Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uQBjLU-AFX1p71tT_mJNv4rf768.cer
File: uQBjLU-AFX1p71tT_mJNv4rf768.cer (raw, json)
Hash identifier: zGi/fSti1M+QZeTGv5y9Y7xeRF7sXgIYNlrkVRmA/0s=
Subject key identifier: B9:00:63:2D:4F:80:15:7D:69:EF:5B:53:FE:62:4D:BF:8A:DF:EF:AF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F50A154270BE2813254087D2E6530
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/uQBjLU-AFX1p71tT_mJNv4rf768.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:56 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 207943
IP: 185.46.71.0/24
IP: 2a12:9440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:50:a1:54:27:0b:e2:81:32:54:08:7d:2e:65:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b900632d4f80157d69ef5b53fe624dbf8adfefaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:6f:45:3e:34:90:a7:aa:60:24:92:dd:c7:
6d:57:73:09:81:ad:a0:29:9e:d9:0c:49:e8:89:66:
70:90:89:01:c0:a0:ef:3b:0a:b4:17:c2:64:40:30:
43:db:c4:b7:e8:ec:bf:7c:ce:2f:3b:ce:a8:5b:7b:
24:2a:17:2c:41:03:a3:1d:98:41:1c:45:35:90:4d:
1b:ee:63:be:e8:bc:f5:eb:74:5f:83:16:ea:8d:cb:
e6:7f:43:45:ab:06:87:2b:c5:15:39:97:42:78:fb:
8c:b5:b6:aa:1d:55:86:c7:b1:8c:ac:99:3b:b6:cc:
a3:8b:44:04:68:6c:77:8a:78:59:25:08:cc:44:7e:
16:63:27:e5:bf:f3:16:80:38:fa:4f:2f:ce:cc:72:
2f:0e:31:9a:f7:17:0d:b8:45:45:2d:e0:3e:ca:58:
1c:22:64:b3:ba:f3:37:0d:36:4d:26:dc:c9:49:4f:
d4:19:f7:d6:64:80:5b:ea:6d:d3:8a:de:5a:bc:7d:
ab:8d:1d:19:c0:c0:66:48:7a:57:bb:8e:52:12:9f:
ed:11:7c:a8:c3:94:f6:62:bc:66:a7:dc:99:64:0d:
ae:9b:11:47:68:fa:c8:42:26:42:7c:ac:ce:46:0e:
90:d3:79:0b:f8:47:8b:f8:ae:f7:53:56:17:93:b3:
9f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:00:63:2D:4F:80:15:7D:69:EF:5B:53:FE:62:4D:BF:8A:DF:EF:AF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/uQBjLU-AFX1p71tT_mJNv4rf768.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.71.0/24
IPv6:
2a12:9440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207943
Signature Algorithm: sha256WithRSAEncryption
7f:7e:d9:d1:16:2f:97:0e:38:c0:f8:5e:f3:03:b9:87:79:b1:
b4:c7:e9:f9:c0:fd:b2:5c:2e:fc:8b:5f:a5:8f:e4:d9:5f:be:
3f:7a:4b:46:5f:d5:40:ca:a2:9f:dc:e6:9d:ec:82:e3:2f:63:
66:49:96:aa:93:54:89:09:84:f7:ca:2d:be:71:1b:d4:08:65:
b5:e5:35:e9:cc:d9:c1:b3:c2:bc:01:b3:94:de:60:eb:b1:2c:
aa:a8:49:fa:89:25:1e:01:5a:53:f9:e5:0a:29:92:be:ff:23:
c6:db:5c:0f:8a:8c:3f:50:99:3e:c2:0e:f1:49:21:53:32:4e:
86:52:59:9e:71:0c:01:3e:13:5b:81:55:2d:51:61:d4:a0:45:
79:aa:96:ae:d6:ed:a8:8a:14:6a:32:7c:38:e2:78:a1:ec:d2:
28:2d:d5:04:d8:4a:e3:1e:01:ae:59:00:4f:44:fd:30:ea:81:
d9:6a:96:92:0b:d8:ee:c9:c8:b5:87:f6:26:ca:b8:62:81:92:
70:68:14:cd:45:e7:19:3c:66:7f:a1:09:5e:67:99:3d:11:db:
a0:22:01:77:d4:7c:0a:d7:13:4c:61:43:36:ce:b6:4b:90:76:
c7:67:84:f2:7a:61:5a:8f:03:0c:b8:f9:4d:5c:af:81:e0:01:
d9:80:bc:7a
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQlj1ChVCcL4oEyVAh9LmUwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDU0ODU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTAwNjMyZDRmODAxNTdkNjllZjViNTNmZTYyNGRiZjhhZGZlZmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuotvRT40kKeqYCSS3cdtV3MJga2g
KZ7ZDEnoiWZwkIkBwKDvOwq0F8JkQDBD28S36Oy/fM4vO86oW3skKhcsQQOjHZhB
HEU1kE0b7mO+6Lz163Rfgxbqjcvmf0NFqwaHK8UVOZdCePuMtbaqHVWGx7GMrJk7
tsyji0QEaGx3inhZJQjMRH4WYyflv/MWgDj6Ty/OzHIvDjGa9xcNuEVFLeA+ylgc
ImSzuvM3DTZNJtzJSU/UGffWZIBb6m3Tit5avH2rjR0ZwMBmSHpXu45SEp/tEXyo
w5T2Yrxmp9yZZA2umxFHaPrIQiZCfKzORg6Q03kL+EeL+K73U1YXk7OfoQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFLkAYy1PgBV9ae9bU/5iTb+K3++vMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzL2JiNTQ4
ZS01YzkxLTQ2NTgtOGUwMS1iODBmZjJmMTU1MmIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvYmI1NDhl
LTVjOTEtNDY1OC04ZTAxLWI4MGZmMmYxNTUyYi8xL3VRQmpMVS1BRlgxcDcxdFRf
bUpOdjRyZjc2OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAuS5HMA0EAgACMAcDBQMqEpRAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMsRzANBgkqhkiG9w0BAQsFAAOCAQEAf37Z0RYvlw44
wPhe8wO5h3mxtMfp+cD9slwu/ItfpY/k2V++P3pLRl/VQMqin9zmneyC4y9jZkmW
qpNUiQmE98otvnEb1AhlteU16czZwbPCvAGzlN5g67EsqqhJ+oklHgFaU/nlCimS
vv8jxttcD4qMP1CZPsIO8UkhUzJOhlJZnnEMAT4TW4FVLVFh1KBFeaqWrtbtqIoU
ajJ8OOJ4oezSKC3VBNhK4x4BrlkAT0T9MOqB2WqWkgvY7snItYf2Jsq4YoGScGgU
zUXnGTxmf6EJXmeZPRHboCIBd9R8CtcTTGFDNs62S5B2x2eE8nphWo8DDLj5TVyv
geAB2YC8eg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:02:45 2025 by rpki-client