Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer (raw, json)
Hash identifier: r17bWCIZuO9dq0OZcaK8V5OaO1OkBLWU8mAO0pn4U8E=
Subject key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B76BDA4C7566B271CAB033B71B12B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57624
AS: 197560
AS: 206689 -- 206690
AS: 206733
AS: 206934
AS: 212791
AS: 213272
IP: 46.235.32.0/21
IP: 185.63.220.0/22
IP: 185.96.244.0/22
IP: 185.212.80.0/22
IP: 193.30.22.0/23
IP: 193.30.90.0/23
IP: 194.5.44.0/22
IP: 2a04:f640::/29
IP: 2a0d:e100::/29
IP: 2a0f:a980::/29
IP: 2a0f:bd40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:76:bd:a4:c7:56:6b:27:1c:ab:03:3b:71:b1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:6c:6c:04:93:78:32:16:11:f5:d2:99:ac:
b0:94:cd:6d:88:5a:48:3b:d4:23:6f:97:c2:81:79:
eb:19:ef:4d:6b:ed:de:69:53:c8:4a:91:a9:44:33:
b1:80:69:dd:61:95:72:46:4a:5f:d2:bd:30:de:ed:
d0:8b:5c:67:52:c8:f2:c4:5c:a8:f6:9b:6d:3e:9b:
d1:5d:99:97:e5:2c:a7:cd:6d:4d:45:e9:a0:64:3e:
04:0e:fc:0e:ce:1b:36:e4:50:e4:ef:21:8d:ed:35:
49:b8:b4:6a:82:6b:a3:cc:0f:08:0f:12:4c:7e:d8:
2f:98:e0:af:3b:c7:f7:b7:af:b5:79:c5:c3:cf:ff:
c0:9b:49:b5:d6:88:42:07:6d:b7:0c:89:62:b4:15:
e4:b1:6b:2d:a0:db:dd:ee:e9:b4:d6:f7:96:a4:52:
b4:7e:ed:c0:ce:c8:af:6a:ed:b6:75:d9:08:2f:83:
b8:0d:d2:c8:4a:8f:63:48:cd:59:a2:cc:5a:d4:37:
4e:0e:70:b3:11:64:d7:5c:bc:1d:3f:2d:80:dd:b6:
12:b7:90:70:0c:48:c5:ab:9d:13:cf:d9:27:5c:bf:
f6:8c:98:08:13:24:e1:64:80:76:fd:f7:1f:43:2c:
73:e2:61:52:85:a0:e7:a1:e7:c3:e9:3c:ec:3d:04:
9b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.32.0/21
185.63.220.0/22
185.96.244.0/22
185.212.80.0/22
193.30.22.0/23
193.30.90.0/23
194.5.44.0/22
IPv6:
2a04:f640::/29
2a0d:e100::/29
2a0f:a980::/29
2a0f:bd40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57624
197560
206689-206690
206733
206934
212791
213272
Signature Algorithm: sha256WithRSAEncryption
0e:6d:ad:93:bd:2d:55:8f:02:52:4e:6c:8c:43:30:07:eb:26:
63:87:39:56:25:41:d1:33:eb:f6:ff:9f:00:4b:4e:ec:d1:37:
b2:a9:ba:f8:0e:b0:78:b3:12:49:5c:b3:e5:00:2c:5f:63:7c:
23:0d:5a:04:5d:cc:4f:da:29:e9:75:0e:f7:cf:87:13:8d:33:
0f:d7:95:3f:30:5c:96:a0:cd:d7:7f:da:0a:69:8b:74:9d:8c:
6d:66:00:18:90:f6:89:06:83:30:e3:c6:a7:fc:b8:b3:ec:60:
f5:52:f2:86:4f:8f:aa:3c:60:e6:e0:41:aa:c3:2f:5e:a7:10:
c6:9e:82:0c:79:de:25:75:c1:da:c2:8a:f3:46:d8:04:d7:eb:
fd:74:83:25:3d:20:d1:88:cc:dd:85:50:c1:63:fe:bf:74:21:
d8:37:c0:fe:29:1d:73:b2:92:3e:dc:ea:90:ef:e1:7c:8b:db:
eb:0a:1a:2b:0a:ac:d9:07:d4:d6:f3:6d:d8:73:95:fe:e3:e4:
cc:c9:6e:1f:03:e9:bf:ae:26:db:e8:38:37:b9:e5:8f:95:47:
fa:31:33:7d:37:d7:87:b8:e5:c6:e3:3b:c5:eb:df:95:70:4c:
bb:0e:ba:ba:90:0d:9f:b9:8f:d8:24:10:f9:88:b2:20:92:34:
20:8a:ef:5c
-----BEGIN CERTIFICATE-----
MIIGATCCBOmgAwIBAgISAYzKK3a9pMdWayccqwM7cbErMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzNDU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGM4Y2RhODE0ZTc3N2Q5ZmUxNTRiOTJlOTk1OWNlMTIwYjBhZDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrFsbASTeDIWEfXSmaywlM1tiFpI
O9Qjb5fCgXnrGe9Na+3eaVPISpGpRDOxgGndYZVyRkpf0r0w3u3Qi1xnUsjyxFyo
9pttPpvRXZmX5SynzW1NRemgZD4EDvwOzhs25FDk7yGN7TVJuLRqgmujzA8IDxJM
ftgvmOCvO8f3t6+1ecXDz//Am0m11ohCB223DIlitBXksWstoNvd7um01veWpFK0
fu3Azsivau22ddkIL4O4DdLISo9jSM1Zosxa1DdODnCzEWTXXLwdPy2A3bYSt5Bw
DEjFq50Tz9knXL/2jJgIEyThZIB2/fcfQyxz4mFShaDnoefD6TzsPQSbDwIDAQAB
o4IDDTCCAwkwHQYDVR0OBBYEFKDIzagU53fZ/hVLkumVnOEgsK1YMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBhL2FhMjcw
YS1jMDg5LTQ3NzgtOTM0My1iNzM2MmVkYmQ4YWMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEvYWEyNzBh
LWMwODktNDc3OC05MzQzLWI3MzYyZWRiZDhhYy8xL29Nak5xQlRuZDluLUZVdVM2
WldjNFNDd3JWZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGCCsGAQUF
BwEHAQH/BFgwVjAwBAIAATAqAwQDLusgAwQCuT/cAwQCuWD0AwQCudRQAwQBwR4W
AwQBwR5aAwQCwgUsMCIEAgACMBwDBQMqBPZAAwUDKg3hAAMFAyoPqYADBQMqD71A
MD8GCCsGAQUFBwEIAQH/BDAwLqAsMCoCAwDhGAIDAwO4MAoCAwMnYQIDAydiAgMD
J40CAwMoVgIDAz83AgMDQRgwDQYJKoZIhvcNAQELBQADggEBAA5trZO9LVWPAlJO
bIxDMAfrJmOHOVYlQdEz6/b/nwBLTuzRN7KpuvgOsHizEklcs+UALF9jfCMNWgRd
zE/aKel1DvfPhxONMw/XlT8wXJagzdd/2gppi3SdjG1mABiQ9okGgzDjxqf8uLPs
YPVS8oZPj6o8YObgQarDL16nEMaeggx53iV1wdrCivNG2ATX6/10gyU9INGIzN2F
UMFj/r90Idg3wP4pHXOykj7c6pDv4XyL2+sKGisKrNkH1Nbzbdhzlf7j5MzJbh8D
6b+uJtvoODe55Y+VR/oxM30314e45cbjO8Xr35VwTLsOurqQDZ+5j9gkEPmIsiCS
NCCK71w=
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:03:57 2024 by rpki-client on console-ams.rpki-client.org