Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wOjlaxjUXGRvA8tvkGnaDIs8dK0.cer
File: wOjlaxjUXGRvA8tvkGnaDIs8dK0.cer (raw, json)
Hash identifier: rOTtuoQcjV6BmySqxMmMpXUnN/Hc18+CbV/YYhbpOUc=
Subject key identifier: C0:E8:E5:6B:18:D4:5C:64:6F:03:CB:6F:90:69:DA:0C:8B:3C:74:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2979F6206B14834604E2D6174AB46D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/wOjlaxjUXGRvA8tvkGnaDIs8dK0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:32:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199736
AS: 208909
AS: 209202
IP: 2.57.128.0/22
IP: 5.183.220.0/22
IP: 45.15.136.0/22
IP: 91.204.124.0/22
IP: 162.213.64.0/22
IP: 185.38.128.0/22
IP: 185.41.96.0/22
IP: 185.87.188.0/22
IP: 185.132.90.0/24
IP: 185.219.136.0/22
IP: 195.211.168.0/22
IP: 2a00:fde0::/32
IP: 2a01:57a0::/32
IP: 2a09:d940::/29
IP: 2a0e:3c80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:79:f6:20:6b:14:83:46:04:e2:d6:17:4a:b4:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:32:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c0e8e56b18d45c646f03cb6f9069da0c8b3c74ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3c:c3:ea:b7:a5:86:46:aa:db:b4:59:1a:b1:
c1:9e:ed:a6:96:65:a2:4e:d5:a8:a6:7e:95:11:0f:
d7:f5:7d:60:db:13:6c:6a:0a:e2:4f:60:cb:59:a7:
25:15:29:66:c8:d7:4a:dd:16:57:7b:4d:34:34:ca:
13:db:35:9a:7d:b7:06:fb:88:1c:e3:a8:ef:19:cb:
16:04:6d:75:fe:75:b5:0f:d8:2e:81:bc:c0:a8:3b:
08:68:b3:db:8a:46:c9:a2:6e:fe:97:b0:0b:b5:52:
c1:15:24:97:6a:09:55:0c:42:99:5e:93:22:cd:0c:
22:54:5f:f8:ca:3c:88:39:a3:44:ae:3f:53:6a:e2:
e0:ce:51:51:ea:e2:d2:41:cb:6d:31:50:e6:62:ca:
85:58:d9:42:57:17:08:84:8e:a8:4e:cc:db:a8:f1:
7c:4d:a8:c5:d4:af:cb:4c:ad:ec:fe:c6:f6:32:a1:
49:35:88:76:10:3d:07:10:26:43:7b:49:90:2b:05:
0c:ce:bd:db:9b:1f:9f:21:f5:54:9a:5e:9a:00:41:
12:77:9a:eb:de:95:ce:4b:65:5a:81:3d:24:34:36:
9a:fc:df:5a:4e:c0:da:c0:ff:61:fc:e6:99:df:8c:
37:fa:e3:8f:c9:88:39:df:9d:ea:67:d1:43:2b:16:
b3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E8:E5:6B:18:D4:5C:64:6F:03:CB:6F:90:69:DA:0C:8B:3C:74:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/wOjlaxjUXGRvA8tvkGnaDIs8dK0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.128.0/22
5.183.220.0/22
45.15.136.0/22
91.204.124.0/22
162.213.64.0/22
185.38.128.0/22
185.41.96.0/22
185.87.188.0/22
185.132.90.0/24
185.219.136.0/22
195.211.168.0/22
IPv6:
2a00:fde0::/32
2a01:57a0::/32
2a09:d940::/29
2a0e:3c80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199736
208909
209202
Signature Algorithm: sha256WithRSAEncryption
78:66:e3:01:19:5e:a4:f9:9c:79:85:2f:af:ef:e7:0a:50:8d:
3a:25:ae:10:d8:b2:7e:0b:de:45:2e:70:48:77:9d:f0:53:a0:
ab:d3:62:d0:3b:c2:0f:e6:24:7c:48:b7:8e:d8:2e:28:86:4c:
a1:60:62:3f:d0:91:67:02:9c:15:3c:94:66:5d:2a:3e:b7:64:
70:b4:ff:d3:ca:5c:55:b5:e8:dc:6f:59:2f:30:f8:42:ac:23:
b0:db:78:48:47:b3:0f:f0:76:2a:28:54:6a:ae:b8:c4:1b:79:
01:57:cf:42:8f:cc:86:9e:d3:ad:60:16:78:25:cb:48:55:35:
af:df:b0:1d:85:e3:cc:ff:e0:dc:29:a3:28:42:cc:06:49:ef:
b7:84:ea:10:54:95:d6:33:38:1a:42:bc:28:5a:cd:57:e4:9d:
49:0e:79:8b:60:c9:05:f1:bb:ba:23:0b:fe:b1:e0:58:09:04:
1a:af:98:8c:3c:b8:38:4d:b6:f8:ba:2d:b8:98:5a:b1:a2:e1:
56:07:a2:45:c4:da:59:da:a4:d5:c8:37:75:0b:75:f6:4a:86:
8e:25:9c:76:60:b4:ef:2a:58:a6:a0:c5:69:53:3e:59:b5:bf:
90:40:32:6c:ff:35:ad:6f:2d:3a:c5:1b:a4:49:07:d2:07:0d:
ad:d5:75:ef
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgISAYzKKXn2IGsUg0YE4tYXSrRtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMTIzMjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGU4ZTU2YjE4ZDQ1YzY0NmYwM2NiNmY5MDY5ZGEwYzhiM2M3NGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTzD6relhkaq27RZGrHBnu2mlmWi
TtWopn6VEQ/X9X1g2xNsagriT2DLWaclFSlmyNdK3RZXe000NMoT2zWafbcG+4gc
46jvGcsWBG11/nW1D9gugbzAqDsIaLPbikbJom7+l7ALtVLBFSSXaglVDEKZXpMi
zQwiVF/4yjyIOaNErj9TauLgzlFR6uLSQcttMVDmYsqFWNlCVxcIhI6oTszbqPF8
TajF1K/LTK3s/sb2MqFJNYh2ED0HECZDe0mQKwUMzr3bmx+fIfVUml6aAEESd5rr
3pXOS2VagT0kNDaa/N9aTsDawP9h/OaZ34w3+uOPyYg5353qZ9FDKxazuQIDAQAB
o4IDCjCCAwYwHQYDVR0OBBYEFMDo5WsY1FxkbwPLb5Bp2gyLPHStMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljLzJhYmVh
Mi0zMGQwLTQ2NTQtYTgzNC03NDViY2UzMDYwYzkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvMmFiZWEy
LTMwZDAtNDY1NC1hODM0LTc0NWJjZTMwNjBjOS8xL3dPamxheGpVWEdSdkE4dHZr
R25hRElzOGRLMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMH8GCCsGAQUF
BwEHAQH/BHAwbjBIBAIAATBCAwQCAjmAAwQCBbfcAwQCLQ+IAwQCW8x8AwQCotVA
AwQCuSaAAwQCuSlgAwQCuVe8AwQAuYRaAwQCuduIAwQCw9OoMCIEAgACMBwDBQAq
AP3gAwUAKgFXoAMFAyoJ2UADBQMqDjyAMCQGCCsGAQUFBwEIAQH/BBUwE6ARMA8C
AwMMOAIDAzANAgMDMTIwDQYJKoZIhvcNAQELBQADggEBAHhm4wEZXqT5nHmFL6/v
5wpQjTolrhDYsn4L3kUucEh3nfBToKvTYtA7wg/mJHxIt47YLiiGTKFgYj/QkWcC
nBU8lGZdKj63ZHC0/9PKXFW16NxvWS8w+EKsI7DbeEhHsw/wdiooVGquuMQbeQFX
z0KPzIae061gFngly0hVNa/fsB2F48z/4NwpoyhCzAZJ77eE6hBUldYzOBpCvCha
zVfknUkOeYtgyQXxu7ojC/6x4FgJBBqvmIw8uDhNtvi6LbiYWrGi4VYHokXE2lna
pNXIN3ULdfZKho4lnHZgtO8qWKagxWlTPlm1v5BAMmz/Na1vLTrFG6RJB9IHDa3V
de8=
-----END CERTIFICATE-----
Generated at Sat Nov 23 11:04:59 2024 by rpki-client on console-ams.rpki-client.org