Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
File: rpPMjMqB-gDcU-e4B46RtcEbou8.cer (raw, json)
Hash identifier: UW0CcoCULeN/lqrARjh4NfHi3wyWEls1ellOhtoXF9s=
Subject key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B73796B7F1D6277C5BAB75ACAD95C4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 212295
AS: 212426
IP: 80.249.128.0/24
IP: 2a0d:a200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:37:96:b7:f1:d6:27:7c:5b:ab:75:ac:ad:95:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:3f:c1:62:12:8b:e1:97:59:06:ec:3e:c0:
90:8b:28:59:dc:66:19:23:a4:16:84:3e:a8:07:f6:
b3:72:f9:c7:e3:bf:88:a8:74:af:a6:23:d2:b3:40:
31:b4:01:c6:34:6a:75:4c:c9:c0:08:e7:b4:5b:54:
13:33:fc:80:1d:9b:be:e8:9e:68:21:0a:d3:a5:70:
f2:2e:8b:be:e4:39:ff:a9:82:31:72:4c:93:b5:6c:
be:56:13:ae:e8:e7:79:bf:98:ac:67:4c:be:df:39:
5d:18:2e:2f:db:5b:88:b9:7b:4b:a4:21:43:08:dd:
46:75:c9:07:b5:4c:58:94:d7:3f:ab:69:a0:fc:75:
0d:50:a7:94:04:5d:c2:af:fe:40:64:2e:cf:7d:dd:
c6:ac:62:bb:b0:6d:08:8a:5d:df:1a:cc:53:9e:d9:
f7:0e:53:12:d7:a2:95:5c:a3:6e:af:7e:df:df:26:
c5:c9:de:ed:ba:bc:d9:bb:33:bb:54:44:fc:1a:25:
4d:d3:93:60:61:17:e0:6d:ba:e5:82:92:d9:2c:1b:
b2:a6:96:cf:40:ab:ef:b5:7f:44:3b:c8:db:13:ff:
d5:53:42:8d:af:04:4b:49:91:2d:69:66:e1:66:16:
6f:57:93:db:df:08:cf:51:37:eb:5b:0a:de:27:d4:
97:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.128.0/24
IPv6:
2a0d:a200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212295
212426
Signature Algorithm: sha256WithRSAEncryption
48:3c:f2:2e:17:e5:56:b8:76:0c:01:7b:28:1f:5f:98:3c:64:
0c:21:22:b7:43:57:4f:84:6f:9b:e1:42:47:08:db:79:11:2d:
2d:28:f9:4d:b5:93:2f:83:02:e4:3b:9d:9a:8a:f0:2a:1d:f6:
a2:69:9f:4a:51:5d:57:7a:86:ef:91:48:ef:97:64:b0:bd:84:
f7:46:75:c4:64:1c:fd:a4:5b:bb:0a:b4:f4:a0:74:07:a7:f3:
54:28:d4:46:67:0f:37:bd:77:2a:13:a4:ff:15:6c:d8:b2:70:
8c:29:14:47:f0:09:61:19:8f:22:3d:99:51:62:d9:6e:99:ae:
b2:28:bd:8c:57:ba:75:3c:c4:f7:b5:b6:ba:87:a8:5d:71:ee:
08:d4:f6:89:58:f6:50:3e:0a:c4:db:f4:f6:4a:1b:0f:91:0f:
e7:46:54:0a:64:aa:96:8c:95:a6:2a:d3:81:65:79:6d:2c:68:
bb:5e:91:fa:0c:47:b0:0f:ee:ca:b8:96:51:48:ee:38:39:fe:
82:ab:8a:dc:e0:6b:4b:c1:e3:b0:21:35:0d:35:1e:06:13:d5:
a0:e4:fe:22:f0:9f:5f:98:e4:d1:b6:ed:ca:6e:7e:b3:67:44:
94:3b:45:64:bf:37:bb:dc:65:f8:fe:bd:08:03:65:b7:a3:4d:
7e:7f:3a:2e
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAYzDtzeWt/HWJ3xbq3WsrZXEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYzMDEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTkzY2M4Y2NhODFmYTAwZGM1M2U3YjgwNzhlOTFiNWMxMWJhMmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Xw/wWISi+GXWQbsPsCQiyhZ3GYZ
I6QWhD6oB/azcvnH47+IqHSvpiPSs0AxtAHGNGp1TMnACOe0W1QTM/yAHZu+6J5o
IQrTpXDyLou+5Dn/qYIxckyTtWy+VhOu6Od5v5isZ0y+3zldGC4v21uIuXtLpCFD
CN1GdckHtUxYlNc/q2mg/HUNUKeUBF3Cr/5AZC7Pfd3GrGK7sG0Iil3fGsxTntn3
DlMS16KVXKNur37f3ybFyd7turzZuzO7VET8GiVN05NgYRfgbbrlgpLZLBuyppbP
QKvvtX9EO8jbE//VU0KNrwRLSZEtaWbhZhZvV5Pb3wjPUTfrWwreJ9SXGwIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFK6TzIzKgfoA3FPnuAeOkbXBG6LvMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA5LzE3OTg5
MS00MWNjLTRhYTAtYWI2OC1mNDA2YzgzYjNmYmEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkvMTc5ODkx
LTQxY2MtNGFhMC1hYjY4LWY0MDZjODNiM2ZiYS8xL3JwUE1qTXFCLWdEY1UtZTRC
NDZSdGNFYm91OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAUPmAMA0EAgACMAcDBQMqDaIAMB8GCCsGAQUF
BwEIAQH/BBAwDqAMMAoCAwM9RwIDAz3KMA0GCSqGSIb3DQEBCwUAA4IBAQBIPPIu
F+VWuHYMAXsoH1+YPGQMISK3Q1dPhG+b4UJHCNt5ES0tKPlNtZMvgwLkO52aivAq
HfaiaZ9KUV1XeobvkUjvl2SwvYT3RnXEZBz9pFu7CrT0oHQHp/NUKNRGZw83vXcq
E6T/FWzYsnCMKRRH8AlhGY8iPZlRYtluma6yKL2MV7p1PMT3tba6h6hdce4I1PaJ
WPZQPgrE2/T2ShsPkQ/nRlQKZKqWjJWmKtOBZXltLGi7XpH6DEewD+7KuJZRSO44
Of6Cq4rc4GtLweOwITUNNR4GE9Wg5P4i8J9fmOTRtu3Kbn6zZ0SUO0Vkvze73GX4
/r0IA2W3o01+fzou
-----END CERTIFICATE-----
Generated at Fri May 3 03:46:00 2024 by rpki-client on console-fra.rpki-client.org