Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
File: kdDHjDCaPpncmrdPLNwEhIWedTA.cer (raw, json)
Hash identifier: wEG1YR+WWJql1UxeVwxW/h+VjDKaPimKyONYwimrm9I=
Subject key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B81E8E8BFBBD23A40FC530E10FE8A4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207959
IP: 45.135.192.0/22
IP: 45.142.180.0/22
IP: 45.153.32.0/22
IP: 87.237.52.0/22
IP: 92.246.84.0/22
IP: 146.19.169.0/24
IP: 195.62.32.0/23
IP: 195.62.46.0/23
IP: 2a0d:c2c0::/29
IP: 2a10:ca80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:1e:8e:8b:fb:bd:23:a4:0f:c5:30:e1:0f:e8:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:26:ed:54:ea:30:14:86:8d:d5:ba:08:89:3d:
7b:17:3a:ef:57:ab:1c:74:05:46:c7:84:b2:6b:f9:
dc:a1:dc:56:ab:a8:a6:62:a4:36:2e:b8:8b:5d:39:
dc:46:c7:88:d6:50:10:98:f1:1f:0a:51:94:2c:b2:
b9:4c:8e:83:8d:09:43:bf:9a:a5:84:a9:fb:bb:51:
21:ea:76:25:11:80:71:7d:f5:57:41:db:66:2b:bf:
36:fc:1e:ac:56:0e:c5:58:2c:89:82:a2:f3:24:41:
d9:4e:da:98:3a:df:6a:da:c5:f4:bd:cf:32:7e:cc:
39:37:33:4a:4a:76:1e:d6:33:aa:2f:32:27:e0:5c:
4d:9f:8c:b1:a5:47:16:96:f7:04:f6:44:ef:02:f3:
05:24:bc:79:fa:03:85:96:20:36:c8:ac:b7:b6:57:
de:93:24:c3:b4:08:3d:b9:74:17:e6:36:8c:ef:8f:
47:48:1c:83:6a:d6:a8:13:e0:e2:c1:88:f3:58:b6:
a1:e5:53:14:f5:e8:1f:96:14:24:00:f4:fd:a4:5f:
97:af:6e:f7:8e:46:60:df:29:dd:b1:ca:ea:da:22:
5b:e5:34:ae:a2:e4:ce:03:73:02:4e:a6:e0:18:ab:
df:47:67:d3:df:3a:8f:2e:1f:16:f9:82:f4:ff:1b:
29:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.192.0/22
45.142.180.0/22
45.153.32.0/22
87.237.52.0/22
92.246.84.0/22
146.19.169.0/24
195.62.32.0/23
195.62.46.0/23
IPv6:
2a0d:c2c0::/29
2a10:ca80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207959
Signature Algorithm: sha256WithRSAEncryption
89:28:7e:69:07:ef:b2:98:c0:d0:9d:a0:e0:d3:3e:6d:ac:c3:
35:5b:dd:57:7b:c1:ea:e7:d6:4a:5b:f6:bc:6d:20:c4:1a:d5:
d6:34:e2:62:a9:08:a4:53:55:a9:bc:e8:7e:7f:64:ee:21:97:
c6:7b:3a:04:97:7d:ba:19:9a:e7:cb:22:09:30:ef:2e:d1:7f:
a8:01:b6:99:b1:8d:35:a1:40:cf:fb:d8:bc:64:40:b5:91:f0:
81:b8:dd:61:37:9e:0a:e3:be:08:4d:b0:82:f3:14:14:e7:0a:
e4:1f:3b:2e:45:07:cf:79:0c:6f:37:b7:4a:ef:f9:f5:d0:74:
78:ba:94:d7:48:47:83:90:9d:14:c7:a5:ef:a3:c7:85:c1:42:
77:2b:4b:af:09:5a:c8:d1:5d:00:7a:1a:7a:bf:fa:81:ca:b8:
8c:f3:cd:b1:9b:a0:3e:05:21:26:7b:95:a1:d1:e4:70:7f:1d:
2d:d4:ec:fa:81:da:6b:ce:ab:8f:88:35:aa:56:37:c4:44:b7:
85:e3:b2:a1:35:70:43:18:3b:cd:80:7b:41:dc:a3:5a:08:8c:
ca:46:e0:45:e1:72:fb:a2:6e:83:c0:62:a0:8b:79:fc:f7:36:
59:52:0e:0a:5f:5c:20:e6:a8:48:16:fc:a7:c7:48:35:79:3d:
77:3d:46:40
-----BEGIN CERTIFICATE-----
MIIF1DCCBLygAwIBAgISAYzGuB6Oi/u9I6QPxTDhD+ikMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMjAzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MWQwYzc4YzMwOWEzZTk5ZGM5YWI3NGYyY2RjMDQ4NDg1OWU3NTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ybtVOowFIaN1boIiT17FzrvV6sc
dAVGx4Sya/ncodxWq6imYqQ2LriLXTncRseI1lAQmPEfClGULLK5TI6DjQlDv5ql
hKn7u1Eh6nYlEYBxffVXQdtmK782/B6sVg7FWCyJgqLzJEHZTtqYOt9q2sX0vc8y
fsw5NzNKSnYe1jOqLzIn4FxNn4yxpUcWlvcE9kTvAvMFJLx5+gOFliA2yKy3tlfe
kyTDtAg9uXQX5jaM749HSByDataoE+DiwYjzWLah5VMU9egflhQkAPT9pF+Xr273
jkZg3yndscrq2iJb5TSuouTOA3MCTqbgGKvfR2fT3zqPLh8W+YL0/xspMwIDAQAB
o4IC4DCCAtwwHQYDVR0OBBYEFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM5LzI5M2Ey
Zi0zOTk3LTQ5N2YtOWVmMS00ODUyYzhmZjhhZjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkvMjkzYTJm
LTM5OTctNDk3Zi05ZWYxLTQ4NTJjOGZmOGFmMi8xL2tkREhqRENhUHBuY21yZFBM
TndFaElXZWRUQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GCCsGAQUF
BwEHAQH/BFAwTjA2BAIAATAwAwQCLYfAAwQCLY60AwQCLZkgAwQCV+00AwQCXPZU
AwQAkhOpAwQBwz4gAwQBwz4uMBQEAgACMA4DBQMqDcLAAwUDKhDKgDAaBggrBgEF
BQcBCAEB/wQLMAmgBzAFAgMDLFcwDQYJKoZIhvcNAQELBQADggEBAIkofmkH77KY
wNCdoODTPm2swzVb3Vd7wern1kpb9rxtIMQa1dY04mKpCKRTVam86H5/ZO4hl8Z7
OgSXfboZmufLIgkw7y7Rf6gBtpmxjTWhQM/72LxkQLWR8IG43WE3ngrjvghNsILz
FBTnCuQfOy5FB895DG83t0rv+fXQdHi6lNdIR4OQnRTHpe+jx4XBQncrS68JWsjR
XQB6Gnq/+oHKuIzzzbGboD4FISZ7laHR5HB/HS3U7PqB2mvOq4+INapWN8REt4Xj
sqE1cEMYO82Ae0Hco1oIjMpG4EXhcvuiboPAYqCLefz3NllSDgpfXCDmqEgW/KfH
SDV5PXc9RkA=
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:36:47 2024 by rpki-client on console-ams.rpki-client.org