Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nQp0muJcHLtlhx1BanmrSohKxGg.cer
File: nQp0muJcHLtlhx1BanmrSohKxGg.cer (raw, json)
Hash identifier: fVh7PpXKiv2yMnbjB8RyHqBAQB398esn8FTt1PuWQuI=
Subject key identifier: 9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01932AA3CE1395EE5D915CE96432F6A829A0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 14 Nov 2024 12:26:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35266
IP: 46.30.8.0/21
IP: 185.69.13.0 -- 185.69.15.255
IP: 185.81.188.0/22
IP: 2a01:b000::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2a:a3:ce:13:95:ee:5d:91:5c:e9:64:32:f6:a8:29:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 14 12:26:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d0a749ae25c1cbb65871d416a79ab4a884ac468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:20:a6:d2:a4:f5:54:27:c3:b3:f3:e3:e5:
59:6a:8c:4f:c6:e0:00:4f:d5:17:e5:fb:81:f7:33:
b9:e9:32:00:8c:c7:07:56:07:fb:e1:6e:0b:80:e4:
42:ea:b9:00:23:41:05:ee:66:a1:dd:38:fd:db:d9:
ce:22:20:a8:ab:58:64:56:05:dc:51:49:19:f4:16:
ea:3d:01:bd:92:60:91:46:8e:b7:b4:2d:c5:3b:94:
a1:de:87:17:65:af:46:26:8d:6a:b4:c7:6a:13:2d:
10:18:e9:8c:68:4d:a9:83:8e:c8:06:fa:bc:6e:c4:
e8:b4:73:b1:25:43:b1:32:fc:6d:9f:1e:66:d5:de:
90:f2:f1:1f:7a:4b:37:12:52:c5:8d:86:3f:06:00:
2a:c4:62:bd:f6:d5:95:ae:e7:60:d4:52:18:39:05:
55:5d:59:ce:39:04:99:46:f5:ce:97:ed:0d:43:2a:
bc:47:d9:a4:15:6f:ca:b2:3d:bb:c4:e8:28:dd:f3:
6e:60:0f:af:c3:6b:7e:ff:09:96:2f:84:c2:36:40:
d8:7e:b3:c7:9c:df:41:6b:5c:ae:ae:2a:4e:6b:5d:
ea:7e:d5:dc:7f:c8:5f:84:7c:28:dd:4a:28:19:7a:
c9:6c:91:b3:f5:cc:6a:87:ef:3c:33:cf:85:4c:55:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.8.0/21
185.69.13.0-185.69.15.255
185.81.188.0/22
IPv6:
2a01:b000::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35266
Signature Algorithm: sha256WithRSAEncryption
01:0d:b0:da:d5:34:19:7f:85:10:25:c5:c2:45:39:e8:f6:b8:
48:53:5e:65:4d:a0:32:2f:d6:fe:7d:96:b2:ad:db:32:70:e1:
ee:05:82:27:f5:bb:45:0b:db:07:d6:d9:28:7b:ce:fd:6a:c0:
b6:64:73:65:12:88:d4:ec:d3:7f:28:53:75:8f:e7:e2:87:3e:
d6:b0:f3:42:25:9e:da:46:b5:5a:04:dc:26:3b:6a:2e:64:79:
64:42:7a:67:01:a0:bb:c2:41:a7:ff:53:4f:76:0a:89:4f:35:
4c:5a:a9:ce:af:ff:e5:38:63:c2:cb:08:de:64:d9:b3:5c:4a:
af:25:9c:64:ab:41:f3:50:a1:7e:ad:16:eb:23:e2:63:98:77:
04:93:13:b2:3d:a6:ab:9c:8d:09:be:e1:a7:32:9c:72:92:50:
05:ec:53:39:f9:18:19:e6:7c:59:59:51:43:1e:5b:79:51:ea:
31:6f:c8:f6:1b:22:49:cc:9e:b9:e9:6b:d5:a9:a1:e9:2d:51:
9e:6c:c9:8b:d1:78:66:b7:5b:52:7f:36:ce:7a:cb:2d:8d:eb:
ea:29:8a:8e:a7:e0:3b:62:0f:f9:5e:f4:6f:34:7a:89:9e:ad:
49:7f:6e:7f:35:b6:41:d8:4b:ce:a8:ca:ae:80:cc:38:7a:fd:
ac:3b:45:7f
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgISAZMqo84Tle5dkVzpZDL2qCmgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMTE0MTIyNjM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDBhNzQ5YWUyNWMxY2JiNjU4NzFkNDE2YTc5YWI0YTg4NGFjNDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu54gptKk9VQnw7Pz4+VZaoxPxuAA
T9UX5fuB9zO56TIAjMcHVgf74W4LgORC6rkAI0EF7mah3Tj929nOIiCoq1hkVgXc
UUkZ9BbqPQG9kmCRRo63tC3FO5Sh3ocXZa9GJo1qtMdqEy0QGOmMaE2pg47IBvq8
bsTotHOxJUOxMvxtnx5m1d6Q8vEfeks3ElLFjYY/BgAqxGK99tWVrudg1FIYOQVV
XVnOOQSZRvXOl+0NQyq8R9mkFW/Ksj27xOgo3fNuYA+vw2t+/wmWL4TCNkDYfrPH
nN9Ba1yuripOa13qftXcf8hfhHwo3UooGXrJbJGz9cxqh+88M8+FTFXEnQIDAQAB
o4ICwzCCAr8wHQYDVR0OBBYEFJ0KdJriXBy7ZYcdQWp5q0qISsRoMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q1Lzg1ZDBh
Ny1kODAyLTQxYzQtODFhZi0xYTZkM2M5OWRjNDgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUvODVkMGE3
LWQ4MDItNDFjNC04MWFmLTFhNmQzYzk5ZGM0OC8xL25RcDBtdUpjSEx0bGh4MUJh
bm1yU29oS3hHZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUF
BwEHAQH/BDMwMTAgBAIAATAaAwQDLh4IMAwDBAC5RQ0DBAS5RQADBAK5UbwwDQQC
AAIwBwMFACoBsAAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAInCMA0GCSqGSIb3
DQEBCwUAA4IBAQABDbDa1TQZf4UQJcXCRTno9rhIU15lTaAyL9b+fZayrdsycOHu
BYIn9btFC9sH1tkoe879asC2ZHNlEojU7NN/KFN1j+fihz7WsPNCJZ7aRrVaBNwm
O2ouZHlkQnpnAaC7wkGn/1NPdgqJTzVMWqnOr//lOGPCywjeZNmzXEqvJZxkq0Hz
UKF+rRbrI+JjmHcEkxOyPaarnI0JvuGnMpxyklAF7FM5+RgZ5nxZWVFDHlt5Ueox
b8j2GyJJzJ656WvVqaHpLVGebMmL0Xhmt1tSfzbOesstjevqKYqOp+A7Yg/5XvRv
NHqJnq1Jf25/NbZB2EvOqMqugMw4ev2sO0V/
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:26 2024 by rpki-client on console-fra.rpki-client.org