Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.cer (raw, json)
Hash identifier: 4AHBoW1h9tf2vkRdWAUrWP06yg8wRSBWogQ1D1zJyj8=
Subject key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3B6F3DD0849ACBE40755F9884E2B75D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 06:29:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208642
IP: 85.116.144.0/22
IP: 185.202.244.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:f3:dd:08:49:ac:be:40:75:5f:98:84:e2:b7:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 06:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:83:73:19:56:83:82:eb:d4:69:de:39:33:b2:
1a:7d:01:b0:c5:ad:51:4b:90:b0:03:f2:c1:0a:56:
ed:e4:71:a2:cc:58:80:5a:7b:2a:ab:2c:d3:94:fc:
c6:14:57:d9:83:87:6f:1f:7b:0f:cb:fd:cb:29:6f:
4f:05:5d:cd:7f:2c:89:3b:91:a2:12:6a:6d:2f:75:
c1:76:4f:6c:36:26:d0:9a:f1:21:40:04:66:1e:df:
e0:74:c6:18:ef:23:97:5c:d8:ae:34:cc:e9:48:ba:
dc:34:16:9a:b7:62:b2:73:71:e5:55:ae:e0:56:59:
e9:7c:13:c6:7f:50:c7:08:03:b4:d6:a1:ee:07:a8:
c7:c5:2c:d9:1b:9f:ab:64:ad:bf:ac:89:53:82:ad:
b0:69:c4:d7:8c:3c:40:55:fc:82:53:3e:24:39:dc:
07:5b:f0:2e:d0:a3:39:a7:9c:16:16:ef:7f:52:37:
e5:78:31:3b:de:26:86:34:b5:24:27:2b:02:79:7c:
9f:23:da:45:69:49:ee:1c:0b:84:ed:27:93:43:a1:
93:8a:2c:5e:c1:9d:d3:43:07:fb:b1:b8:87:db:89:
55:5d:e5:31:9b:1b:0f:a7:75:b4:55:da:1e:7a:33:
0d:03:e7:3c:82:d5:9b:d5:a6:6b:60:a0:81:4f:22:
12:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.144.0/22
185.202.244.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208642
Signature Algorithm: sha256WithRSAEncryption
66:86:aa:81:d7:cb:cb:c4:48:e9:27:08:98:d9:fd:e6:d1:bc:
08:c0:c7:4d:04:69:dc:28:c4:96:63:1b:77:83:28:22:77:e8:
5a:fe:5f:70:cf:6f:22:93:ba:6c:35:6a:f5:f5:6b:41:58:e5:
10:1e:40:b2:43:55:a0:1d:76:cf:8c:13:8c:50:d0:5d:e8:29:
8d:cb:4f:c7:02:2c:eb:07:e9:9a:a3:df:e6:ce:c0:19:63:81:
61:49:60:ff:6a:32:41:95:69:d2:3f:c0:13:72:8d:65:fa:ac:
7c:fa:17:60:3e:09:d9:19:77:c6:3d:5e:75:9d:a3:0a:52:18:
ac:3f:a9:aa:2c:2c:e5:23:d6:3a:85:5d:f4:1c:23:75:35:ac:
ae:c5:c8:c6:17:f1:04:34:fd:c0:81:0b:d8:7b:df:b0:9f:4b:
d2:1b:e2:44:6e:8f:09:7c:e2:4a:52:3a:ae:bf:ea:9f:8e:28:
6d:68:95:0b:5c:b2:79:2e:e6:11:80:52:06:63:f1:26:6b:64:
1c:ec:09:9b:f2:aa:49:f4:5f:8f:80:0d:cd:25:c6:3e:d6:64:
17:85:03:85:7b:c7:ac:1d:74:cb:1a:01:27:fc:01:53:1d:dd:
fd:0e:f0:22:01:e2:32:20:0f:ac:63:7a:7f:bb:73:91:d4:57:
03:32:3b:2a
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAYzDtvPdCEmsvkB1X5iE4rddMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMDYyOTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjBhMTNhMWM5ZTFkZDg0ZWRlNDMyODM0OTBiZTc4Mzg3NzU0YTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi4NzGVaDguvUad45M7IafQGwxa1R
S5CwA/LBClbt5HGizFiAWnsqqyzTlPzGFFfZg4dvH3sPy/3LKW9PBV3NfyyJO5Gi
EmptL3XBdk9sNibQmvEhQARmHt/gdMYY7yOXXNiuNMzpSLrcNBaat2Kyc3HlVa7g
VlnpfBPGf1DHCAO01qHuB6jHxSzZG5+rZK2/rIlTgq2wacTXjDxAVfyCUz4kOdwH
W/Au0KM5p5wWFu9/UjfleDE73iaGNLUkJysCeXyfI9pFaUnuHAuE7SeTQ6GTiixe
wZ3TQwf7sbiH24lVXeUxmxsPp3W0VdoeejMNA+c8gtWb1aZrYKCBTyISIwIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFLsKE6HJ4d2E7eQyg0kL54OHdUqUMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU3LzNmOGNj
YS02YjFkLTRhZTYtYmMyYS1mNDJlN2M0NTkzNWEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcvM2Y4Y2Nh
LTZiMWQtNGFlNi1iYzJhLWY0MmU3YzQ1OTM1YS8xL3V3b1RvY25oM1lUdDVES0RT
UXZuZzRkMVNwUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF
BwEHAQH/BBYwFDASBAIAATAMAwQCVXSQAwQCucr0MBoGCCsGAQUFBwEIAQH/BAsw
CaAHMAUCAwMvAjANBgkqhkiG9w0BAQsFAAOCAQEAZoaqgdfLy8RI6ScImNn95tG8
CMDHTQRp3CjElmMbd4MoInfoWv5fcM9vIpO6bDVq9fVrQVjlEB5AskNVoB12z4wT
jFDQXegpjctPxwIs6wfpmqPf5s7AGWOBYUlg/2oyQZVp0j/AE3KNZfqsfPoXYD4J
2Rl3xj1edZ2jClIYrD+pqiws5SPWOoVd9BwjdTWsrsXIxhfxBDT9wIEL2HvfsJ9L
0hviRG6PCXziSlI6rr/qn44obWiVC1yyeS7mEYBSBmPxJmtkHOwJm/KqSfRfj4AN
zSXGPtZkF4UDhXvHrB10yxoBJ/wBUx3d/Q7wIgHiMiAPrGN6f7tzkdRXAzI7Kg==
-----END CERTIFICATE-----
Generated at Fri May 3 11:04:29 2024 by rpki-client on console-fra.rpki-client.org