Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-PvIQVghSG6P4IYLW-w-koO4A4U.cer
File: 1-PvIQVghSG6P4IYLW-w-koO4A4U.cer (raw, json)
Hash identifier: qbDQbbsVoRHBYfk5TOimo5kAiN7iuSDWQoc69H5ioQE=
Subject key identifier: F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F61AE7AA858E778FD44A4379050FD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/1-PvIQVghSG6P4IYLW-w-koO4A4U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:29:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31169
IP: 37.18.48.0/21
IP: 45.134.208.0/22
IP: 45.144.76.0/22
IP: 79.170.80.0/21
IP: 84.247.63.0/24
IP: 89.34.22.0/23
IP: 89.45.165.0/24
IP: 91.126.0.0/20
IP: 92.114.96.0/23
IP: 185.28.128.0/22
IP: 193.247.181.0/24
IP: 193.247.183.0/24
IP: 193.247.192.0/24
IP: 193.247.202.0/24
IP: 194.104.97.0 -- 194.104.98.255
IP: 194.104.112.0/24
IP: 194.104.126.0/24
IP: 195.88.32.0/23
IP: 217.17.208.0/20
IP: 2a04:2740::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:61:ae:7a:a8:58:e7:78:fd:44:a4:37:90:50:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8fbc8415821486e8fe0860b5bec3e9283b80385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:95:66:ee:1f:ca:5f:1a:ae:6b:48:b7:1a:85:
e9:a0:7e:f2:c3:2d:b3:1a:9d:60:51:6a:b9:77:38:
42:d5:95:f1:31:c7:96:0a:ba:e4:7f:81:ae:b3:6f:
c0:50:6f:4b:3c:ee:70:26:6f:36:d5:1d:aa:9d:ba:
23:96:42:44:1b:b4:18:c9:2e:9e:90:40:99:58:a5:
42:f9:31:a6:d1:53:09:54:9d:9f:26:b7:3f:e2:da:
48:b8:ca:f5:05:fb:26:23:24:ed:b6:a5:83:8e:e2:
36:26:76:10:26:af:8e:3d:bb:78:b9:74:ed:80:12:
62:eb:df:2f:87:17:8c:e5:68:cc:bf:13:2d:6f:62:
f9:d3:7a:6f:c9:9b:d6:10:5e:82:c2:3f:70:aa:0a:
0b:60:db:82:5d:b7:61:a5:36:5b:e0:f5:55:f6:ee:
48:dd:9a:8f:05:f7:71:08:bb:5c:13:d1:fc:77:a8:
cf:d3:c6:24:1f:73:fb:90:7b:80:3b:4f:5c:56:fa:
43:c4:c5:58:8c:17:f3:a3:fb:4b:cc:62:a6:bd:1f:
0c:46:9b:e0:65:97:04:21:c6:12:0b:fa:19:6d:9d:
f2:ea:32:a2:07:d6:a7:75:12:bf:26:10:0f:56:8f:
3a:d2:90:06:b3:f3:24:48:ed:a9:50:fb:74:61:f9:
64:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FB:C8:41:58:21:48:6E:8F:E0:86:0B:5B:EC:3E:92:83:B8:03:85
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/361c57-ea42-47e2-a68f-ec967b511d7f/1/1-PvIQVghSG6P4IYLW-w-koO4A4U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.48.0/21
45.134.208.0/22
45.144.76.0/22
79.170.80.0/21
84.247.63.0/24
89.34.22.0/23
89.45.165.0/24
91.126.0.0/20
92.114.96.0/23
185.28.128.0/22
193.247.181.0/24
193.247.183.0/24
193.247.192.0/24
193.247.202.0/24
194.104.97.0-194.104.98.255
194.104.112.0/24
194.104.126.0/24
195.88.32.0/23
217.17.208.0/20
IPv6:
2a04:2740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31169
Signature Algorithm: sha256WithRSAEncryption
83:82:a7:dc:f3:16:75:42:85:f8:51:2d:54:54:60:9b:52:8a:
8f:e2:31:1a:aa:a9:be:97:49:90:93:45:98:68:fe:db:ec:ca:
8d:ae:d6:2c:07:6e:ab:fe:61:a2:ea:0b:cf:07:25:95:09:95:
53:87:f6:50:23:76:7b:56:2c:59:03:bc:c1:14:93:d9:96:58:
7c:b6:26:02:a1:22:30:fa:d9:98:4d:38:84:8a:c1:1f:e8:8b:
dc:b1:7d:cc:93:0e:c5:24:be:f9:a3:0a:5e:50:ab:4c:4c:1f:
da:7c:fa:73:47:a7:9b:e8:58:2b:61:ee:2d:52:e0:f3:0f:32:
59:7e:ca:c5:aa:db:57:da:d2:6e:c0:dc:d2:bf:4f:7c:53:96:
83:de:b3:04:b8:96:db:b6:d4:f3:db:61:dd:79:ff:ed:8b:43:
a5:3f:65:3a:03:7d:d7:40:81:0b:a9:2a:91:95:c7:b5:32:1c:
0e:52:02:13:96:95:27:c4:0d:c9:a8:f1:77:0c:76:08:9b:03:
3f:6d:35:04:09:a9:12:7d:95:db:22:bc:ca:24:16:5b:81:59:
90:ae:4b:65:93:dc:47:44:0d:73:b8:98:e3:10:0b:07:2a:a6:
6f:4f:b6:23:86:40:e2:7c:cd:bb:fa:7d:46:91:da:4e:ef:8c:
59:5f:d8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:13:31 2024 by rpki-client on console-ams.rpki-client.org