Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uATBl0RFlLEexZnSBWVvZOTR_GE.cer
File: uATBl0RFlLEexZnSBWVvZOTR_GE.cer (raw, json)
Hash identifier: e//wuIesPF/xxNqHfjvEov7l6GWrTnD6BAcGR5MG2Dk=
Subject key identifier: B8:04:C1:97:44:45:94:B1:1E:C5:99:D2:05:65:6F:64:E4:D1:FC:61
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01900B88F1373B9471044E5E31512C995CDC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/uATBl0RFlLEexZnSBWVvZOTR_GE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 12 Jun 2024 08:20:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198048
AS: 199978
IP: 91.231.72.0/22
IP: 185.155.40.0/22
IP: 2a04:b7c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0b:88:f1:37:3b:94:71:04:4e:5e:31:51:2c:99:5c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 12 08:20:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b804c197444594b11ec599d205656f64e4d1fc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b2:d3:a9:3b:35:f6:90:d9:e4:83:41:7f:77:
d1:10:2a:7e:a9:b3:9a:11:36:55:27:b8:36:87:5c:
7b:ea:27:3a:27:93:31:54:51:a7:9c:21:a7:28:7e:
87:41:5f:f7:74:c2:c2:15:dc:de:22:ef:24:26:bd:
e1:f8:13:d3:c8:3b:c4:16:55:00:21:b7:b6:6e:56:
16:df:99:37:fd:63:68:6a:25:16:41:ec:a8:cd:8c:
2b:e8:13:25:4d:88:98:c4:71:11:ce:cc:70:70:b9:
4c:50:ca:08:2e:50:89:6c:6e:d2:41:37:63:54:72:
66:37:43:31:f2:86:9d:a8:40:ae:f1:a8:0b:b0:f6:
1d:0b:24:d5:99:c9:a7:29:d0:cb:fa:00:ad:09:03:
33:47:c2:3a:aa:fe:55:58:b2:e5:d1:4e:de:c9:e0:
48:4f:a6:9a:d3:79:1f:6f:09:79:19:2d:ae:4c:61:
0a:77:f2:c8:51:a2:d6:23:5d:07:9d:ee:53:5d:88:
73:20:53:4e:70:fd:2d:d1:d8:06:c9:dc:67:5b:19:
63:25:a8:4d:8e:9c:1e:23:77:2d:c4:3a:fd:db:d0:
f8:38:f7:00:2e:c1:06:3b:c5:48:a5:5a:39:ba:e0:
1e:09:8d:a6:15:74:57:30:f5:e2:49:23:45:1c:a3:
db:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:04:C1:97:44:45:94:B1:1E:C5:99:D2:05:65:6F:64:E4:D1:FC:61
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3bc553-0ee0-4b72-b93e-938ab96454e9/1/uATBl0RFlLEexZnSBWVvZOTR_GE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.72.0/22
185.155.40.0/22
IPv6:
2a04:b7c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198048
199978
Signature Algorithm: sha256WithRSAEncryption
2a:b4:8c:9c:ed:45:ea:a5:88:b2:70:9d:e2:32:8f:2d:4c:ee:
58:cf:72:0a:64:a1:05:26:3c:e7:5b:60:e4:a9:c6:52:6c:1b:
32:26:e4:63:ae:47:fe:e5:38:bc:fe:74:48:b5:16:ec:fc:c8:
b7:7c:38:68:2d:eb:fe:b2:92:6a:56:9c:ff:d5:b8:b6:42:dc:
f9:66:8a:18:5c:32:67:44:ce:92:63:dc:03:ec:c8:53:c9:76:
f5:67:7f:26:97:3f:93:85:71:70:b6:15:ee:d0:c1:92:fd:0f:
41:56:64:81:f2:fa:82:d4:d3:ff:bf:cc:2c:16:ad:8b:2e:96:
cb:e7:de:f1:06:54:af:cb:13:1d:ef:18:63:87:3a:34:c6:f4:
48:f6:1e:45:48:03:13:1b:52:f0:26:33:07:7b:06:08:8d:df:
ff:cf:21:37:71:1c:56:ce:78:c7:99:9f:db:fb:66:ec:43:63:
bb:7a:08:4e:83:65:69:c5:b9:2d:5f:4c:b8:f1:f8:e5:04:10:
0c:91:e1:ed:40:fd:90:2f:19:3a:d4:e4:01:a2:67:74:50:10:
48:48:8f:fb:ee:40:8e:d6:82:5b:d6:03:9a:ea:a0:17:e1:0d:
2d:30:72:3b:55:d5:29:57:71:1a:83:bd:af:3d:ca:be:ab:dc:
fc:ca:5d:43
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAZALiPE3O5RxBE5eMVEsmVzcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNjEyMDgyMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODA0YzE5NzQ0NDU5NGIxMWVjNTk5ZDIwNTY1NmY2NGU0ZDFmYzYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrLTqTs19pDZ5INBf3fRECp+qbOa
ETZVJ7g2h1x76ic6J5MxVFGnnCGnKH6HQV/3dMLCFdzeIu8kJr3h+BPTyDvEFlUA
Ibe2blYW35k3/WNoaiUWQeyozYwr6BMlTYiYxHERzsxwcLlMUMoILlCJbG7SQTdj
VHJmN0Mx8oadqECu8agLsPYdCyTVmcmnKdDL+gCtCQMzR8I6qv5VWLLl0U7eyeBI
T6aa03kfbwl5GS2uTGEKd/LIUaLWI10Hne5TXYhzIFNOcP0t0dgGydxnWxljJahN
jpweI3ctxDr929D4OPcALsEGO8VIpVo5uuAeCY2mFXRXMPXiSSNFHKPbDQIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFLgEwZdERZSxHsWZ0gVlb2Tk0fxhMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y3LzNiYzU1
My0wZWUwLTRiNzItYjkzZS05MzhhYjk2NDU0ZTkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcvM2JjNTUz
LTBlZTAtNGI3Mi1iOTNlLTkzOGFiOTY0NTRlOS8xL3VBVEJsMFJGbExFZXhablNC
V1Z2Wk9UUl9HRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCW+dIAwQCuZsoMA0EAgACMAcDBQMqBLfAMB8G
CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwMFoAIDAw0qMA0GCSqGSIb3DQEBCwUAA4IB
AQAqtIyc7UXqpYiycJ3iMo8tTO5Yz3IKZKEFJjznW2DkqcZSbBsyJuRjrkf+5Ti8
/nRItRbs/Mi3fDhoLev+spJqVpz/1bi2Qtz5ZooYXDJnRM6SY9wD7MhTyXb1Z38m
lz+ThXFwthXu0MGS/Q9BVmSB8vqC1NP/v8wsFq2LLpbL597xBlSvyxMd7xhjhzo0
xvRI9h5FSAMTG1LwJjMHewYIjd//zyE3cRxWznjHmZ/b+2bsQ2O7eghOg2Vpxbkt
X0y48fjlBBAMkeHtQP2QLxk61OQBomd0UBBISI/77kCO1oJb1gOa6qAX4Q0tMHI7
VdUpV3Eag72vPcq+q9z8yl1D
-----END CERTIFICATE-----
Generated at Sat Nov 23 19:27:24 2024 by rpki-client on console-fra.rpki-client.org