Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
File: iabNn0vrewwE0x_-XGdKh6dznSE.cer (raw, json)
Hash identifier: uilGVWeIaSoDBKXLOcqe/MnJ03YpHwcik1wD4sfWtTY=
Subject key identifier: 89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3488EC42B224D617A62176E2F650A50
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12642
AS: 13000
AS: 39412
AS: 47129
AS: 49001
AS: 49190
IP: 62.182.224.0/21
IP: 87.101.64.0/20
IP: 87.239.192.0/21
IP: 89.200.224.0/21
IP: 91.195.134.0/23
IP: 91.195.158.0/23
IP: 91.195.190.0/23
IP: 91.200.24.0/22
IP: 91.214.24.0/22
IP: 95.131.32.0/21
IP: 185.194.220.0/22
IP: 188.137.0.0/17
IP: 193.3.166.0/24
IP: 193.34.112.0/22
IP: 193.93.92.0/22
IP: 193.150.36.0/23
IP: 195.3.200.0/22
IP: 195.66.73.0/24
IP: 195.88.128.0/23
IP: 2a02:c40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:8e:c4:2b:22:4d:61:7a:62:17:6e:2f:65:0a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:57:71:7e:af:de:70:f5:e8:68:f3:ac:04:
a1:ea:38:79:e6:12:88:b5:ec:9c:b1:5b:4b:dd:8e:
5c:cd:ed:74:39:69:c9:30:b2:35:15:ad:a3:e9:23:
53:e8:7d:b9:f2:48:72:84:bc:0d:92:73:52:0d:82:
62:e6:25:24:ac:18:0b:fd:09:f4:06:0f:1e:69:dc:
a3:c4:e3:40:55:03:ce:5b:6b:95:93:1d:4f:01:75:
14:14:3e:57:58:c3:2d:db:b2:51:d4:48:92:32:7d:
0b:a9:b5:2b:ae:5c:b2:46:f0:a7:27:10:6a:ee:ae:
4e:39:23:eb:b6:56:01:9c:f9:08:da:04:7c:48:6e:
8f:75:92:95:f7:21:27:30:eb:e0:38:3d:7d:b0:5b:
d0:2c:93:a5:d1:73:1c:73:f1:96:0b:f7:d5:62:2a:
68:85:84:5f:11:20:50:36:8e:e8:4a:4c:39:82:6d:
01:6b:0e:d5:4c:a7:05:b4:fb:f7:c0:0a:2a:a5:80:
9b:0f:cb:78:8e:e3:25:10:14:60:88:e5:4f:ac:cd:
84:9d:c6:28:5b:68:ac:66:09:9c:dd:e8:9a:d3:45:
67:c8:35:19:9a:a4:b9:d0:3d:13:d4:ff:5b:e0:99:
4f:ff:ca:20:9c:ac:6b:bb:21:38:d8:6e:a9:ef:a8:
85:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.224.0/21
87.101.64.0/20
87.239.192.0/21
89.200.224.0/21
91.195.134.0/23
91.195.158.0/23
91.195.190.0/23
91.200.24.0/22
91.214.24.0/22
95.131.32.0/21
185.194.220.0/22
188.137.0.0/17
193.3.166.0/24
193.34.112.0/22
193.93.92.0/22
193.150.36.0/23
195.3.200.0/22
195.66.73.0/24
195.88.128.0/23
IPv6:
2a02:c40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12642
13000
39412
47129
49001
49190
Signature Algorithm: sha256WithRSAEncryption
1d:7f:8e:12:d2:95:4a:6a:a2:e3:d0:d4:fc:00:55:87:99:6e:
c6:6d:6f:6b:4a:9e:ee:ad:8e:8e:e7:99:9d:0c:38:cd:0f:30:
fb:5b:fa:67:fd:90:5c:93:63:82:47:31:22:19:9b:9d:91:3f:
a4:76:fd:97:16:7f:ec:9d:ee:ca:4a:63:86:ca:9d:eb:d2:ce:
12:7b:85:9f:6f:e7:e6:b4:5d:6d:a6:b9:cc:4c:82:85:18:2c:
be:83:68:45:62:0f:64:c1:64:24:e7:13:c6:c0:37:3f:a9:77:
b4:c8:95:f4:d2:9e:9d:3f:92:7f:75:03:1d:e2:52:af:c1:50:
84:86:d0:0a:88:67:a8:ff:40:4a:ea:db:b6:dc:54:48:d4:c2:
05:7c:49:3d:77:bf:b5:b3:d2:c3:f6:fa:04:8c:68:ca:fe:24:
eb:31:d9:e6:57:1a:a0:d1:a9:18:2f:fd:ad:a9:ac:f1:8e:95:
ad:d3:15:fa:48:0a:dd:05:82:59:c2:86:fc:82:e6:fd:7e:7f:
bd:4e:3d:92:3e:31:30:69:d5:5e:d7:0d:7f:1d:55:dc:69:21:
8f:20:26:19:e8:07:ca:4e:7c:96:4c:7c:20:a8:52:f4:e5:cf:
ff:6a:0d:20:08:f2:37:3f:fc:ca:66:a6:4e:fc:da:51:81:4b:
fc:2d:ae:5b
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgISAYzDSI7EKyJNYXpiF24vZQpQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDQyOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWE2Y2Q5ZjRiZWI3YjBjMDRkMzFmZmU1YzY3NGE4N2E3NzM5ZDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlelXcX6v3nD16GjzrASh6jh55hKI
teycsVtL3Y5cze10OWnJMLI1Fa2j6SNT6H258khyhLwNknNSDYJi5iUkrBgL/Qn0
Bg8eadyjxONAVQPOW2uVkx1PAXUUFD5XWMMt27JR1EiSMn0LqbUrrlyyRvCnJxBq
7q5OOSPrtlYBnPkI2gR8SG6PdZKV9yEnMOvgOD19sFvQLJOl0XMcc/GWC/fVYipo
hYRfESBQNo7oSkw5gm0Baw7VTKcFtPv3wAoqpYCbD8t4juMlEBRgiOVPrM2EncYo
W2isZgmc3eia00VnyDUZmqS50D0T1P9b4JlP/8ognKxruyE42G6p76iFjQIDAQAB
o4IDNTCCAzEwHQYDVR0OBBYEFImmzZ9L63sMBNMf/lxnSoenc50hMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc2Lzk5YTRj
Yy00NzIwLTRhNjQtYWEwNi0xZjkyNDQ5NWZjZGQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYvOTlhNGNj
LTQ3MjAtNGE2NC1hYTA2LTFmOTI0NDk1ZmNkZC8xL2lhYk5uMHZyZXd3RTB4Xy1Y
R2RLaDZkem5TRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGcBggrBgEF
BQcBBwEB/wSBjDCBiTB4BAIAATByAwQDPrbgAwQEV2VAAwQDV+/AAwQDWcjgAwQB
W8OGAwQBW8OeAwQBW8O+AwQCW8gYAwQCW9YYAwQDX4MgAwQCucLcAwQHvIkAAwQA
wQOmAwQCwSJwAwQCwV1cAwQBwZYkAwQCwwPIAwQAw0JJAwQBw1iAMA0EAgACMAcD
BQMqAgxAMDEGCCsGAQUFBwEIAQH/BCIwIKAeMBwCAjFiAgIyyAIDAJn0AgMAuBkC
AwC/aQIDAMAmMA0GCSqGSIb3DQEBCwUAA4IBAQAdf44S0pVKaqLj0NT8AFWHmW7G
bW9rSp7urY6O55mdDDjNDzD7W/pn/ZBck2OCRzEiGZudkT+kdv2XFn/sne7KSmOG
yp3r0s4Se4Wfb+fmtF1tprnMTIKFGCy+g2hFYg9kwWQk5xPGwDc/qXe0yJX00p6d
P5J/dQMd4lKvwVCEhtAKiGeo/0BK6tu23FRI1MIFfEk9d7+1s9LD9voEjGjK/iTr
MdnmVxqg0akYL/2tqazxjpWt0xX6SArdBYJZwob8gub9fn+9Tj2SPjEwadVe1w1/
HVXcaSGPICYZ6AfKTnyWTHwgqFL05c//ag0gCPI3P/zKZqZO/NpRgUv8La5b
-----END CERTIFICATE-----
Generated at Fri May 3 03:37:17 2024 by rpki-client on console-fra.rpki-client.org