Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uQBjLU-AFX1p71tT_mJNv4rf768.cer
File: uQBjLU-AFX1p71tT_mJNv4rf768.cer (raw, json)
Hash identifier: 6l8slTiqyNPFWtVfKUjKR53OmmuwgY9FbzbCJ7AIJd0=
Subject key identifier: B9:00:63:2D:4F:80:15:7D:69:EF:5B:53:FE:62:4D:BF:8A:DF:EF:AF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8715664F301965A66D443C2F0403EE3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/uQBjLU-AFX1p71tT_mJNv4rf768.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:32:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207943
IP: 185.46.71.0/24
IP: 2a12:9440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:56:64:f3:01:96:5a:66:d4:43:c2:f0:40:3e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:32:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b900632d4f80157d69ef5b53fe624dbf8adfefaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:6f:45:3e:34:90:a7:aa:60:24:92:dd:c7:
6d:57:73:09:81:ad:a0:29:9e:d9:0c:49:e8:89:66:
70:90:89:01:c0:a0:ef:3b:0a:b4:17:c2:64:40:30:
43:db:c4:b7:e8:ec:bf:7c:ce:2f:3b:ce:a8:5b:7b:
24:2a:17:2c:41:03:a3:1d:98:41:1c:45:35:90:4d:
1b:ee:63:be:e8:bc:f5:eb:74:5f:83:16:ea:8d:cb:
e6:7f:43:45:ab:06:87:2b:c5:15:39:97:42:78:fb:
8c:b5:b6:aa:1d:55:86:c7:b1:8c:ac:99:3b:b6:cc:
a3:8b:44:04:68:6c:77:8a:78:59:25:08:cc:44:7e:
16:63:27:e5:bf:f3:16:80:38:fa:4f:2f:ce:cc:72:
2f:0e:31:9a:f7:17:0d:b8:45:45:2d:e0:3e:ca:58:
1c:22:64:b3:ba:f3:37:0d:36:4d:26:dc:c9:49:4f:
d4:19:f7:d6:64:80:5b:ea:6d:d3:8a:de:5a:bc:7d:
ab:8d:1d:19:c0:c0:66:48:7a:57:bb:8e:52:12:9f:
ed:11:7c:a8:c3:94:f6:62:bc:66:a7:dc:99:64:0d:
ae:9b:11:47:68:fa:c8:42:26:42:7c:ac:ce:46:0e:
90:d3:79:0b:f8:47:8b:f8:ae:f7:53:56:17:93:b3:
9f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:00:63:2D:4F:80:15:7D:69:EF:5B:53:FE:62:4D:BF:8A:DF:EF:AF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/uQBjLU-AFX1p71tT_mJNv4rf768.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.71.0/24
IPv6:
2a12:9440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207943
Signature Algorithm: sha256WithRSAEncryption
41:42:d9:dc:5a:94:68:cc:07:c0:2e:c8:10:26:57:6f:a8:72:
5b:85:b2:73:c1:be:18:df:48:a0:3e:c7:f6:1f:52:58:44:09:
e1:84:cf:1b:bd:11:dc:4f:fa:1a:b6:17:e7:c8:18:86:cb:f6:
37:c2:ba:70:d7:af:e1:28:4f:f7:ff:95:9c:f3:9e:6c:81:9b:
31:f2:39:4d:b3:3b:b5:26:c2:45:99:d1:43:3f:6f:68:6a:88:
7f:83:2a:62:46:6c:df:12:51:9a:96:87:03:24:4b:be:ba:6f:
04:0d:2a:cd:dc:9f:cf:6d:4c:f2:8b:0c:5c:51:1b:36:22:5b:
6f:36:48:04:01:5c:7c:e0:f3:21:a2:ec:5a:95:66:4d:87:14:
70:f8:52:f2:96:80:53:9b:b6:a4:0f:20:ca:31:99:02:41:e0:
af:e2:92:11:ec:f2:be:91:28:bf:2c:e4:e3:ee:19:2f:12:ec:
b1:47:fd:01:f9:a3:3b:92:92:3a:e7:7d:77:75:d0:e1:fd:66:
c7:45:18:43:fb:b1:96:45:19:3a:8f:53:60:e9:a1:a6:99:ed:
e7:08:d0:4a:95:02:3e:da:cd:c7:6d:12:d9:94:65:21:a7:89:
a7:72:19:c1:16:46:25:82:bc:e0:65:8e:45:16:4a:f9:17:5f:
25:3f:f1:0a
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYzIcVZk8wGWWmbUQ8LwQD7jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDQzMjAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTAwNjMyZDRmODAxNTdkNjllZjViNTNmZTYyNGRiZjhhZGZlZmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuotvRT40kKeqYCSS3cdtV3MJga2g
KZ7ZDEnoiWZwkIkBwKDvOwq0F8JkQDBD28S36Oy/fM4vO86oW3skKhcsQQOjHZhB
HEU1kE0b7mO+6Lz163Rfgxbqjcvmf0NFqwaHK8UVOZdCePuMtbaqHVWGx7GMrJk7
tsyji0QEaGx3inhZJQjMRH4WYyflv/MWgDj6Ty/OzHIvDjGa9xcNuEVFLeA+ylgc
ImSzuvM3DTZNJtzJSU/UGffWZIBb6m3Tit5avH2rjR0ZwMBmSHpXu45SEp/tEXyo
w5T2Yrxmp9yZZA2umxFHaPrIQiZCfKzORg6Q03kL+EeL+K73U1YXk7OfoQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFLkAYy1PgBV9ae9bU/5iTb+K3++vMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzL2JiNTQ4
ZS01YzkxLTQ2NTgtOGUwMS1iODBmZjJmMTU1MmIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvYmI1NDhl
LTVjOTEtNDY1OC04ZTAxLWI4MGZmMmYxNTUyYi8xL3VRQmpMVS1BRlgxcDcxdFRf
bUpOdjRyZjc2OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAuS5HMA0EAgACMAcDBQMqEpRAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMsRzANBgkqhkiG9w0BAQsFAAOCAQEAQULZ3FqUaMwH
wC7IECZXb6hyW4Wyc8G+GN9IoD7H9h9SWEQJ4YTPG70R3E/6GrYX58gYhsv2N8K6
cNev4ShP9/+VnPOebIGbMfI5TbM7tSbCRZnRQz9vaGqIf4MqYkZs3xJRmpaHAyRL
vrpvBA0qzdyfz21M8osMXFEbNiJbbzZIBAFcfODzIaLsWpVmTYcUcPhS8paAU5u2
pA8gyjGZAkHgr+KSEezyvpEovyzk4+4ZLxLssUf9AfmjO5KSOud9d3XQ4f1mx0UY
Q/uxlkUZOo9TYOmhppnt5wjQSpUCPtrNx20S2ZRlIaeJp3IZwRZGJYK84GWORRZK
+RdfJT/xCg==
-----END CERTIFICATE-----
Generated at Fri May 3 02:17:49 2024 by rpki-client on console-ams.rpki-client.org