Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer (raw, json)
Hash identifier: HlSTOQcKi25bh9fhsAvgTFxd+Mea5Rb1YXYDrkYLEZk=
Subject key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E5B4858B748552BA42578C0145E396472
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 20 Mar 2024 09:54:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 24630
AS: 199995
IP: 80.91.214.0/24
IP: 109.71.77.0/24
IP: 146.19.226.0/24
IP: 185.76.68.0/22
IP: 185.109.52.0/22
IP: 185.151.84.0/22
IP: 188.93.115.0/24
IP: 193.37.251.0/24
IP: 2a05:5740::/29
IP: 2a06:4ec0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5b:48:58:b7:48:55:2b:a4:25:78:c0:14:5e:39:64:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 20 09:54:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb36180ab4542d6eee66d9f99030df71236ce264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:d6:c4:3f:40:55:96:df:24:32:ca:3f:0c:
36:f6:48:08:3d:65:35:d8:23:b4:e4:2d:71:2d:f3:
fa:f7:7f:6f:22:3c:83:b3:97:52:e4:f4:86:b7:6d:
73:ce:81:42:14:7b:b8:4a:b7:0a:15:ad:5c:25:e6:
f0:b0:67:9d:81:f8:47:88:04:74:92:9f:fa:aa:6e:
4a:46:81:ec:20:18:54:1e:ac:df:cd:88:3b:ad:5e:
74:f4:c8:fb:9e:11:2b:14:27:21:6e:68:ec:0b:fe:
bc:ab:2a:eb:97:96:c9:17:b2:9f:a9:0a:c1:38:f3:
3b:f2:aa:5f:b7:ab:c8:48:13:56:82:51:85:9b:cf:
03:b2:24:4e:94:22:d7:ab:ac:f4:61:17:13:32:92:
47:6a:c6:28:2a:9e:20:13:ab:90:fa:62:57:29:b2:
81:17:e1:16:ce:ed:35:1e:a5:a6:b4:8b:25:1e:88:
ae:23:c5:58:e4:b4:0b:52:9a:0c:cf:ff:d0:84:c1:
e8:74:e7:71:94:13:47:39:77:fb:68:7f:ef:1f:76:
b4:1d:ac:3d:2f:2b:ba:02:8d:9c:aa:be:e2:88:d2:
91:e6:48:79:e4:1a:4c:7e:c6:34:b3:36:25:ab:e9:
e0:c7:67:e7:c0:d8:e1:92:75:5c:5e:8d:9e:08:85:
c2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.214.0/24
109.71.77.0/24
146.19.226.0/24
185.76.68.0/22
185.109.52.0/22
185.151.84.0/22
188.93.115.0/24
193.37.251.0/24
IPv6:
2a05:5740::/29
2a06:4ec0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24630
199995
Signature Algorithm: sha256WithRSAEncryption
9c:1f:be:89:22:fd:49:39:16:83:d4:58:1d:7f:f4:f7:cf:a7:
bc:24:ee:7d:04:2e:b0:84:f5:46:a3:5b:a3:1a:11:55:59:c0:
16:dd:5d:4f:71:cc:12:81:e1:48:e1:b6:cb:09:8c:42:8f:38:
a5:c6:8f:92:d1:0d:92:6a:c4:8b:d3:f4:07:ed:9a:4c:bd:3b:
38:53:c9:00:51:ce:e0:a8:8c:37:ca:6a:6f:3e:de:ca:6a:fe:
80:5b:4f:a1:fc:84:8d:f1:4d:fc:04:6d:b1:0a:02:c2:9e:2f:
2a:8e:9f:f0:55:ab:5c:0a:f9:03:e2:12:11:a4:04:36:8c:d4:
28:20:25:dc:7e:25:1b:1b:ea:1f:c8:de:62:a9:19:7e:9f:1b:
bc:e6:66:c0:b2:d6:b3:a2:b8:5c:bb:44:37:cc:f2:e0:23:4e:
94:82:94:d6:ed:8a:bf:b0:14:e1:ac:db:b6:d9:e6:67:f7:e3:
bd:95:cb:3d:0d:20:cc:e9:95:1b:e4:69:d4:f9:1a:b9:5d:2d:
d7:55:84:b2:56:b0:4a:81:3b:97:a4:1c:cf:3b:ed:eb:5b:09:
65:dc:ff:cf:c8:ae:d6:09:b1:73:65:cf:a7:48:76:b8:83:80:
b6:5a:5d:95:87:c1:91:3b:3b:10:a3:be:1c:92:1b:22:5c:33:
26:ec:5e:66
-----BEGIN CERTIFICATE-----
MIIF2DCCBMCgAwIBAgISAY5bSFi3SFUrpCV4wBReOWRyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMzIwMDk1NDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjM2MTgwYWI0NTQyZDZlZWU2NmQ5Zjk5MDMwZGY3MTIzNmNlMjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApD7WxD9AVZbfJDLKPww29kgIPWU1
2CO05C1xLfP6939vIjyDs5dS5PSGt21zzoFCFHu4SrcKFa1cJebwsGedgfhHiAR0
kp/6qm5KRoHsIBhUHqzfzYg7rV509Mj7nhErFCchbmjsC/68qyrrl5bJF7KfqQrB
OPM78qpft6vISBNWglGFm88DsiROlCLXq6z0YRcTMpJHasYoKp4gE6uQ+mJXKbKB
F+EWzu01HqWmtIslHoiuI8VY5LQLUpoMz//QhMHodOdxlBNHOXf7aH/vH3a0Haw9
Lyu6Ao2cqr7iiNKR5kh55BpMfsY0szYlq+ngx2fnwNjhknVcXo2eCIXCQwIDAQAB
o4IC5DCCAuAwHQYDVR0OBBYEFMs2GAq0VC1u7mbZ+ZAw33EjbOJkMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NiLzA3OTdk
NC04YjJjLTQwYWMtOWNhYi02NjdkYjFkYzFiODYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2IvMDc5N2Q0
LThiMmMtNDBhYy05Y2FiLTY2N2RiMWRjMWI4Ni8xL3l6WVlDclJVTFc3dVp0bjVr
RERmY1NOczRtUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GCCsGAQUF
BwEHAQH/BFAwTjA2BAIAATAwAwQAUFvWAwQAbUdNAwQAkhPiAwQCuUxEAwQCuW00
AwQCuZdUAwQAvF1zAwQAwSX7MBQEAgACMA4DBQMqBVdAAwUDKgZOwDAeBggrBgEF
BQcBCAEB/wQPMA2gCzAJAgJgNgIDAw07MA0GCSqGSIb3DQEBCwUAA4IBAQCcH76J
Iv1JORaD1Fgdf/T3z6e8JO59BC6whPVGo1ujGhFVWcAW3V1PccwSgeFI4bbLCYxC
jzilxo+S0Q2SasSL0/QH7ZpMvTs4U8kAUc7gqIw3ympvPt7Kav6AW0+h/ISN8U38
BG2xCgLCni8qjp/wVatcCvkD4hIRpAQ2jNQoICXcfiUbG+ofyN5iqRl+nxu85mbA
stazorhcu0Q3zPLgI06UgpTW7Yq/sBThrNu22eZn9+O9lcs9DSDM6ZUb5GnU+Rq5
XS3XVYSyVrBKgTuXpBzPO+3rWwll3P/PyK7WCbFzZc+nSHa4g4C2Wl2Vh8GROzsQ
o74ckhsiXDMm7F5m
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:52 2024 by rpki-client on console-fra.rpki-client.org