Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qVHmOKLLlcaLvFSicoYFsn9XBoE.cer
File: qVHmOKLLlcaLvFSicoYFsn9XBoE.cer (raw, json)
Hash identifier: mQ/mopAWuw60+GTx+KwcAW+gEtv1Wi7I1G+8Rt1P7Xs=
Subject key identifier: A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DD39DD34977DB0F95F5B45C3CE519B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/qVHmOKLLlcaLvFSicoYFsn9XBoE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:29:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51885
IP: 91.223.156.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:39:dd:34:97:7d:b0:f9:5f:5b:45:c3:ce:51:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a951e638a2cb95c68bbc54a2728605b27f570681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b0:f6:66:5c:bf:51:2c:76:bc:b0:70:67:f9:
98:8d:57:bc:df:e7:f5:eb:3c:d4:41:17:27:cc:40:
81:06:c9:f9:ed:f1:49:11:fa:ef:5d:6b:cd:03:0b:
e2:6d:fe:48:78:81:4f:d0:ae:7e:bd:31:7a:c5:da:
2f:bc:1e:20:48:3a:88:39:c3:0f:19:b8:15:87:22:
c2:96:14:11:9a:ef:f5:a8:5a:a3:22:b5:6d:2a:15:
b1:ea:c2:13:12:19:e0:70:9f:fe:c4:0b:9d:a9:63:
e5:6e:8e:51:b9:45:00:e5:6f:9d:81:9a:cf:03:36:
10:4d:9a:d2:24:87:14:bf:d6:a3:39:e4:9a:a8:6f:
01:48:c7:84:d0:bb:81:bb:9d:eb:f4:11:72:5e:ca:
18:89:ce:06:21:67:1c:fc:d0:e8:78:d4:87:37:b9:
c1:08:9c:c7:95:e9:18:1b:e3:f8:70:aa:50:96:39:
24:db:8b:e5:60:61:b7:9d:89:cd:73:9d:19:5a:9b:
64:43:88:0a:6e:85:1d:e2:ae:26:b8:d6:26:fe:bd:
7e:13:42:c3:bc:4d:e9:82:42:84:b8:07:d0:b4:5a:
f7:fe:c6:06:f0:43:ef:a5:2b:59:66:2d:9e:aa:9e:
68:e7:f3:12:ea:3a:ad:27:fd:d6:72:d6:f9:9d:1f:
4e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/qVHmOKLLlcaLvFSicoYFsn9XBoE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.156.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51885
Signature Algorithm: sha256WithRSAEncryption
77:d5:a9:e7:69:27:e1:1a:b9:d0:97:81:87:1e:3e:11:fa:50:
80:08:d4:e5:a5:7c:94:10:a3:50:3e:64:34:9c:e3:dd:79:a5:
81:55:8a:55:a9:a1:90:cd:7d:8d:18:36:9d:e5:8d:b3:0e:b6:
61:cf:a3:db:0c:ec:16:bb:1b:02:ee:fc:4b:4d:9a:c0:51:15:
a1:10:b3:8f:1e:92:65:0f:1f:7c:59:3c:e7:4f:68:31:91:fa:
34:7c:17:95:08:43:a3:3a:80:1a:ed:65:a1:52:97:38:d4:fc:
13:13:65:08:c1:a9:cb:76:f0:fa:a0:85:57:73:4b:37:f0:c6:
5f:5f:13:f4:94:11:e7:ba:16:ff:74:d5:41:42:c8:af:77:df:
f0:0a:15:ce:05:99:19:e8:1a:d0:03:76:fb:59:3e:39:76:93:
5b:ac:6b:6c:17:06:38:6b:b8:50:82:12:2b:9f:57:8a:01:33:
25:22:8a:19:c8:5f:e2:9f:9a:91:1d:ae:b9:19:71:0e:3a:88:
5c:23:45:db:3c:a8:98:11:d1:4f:24:d2:cc:c6:4a:8b:84:57:
1a:f8:a8:5c:ba:33:c3:af:70:e5:2a:9c:18:70:b0:5c:df:b4:
d5:da:86:db:c9:e9:53:e0:57:f1:89:0c:74:8a:73:37:9a:c1:
59:59:95:91
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgISAYzI3TndNJd9sPlfW0XDzlGbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDYyOTUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTUxZTYzOGEyY2I5NWM2OGJiYzU0YTI3Mjg2MDViMjdmNTcwNjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprD2Zly/USx2vLBwZ/mYjVe83+f1
6zzUQRcnzECBBsn57fFJEfrvXWvNAwvibf5IeIFP0K5+vTF6xdovvB4gSDqIOcMP
GbgVhyLClhQRmu/1qFqjIrVtKhWx6sITEhngcJ/+xAudqWPlbo5RuUUA5W+dgZrP
AzYQTZrSJIcUv9ajOeSaqG8BSMeE0LuBu53r9BFyXsoYic4GIWcc/NDoeNSHN7nB
CJzHlekYG+P4cKpQljkk24vlYGG3nYnNc50ZWptkQ4gKboUd4q4muNYm/r1+E0LD
vE3pgkKEuAfQtFr3/sYG8EPvpStZZi2eqp5o5/MS6jqtJ/3Wctb5nR9O5wIDAQAB
o4ICoDCCApwwHQYDVR0OBBYEFKlR5jiiy5XGi7xUonKGBbJ/VwaBMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YzL2YwNmU3
OS1lZDJiLTQzZDUtYjRjMS1hYmRmOTA2YzVhZGUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvZjA2ZTc5
LWVkMmItNDNkNS1iNGMxLWFiZGY5MDZjNWFkZS8xL3FWSG1PS0xMbGNhTHZGU2lj
b1lGc245WEJvRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF
BwEHAQH/BBAwDjAMBAIAATAGAwQAW9+cMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC
AwDKrTANBgkqhkiG9w0BAQsFAAOCAQEAd9Wp52kn4Rq50JeBhx4+EfpQgAjU5aV8
lBCjUD5kNJzj3XmlgVWKVamhkM19jRg2neWNsw62Yc+j2wzsFrsbAu78S02awFEV
oRCzjx6SZQ8ffFk8509oMZH6NHwXlQhDozqAGu1loVKXONT8ExNlCMGpy3bw+qCF
V3NLN/DGX18T9JQR57oW/3TVQULIr3ff8AoVzgWZGega0AN2+1k+OXaTW6xrbBcG
OGu4UIISK59XigEzJSKKGchf4p+akR2uuRlxDjqIXCNF2zyomBHRTyTSzMZKi4RX
GvioXLozw69w5SqcGHCwXN+01dqG28npU+BX8YkMdIpzN5rBWVmVkQ==
-----END CERTIFICATE-----
Generated at Fri May 3 03:44:46 2024 by rpki-client on console-fra.rpki-client.org