Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/hduDqDZaYER28oLSTTJ60e8P3lI.cer
File: hduDqDZaYER28oLSTTJ60e8P3lI.cer (raw, json)
Hash identifier: CWcmgpUGJPNhep3DdnPPSJNpQbwjM9RHsDuCn7ZV3XA=
Subject key identifier: 85:DB:83:A8:36:5A:60:44:76:F2:82:D2:4D:32:7A:D1:EF:0F:DE:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC79358D63537733C25D39499A61BA3F8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/hduDqDZaYER28oLSTTJ60e8P3lI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41153
AS: 44187
AS: 60402
IP: 46.226.232.0/21
IP: 87.237.24.0/21
IP: 91.215.4.0/22
IP: 185.25.80.0/22
IP: 185.199.188.0/22
IP: 185.199.232.0/22
IP: 194.140.246.0/24
IP: 213.5.232.0/22
IP: 2a00:c600::/29
IP: 2a09:8d40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:58:d6:35:37:73:3c:25:d3:94:99:a6:1b:a3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85db83a8365a604476f282d24d327ad1ef0fde52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3a:bf:21:43:26:56:a6:0a:05:1e:7c:c2:ba:
ac:5f:54:f0:3f:3f:5e:73:fd:4e:eb:97:8a:45:b7:
8a:06:53:20:9c:ae:d8:c3:52:b8:0c:19:73:af:86:
15:d0:f3:7f:5a:8f:d6:23:5e:1e:c0:ec:5c:e1:91:
f3:e4:78:e0:4f:12:be:e7:dd:89:ca:9a:58:06:31:
b7:f0:c9:e4:72:a8:61:7d:c9:f5:3c:97:fd:af:db:
9f:61:93:57:d6:d3:84:9d:9e:8b:f0:18:7f:40:c6:
b1:e7:76:4a:23:3f:b5:80:c0:77:00:2a:1a:d3:21:
c3:a5:bc:5f:68:dd:a3:9a:21:a1:d4:a5:b7:03:26:
c7:90:b9:2f:1c:99:2c:09:45:54:8a:9e:65:a9:0d:
e4:bf:0f:d6:e0:e6:7e:5c:65:41:5a:27:f2:5f:cc:
7f:4e:43:c4:b1:46:b0:0f:be:c2:50:f2:4b:4d:96:
44:df:78:ca:44:f9:fe:6b:09:cc:ef:e2:bd:b7:2f:
1c:ec:69:0a:58:b4:b1:4c:68:00:ac:cd:4c:0c:0e:
85:44:33:23:89:d2:59:5c:d1:43:6e:1f:7c:e4:cf:
cf:4f:8e:f0:5e:fd:40:17:e4:74:a7:aa:af:b8:9c:
40:7f:1e:58:7d:df:ef:a1:f2:9b:8f:0c:36:e8:94:
06:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DB:83:A8:36:5A:60:44:76:F2:82:D2:4D:32:7A:D1:EF:0F:DE:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/2c8f08-e599-44f3-bbc1-8cbef913e342/1/hduDqDZaYER28oLSTTJ60e8P3lI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.232.0/21
87.237.24.0/21
91.215.4.0/22
185.25.80.0/22
185.199.188.0/22
185.199.232.0/22
194.140.246.0/24
213.5.232.0/22
IPv6:
2a00:c600::/29
2a09:8d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41153
44187
60402
Signature Algorithm: sha256WithRSAEncryption
11:02:31:fe:ee:3c:14:69:0b:80:e9:b5:45:a3:a7:bf:f3:67:
13:ad:cb:86:8f:ea:60:34:61:85:4f:76:51:4e:d7:c9:9a:b7:
39:e9:ce:d7:a4:08:e1:89:59:b7:d9:bf:30:0e:6d:90:88:34:
e8:cc:93:3b:7f:bd:4d:b9:94:14:fc:37:66:82:07:ee:25:65:
d0:2a:02:fa:e6:0d:7c:74:5a:4e:21:ba:58:81:e0:b3:1d:52:
1a:27:ed:e0:e4:de:e3:c4:d7:34:5e:e8:23:27:f9:2b:bf:89:
35:c6:3b:05:ab:d9:52:5e:f9:26:d8:2e:b1:d0:c8:e2:5d:ab:
52:37:1b:1c:6b:81:51:7e:8c:00:26:d4:66:90:a6:61:eb:03:
fd:f2:0b:55:39:f0:cc:0a:86:70:df:49:a3:af:c0:a6:42:56:
87:14:d5:02:d2:e8:dc:db:7c:85:15:5f:33:19:62:d7:83:2b:
c5:3a:68:91:c9:ae:c3:ae:c3:2e:29:29:ef:33:b8:31:cb:6b:
5a:c7:c6:5d:8a:28:ed:8e:bf:8c:7f:47:a2:43:80:f3:0a:af:
a8:3c:0a:a2:f2:a2:33:c0:7e:c6:f5:59:18:62:bf:04:8a:54:
08:ae:a7:74:3c:fd:6d:34:16:7a:93:a4:a6:f6:d4:32:00:8f:
bd:5f:4a:25
-----BEGIN CERTIFICATE-----
MIIF3jCCBMagAwIBAgISAYzHk1jWNTdzPCXTlJmmG6P4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDAyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWRiODNhODM2NWE2MDQ0NzZmMjgyZDI0ZDMyN2FkMWVmMGZkZTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTq/IUMmVqYKBR58wrqsX1TwPz9e
c/1O65eKRbeKBlMgnK7Yw1K4DBlzr4YV0PN/Wo/WI14ewOxc4ZHz5HjgTxK+592J
yppYBjG38Mnkcqhhfcn1PJf9r9ufYZNX1tOEnZ6L8Bh/QMax53ZKIz+1gMB3ACoa
0yHDpbxfaN2jmiGh1KW3AybHkLkvHJksCUVUip5lqQ3kvw/W4OZ+XGVBWifyX8x/
TkPEsUawD77CUPJLTZZE33jKRPn+awnM7+K9ty8c7GkKWLSxTGgArM1MDA6FRDMj
idJZXNFDbh985M/PT47wXv1AF+R0p6qvuJxAfx5Yfd/vofKbjww26JQGzwIDAQAB
o4IC6jCCAuYwHQYDVR0OBBYEFIXbg6g2WmBEdvKC0k0yetHvD95SMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBlLzJjOGYw
OC1lNTk5LTQ0ZjMtYmJjMS04Y2JlZjkxM2UzNDIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUvMmM4ZjA4
LWU1OTktNDRmMy1iYmMxLThjYmVmOTEzZTM0Mi8xL2hkdURxRFphWUVSMjhvTFNU
VEo2MGU4UDNsSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GCCsGAQUF
BwEHAQH/BFAwTjA2BAIAATAwAwQDLuLoAwQDV+0YAwQCW9cEAwQCuRlQAwQCuce8
AwQCucfoAwQAwoz2AwQC1QXoMBQEAgACMA4DBQMqAMYAAwUDKgmNQDAkBggrBgEF
BQcBCAEB/wQVMBOgETAPAgMAoMECAwCsmwIDAOvyMA0GCSqGSIb3DQEBCwUAA4IB
AQARAjH+7jwUaQuA6bVFo6e/82cTrcuGj+pgNGGFT3ZRTtfJmrc56c7XpAjhiVm3
2b8wDm2QiDTozJM7f71NuZQU/DdmggfuJWXQKgL65g18dFpOIbpYgeCzHVIaJ+3g
5N7jxNc0XugjJ/krv4k1xjsFq9lSXvkm2C6x0MjiXatSNxsca4FRfowAJtRmkKZh
6wP98gtVOfDMCoZw30mjr8CmQlaHFNUC0ujc23yFFV8zGWLXgyvFOmiRya7DrsMu
KSnvM7gxy2tax8Zdiijtjr+Mf0eiQ4DzCq+oPAqi8qIzwH7G9VkYYr8EilQIrqd0
PP1tNBZ6k6Sm9tQyAI+9X0ol
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:28:40 2024 by rpki-client on console-ams.rpki-client.org