Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer
File: qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer (raw, json)
Hash identifier: +Uh2jpgspIGXF5iDCkLqkQre2i2F/nRg5tH8ONC+pP0=
Subject key identifier: AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BCFB61EC4DCC893003D1A1ABF51ED0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:34:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205876
IP: 31.24.250.0/24
IP: 45.152.249.0 -- 45.152.250.255
IP: 194.5.132.0/24
IP: 194.5.145.0/24
IP: 2a12:5040::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:fb:61:ec:4d:cc:89:30:03:d1:a1:ab:f5:1e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:34:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aaca4f4a737ec09f335ac40633133328213efc3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e5:0e:d9:dd:01:5c:76:2a:40:04:7f:00:08:
86:25:cc:33:c2:a9:c8:0e:ee:29:d3:97:29:bd:b6:
95:6b:f8:3a:7a:0a:7c:0b:c7:d8:97:14:0c:36:d2:
6e:19:4b:a7:f9:50:0f:59:a3:c6:d0:65:6a:60:5d:
af:b3:c0:28:44:0e:aa:54:d9:d2:b2:0b:2f:62:8d:
17:cb:52:0b:98:4a:fe:a2:56:56:77:0e:e7:9b:44:
69:30:c0:ec:56:e7:31:61:37:c4:86:c1:24:6a:f5:
76:94:ce:19:67:5c:ad:2c:be:4a:ac:0b:bb:88:0a:
3e:5f:8b:1a:d2:a4:2a:3d:ea:7f:b0:71:3a:3c:48:
83:4a:fc:e0:07:a6:d7:f2:9b:e6:71:8a:82:82:9e:
f8:34:0f:bb:7f:05:25:71:af:f1:21:44:67:3b:2e:
cd:2d:48:6b:ab:8b:77:53:5a:35:22:47:3f:e6:d7:
36:19:84:37:58:b0:81:7f:44:0b:dc:cb:a6:ac:31:
36:54:29:e5:ae:60:02:80:50:b9:9c:5a:e1:0e:c8:
ef:03:a4:48:17:d3:fe:c1:01:e9:8a:d9:50:2b:37:
5a:89:45:76:00:fe:b5:8f:93:36:e9:6b:0d:26:07:
d2:98:ae:1e:da:03:61:38:dd:b2:89:84:6c:77:76:
16:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.250.0/24
45.152.249.0-45.152.250.255
194.5.132.0/24
194.5.145.0/24
IPv6:
2a12:5040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205876
Signature Algorithm: sha256WithRSAEncryption
03:90:c3:c1:d1:78:1e:2b:59:81:27:75:34:19:60:76:a2:7e:
e1:cb:04:83:88:8f:c0:4a:e1:e8:78:61:d9:92:8d:38:62:8f:
0c:de:73:fa:b8:a4:7f:7d:62:88:ef:37:ed:fa:56:5a:b2:81:
50:40:95:b5:49:fe:f2:da:ab:f7:ee:d6:e8:bc:91:59:71:e7:
60:db:01:25:6a:d1:ff:51:7b:ad:d2:57:7d:36:8a:05:f5:27:
51:11:fe:16:dd:4b:ed:0d:3a:be:44:b1:62:dd:07:79:7c:9b:
28:12:f9:69:50:2d:9d:ab:14:8c:0b:4d:88:a2:9b:93:75:aa:
d2:6f:a5:ec:7e:94:d0:7c:c6:ca:10:e5:bf:d3:ba:ad:94:61:
5d:17:7f:97:27:4f:6b:80:cc:9e:1d:b5:19:9d:97:8d:5a:ed:
66:4e:76:9e:ac:83:1d:6e:9d:18:4e:45:fe:83:7f:2b:34:db:
8f:b6:40:cd:8b:3f:f4:cd:1f:04:2e:a2:20:86:3a:2a:5f:c8:
3e:1b:83:de:60:73:d1:ba:a4:a1:b1:6a:b4:78:c0:3a:bb:75:
42:5b:0c:47:92:ef:00:20:0a:f7:af:dc:e7:22:ce:27:47:4d:
b8:be:15:2f:b3:ec:bb:92:3b:2c:ee:2d:87:71:aa:92:c6:e6:
8a:c9:8e:03
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgISAYzJvPth7E3MiTAD0aGr9R7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTAzNDE0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWNhNGY0YTczN2VjMDlmMzM1YWM0MDYzMzEzMzMyODIxM2VmYzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7eUO2d0BXHYqQAR/AAiGJcwzwqnI
Du4p05cpvbaVa/g6egp8C8fYlxQMNtJuGUun+VAPWaPG0GVqYF2vs8AoRA6qVNnS
sgsvYo0Xy1ILmEr+olZWdw7nm0RpMMDsVucxYTfEhsEkavV2lM4ZZ1ytLL5KrAu7
iAo+X4sa0qQqPep/sHE6PEiDSvzgB6bX8pvmcYqCgp74NA+7fwUlca/xIURnOy7N
LUhrq4t3U1o1Ikc/5tc2GYQ3WLCBf0QL3MumrDE2VCnlrmACgFC5nFrhDsjvA6RI
F9P+wQHpitlQKzdaiUV2AP61j5M26WsNJgfSmK4e2gNhON2yiYRsd3YWfQIDAQAB
o4ICyTCCAsUwHQYDVR0OBBYEFKrKT0pzfsCfM1rEBjMTMyghPvw9MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY3L2MxODc2
YS1mYWUxLTQzY2MtYTJkNy0zMzRlNmYzMzIxODAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcvYzE4NzZh
LWZhZTEtNDNjYy1hMmQ3LTMzNGU2ZjMzMjE4MC8xL3FzcFBTbk4td0o4eldzUUdN
eE16S0NFLV9EMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF
BwEHAQH/BDkwNzAmBAIAATAgAwQAHxj6MAwDBAAtmPkDBAAtmPoDBADCBYQDBADC
BZEwDQQCAAIwBwMFACoSUEAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAyQ0MA0G
CSqGSIb3DQEBCwUAA4IBAQADkMPB0XgeK1mBJ3U0GWB2on7hywSDiI/ASuHoeGHZ
ko04Yo8M3nP6uKR/fWKI7zft+lZasoFQQJW1Sf7y2qv37tbovJFZcedg2wElatH/
UXut0ld9NooF9SdREf4W3UvtDTq+RLFi3Qd5fJsoEvlpUC2dqxSMC02IopuTdarS
b6XsfpTQfMbKEOW/07qtlGFdF3+XJ09rgMyeHbUZnZeNWu1mTnaerIMdbp0YTkX+
g38rNNuPtkDNiz/0zR8ELqIghjoqX8g+G4PeYHPRuqShsWq0eMA6u3VCWwxHku8A
IAr3r9znIs4nR024vhUvs+y7kjss7i2HcaqSxuaKyY4D
-----END CERTIFICATE-----
Generated at Fri May 3 12:04:00 2024 by rpki-client on console-ams.rpki-client.org