Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
File: 3z_cS_M72A_hKNdWhD9gs51b7uM.cer (raw, json)
Hash identifier: g3gTj0P/aZsDxu7aALGDxrq2GJdQiWaeo2/XVyQ2GAw=
Subject key identifier: DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018E0973809313A2C55AE16888CFE451208D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 04 Mar 2024 12:32:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215384
IP: 2.56.255.0/24
IP: 2.59.151.0/24
IP: 5.181.219.0/24
IP: 31.40.214.0/24
IP: 31.220.14.0/24
IP: 45.12.52.0/23
IP: 45.12.88.0/22
IP: 45.67.223.0/24
IP: 185.183.84.0/24
IP: 185.186.146.0/23
IP: 185.194.148.0/24
IP: 185.201.226.0/23
IP: 185.238.248.0/22
IP: 193.9.44.0/22
IP: 193.22.152.0/24
IP: 194.40.248.0/24
IP: 212.103.62.0/24
IP: 2a12:1440::/29
IP: 2a14:640::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:73:80:93:13:a2:c5:5a:e1:68:88:cf:e4:51:20:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 4 12:32:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:01:1f:6f:78:d7:fb:15:d1:21:ce:93:40:c4:
ba:74:e9:2e:dd:53:81:3d:cc:2c:6d:bc:3d:f7:95:
d9:02:13:3a:25:e2:4e:6d:ff:24:d2:4e:8c:b4:cb:
c4:e6:c4:8f:fa:17:b6:a2:20:b5:bf:6e:fc:45:a2:
1e:79:16:36:ba:89:21:42:46:05:bc:65:9d:f9:ae:
9c:c2:95:91:52:0c:f1:c7:51:4c:15:1e:66:16:28:
19:44:0e:3d:8b:36:63:b7:01:e3:91:a3:f6:01:de:
86:df:b4:68:c8:a5:da:91:14:94:49:4f:ee:45:45:
f1:98:1e:01:f4:82:0b:9b:0e:c0:d0:85:7f:20:2f:
e7:96:0b:3d:45:aa:11:db:99:4b:4d:11:b1:7f:41:
23:10:3a:b2:50:bd:dd:5c:6b:f1:35:24:e4:7c:e3:
f9:10:f0:c5:1e:ae:b7:7a:73:e8:57:19:f9:8b:d9:
f0:4f:5c:33:ca:0a:af:0b:a4:87:d9:f4:ed:24:b1:
41:d4:92:8b:07:32:4f:75:f7:6a:fb:0b:13:b7:68:
44:13:29:61:d6:c4:44:ba:64:01:b6:c9:79:58:22:
5b:1b:44:9a:f2:9e:64:56:97:89:60:35:ca:99:b6:
98:9d:48:31:88:a6:14:23:84:bf:b7:6d:32:76:fa:
63:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.255.0/24
2.59.151.0/24
5.181.219.0/24
31.40.214.0/24
31.220.14.0/24
45.12.52.0/23
45.12.88.0/22
45.67.223.0/24
185.183.84.0/24
185.186.146.0/23
185.194.148.0/24
185.201.226.0/23
185.238.248.0/22
193.9.44.0/22
193.22.152.0/24
194.40.248.0/24
212.103.62.0/24
IPv6:
2a12:1440::/29
2a14:640::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215384
Signature Algorithm: sha256WithRSAEncryption
95:b5:17:fd:34:eb:81:58:ba:0d:37:61:c2:ff:03:98:4c:e7:
5e:f0:42:a9:0b:5e:dc:5b:39:b8:2a:e0:17:6a:d3:24:b3:0b:
83:6d:14:12:9c:83:cf:b7:a3:83:df:bd:03:5a:fb:8e:0c:2e:
f8:be:07:cf:ca:b8:9b:23:1a:be:fe:53:67:96:61:a5:e5:8e:
73:50:9f:16:6d:cb:f8:a5:12:93:42:65:78:95:5a:af:bb:85:
da:e0:5b:0f:89:fb:f7:77:a2:c5:cc:0b:9e:84:4e:a4:81:d8:
bc:15:a1:1c:03:59:3c:55:50:52:ee:dc:40:79:3b:c2:04:57:
81:01:76:d3:e8:5b:1c:81:70:a1:27:eb:28:d3:51:67:40:be:
b3:53:77:61:ad:b2:43:6d:73:f3:e0:c5:a8:7c:35:62:ad:03:
0e:50:9c:3f:e8:38:d9:52:25:bf:7d:53:2f:04:81:bb:12:27:
67:8b:cd:1e:86:ae:0b:e9:0a:ab:a1:8b:b4:cd:38:26:97:36:
ec:8f:6b:61:c6:67:3b:82:ae:a1:3c:5f:92:b1:54:71:ca:22:
00:9e:3e:f3:4d:1a:05:fd:74:f4:eb:88:01:c2:b7:af:0c:64:
fd:27:20:a7:d0:12:85:bc:47:3d:6b:47:8d:6f:8a:54:8b:bf:
0b:61:ee:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:38:36 2024 by rpki-client on console-fra.rpki-client.org