Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
File: ydV0R-NCC4U4dbb6QDcqreMZLKI.cer (raw, json)
Hash identifier: Ux3dIvxt2ecBWr4PkF+Z7nDjWfuhiSnBQ8SBiP5P+yc=
Subject key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01925726DD5B4727228B635C67121C5EAD0C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 04 Oct 2024 10:50:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60683
IP: 31.210.34.0 -- 31.210.55.255
IP: 77.92.130.0/23
IP: 77.92.142.0 -- 77.92.148.255
IP: 77.92.150.0 -- 77.92.154.255
IP: 78.135.64.0 -- 78.135.78.255
IP: 78.135.80.0 -- 78.135.107.255
IP: 78.135.109.0 -- 78.135.111.255
IP: 185.17.136.0/22
IP: 185.241.10.0/24
IP: 188.132.128.0 -- 188.132.133.255
IP: 188.132.136.0 -- 188.132.141.255
IP: 188.132.143.0 -- 188.132.146.255
IP: 188.132.149.0 -- 188.132.156.255
IP: 188.132.159.0 -- 188.132.168.255
IP: 188.132.170.0/23
IP: 188.132.173.0 -- 188.132.174.255
IP: 188.132.178.0/24
IP: 188.132.181.0 -- 188.132.193.255
IP: 188.132.196.0 -- 188.132.203.255
IP: 188.132.206.0 -- 188.132.243.255
IP: 188.132.247.0 -- 188.132.251.255
IP: 212.68.34.0 -- 212.68.39.255
IP: 212.68.48.0/23
IP: 212.68.53.0 -- 212.68.56.255
IP: 212.68.58.0 -- 212.68.60.255
IP: 212.68.62.0/23
IP: 2a10:9440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:57:26:dd:5b:47:27:22:8b:63:5c:67:12:1c:5e:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 4 10:50:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:25:0c:00:3b:b8:ef:55:f0:d6:1a:e4:92:f3:
f4:93:a3:d4:17:da:5e:86:58:de:f5:ac:51:2f:4b:
de:23:6c:be:35:23:0c:d3:25:ac:88:c4:74:c9:c9:
81:0e:7c:42:88:46:82:0f:81:6f:87:74:4f:b3:8c:
cb:af:28:03:b4:9f:31:3b:3f:f0:63:58:21:a7:43:
f6:79:a1:99:9f:79:45:52:1a:f0:54:a3:92:1b:78:
3a:d6:9b:85:67:bb:ea:c5:2d:da:3a:92:7f:13:fc:
c5:59:24:93:0c:26:f6:27:b5:33:60:6b:3c:03:d9:
a5:2a:08:24:8f:6d:85:9f:a8:88:3c:95:10:01:d9:
31:f9:80:96:70:58:b9:27:c9:84:42:33:35:67:05:
82:9b:96:5d:24:c1:53:87:33:bc:b2:9e:b9:05:f9:
2d:26:f0:f7:f3:7a:56:db:fc:88:a2:32:f6:0f:c7:
18:22:32:e8:21:2d:64:4b:aa:bb:5a:de:dd:24:de:
3e:09:9c:cd:30:73:ca:c7:6e:05:07:67:97:0e:df:
d3:35:93:2f:74:3a:80:94:ef:56:46:45:68:7e:5c:
1c:22:8f:2b:09:ff:8f:87:ed:26:53:85:e3:26:08:
7f:fe:2a:51:17:ca:36:1a:ff:af:c0:f6:fe:40:66:
1f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.34.0-31.210.55.255
77.92.130.0/23
77.92.142.0-77.92.148.255
77.92.150.0-77.92.154.255
78.135.64.0-78.135.78.255
78.135.80.0-78.135.107.255
78.135.109.0-78.135.111.255
185.17.136.0/22
185.241.10.0/24
188.132.128.0-188.132.133.255
188.132.136.0-188.132.141.255
188.132.143.0-188.132.146.255
188.132.149.0-188.132.156.255
188.132.159.0-188.132.168.255
188.132.170.0/23
188.132.173.0-188.132.174.255
188.132.178.0/24
188.132.181.0-188.132.193.255
188.132.196.0-188.132.203.255
188.132.206.0-188.132.243.255
188.132.247.0-188.132.251.255
212.68.34.0-212.68.39.255
212.68.48.0/23
212.68.53.0-212.68.56.255
212.68.58.0-212.68.60.255
212.68.62.0/23
IPv6:
2a10:9440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60683
Signature Algorithm: sha256WithRSAEncryption
60:04:f3:5a:0a:33:3c:55:8c:20:3b:22:26:df:12:ea:55:bf:
61:26:e2:48:f5:42:cc:0c:76:98:da:46:1c:0b:eb:0d:e8:6d:
2a:49:7d:4a:0a:fe:d9:e3:35:c3:57:d7:4e:24:e0:f8:15:3f:
33:9a:8e:d4:bf:45:de:e8:50:f0:9a:be:f2:59:49:93:28:b8:
54:36:1c:65:af:b4:52:73:5b:a7:5e:7b:22:c9:25:61:fb:04:
91:7d:66:b9:4f:c1:4b:93:01:a4:a6:f9:5c:02:6c:c2:53:22:
5c:4b:9d:b5:79:e9:00:1a:24:bc:fd:0d:81:52:db:f6:3f:17:
05:28:af:29:20:c8:d2:c4:51:5c:33:7a:52:46:5d:10:26:2c:
9d:14:c4:01:33:a0:54:42:5f:fd:68:4c:8e:62:51:d4:b3:cb:
06:f6:94:8a:11:72:39:7b:ae:32:30:a7:1a:33:04:a6:44:43:
fd:22:2d:9f:42:73:d7:49:a5:a7:c9:8a:1b:6a:9c:76:4e:58:
35:f4:61:a1:87:60:d2:f0:6f:bd:48:6b:63:fa:1f:48:8f:4c:
0b:ae:11:fe:26:e5:af:59:6d:12:7a:f3:33:f1:0d:6c:74:7d:
04:e7:38:38:f6:0d:24:fa:32:36:8b:44:cf:91:2e:be:b7:74:
2b:50:df:dd
-----BEGIN CERTIFICATE-----
MIIG2zCCBcOgAwIBAgISAZJXJt1bRycii2NcZxIcXq0MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQxMDA0MTA1MDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOWQ1NzQ0N2UzNDIwYjg1Mzg3NWI2ZmE0MDM3MmFhZGUzMTkyY2EyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSUMADu471Xw1hrkkvP0k6PUF9pe
hlje9axRL0veI2y+NSMM0yWsiMR0ycmBDnxCiEaCD4Fvh3RPs4zLrygDtJ8xOz/w
Y1ghp0P2eaGZn3lFUhrwVKOSG3g61puFZ7vqxS3aOpJ/E/zFWSSTDCb2J7UzYGs8
A9mlKggkj22Fn6iIPJUQAdkx+YCWcFi5J8mEQjM1ZwWCm5ZdJMFThzO8sp65Bfkt
JvD383pW2/yIojL2D8cYIjLoIS1kS6q7Wt7dJN4+CZzNMHPKx24FB2eXDt/TNZMv
dDqAlO9WRkVoflwcIo8rCf+Ph+0mU4XjJgh//ipRF8o2Gv+vwPb+QGYfKwIDAQAB
o4ID5zCCA+MwHQYDVR0OBBYEFMnVdEfjQguFOHW2+kA3Kq3jGSyiMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRkLzE1ODZm
ZC1mZDJjLTQxZjgtOGZlOS00ZTE5OGYwYTYwMTMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQvMTU4NmZk
LWZkMmMtNDFmOC04ZmU5LTRlMTk4ZjBhNjAxMy8xL3lkVjBSLU5DQzRVNGRiYjZR
RGNxcmVNWkxLSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBZAYIKwYB
BQUHAQcBAf8EggFTMIIBTzCCATwEAgABMIIBNDAMAwQBH9IiAwQDH9IwAwQBTVyC
MAwDBAFNXI4DBABNXJQwDAMEAU1clgMEAE1cmjAMAwQGTodAAwQATodOMAwDBARO
h1ADBAJOh2gwDAMEAE6HbQMEBE6HYAMEArkRiAMEALnxCjAMAwQHvISAAwQBvISE
MAwDBAO8hIgDBAG8hIwwDAMEALyEjwMEALyEkjAMAwQAvISVAwQAvIScMAwDBAC8
hJ8DBAC8hKgDBAG8hKowDAMEALyErQMEALyErgMEALyEsjAMAwQAvIS1AwQBvITA
MAwDBAK8hMQDBAK8hMgwDAMEAbyEzgMEAryE8DAMAwQAvIT3AwQCvIT4MAwDBAHU
RCIDBAPURCADBAHURDAwDAMEANRENQMEANREODAMAwQB1EQ6AwQA1EQ8AwQB1EQ+
MA0EAgACMAcDBQMqEJRAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDtCzANBgkq
hkiG9w0BAQsFAAOCAQEAYATzWgozPFWMIDsiJt8S6lW/YSbiSPVCzAx2mNpGHAvr
DehtKkl9Sgr+2eM1w1fXTiTg+BU/M5qO1L9F3uhQ8Jq+8llJkyi4VDYcZa+0UnNb
p157IsklYfsEkX1muU/BS5MBpKb5XAJswlMiXEudtXnpABokvP0NgVLb9j8XBSiv
KSDI0sRRXDN6UkZdECYsnRTEATOgVEJf/WhMjmJR1LPLBvaUihFyOXuuMjCnGjME
pkRD/SItn0Jz10mlp8mKG2qcdk5YNfRhoYdg0vBvvUhrY/ofSI9MC64R/iblr1lt
EnrzM/ENbHR9BOc4OPYNJPoyNotEz5Euvrd0K1Df3Q==
-----END CERTIFICATE-----
Generated at Fri Nov 22 10:15:18 2024 by rpki-client on console-ams.rpki-client.org