Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/omhVmAsnPlrlfcG56yLp9fOnzfc.cer
File: omhVmAsnPlrlfcG56yLp9fOnzfc.cer (raw, json)
Hash identifier: hm7EsiAb0GEccLb1yTCgWfFgAEsnE141Q8KSQP+mN3g=
Subject key identifier: A2:68:55:98:0B:27:3E:5A:E5:7D:C1:B9:EB:22:E9:F5:F3:A7:CD:F7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8014D37155DBA050ECA38A2D0EE85E2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/62/8afdda-6c6b-4587-8a21-81eb61f5b71e/1/omhVmAsnPlrlfcG56yLp9fOnzfc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/62/8afdda-6c6b-4587-8a21-81eb61f5b71e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137
IP: 90.147.0.0/16
IP: 138.41.0.0/16
IP: 185.191.180.0/22
IP: 192.167.0.0/16
IP: 193.204.0.0 -- 193.206.255.255
IP: 212.189.128.0/17
IP: 2001:760::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:4d:37:15:5d:ba:05:0e:ca:38:a2:d0:ee:85:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a26855980b273e5ae57dc1b9eb22e9f5f3a7cdf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:aa:c5:65:4b:eb:9f:c6:94:0a:3b:c7:e5:aa:
e6:d7:3b:a9:68:01:b1:0e:6e:ca:a4:0c:41:0b:63:
da:9d:f0:ae:d5:85:9a:55:a4:10:e0:62:c0:23:bb:
a9:53:59:a2:f0:3a:1e:ca:8b:c5:6d:5c:a3:29:07:
f3:6d:5c:c6:71:a7:58:d3:72:fc:fb:df:74:fb:6f:
81:48:6d:98:d1:a1:2b:9f:ce:ad:9e:46:e7:98:73:
f7:b0:f6:ec:72:0a:6c:14:f9:ba:87:da:dd:7a:0a:
93:c7:f5:6a:6e:85:c7:c7:4f:07:72:5d:ef:0d:57:
eb:02:30:db:f5:2c:70:0b:69:cc:85:46:7c:0f:f3:
0a:d2:5b:f4:f1:0d:0e:a4:0b:5d:ed:4f:90:85:fd:
23:9f:8e:41:95:0d:3b:4c:14:7f:54:ee:2e:49:f5:
c9:e2:f2:e2:db:c6:ee:5e:bf:2a:dd:eb:db:bb:17:
98:4d:ee:93:70:96:60:13:35:13:b5:d9:2a:24:d3:
39:4d:c7:e3:3e:14:96:ff:9a:f0:93:da:b6:39:21:
51:b0:18:d1:4a:ce:b6:a7:d0:1d:cc:b8:ae:28:7e:
26:c4:d9:c8:68:ed:d6:5d:8c:c8:4c:ba:f6:87:c0:
f7:1d:83:60:e8:9a:d0:e7:d4:13:67:a4:9b:61:d1:
52:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:68:55:98:0B:27:3E:5A:E5:7D:C1:B9:EB:22:E9:F5:F3:A7:CD:F7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/8afdda-6c6b-4587-8a21-81eb61f5b71e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/8afdda-6c6b-4587-8a21-81eb61f5b71e/1/omhVmAsnPlrlfcG56yLp9fOnzfc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.147.0.0/16
138.41.0.0/16
185.191.180.0/22
192.167.0.0/16
193.204.0.0-193.206.255.255
212.189.128.0/17
IPv6:
2001:760::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137
Signature Algorithm: sha256WithRSAEncryption
71:e5:a8:1c:9c:01:16:01:db:7e:05:61:2e:1f:87:be:5e:6a:
93:f3:52:38:94:de:e7:02:4f:4b:ef:d6:c9:89:89:6b:ee:6e:
14:32:9d:4f:13:ef:c1:bd:06:da:f4:16:7a:92:9d:29:e4:cc:
25:52:47:64:57:ad:a8:e7:c5:93:92:97:23:fb:43:6a:95:ad:
9d:3a:6d:0c:56:8d:48:19:2d:91:b1:40:2c:6c:02:a4:17:d8:
06:5c:40:9d:87:84:5a:fd:0e:16:d5:7b:00:84:96:3c:a5:6e:
56:0c:89:c7:0c:be:8d:11:2f:52:9e:64:a2:17:35:27:3d:32:
53:77:05:94:ae:2f:5a:35:67:cb:f2:f3:c2:4a:63:97:89:bc:
60:8d:cd:f6:16:46:33:c3:06:bc:a1:69:4d:03:85:33:a3:a1:
3d:50:f1:4a:8d:92:1b:5f:00:94:a2:b1:be:f6:6c:92:a0:50:
c2:72:11:3b:17:5c:59:fb:30:67:99:1f:9f:96:2c:29:f2:d2:
46:27:24:22:ce:42:44:d0:db:e7:e7:10:7d:31:ed:58:9a:f2:
5f:fb:f6:c7:fc:c6:3a:e1:7d:6e:f1:f9:3e:ab:13:fb:97:99:
74:da:d3:f5:59:2a:58:3d:03:07:41:65:21:d8:8e:ed:65:f1:
43:62:0b:1c
-----BEGIN CERTIFICATE-----
MIIFwzCCBKugAwIBAgISAYzIAU03FV26BQ7KOKLQ7oXiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIyOTM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjY4NTU5ODBiMjczZTVhZTU3ZGMxYjllYjIyZTlmNWYzYTdjZGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6rFZUvrn8aUCjvH5arm1zupaAGx
Dm7KpAxBC2PanfCu1YWaVaQQ4GLAI7upU1mi8DoeyovFbVyjKQfzbVzGcadY03L8
+990+2+BSG2Y0aErn86tnkbnmHP3sPbscgpsFPm6h9rdegqTx/VqboXHx08Hcl3v
DVfrAjDb9SxwC2nMhUZ8D/MK0lv08Q0OpAtd7U+Qhf0jn45BlQ07TBR/VO4uSfXJ
4vLi28buXr8q3evbuxeYTe6TcJZgEzUTtdkqJNM5TcfjPhSW/5rwk9q2OSFRsBjR
Ss62p9AdzLiuKH4mxNnIaO3WXYzITLr2h8D3HYNg6JrQ59QTZ6SbYdFSOwIDAQAB
o4ICzzCCAsswHQYDVR0OBBYEFKJoVZgLJz5a5X3Buesi6fXzp833MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYyLzhhZmRk
YS02YzZiLTQ1ODctOGEyMS04MWViNjFmNWI3MWUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIvOGFmZGRh
LTZjNmItNDU4Ny04YTIxLTgxZWI2MWY1YjcxZS8xL29taFZtQXNuUGxybGZjRzU2
eUxwOWZPbnpmYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME8GCCsGAQUF
BwEHAQH/BEAwPjAtBAIAATAnAwMAWpMDAwCKKQMEArm/tAMDAMCnMAoDAwLBzAMD
AMHOAwQH1L2AMA0EAgACMAcDBQAgAQdgMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC
AgCJMA0GCSqGSIb3DQEBCwUAA4IBAQBx5agcnAEWAdt+BWEuH4e+XmqT81I4lN7n
Ak9L79bJiYlr7m4UMp1PE+/BvQba9BZ6kp0p5MwlUkdkV62o58WTkpcj+0Nqla2d
Om0MVo1IGS2RsUAsbAKkF9gGXECdh4Ra/Q4W1XsAhJY8pW5WDInHDL6NES9SnmSi
FzUnPTJTdwWUri9aNWfL8vPCSmOXibxgjc32FkYzwwa8oWlNA4Uzo6E9UPFKjZIb
XwCUorG+9mySoFDCchE7F1xZ+zBnmR+fliwp8tJGJyQizkJE0Nvn5xB9Me1YmvJf
+/bH/MY64X1u8fk+qxP7l5l02tP1WSpYPQMHQWUh2I7tZfFDYgsc
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:42:41 2024 by rpki-client on console-ams.rpki-client.org