Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g103QIoiXxqJZPjXK8mdm75TMjQ.cer
File: g103QIoiXxqJZPjXK8mdm75TMjQ.cer (raw, json)
Hash identifier: ua2nGDEOiAFk5bObSNc52nPXAGXra/3praDonDUBDuY=
Subject key identifier: 83:5D:37:40:8A:22:5F:1A:89:64:F8:D7:2B:C9:9D:9B:BE:53:32:34
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F52903EC63D99D05BACDD6709994A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/028492-d619-42da-aa64-cb6c674c5a3c/1/g103QIoiXxqJZPjXK8mdm75TMjQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/028492-d619-42da-aa64-cb6c674c5a3c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:48 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203187
AS: 204845
IP: 185.82.80.0/22
IP: 185.238.124.0/22
IP: 2a05:8e00::/29
IP: 2a0c:2e80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:52:90:3e:c6:3d:99:d0:5b:ac:dd:67:09:99:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=835d37408a225f1a8964f8d72bc99d9bbe533234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8d:e7:bb:5e:a9:be:d3:2f:d8:5f:c6:20:23:
4e:ee:86:25:de:80:ad:e8:fe:b9:a0:4a:f4:fe:5d:
fa:5b:4c:53:30:ce:07:47:2b:e3:6c:d0:be:65:77:
87:3f:d2:3a:59:fe:90:fb:2d:8d:b5:ad:9a:fe:df:
47:f5:f4:4e:56:3f:fa:41:d3:3d:7b:87:94:7d:9e:
dd:46:55:9a:ab:f1:3f:0a:5f:b6:89:c0:d4:96:6b:
ce:70:47:c2:53:58:e3:cb:d8:7c:d5:eb:3c:50:ce:
fb:3b:34:db:ea:3d:bc:18:02:ee:7f:6c:76:f1:d5:
ce:75:6a:bb:bb:91:d8:b6:36:c4:38:6f:ee:dc:b4:
c6:fc:c1:40:74:7b:6b:78:4d:79:f9:0b:51:91:59:
9d:fd:6f:09:b0:13:bb:51:e2:3d:af:1a:ea:17:ed:
44:c3:e2:05:88:c9:8b:86:54:63:88:a5:82:ba:1e:
03:30:c5:4c:53:ff:6b:a0:3c:4d:98:6d:63:b0:b0:
bf:d0:84:8e:d1:4f:69:78:4d:98:40:c1:4f:28:b3:
76:df:f2:ab:85:0b:fd:8f:61:9b:c4:dc:26:22:05:
74:8e:d9:5a:d2:84:e9:0e:7a:c3:8c:32:2c:ab:cb:
75:95:01:6d:8b:d9:73:7c:5f:a6:8a:40:01:d2:0f:
80:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5D:37:40:8A:22:5F:1A:89:64:F8:D7:2B:C9:9D:9B:BE:53:32:34
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/028492-d619-42da-aa64-cb6c674c5a3c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/028492-d619-42da-aa64-cb6c674c5a3c/1/g103QIoiXxqJZPjXK8mdm75TMjQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.80.0/22
185.238.124.0/22
IPv6:
2a05:8e00::/29
2a0c:2e80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203187
204845
Signature Algorithm: sha256WithRSAEncryption
a0:2b:d7:e8:41:56:d2:29:9b:16:87:f2:b9:ca:14:ff:f5:7c:
39:5d:fe:1a:a3:cd:ef:8d:e9:28:cc:16:0a:80:fc:ea:86:8a:
5b:ee:d2:4d:c7:eb:b0:77:13:f1:23:71:43:4c:be:43:db:9c:
89:e6:28:ce:ed:c3:2e:5e:c2:8d:aa:7c:37:4f:19:ac:94:2c:
40:16:06:cb:c6:7e:b1:12:1b:e4:85:86:de:ac:af:35:f7:77:
96:21:f8:72:82:4d:8e:fc:b8:34:85:f9:7a:16:1c:c0:db:06:
c7:d2:d9:a4:c9:d3:ba:98:26:d9:43:39:41:df:41:84:9d:d7:
77:12:37:31:e5:0a:07:81:27:ee:39:11:8a:d4:51:4b:6b:f8:
c6:62:2a:9a:37:b9:26:c2:7c:ac:9d:e0:a1:00:15:58:37:ef:
51:81:cc:52:d5:ff:98:5f:38:f0:49:cf:b7:36:c8:d3:d7:1f:
69:b0:7a:4a:9d:05:93:b2:24:b0:7e:27:94:3d:77:3d:f2:e3:
78:5f:22:60:91:88:11:6a:b8:38:a8:e4:da:49:95:ac:36:d4:
09:0d:f8:49:2b:dc:ca:19:6e:65:11:5e:af:e4:be:a1:59:7e:
12:95:9f:12:cb:02:de:10:22:82:17:99:07:0a:ef:80:06:11:
b9:58:89:37
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAYzIb1KQPsY9mdBbrN1nCZlKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQyOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzVkMzc0MDhhMjI1ZjFhODk2NGY4ZDcyYmM5OWQ5YmJlNTMzMjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu43nu16pvtMv2F/GICNO7oYl3oCt
6P65oEr0/l36W0xTMM4HRyvjbNC+ZXeHP9I6Wf6Q+y2Nta2a/t9H9fROVj/6QdM9
e4eUfZ7dRlWaq/E/Cl+2icDUlmvOcEfCU1jjy9h81es8UM77OzTb6j28GALuf2x2
8dXOdWq7u5HYtjbEOG/u3LTG/MFAdHtreE15+QtRkVmd/W8JsBO7UeI9rxrqF+1E
w+IFiMmLhlRjiKWCuh4DMMVMU/9roDxNmG1jsLC/0ISO0U9peE2YQMFPKLN23/Kr
hQv9j2GbxNwmIgV0jtla0oTpDnrDjDIsq8t1lQFti9lzfF+mikAB0g+AgQIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFINdN0CKIl8aiWT41yvJnZu+UzI0MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljLzAyODQ5
Mi1kNjE5LTQyZGEtYWE2NC1jYjZjNjc0YzVhM2MvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvMDI4NDky
LWQ2MTktNDJkYS1hYTY0LWNiNmM2NzRjNWEzYy8xL2cxMDNRSW9pWHhxSlpQalhL
OG1kbTc1VE1qUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDsGCCsGAQUF
BwEHAQH/BCwwKjASBAIAATAMAwQCuVJQAwQCue58MBQEAgACMA4DBQMqBY4AAwUD
KgwugDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDGbMCAwMgLTANBgkqhkiG9w0B
AQsFAAOCAQEAoCvX6EFW0imbFofyucoU//V8OV3+GqPN743pKMwWCoD86oaKW+7S
TcfrsHcT8SNxQ0y+Q9ucieYozu3DLl7Cjap8N08ZrJQsQBYGy8Z+sRIb5IWG3qyv
Nfd3liH4coJNjvy4NIX5ehYcwNsGx9LZpMnTupgm2UM5Qd9BhJ3XdxI3MeUKB4En
7jkRitRRS2v4xmIqmje5JsJ8rJ3goQAVWDfvUYHMUtX/mF848EnPtzbI09cfabB6
Sp0Fk7IksH4nlD13PfLjeF8iYJGIEWq4OKjk2kmVrDbUCQ34SSvcyhluZRFer+S+
oVl+EpWfEssC3hAigheZBwrvgAYRuViJNw==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:19:25 2024 by rpki-client on console-fra.rpki-client.org