Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
File: 5llvGxY8qwxFqE7rEyYbZfGiKWI.cer (raw, json)
Hash identifier: sr6SnZzmcu3t6oAY3g3lbq5oXpvZOkET+/rqIlwrGlM=
Subject key identifier: E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64997290555BB1D50D672E86E5D476F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:29:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29314
IP: 31.11.128.0/17
IP: 31.22.96.0/21
IP: 31.135.168.0/21
IP: 37.8.192.0/18
IP: 37.77.152.0/21
IP: 46.36.224.0/19
IP: 62.122.112.0/21
IP: 77.222.224.0/19
IP: 78.31.152.0/21
IP: 78.31.209.0/24
IP: 78.88.0.0/16
IP: 82.139.0.0/18
IP: 83.143.40.0/21
IP: 83.143.136.0/21
IP: 83.243.104.0/21
IP: 88.156.0.0/16
IP: 89.151.0.0/18
IP: 91.192.76.0/22
IP: 91.230.159.0/24
IP: 91.230.162.0 -- 91.230.167.255
IP: 91.231.116.0/23
IP: 91.238.232.0/22
IP: 93.105.0.0/16
IP: 94.231.48.0/20
IP: 95.160.0.0/16
IP: 109.107.0.0/19
IP: 109.197.56.0 -- 109.197.71.255
IP: 109.241.0.0/16
IP: 178.235.0.0/16
IP: 185.51.180.0/22
IP: 192.166.120.0/23
IP: 193.108.228.0/23
IP: 193.201.18.0/23
IP: 194.54.188.0/22
IP: 195.26.72.0/22
IP: 195.28.170.0/23
IP: 195.95.170.0/24
IP: 195.191.162.0/23
IP: 195.225.92.0/22
IP: 195.242.252.0/22
IP: 2a00:9f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 00:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:97:29:05:55:bb:1d:50:d6:72:e8:6e:5d:47:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d2:3a:ec:d5:ba:45:45:72:f6:8f:18:b8:8f:
c5:8a:a2:c9:62:7b:e3:f3:83:b4:6a:65:4a:ac:87:
35:0e:56:11:ea:02:cf:3e:dc:9a:52:b4:40:d7:43:
dc:1e:6a:3d:63:e3:fe:66:a6:54:74:d1:f7:c7:2e:
53:51:fa:0d:1b:1c:7d:77:7d:3c:bc:82:ce:48:4b:
dd:46:c1:d9:27:a6:36:ff:dc:ae:a0:0d:de:18:b3:
88:32:4c:e5:3e:3e:f3:8b:f7:2c:1e:7c:8d:90:19:
85:50:c7:b9:e4:8b:88:20:4b:49:e2:bd:81:de:f5:
4d:79:85:40:53:6e:9d:63:73:9b:c4:b9:60:b9:c5:
00:e1:6e:93:db:4f:56:23:de:be:ff:05:67:da:6b:
d0:79:73:26:e4:f1:a0:48:71:24:b8:c1:4c:ac:7a:
d9:2e:e4:9f:4b:e0:dd:1e:be:37:2d:f7:09:19:d2:
c8:2f:35:ee:1b:80:0b:ad:da:2c:0d:93:a5:00:13:
cc:55:e8:8d:ae:75:3e:49:66:4b:3e:c3:e0:cf:f3:
83:c2:72:a7:60:dd:fc:41:96:0b:28:ee:4d:34:e8:
49:d4:af:24:87:0a:5b:19:c2:aa:6b:36:02:85:6b:
77:0c:cd:56:26:f7:00:57:01:ab:43:b8:56:f9:06:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.128.0/17
31.22.96.0/21
31.135.168.0/21
37.8.192.0/18
37.77.152.0/21
46.36.224.0/19
62.122.112.0/21
77.222.224.0/19
78.31.152.0/21
78.31.209.0/24
78.88.0.0/16
82.139.0.0/18
83.143.40.0/21
83.143.136.0/21
83.243.104.0/21
88.156.0.0/16
89.151.0.0/18
91.192.76.0/22
91.230.159.0/24
91.230.162.0-91.230.167.255
91.231.116.0/23
91.238.232.0/22
93.105.0.0/16
94.231.48.0/20
95.160.0.0/16
109.107.0.0/19
109.197.56.0-109.197.71.255
109.241.0.0/16
178.235.0.0/16
185.51.180.0/22
192.166.120.0/23
193.108.228.0/23
193.201.18.0/23
194.54.188.0/22
195.26.72.0/22
195.28.170.0/23
195.95.170.0/24
195.191.162.0/23
195.225.92.0/22
195.242.252.0/22
IPv6:
2a00:9f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29314
Signature Algorithm: sha256WithRSAEncryption
73:38:d4:90:18:06:9e:eb:ce:71:11:5f:75:39:82:84:9d:f9:
a5:d7:18:b6:8d:4d:e5:50:f8:21:a7:b0:1a:05:44:71:1a:70:
a5:a3:fc:9b:16:ea:ef:4c:46:5d:8c:be:8b:be:b2:8f:11:33:
f5:8d:4d:dc:d3:c9:8b:b4:28:1b:73:c6:f3:dc:53:cd:2f:ee:
5e:a4:ce:62:84:f6:bf:ea:af:e2:36:e8:19:da:42:21:5f:86:
88:d0:3f:45:1c:37:2d:d8:43:c4:63:dc:11:e0:95:72:b0:63:
99:fb:97:c7:23:17:9e:f8:01:7e:b2:4a:a6:78:4c:b2:e7:a4:
8a:c0:aa:ed:2b:60:c9:0e:6f:eb:a9:9c:a9:17:7d:3f:f9:f5:
33:be:0b:76:d7:06:ca:af:ab:a5:81:4c:76:74:1b:55:8c:5e:
e7:e0:4e:82:b1:45:ee:d5:bb:7f:3c:fe:f6:f5:02:20:0c:78:
cd:97:c8:94:a3:be:df:be:de:a8:3f:d2:70:36:49:52:03:6f:
76:ca:5e:b8:8d:4a:cc:32:dc:8f:98:a4:61:3c:83:49:c3:67:
ba:53:7d:c4:5f:d0:8f:11:98:b0:07:50:53:9b:bd:cb:d2:fa:
f8:c2:7d:61:d8:b3:c8:a7:5f:d4:b7:69:83:05:f1:d3:16:08:
07:ed:d9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:23:03 2024 by rpki-client on console-ams.rpki-client.org