Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer
File: xEFzi6q5iLHWhpO7BeKb-7Tw9nE.cer (raw, json)
Hash identifier: 889z2dZ9fp/sT3ihBxf8P9HL3gC4UiOFwH/KgCbqLl4=
Subject key identifier: C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC501514B76C91690CDBA7A20E013C429
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 39912
AS: 41905
AS: 44752
AS: 62155
IP: 37.186.0.0 -- 37.186.4.255
IP: 37.186.6.0 -- 37.186.23.255
IP: 77.220.96.0 -- 77.220.115.255
IP: 77.220.120.0/21
IP: 78.142.64.0/23
IP: 78.142.68.0 -- 78.142.79.255
IP: 78.142.96.0 -- 78.142.117.255
IP: 78.142.122.0 -- 78.142.127.255
IP: 81.94.48.0 -- 81.94.54.255
IP: 81.94.56.0/21
IP: 91.206.224.0/23
IP: 92.42.16.0/22
IP: 92.63.208.0 -- 92.63.212.255
IP: 92.63.214.0 -- 92.63.223.255
IP: 93.185.128.0/20
IP: 95.143.80.0/20
IP: 193.37.144.0/24
IP: 195.16.224.0 -- 195.16.238.255
IP: 195.16.241.0 -- 195.16.243.255
IP: 195.16.245.0 -- 195.16.247.255
IP: 195.16.251.0/24
IP: 195.16.253.0 -- 195.16.255.255
IP: 195.137.238.0/23
IP: 195.140.136.0/22
IP: 213.139.252.0/22
IP: 2001:7f8:4a::/48
IP: 2a00:e98::/32
IP: 2a00:eb0::/32
IP: 2a01:f8::/32
IP: 2a01:100::/32
IP: 2a04:a680::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:51:4b:76:c9:16:90:cd:ba:7a:20:e0:13:c4:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c441738baab988b1d68693bb05e29bfbb4f0f671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:22:07:44:7c:cb:ff:ba:00:86:17:b6:f8:56:
5a:97:71:ca:57:78:f0:e4:32:f1:9c:9b:56:74:c7:
55:ce:24:b7:a1:5c:82:ee:39:b4:9f:1f:1c:00:4f:
34:00:7a:60:e9:2d:21:8f:f3:64:e3:5e:2f:37:d4:
2b:17:1a:f5:b1:f6:dc:64:80:2d:3d:33:a5:2d:a7:
87:20:d4:78:79:9d:e0:3d:0b:2b:07:a1:01:67:7a:
ea:14:a3:4b:7b:45:bf:8e:72:e7:65:ab:d2:32:92:
1f:da:31:ee:04:ff:04:5f:d4:30:72:b0:fd:71:78:
2d:bb:00:a6:12:a8:28:8d:2b:25:df:57:c0:f8:29:
e3:5f:d4:d2:38:9b:73:28:71:14:4b:95:ba:27:3a:
59:61:cc:95:ca:7f:48:43:e4:dc:c7:89:39:04:d8:
35:bf:0a:ed:6d:ea:93:77:b0:d8:4c:76:41:f8:8e:
4e:79:5b:18:c3:24:46:c7:e3:cb:f0:a7:0c:21:9f:
85:ff:26:f5:1a:24:a4:c7:3b:4f:14:c6:39:6f:f1:
6d:8a:05:1c:f9:5f:9d:5e:e8:62:dc:b2:39:96:80:
24:1e:1a:94:b0:61:fb:0a:4c:4b:4e:a9:ee:a6:01:
13:02:95:33:60:92:14:95:f9:8f:52:15:eb:57:28:
ad:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:41:73:8B:AA:B9:88:B1:D6:86:93:BB:05:E2:9B:FB:B4:F0:F6:71
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/f8314e-a3bc-45e9-a9f5-4c98d9a51405/1/xEFzi6q5iLHWhpO7BeKb-7Tw9nE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.186.0.0-37.186.4.255
37.186.6.0-37.186.23.255
77.220.96.0-77.220.115.255
77.220.120.0/21
78.142.64.0/23
78.142.68.0-78.142.79.255
78.142.96.0-78.142.117.255
78.142.122.0-78.142.127.255
81.94.48.0-81.94.54.255
81.94.56.0/21
91.206.224.0/23
92.42.16.0/22
92.63.208.0-92.63.212.255
92.63.214.0-92.63.223.255
93.185.128.0/20
95.143.80.0/20
193.37.144.0/24
195.16.224.0-195.16.238.255
195.16.241.0-195.16.243.255
195.16.245.0-195.16.247.255
195.16.251.0/24
195.16.253.0-195.16.255.255
195.137.238.0/23
195.140.136.0/22
213.139.252.0/22
IPv6:
2001:7f8:4a::/48
2a00:e98::/32
2a00:eb0::/32
2a01:f8::/32
2a01:100::/32
2a04:a680::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39912
41905
44752
62155
Signature Algorithm: sha256WithRSAEncryption
7f:e7:59:35:04:63:72:ba:5b:37:7a:26:49:a0:28:33:d9:bb:
03:d6:06:89:13:c0:cf:e5:b5:cc:f2:3c:d6:18:4d:d7:2e:d5:
cd:5e:3f:dd:53:d6:6a:e4:3d:a1:41:05:27:ca:e5:81:48:06:
32:fc:9e:b7:14:0a:e4:95:67:bf:d3:8e:4d:8c:37:97:d7:a2:
c9:93:20:ba:62:b6:dd:63:6a:c1:70:89:81:03:52:95:28:5b:
58:bb:c1:72:f9:75:2a:c4:b7:97:f4:d0:eb:eb:a9:06:f3:01:
c1:f9:82:cc:1e:76:15:4b:54:28:a4:6f:fa:9a:64:98:a5:10:
2e:f3:6f:a9:4d:cd:ee:8f:33:8a:d3:78:c0:4a:e0:a5:83:35:
29:5b:a0:84:7f:b7:1e:bd:74:c1:29:18:e9:9b:83:7b:a8:15:
75:ed:f8:0b:c6:eb:30:65:34:33:92:6b:49:8e:cd:2e:71:6f:
50:24:2b:99:ad:a6:a6:4f:58:27:4a:20:07:99:5f:62:91:f6:
4d:85:52:18:ae:c0:78:2f:13:1a:1b:7d:4c:ba:c4:5a:a8:2a:
bb:1a:b3:76:13:f5:06:ab:50:52:c6:e4:b4:23:ed:a0:66:90:
9e:35:18:e3:7a:f6:43:3a:72:65:4d:19:36:b0:e3:c2:88:a1:
5e:42:1a:2b
-----BEGIN CERTIFICATE-----
MIIG1jCCBb6gAwIBAgISAYzFAVFLdskWkM26eiDgE8QpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIzMDQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDQxNzM4YmFhYjk4OGIxZDY4NjkzYmIwNWUyOWJmYmI0ZjBmNjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiIHRHzL/7oAhhe2+FZal3HKV3jw
5DLxnJtWdMdVziS3oVyC7jm0nx8cAE80AHpg6S0hj/Nk414vN9QrFxr1sfbcZIAt
PTOlLaeHINR4eZ3gPQsrB6EBZ3rqFKNLe0W/jnLnZavSMpIf2jHuBP8EX9QwcrD9
cXgtuwCmEqgojSsl31fA+CnjX9TSOJtzKHEUS5W6JzpZYcyVyn9IQ+Tcx4k5BNg1
vwrtbeqTd7DYTHZB+I5OeVsYwyRGx+PL8KcMIZ+F/yb1GiSkxztPFMY5b/FtigUc
+V+dXuhi3LI5loAkHhqUsGH7CkxLTqnupgETApUzYJIUlfmPUhXrVyitswIDAQAB
o4ID4jCCA94wHQYDVR0OBBYEFMRBc4uquYix1oaTuwXim/u08PZxMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkzL2Y4MzE0
ZS1hM2JjLTQ1ZTktYTlmNS00Yzk4ZDlhNTE0MDUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMvZjgzMTRl
LWEzYmMtNDVlOS1hOWY1LTRjOThkOWE1MTQwNS8xL3hFRnppNnE1aUxIV2hwTzdC
ZUtiLTdUdzluRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBUAYIKwYB
BQUHAQcBAf8EggE/MIIBOzCCAQMEAgABMIH8MAsDAwElugMEACW6BDAMAwQBJboG
AwQDJboQMAwDBAVN3GADBAJN3HADBANN3HgDBAFOjkAwDAMEAk6ORAMEBE6OQDAM
AwQFTo5gAwQBTo50MAwDBAFOjnoDBAdOjgAwDAMEBFFeMAMEAFFeNgMEA1FeOAME
AVvO4AMEAlwqEDAMAwQEXD/QAwQAXD/UMAwDBAFcP9YDBAVcP8ADBARduYADBARf
j1ADBADBJZAwDAMEBcMQ4AMEAMMQ7jAMAwQAwxDxAwQCwxDwMAwDBADDEPUDBAPD
EPADBADDEPswCwMEAMMQ/QMDAMMQAwQBw4nuAwQCw4yIAwQC1Yv8MDIEAgACMCwD
BwAgAQf4AEoDBQAqAA6YAwUAKgAOsAMFACoBAPgDBQAqAQEAAwUDKgSmgDApBggr
BgEFBQcBCAEB/wQaMBigFjAUAgMAm+gCAwCjsQIDAK7QAgMA8sswDQYJKoZIhvcN
AQELBQADggEBAH/nWTUEY3K6Wzd6JkmgKDPZuwPWBokTwM/ltczyPNYYTdcu1c1e
P91T1mrkPaFBBSfK5YFIBjL8nrcUCuSVZ7/Tjk2MN5fXosmTILpitt1jasFwiYED
UpUoW1i7wXL5dSrEt5f00OvrqQbzAcH5gswedhVLVCikb/qaZJilEC7zb6lNze6P
M4rTeMBK4KWDNSlboIR/tx69dMEpGOmbg3uoFXXt+AvG6zBlNDOSa0mOzS5xb1Ak
K5mtpqZPWCdKIAeZX2KR9k2FUhiuwHgvExobfUy6xFqoKrsas3YT9QarUFLG5LQj
7aBmkJ41GON69kM6cmVNGTaw48KIoV5CGis=
-----END CERTIFICATE-----
Generated at Fri May 3 12:07:46 2024 by rpki-client on console-ams.rpki-client.org