Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
File: 5b15I6_brofQeyMI3TidnPCC7W0.cer (raw, json)
Hash identifier: Je3dkB4gU3n3bR64Ckp0uRMMCqN9/DzMhbKcMGAwHZs=
Subject key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BB05A44F022971FB9EFE5F92E8FFCE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25052
AS: 39158
AS: 42111
AS: 44150
AS: 44709
AS: 56378
AS: 199747
AS: 201660
IP: 5.100.248.0/21
IP: 5.180.180.0/22
IP: 31.133.100.0/22
IP: 45.83.40.0/22
IP: 45.91.168.0/22
IP: 45.93.92.0/22
IP: 63.250.56.0/21
IP: 81.28.4.0/22
IP: 83.229.68.0 -- 83.229.75.255
IP: 83.229.80.0/21
IP: 91.202.168.0/22
IP: 91.223.106.0/24
IP: 91.223.169.0/24
IP: 91.223.236.0/24
IP: 91.226.72.0/24
IP: 91.226.76.0/24
IP: 91.228.126.0/23
IP: 103.13.208.0/22
IP: 103.45.244.0/22
IP: 103.241.64.0/22
IP: 109.207.76.0/22
IP: 185.28.152.0/22
IP: 185.47.172.0/22
IP: 185.53.208.0/22
IP: 185.56.72.0/22
IP: 185.127.16.0/22
IP: 185.139.228.0/24
IP: 185.139.230.0/23
IP: 185.144.156.0/22
IP: 185.159.72.0/22
IP: 185.162.124.0/22
IP: 185.181.8.0/22
IP: 185.220.204.0/22
IP: 185.227.108.0/22
IP: 185.237.12.0/22
IP: 185.237.96.0/22
IP: 185.241.4.0/22
IP: 185.247.116.0/22
IP: 185.253.72.0/23
IP: 185.253.75.0/24
IP: 188.191.147.0/24
IP: 193.168.172.0/22
IP: 193.218.207.128/25
IP: 194.36.88.0/22
IP: 194.37.80.0/22
IP: 194.146.24.0/23
IP: 194.146.38.0/23
IP: 195.28.180.0/23
IP: 195.238.120.0/22
IP: 212.80.204.0/22
IP: 212.86.104.0/23
IP: 2a00:9f60::/32
IP: 2a01:92e0::/32
IP: 2a02:40a0::/32
IP: 2a02:41e0::/32
IP: 2a04:d980::/29
IP: 2a06:c5c0::/29
IP: 2a07:3b80::/29
IP: 2a0a:b880::/29
IP: 2a0c:a600::/29
IP: 2a0c:c040::/29
IP: 2a0d:1240::/29
IP: 2a0d:be80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 02:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:05:a4:4f:02:29:71:fb:9e:fe:5f:92:e8:ff:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c4:46:11:ae:b5:ba:22:01:3b:c6:93:9e:49:
dd:53:d6:c1:eb:20:3f:3e:a8:3e:bd:4f:cb:a6:6e:
6b:0c:a4:30:58:31:71:03:99:ff:e1:60:53:7c:b1:
29:bc:82:dc:ba:ef:93:00:2f:c7:d9:4e:ed:7c:9d:
3b:71:7f:00:d3:d4:ba:fc:fc:3c:d8:85:38:5e:e7:
e7:e7:9a:90:26:6e:8c:46:66:f4:4d:f0:e9:ce:64:
75:a2:50:bb:86:6a:7d:b1:1b:9e:48:ef:73:8a:21:
78:45:b0:ce:7e:c8:fe:a9:26:a7:23:3c:aa:42:76:
63:ff:ce:75:eb:35:53:b3:73:4f:eb:13:e9:db:e8:
28:35:50:9d:b2:c6:95:22:c1:a1:69:1c:55:cb:0e:
ba:1d:30:92:09:45:f8:9a:3c:ab:94:3c:ef:9f:ef:
f8:fb:5e:c5:2d:eb:3c:f1:5f:a9:ab:54:ea:7a:84:
dc:7b:0c:18:ab:3a:dd:53:3d:bb:ea:f9:aa:96:fb:
a1:5e:f7:05:25:85:f0:44:55:1d:32:b2:cd:d9:a8:
9f:76:22:30:9b:cc:f4:fa:6d:ea:02:1a:3e:c1:db:
40:24:0c:5c:07:b0:fc:cc:ba:87:37:18:2b:57:74:
17:ca:8c:e7:a0:c3:13:bd:c6:c1:0d:08:21:34:0d:
bc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.100.248.0/21
5.180.180.0/22
31.133.100.0/22
45.83.40.0/22
45.91.168.0/22
45.93.92.0/22
63.250.56.0/21
81.28.4.0/22
83.229.68.0-83.229.75.255
83.229.80.0/21
91.202.168.0/22
91.223.106.0/24
91.223.169.0/24
91.223.236.0/24
91.226.72.0/24
91.226.76.0/24
91.228.126.0/23
103.13.208.0/22
103.45.244.0/22
103.241.64.0/22
109.207.76.0/22
185.28.152.0/22
185.47.172.0/22
185.53.208.0/22
185.56.72.0/22
185.127.16.0/22
185.139.228.0/24
185.139.230.0/23
185.144.156.0/22
185.159.72.0/22
185.162.124.0/22
185.181.8.0/22
185.220.204.0/22
185.227.108.0/22
185.237.12.0/22
185.237.96.0/22
185.241.4.0/22
185.247.116.0/22
185.253.72.0/23
185.253.75.0/24
188.191.147.0/24
193.168.172.0/22
193.218.207.128/25
194.36.88.0/22
194.37.80.0/22
194.146.24.0/23
194.146.38.0/23
195.28.180.0/23
195.238.120.0/22
212.80.204.0/22
212.86.104.0/23
IPv6:
2a00:9f60::/32
2a01:92e0::/32
2a02:40a0::/32
2a02:41e0::/32
2a04:d980::/29
2a06:c5c0::/29
2a07:3b80::/29
2a0a:b880::/29
2a0c:a600::/29
2a0c:c040::/29
2a0d:1240::/29
2a0d:be80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25052
39158
42111
44150
44709
56378
199747
201660
Signature Algorithm: sha256WithRSAEncryption
1a:a6:57:77:8b:f5:1e:92:29:8d:17:1c:1a:5c:a8:a1:98:cd:
fd:a2:89:3f:ee:9a:52:e3:71:cc:2d:ea:ba:39:6e:af:18:08:
36:2d:6f:d1:66:1b:f7:d4:98:3d:26:ad:11:cc:95:66:64:fd:
58:76:2a:ab:2c:75:8d:4c:d5:7d:e5:f5:c9:f1:d1:7f:8a:ba:
62:ef:24:a1:f3:b0:77:5e:29:8d:67:b6:74:28:ab:38:ee:f4:
04:ae:45:15:af:6b:11:9a:7f:b1:5f:84:35:9a:44:37:9f:3a:
d1:66:08:5b:30:5d:04:03:91:a8:0c:76:64:40:5b:20:76:d5:
15:d9:4e:8d:01:83:25:91:22:73:45:07:91:5b:15:e4:79:21:
8a:30:59:5c:59:1d:0f:89:24:7e:cb:06:18:5b:5b:2e:bd:2b:
e5:3d:97:01:80:98:1d:9a:bb:36:31:3f:b5:38:e7:ec:49:d1:
1a:15:9e:a7:d4:31:17:f7:dc:c6:9c:a3:20:fc:52:bc:06:e4:
43:22:fa:55:0d:87:00:71:90:9f:e9:e5:d4:c5:50:0b:bb:41:
90:ed:cb:27:b8:f6:d4:0e:03:17:58:eb:5a:28:f9:7b:01:b3:
6c:dd:b8:6f:ae:70:da:5b:cb:c3:75:b2:67:2d:98:ca:79:db:
96:27:3d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 06:49:01 2024 by rpki-client on console-ams.rpki-client.org