDANTUAwQF1aBgAwQF1bHgAwQG1esAAwQF2U9gAwQE2ZFwAwMC
2cwwQwYIKwYBBQUHAQgBAf8ENDAyoDAwLgICFcMCAhpHAgIijAICMQoCAjE+AgIy
NAICPHoCAjzNAgJQFAIDAItuAgMAw/0wDQYJKoZIhvcNAQELBQADggEBAEYBM6rK
RQ2I+gz2Z/iL9tU1SWqK8uSO8q8jm3MusNuiv9CSfgls+nVmxXFpnyCiK1mQMXYK
soZEokzlP8dE8AArHao/ipdoUX7P8HnnrXRojZokGmWX1P/YnhrFTLXz/9Ca7FRd
imXEWP9h8jDgdvjbfaJgejR5OHDWw1+Kw1AIZwP9CPzztpzsABGfhc5QuVisNEai
vzV3hCjqQTRiWEcekJjXlUzNOaN459x1LRvHk9UQ4JBXUolt5+qsB5mfJBVQbQSO
fulri2LlLipSC6nBALsszKKWZDr1TxtQR3IPkgC+o+9HRgSPjitMBOT7wmLMOB0S
5P+iosPkZkGyfSw=
-----END CERTIFICATE-----
Generated at Fri May 3 13:52:53 2024 by rpki-client on console-fra.rpki-client.org