Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
File: uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer (raw, json)
Hash identifier: CGvWRMKevoeuVZ0YWMzdWIEbjjMOj7bloZs4ztqG3QU=
Subject key identifier: B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500A131D3764FB4604417E2E150A0D3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 197641
IP: 45.144.104.0/22
IP: 2a0e:ec40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:a1:31:d3:76:4f:b4:60:44:17:e2:e1:50:a0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b814345affd1506af9af32ec0d77399b7664aa3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:86:ec:86:5a:73:75:2b:b2:05:60:b3:8b:71:
0c:9b:fd:6a:dd:ab:e8:ed:8e:ac:6c:ad:19:36:96:
b4:c7:de:13:f1:29:e2:da:24:9a:75:10:0b:d1:fd:
33:b0:d4:46:5b:8d:7b:88:06:da:a3:d5:b2:0a:22:
33:fc:5b:53:df:4f:4d:48:5b:d8:34:73:0f:79:36:
48:fc:89:95:af:90:4a:24:ff:12:0a:f5:13:12:1c:
60:1d:68:80:dc:04:b0:92:a7:ad:01:42:cf:4e:ab:
9c:c0:e7:4d:5a:99:2d:78:c7:a3:9a:07:c5:47:dd:
2b:5d:4a:d3:16:f3:9d:cd:2b:1d:d8:8f:52:2f:7d:
7f:5d:25:14:b2:f0:5d:6b:ca:b3:fd:84:a4:d4:c9:
56:f1:84:bb:1f:33:ca:e9:86:cb:05:3f:2a:20:61:
42:bc:17:ba:7d:0b:40:91:47:2f:95:ec:32:84:12:
73:0f:02:07:c5:92:d4:90:ce:dd:e0:cd:3d:e2:d3:
3f:05:0a:c4:68:43:a7:6d:ea:87:2e:9e:90:75:af:
ac:5a:89:26:91:ce:ec:4e:17:38:f0:af:25:14:c3:
47:e5:6c:51:bf:d6:d0:3a:af:70:d8:ef:e1:97:c6:
3f:8b:3a:77:2e:01:b3:23:a3:5a:80:18:b5:86:e3:
f7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.104.0/22
IPv6:
2a0e:ec40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197641
Signature Algorithm: sha256WithRSAEncryption
a0:61:24:98:d3:8b:8a:91:81:98:99:90:e7:c1:75:1e:ba:8a:
bb:0d:ea:37:05:dc:8e:49:d2:c9:63:24:05:94:61:5a:33:84:
1b:cf:36:36:b8:e9:3a:9f:ca:fc:05:b7:82:17:6b:97:31:55:
00:c9:c2:56:a5:cf:ad:d3:4a:8c:0f:72:df:86:89:ae:b0:de:
d6:47:fc:bb:84:65:b1:d8:d9:92:3a:6a:82:5a:9c:b6:59:4a:
94:ec:48:80:f4:49:8b:49:b6:f1:3f:5e:2b:ba:55:fd:ad:20:
80:0c:35:9c:f0:9e:5f:22:07:f4:7f:de:fd:92:77:ba:fb:04:
84:ff:d7:7c:96:c1:bb:58:cb:cb:9c:36:8b:23:0f:c4:70:ec:
49:77:2e:c7:ee:c8:30:f6:03:97:09:aa:54:58:6a:56:44:ca:
41:22:9a:72:32:0b:2d:1f:f7:e0:c5:21:fb:a5:87:53:d8:1e:
55:b7:6b:85:fb:c3:da:81:5d:81:fe:aa:b7:18:87:99:d5:a6:
38:aa:45:c1:9f:c7:c2:ee:a0:76:59:b6:3e:59:b2:8f:45:dc:
d6:c8:17:cc:21:04:37:d9:83:48:be:11:eb:b6:d4:2d:25:86:
93:5c:23:8e:68:a6:b9:77:7b:d3:da:a3:70:ba:7b:44:0f:77:
cf:be:3b:4c
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzFAKEx03ZPtGBEF+LhUKDTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIzMDAyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODE0MzQ1YWZmZDE1MDZhZjlhZjMyZWMwZDc3Mzk5Yjc2NjRhYTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14bshlpzdSuyBWCzi3EMm/1q3avo
7Y6sbK0ZNpa0x94T8Sni2iSadRAL0f0zsNRGW417iAbao9WyCiIz/FtT309NSFvY
NHMPeTZI/ImVr5BKJP8SCvUTEhxgHWiA3ASwkqetAULPTqucwOdNWpkteMejmgfF
R90rXUrTFvOdzSsd2I9SL31/XSUUsvBda8qz/YSk1MlW8YS7HzPK6YbLBT8qIGFC
vBe6fQtAkUcvlewyhBJzDwIHxZLUkM7d4M094tM/BQrEaEOnbeqHLp6Qda+sWokm
kc7sThc48K8lFMNH5WxRv9bQOq9w2O/hl8Y/izp3LgGzI6NagBi1huP3MwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFLgUNFr/0VBq+a8y7A13OZt2ZKo/MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JkLzUwYjE4
Zi05YTdkLTQ1MmMtYTZkNS05ZGU3NTI1YmE3MTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQvNTBiMThm
LTlhN2QtNDUyYy1hNmQ1LTlkZTc1MjViYTcxMi8xL3VCUTBXdl9SVUdyNXJ6THNE
WGM1bTNaa3FqOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCLZBoMA0EAgACMAcDBQMqDuxAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMECTANBgkqhkiG9w0BAQsFAAOCAQEAoGEkmNOLipGB
mJmQ58F1HrqKuw3qNwXcjknSyWMkBZRhWjOEG882NrjpOp/K/AW3ghdrlzFVAMnC
VqXPrdNKjA9y34aJrrDe1kf8u4RlsdjZkjpqglqctllKlOxIgPRJi0m28T9eK7pV
/a0ggAw1nPCeXyIH9H/e/ZJ3uvsEhP/XfJbBu1jLy5w2iyMPxHDsSXcux+7IMPYD
lwmqVFhqVkTKQSKacjILLR/34MUh+6WHU9geVbdrhfvD2oFdgf6qtxiHmdWmOKpF
wZ/Hwu6gdlm2Plmyj0Xc1sgXzCEEN9mDSL4R67bULSWGk1wjjmimuXd709qjcLp7
RA93z747TA==
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:42 2024 by rpki-client on console-ams.rpki-client.org