Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
File: gKn_9jo0d5V_91zNwAPatoz50VU.cer (raw, json)
Hash identifier: KqNVJG3UaJd8CsPscEnVrt0PkUnEpNTntfRTXjw3e08=
Subject key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192E16B2CE68D51E251FBDF999AD4C122A8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 31 Oct 2024 07:12:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16276
AS: 35540
IP: 5.39.0.0/17
IP: 5.135.0.0/16
IP: 5.196.0.0/16
IP: 37.59.0.0/16
IP: 37.187.0.0/16
IP: 46.105.0.0/16
IP: 51.38.0.0/16
IP: 51.68.0.0/16
IP: 51.75.0.0/16
IP: 51.77.0.0/16
IP: 51.83.0.0/16
IP: 51.89.0.0/16
IP: 51.91.0.0/16
IP: 51.178.0.0/16
IP: 51.195.0.0/16
IP: 51.210.0.0/16
IP: 51.254.0.0/15
IP: 54.36.0.0 -- 54.38.255.255
IP: 57.128.0.0/14
IP: 79.137.0.0/17
IP: 87.98.128.0/17
IP: 91.121.0.0/16
IP: 91.134.0.0/16
IP: 92.222.0.0/16
IP: 94.23.0.0/16
IP: 109.190.0.0/16
IP: 135.125.0.0/16
IP: 137.74.0.0/16
IP: 141.94.0.0/15
IP: 141.227.128.0/17
IP: 145.239.0.0/16
IP: 146.59.0.0/16
IP: 147.135.128.0/17
IP: 149.202.0.0/16
IP: 151.80.0.0/16
IP: 151.127.0.0/16
IP: 152.228.128.0/17
IP: 159.173.0.0/16
IP: 162.19.0.0/16
IP: 164.132.0.0/16
IP: 176.31.0.0/16
IP: 178.32.0.0/15
IP: 185.15.68.0/22
IP: 188.165.0.0/16
IP: 193.70.0.0/17
IP: 198.244.128.0/17
IP: 213.32.0.0/17
IP: 213.186.32.0/19
IP: 213.251.128.0/18
IP: 217.182.0.0/16
IP: 2001:41d0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e1:6b:2c:e6:8d:51:e2:51:fb:df:99:9a:d4:c1:22:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 31 07:12:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b6:e7:cf:59:50:e7:42:a4:db:00:96:4f:3f:
9b:7a:a0:46:27:59:eb:35:5d:9f:f5:25:fc:43:1e:
6d:51:2c:8d:a5:ae:0c:2e:04:cf:17:8c:43:a6:20:
51:5a:87:99:58:b5:77:25:01:e0:28:3a:ea:f2:82:
5c:c9:8e:94:db:ca:24:82:c2:54:f0:3e:83:1d:b5:
2e:85:fd:4e:4d:63:77:4f:31:a7:a8:f0:15:bb:e2:
8d:23:a5:cc:13:2e:84:b3:2a:66:d6:c2:90:0b:cc:
91:f1:6a:3f:19:fb:32:95:03:93:eb:a8:8c:ab:00:
fc:67:c8:89:ad:46:13:cd:33:ab:37:32:91:62:2f:
78:b0:d1:dc:34:d8:d5:07:f0:03:c5:0d:57:25:f1:
c6:86:43:88:ee:32:68:8f:8f:49:f8:d0:df:6a:84:
bd:31:e5:11:c2:16:f9:29:78:68:70:2e:8c:02:18:
5d:68:44:92:ac:fb:ca:cc:c2:eb:df:09:da:ef:da:
bf:c6:f8:1b:16:bf:65:4c:ef:92:cd:c0:c9:df:c2:
74:a2:1f:a1:88:11:15:a9:00:d1:2e:f4:f7:1d:ef:
0a:71:64:c1:f7:37:80:6c:e1:34:ac:6a:bb:55:58:
62:65:2a:14:e1:4b:03:52:10:e6:72:7c:ad:1b:ef:
e6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
51.254.0.0/15
54.36.0.0-54.38.255.255
57.128.0.0/14
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
109.190.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
141.227.128.0/17
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
151.80.0.0/16
151.127.0.0/16
152.228.128.0/17
159.173.0.0/16
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
185.15.68.0/22
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16276
35540
Signature Algorithm: sha256WithRSAEncryption
0f:27:a9:63:42:cf:72:7b:58:ec:b9:de:a6:a6:5b:b7:e9:9a:
86:d6:6f:85:a1:b0:b0:d6:8d:e0:f9:de:c0:a9:92:92:d0:95:
5c:c5:c4:33:4b:76:f3:d8:e0:53:7b:06:9f:b0:fa:63:21:68:
ab:7d:40:f5:44:ab:af:8a:b6:24:fe:31:cb:91:15:93:0a:f8:
1e:9f:55:87:38:7c:c4:1e:cc:0e:97:25:20:88:f6:2c:dd:89:
c7:42:7a:d1:30:ed:bb:5f:b1:97:b2:f5:c0:ad:5a:65:ff:a1:
ca:ec:39:1c:0b:96:df:7c:ae:53:1f:7e:77:18:79:6a:1f:99:
2c:6c:3a:2d:8d:9a:ec:fa:a0:f3:90:ae:6b:2e:e4:92:ea:8f:
fb:6a:43:f3:20:f9:2c:2c:50:2a:4a:1f:40:23:5c:5b:1a:56:
4f:38:3c:3b:03:d5:e4:61:02:bf:09:6f:bc:c7:04:b6:e2:99:
85:f0:7a:44:42:9f:a4:6b:3a:6b:fd:3d:20:6f:86:55:8e:e1:
8b:22:c7:ac:c1:c3:de:06:78:46:98:6d:ff:7a:18:f2:75:eb:
80:ef:6c:28:21:6a:ea:d6:d7:76:a6:5d:d6:a9:28:91:e2:19:
43:9f:a6:97:85:50:40:9d:29:b0:fe:15:f3:3e:ad:de:0c:85:
a2:60:d5:35
-----BEGIN CERTIFICATE-----
MIIGuDCCBaCgAwIBAgISAZLhayzmjVHiUfvfmZrUwSKoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMDMxMDcxMjMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGE5ZmZmNjNhMzQ3Nzk1N2ZmNzVjY2RjMDAzZGFiNjhjZjlkMTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLbnz1lQ50Kk2wCWTz+beqBGJ1nr
NV2f9SX8Qx5tUSyNpa4MLgTPF4xDpiBRWoeZWLV3JQHgKDrq8oJcyY6U28okgsJU
8D6DHbUuhf1OTWN3TzGnqPAVu+KNI6XMEy6Esypm1sKQC8yR8Wo/GfsylQOT66iM
qwD8Z8iJrUYTzTOrNzKRYi94sNHcNNjVB/ADxQ1XJfHGhkOI7jJoj49J+NDfaoS9
MeURwhb5KXhocC6MAhhdaESSrPvKzMLr3wna79q/xvgbFr9lTO+SzcDJ38J0oh+h
iBEVqQDRLvT3He8KcWTB9zeAbOE0rGq7VVhiZSoU4UsDUhDmcnytG+/mUQIDAQAB
o4IDxDCCA8AwHQYDVR0OBBYEFICp//Y6NHeVf/dczcAD2raM+dFVMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5L2IwODRi
Zi1hNDU0LTQzY2YtYWM5Mi00N2Q5OGU1ODU0NWEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvYjA4NGJm
LWE0NTQtNDNjZi1hYzkyLTQ3ZDk4ZTU4NTQ1YS8xL2dLbl85am8wZDVWXzkxek53
QVBhdG96NTBWVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBPQYIKwYB
BQUHAQcBAf8EggEsMIIBKDCCARUEAgABMIIBDQMEBwUnAAMDAAWHAwMABcQDAwAl
OwMDACW7AwMALmkDAwAzJgMDADNEAwMAM0sDAwAzTQMDADNTAwMAM1kDAwAzWwMD
ADOyAwMAM8MDAwAz0gMDATP+MAoDAwI2JAMDADYmAwMCOYADBAdPiQADBAdXYoAD
AwBbeQMDAFuGAwMAXN4DAwBeFwMDAG2+AwMAh30DAwCJSgMDAY1eAwQHjeOAAwMA
ke8DAwCSOwMEB5OHgAMDAJXKAwMAl1ADAwCXfwMEB5jkgAMDAJ+tAwMAohMDAwCk
hAMDALAfAwMBsiADBAK5D0QDAwC8pQMEB8FGAAMEB8b0gAMEB9UgAAMEBdW6IAME
BtX7gAMDANm2MA0EAgACMAcDBQAgAUHQMB4GCCsGAQUFBwEIAQH/BA8wDaALMAkC
Aj+UAgMAitQwDQYJKoZIhvcNAQELBQADggEBAA8nqWNCz3J7WOy53qamW7fpmobW
b4WhsLDWjeD53sCpkpLQlVzFxDNLdvPY4FN7Bp+w+mMhaKt9QPVEq6+KtiT+McuR
FZMK+B6fVYc4fMQezA6XJSCI9izdicdCetEw7btfsZey9cCtWmX/ocrsORwLlt98
rlMffncYeWofmSxsOi2Nmuz6oPOQrmsu5JLqj/tqQ/Mg+SwsUCpKH0AjXFsaVk84
PDsD1eRhAr8Jb7zHBLbimYXwekRCn6RrOmv9PSBvhlWO4Ysix6zBw94GeEaYbf96
GPJ164DvbCghaurW13amXdapKJHiGUOfppeFUECdKbD+FfM+rd4MhaJg1TU=
-----END CERTIFICATE-----
Generated at Tue Nov 26 01:00:03 2024 by rpki-client on console-ams.rpki-client.org