Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nhrDaclFaRShLgLf_I3XmXTrHvg.cer
File: nhrDaclFaRShLgLf_I3XmXTrHvg.cer (raw, json)
Hash identifier: TD0qxaQvRp4FJbAmW3T2QPwyAbZDn4/wfMireDtmagQ=
Subject key identifier: 9E:1A:C3:69:C9:45:69:14:A1:2E:02:DF:FC:8D:D7:99:74:EB:1E:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42530E22E2A59DE4C8DA23AC3CB347D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c8/091bd0-2f67-47ce-ae17-d68c57db4cae/1/nhrDaclFaRShLgLf_I3XmXTrHvg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c8/091bd0-2f67-47ce-ae17-d68c57db4cae/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12693
IP: 82.193.224.0/19
IP: 85.199.64.0/18
IP: 92.42.224.0/21
IP: 149.249.48.0/21
IP: 153.92.72.0/21
IP: 156.67.144.0/20
IP: 156.67.224.0/21
IP: 185.90.156.0/22
IP: 212.204.32.0/19
IP: 2a01:a380::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:30:e2:2e:2a:59:de:4c:8d:a2:3a:c3:cb:34:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e1ac369c9456914a12e02dffc8dd79974eb1ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ec:7d:7b:36:2d:e0:cc:90:55:b0:5e:05:c4:
1f:04:57:14:f1:92:94:3d:02:27:7d:d9:7c:96:64:
06:4f:9a:93:3f:c2:e8:83:df:c6:12:7a:35:7d:bf:
9b:fa:f7:3a:1e:45:e0:a0:7f:8e:9b:69:45:f4:ca:
a6:a6:63:55:e6:61:6d:24:bb:9c:47:5c:e8:72:24:
35:af:4b:f8:4e:cf:0c:66:d3:98:fa:58:7b:f4:89:
20:5e:ea:e9:3d:51:66:58:58:04:88:ed:23:13:cc:
5c:23:6d:ef:17:eb:7a:68:53:b9:13:eb:5d:57:cf:
d9:98:23:d0:54:5e:53:c6:d3:3c:a6:b1:9c:4e:56:
b1:79:d9:0f:32:48:b7:1d:16:e4:09:64:7a:72:2e:
e5:be:72:20:ab:78:51:f0:54:0c:bf:1f:8d:a2:a8:
80:89:5d:e1:ff:e4:a3:7d:fd:50:6f:ca:74:fa:38:
b5:11:e1:d2:5e:98:7c:8a:c2:4c:60:56:7e:41:1e:
97:b3:3a:ed:a1:fc:13:ed:20:57:72:76:26:3c:7d:
78:f8:a8:5e:3e:11:df:00:c7:91:3b:9d:d3:b0:b8:
85:cf:7b:fe:7c:ea:3b:24:23:b8:6d:5f:8a:7a:13:
72:31:48:ed:df:7a:8c:df:2c:43:e7:bf:ec:5c:0b:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1A:C3:69:C9:45:69:14:A1:2E:02:DF:FC:8D:D7:99:74:EB:1E:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/091bd0-2f67-47ce-ae17-d68c57db4cae/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/091bd0-2f67-47ce-ae17-d68c57db4cae/1/nhrDaclFaRShLgLf_I3XmXTrHvg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.193.224.0/19
85.199.64.0/18
92.42.224.0/21
149.249.48.0/21
153.92.72.0/21
156.67.144.0/20
156.67.224.0/21
185.90.156.0/22
212.204.32.0/19
IPv6:
2a01:a380::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12693
Signature Algorithm: sha256WithRSAEncryption
67:0c:0b:1f:88:42:e0:5f:d4:f8:fb:52:7c:2e:ae:c8:97:67:
42:59:a4:68:8d:64:de:cd:98:49:23:1a:9e:f0:46:fc:0e:a8:
98:43:e7:61:cd:d0:52:34:00:ce:4b:1c:13:1c:ce:93:a6:43:
4b:79:c9:b5:19:8a:9a:fd:b6:7e:a1:7c:25:63:2e:58:9c:5b:
bc:e5:b9:f3:e9:bd:b7:30:cf:0f:ab:a5:bf:1c:b2:54:f1:df:
07:13:9f:c4:bf:88:bf:b5:9f:c9:d9:1c:79:d3:a4:9f:09:fb:
ba:fd:04:12:26:87:10:05:d5:13:b3:9e:43:ec:9e:73:32:fa:
4f:07:87:4c:2e:cc:2d:cf:c0:93:46:07:e9:fb:7a:b3:a0:71:
92:5c:88:12:f1:a0:f8:ae:ef:9b:47:c1:d8:0a:a2:4c:30:72:
cb:78:2a:7f:af:5a:3b:fd:8d:b9:75:26:d0:89:bf:58:61:6d:
69:fd:3f:7e:a9:42:ae:83:b0:3d:94:1c:d7:5c:d8:d5:52:01:
5d:13:87:d0:5a:83:8a:b5:f9:5f:34:32:c9:58:0e:69:51:f6:
9a:c4:8f:71:3f:59:06:44:e7:dc:b8:5f:fe:34:d0:44:80:68:
aa:b5:fe:0c:24:08:2b:eb:d4:64:87:aa:37:0f:cd:d5:a8:47:
87:87:ae:26
-----BEGIN CERTIFICATE-----
MIIF0jCCBLqgAwIBAgISAYzEJTDiLipZ3kyNojrDyzR9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDgzMDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTFhYzM2OWM5NDU2OTE0YTEyZTAyZGZmYzhkZDc5OTc0ZWIxZWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOx9ezYt4MyQVbBeBcQfBFcU8ZKU
PQInfdl8lmQGT5qTP8Log9/GEno1fb+b+vc6HkXgoH+Om2lF9MqmpmNV5mFtJLuc
R1zociQ1r0v4Ts8MZtOY+lh79IkgXurpPVFmWFgEiO0jE8xcI23vF+t6aFO5E+td
V8/ZmCPQVF5TxtM8prGcTlaxedkPMki3HRbkCWR6ci7lvnIgq3hR8FQMvx+NoqiA
iV3h/+Sjff1Qb8p0+ji1EeHSXph8isJMYFZ+QR6XszrtofwT7SBXcnYmPH14+Khe
PhHfAMeRO53TsLiFz3v+fOo7JCO4bV+KehNyMUjt33qM3yxD57/sXAvoKwIDAQAB
o4IC3jCCAtowHQYDVR0OBBYEFJ4aw2nJRWkUoS4C3/yN15l06x74MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M4LzA5MWJk
MC0yZjY3LTQ3Y2UtYWUxNy1kNjhjNTdkYjRjYWUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgvMDkxYmQw
LTJmNjctNDdjZS1hZTE3LWQ2OGM1N2RiNGNhZS8xL25ockRhY2xGYVJTaExnTGZf
STNYbVhUckh2Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GCCsGAQUF
BwEHAQH/BE8wTTA8BAIAATA2AwQFUsHgAwQGVcdAAwQDXCrgAwQDlfkwAwQDmVxI
AwQEnEOQAwQDnEPgAwQCuVqcAwQF1MwgMA0EAgACMAcDBQAqAaOAMBkGCCsGAQUF
BwEIAQH/BAowCKAGMAQCAjGVMA0GCSqGSIb3DQEBCwUAA4IBAQBnDAsfiELgX9T4
+1J8Lq7Il2dCWaRojWTezZhJIxqe8Eb8DqiYQ+dhzdBSNADOSxwTHM6TpkNLecm1
GYqa/bZ+oXwlYy5YnFu85bnz6b23MM8Pq6W/HLJU8d8HE5/Ev4i/tZ/J2Rx506Sf
Cfu6/QQSJocQBdUTs55D7J5zMvpPB4dMLswtz8CTRgfp+3qzoHGSXIgS8aD4ru+b
R8HYCqJMMHLLeCp/r1o7/Y25dSbQib9YYW1p/T9+qUKug7A9lBzXXNjVUgFdE4fQ
WoOKtflfNDLJWA5pUfaaxI9xP1kGROfcuF/+NNBEgGiqtf4MJAgr69Rkh6o3D83V
qEeHh64m
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:31 2024 by rpki-client on console-fra.rpki-client.org