Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/n_M5Y3TL9ddnEl8C3PD5cpYyMJI.cer
File: n_M5Y3TL9ddnEl8C3PD5cpYyMJI.cer (raw, json)
Hash identifier: WZrGOeV0udKVn+hHRmQdLc4U+I4qhAmLDUECGhC4IEU=
Subject key identifier: 9F:F3:39:63:74:CB:F5:D7:67:12:5F:02:DC:F0:F9:72:96:32:30:92
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49376EDA48BD6360261A84D29AF9DD8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/n_M5Y3TL9ddnEl8C3PD5cpYyMJI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59890
IP: 147.78.248.0/22
IP: 185.67.172.0/22
IP: 185.251.200.0/22
IP: 194.208.128.0/19
IP: 194.208.176.0/21
IP: 2a05:1140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:76:ed:a4:8b:d6:36:02:61:a8:4d:29:af:9d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ff3396374cbf5d767125f02dcf0f97296323092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0c:b4:fe:ee:cf:3c:e8:d8:de:7d:9e:93:1f:
82:84:10:27:c8:b7:b9:1f:0c:1e:ab:43:39:b2:ac:
f6:92:08:97:15:d3:71:f6:81:61:67:12:36:63:a4:
4e:4b:e1:fa:e1:5d:35:d2:6c:10:c4:92:4c:fa:e6:
4c:94:33:c6:ef:e0:26:9b:c3:ad:26:e6:c9:ad:47:
b2:6a:ad:17:c8:79:c3:7e:73:96:f3:30:9b:09:6b:
44:17:83:17:97:b4:a4:45:e0:ec:45:00:dd:00:e7:
c6:29:76:2d:95:1c:26:34:63:0e:46:9a:23:4d:fc:
77:be:81:86:19:8f:dc:a9:b4:6a:02:3d:2d:b3:22:
9a:ba:94:c5:0a:3f:d6:ab:d5:30:c3:92:10:40:79:
50:2a:7a:43:dc:ce:3b:ad:77:03:c6:36:f2:f6:02:
4c:23:01:5f:3d:de:76:ac:b6:64:fa:85:3c:66:4a:
06:80:06:7c:9a:5a:98:3e:09:e0:da:e9:d7:91:b4:
58:da:5a:04:a0:d4:23:7d:0a:76:9a:76:15:fa:e3:
ad:ac:d8:b1:0b:a1:22:9d:0e:b9:d8:f0:8c:d8:15:
97:56:87:4f:27:a8:56:bc:af:e4:48:10:9f:84:c3:
35:16:5d:99:5e:83:f6:91:ad:ee:5e:d3:28:01:a5:
53:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F3:39:63:74:CB:F5:D7:67:12:5F:02:DC:F0:F9:72:96:32:30:92
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/316020-9fc5-4b7c-ae41-e9554483ffa7/1/n_M5Y3TL9ddnEl8C3PD5cpYyMJI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.248.0/22
185.67.172.0/22
185.251.200.0/22
194.208.128.0/19
194.208.176.0/21
IPv6:
2a05:1140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59890
Signature Algorithm: sha256WithRSAEncryption
43:11:6f:d8:8c:b6:7b:3b:2d:73:a1:34:b4:14:19:3a:ed:91:
3c:65:e0:20:eb:68:65:15:92:0c:91:b9:b9:70:c4:2f:72:0b:
e8:dd:23:09:7e:62:bd:c3:d2:97:ae:16:69:95:0b:77:b3:a5:
79:37:d7:5c:fa:b1:4f:4f:1d:99:64:d2:6e:eb:cf:ad:28:33:
8b:7f:aa:70:3c:36:46:7d:f5:c3:ec:bd:fd:8f:00:f5:f3:e4:
90:f2:1f:af:75:f4:d7:b7:96:c3:34:ff:71:06:51:cc:d2:99:
f7:bc:5c:2f:7b:d5:2b:e2:27:7f:7c:de:39:c7:b0:db:29:68:
91:00:bb:46:bc:ac:0a:ee:81:d1:53:5a:fb:30:3e:ef:91:c1:
51:c9:9f:bf:3e:18:b4:49:13:49:4f:8b:05:cd:3b:45:29:a2:
ce:ce:65:d5:ec:f3:11:49:79:e0:8c:83:79:75:53:a9:fa:52:
2f:d3:e3:d8:0a:73:b5:8d:d3:fd:d2:0c:6c:f9:0b:e1:db:e8:
72:d5:be:55:2b:25:3a:18:cd:34:77:82:21:4d:4b:72:49:5b:
4e:21:74:a5:87:09:b9:23:96:e0:2f:ab:6a:6a:db:94:6c:23:
c6:03:71:47:69:9b:4a:1a:1b:21:3e:9a:d7:5a:9b:b1:54:bc:
25:d3:55:ae
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgISAYzEk3btpIvWNgJhqE0pr53YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTAzMDQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmYzMzk2Mzc0Y2JmNWQ3NjcxMjVmMDJkY2YwZjk3Mjk2MzIzMDkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ay0/u7PPOjY3n2ekx+ChBAnyLe5
Hwweq0M5sqz2kgiXFdNx9oFhZxI2Y6ROS+H64V010mwQxJJM+uZMlDPG7+Amm8Ot
JubJrUeyaq0XyHnDfnOW8zCbCWtEF4MXl7SkReDsRQDdAOfGKXYtlRwmNGMORpoj
Tfx3voGGGY/cqbRqAj0tsyKaupTFCj/Wq9Uww5IQQHlQKnpD3M47rXcDxjby9gJM
IwFfPd52rLZk+oU8ZkoGgAZ8mlqYPgng2unXkbRY2loEoNQjfQp2mnYV+uOtrNix
C6EinQ652PCM2BWXVodPJ6hWvK/kSBCfhMM1Fl2ZXoP2ka3uXtMoAaVTMQIDAQAB
o4ICxzCCAsMwHQYDVR0OBBYEFJ/zOWN0y/XXZxJfAtzw+XKWMjCSMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNkLzMxNjAy
MC05ZmM1LTRiN2MtYWU0MS1lOTU1NDQ4M2ZmYTcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2QvMzE2MDIw
LTlmYzUtNGI3Yy1hZTQxLWU5NTU0NDgzZmZhNy8xL25fTTVZM1RMOWRkbkVsOEMz
UEQ1Y3BZeU1KSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF
BwEHAQH/BDcwNTAkBAIAATAeAwQCk074AwQCuUOsAwQCufvIAwQFwtCAAwQDwtCw
MA0EAgACMAcDBQMqBRFAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDp8jANBgkq
hkiG9w0BAQsFAAOCAQEAQxFv2Iy2ezstc6E0tBQZOu2RPGXgIOtoZRWSDJG5uXDE
L3IL6N0jCX5ivcPSl64WaZULd7OleTfXXPqxT08dmWTSbuvPrSgzi3+qcDw2Rn31
w+y9/Y8A9fPkkPIfr3X017eWwzT/cQZRzNKZ97xcL3vVK+Inf3zeOcew2ylokQC7
RrysCu6B0VNa+zA+75HBUcmfvz4YtEkTSU+LBc07RSmizs5l1ezzEUl54IyDeXVT
qfpSL9Pj2ApztY3T/dIMbPkL4dvoctW+VSslOhjNNHeCIU1LcklbTiF0pYcJuSOW
4C+ramrblGwjxgNxR2mbShobIT6a11qbsVS8JdNVrg==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:50 2024 by rpki-client on console-ams.rpki-client.org