Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5llvGxY8qwxFqE7rEyYbZfGiKWI.cer
File: 5llvGxY8qwxFqE7rEyYbZfGiKWI.cer (raw, json)
Hash identifier: xEfjK/P01Elb+In3aUs0uipM7LppnyTKsnoV0wxF3jU=
Subject key identifier: E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019428254661BB8908C955BCA9D94E5253CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:51:59 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 29314
IP: 31.11.128.0/17
IP: 31.22.96.0/21
IP: 31.135.168.0/21
IP: 37.8.192.0/18
IP: 37.77.152.0/21
IP: 46.36.224.0/19
IP: 62.122.112.0/21
IP: 77.222.224.0/19
IP: 78.31.152.0/21
IP: 78.31.209.0/24
IP: 78.88.0.0/16
IP: 82.139.0.0/18
IP: 83.143.40.0/21
IP: 83.143.136.0/21
IP: 83.243.104.0/21
IP: 88.156.0.0/16
IP: 89.151.0.0/18
IP: 91.192.76.0/22
IP: 91.230.159.0/24
IP: 91.230.162.0 -- 91.230.167.255
IP: 91.231.116.0/23
IP: 91.238.232.0/22
IP: 93.105.0.0/16
IP: 93.176.192.0/18
IP: 94.231.48.0/20
IP: 95.160.0.0/16
IP: 109.107.0.0/19
IP: 109.197.56.0 -- 109.197.71.255
IP: 109.241.0.0/16
IP: 178.235.0.0/16
IP: 185.51.180.0/22
IP: 192.166.120.0/23
IP: 193.108.228.0/23
IP: 193.201.18.0/23
IP: 194.54.188.0/22
IP: 195.26.72.0/22
IP: 195.28.170.0/23
IP: 195.95.170.0/24
IP: 195.191.162.0/23
IP: 195.225.92.0/22
IP: 195.242.252.0/22
IP: 2a00:9f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:46:61:bb:89:08:c9:55:bc:a9:d9:4e:52:53:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:51:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6596f1b163cab0c45a84eeb13261b65f1a22962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d2:3a:ec:d5:ba:45:45:72:f6:8f:18:b8:8f:
c5:8a:a2:c9:62:7b:e3:f3:83:b4:6a:65:4a:ac:87:
35:0e:56:11:ea:02:cf:3e:dc:9a:52:b4:40:d7:43:
dc:1e:6a:3d:63:e3:fe:66:a6:54:74:d1:f7:c7:2e:
53:51:fa:0d:1b:1c:7d:77:7d:3c:bc:82:ce:48:4b:
dd:46:c1:d9:27:a6:36:ff:dc:ae:a0:0d:de:18:b3:
88:32:4c:e5:3e:3e:f3:8b:f7:2c:1e:7c:8d:90:19:
85:50:c7:b9:e4:8b:88:20:4b:49:e2:bd:81:de:f5:
4d:79:85:40:53:6e:9d:63:73:9b:c4:b9:60:b9:c5:
00:e1:6e:93:db:4f:56:23:de:be:ff:05:67:da:6b:
d0:79:73:26:e4:f1:a0:48:71:24:b8:c1:4c:ac:7a:
d9:2e:e4:9f:4b:e0:dd:1e:be:37:2d:f7:09:19:d2:
c8:2f:35:ee:1b:80:0b:ad:da:2c:0d:93:a5:00:13:
cc:55:e8:8d:ae:75:3e:49:66:4b:3e:c3:e0:cf:f3:
83:c2:72:a7:60:dd:fc:41:96:0b:28:ee:4d:34:e8:
49:d4:af:24:87:0a:5b:19:c2:aa:6b:36:02:85:6b:
77:0c:cd:56:26:f7:00:57:01:ab:43:b8:56:f9:06:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:59:6F:1B:16:3C:AB:0C:45:A8:4E:EB:13:26:1B:65:F1:A2:29:62
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/ede94e-ba2a-41ee-b12c-e0534e23859b/1/5llvGxY8qwxFqE7rEyYbZfGiKWI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.11.128.0/17
31.22.96.0/21
31.135.168.0/21
37.8.192.0/18
37.77.152.0/21
46.36.224.0/19
62.122.112.0/21
77.222.224.0/19
78.31.152.0/21
78.31.209.0/24
78.88.0.0/16
82.139.0.0/18
83.143.40.0/21
83.143.136.0/21
83.243.104.0/21
88.156.0.0/16
89.151.0.0/18
91.192.76.0/22
91.230.159.0/24
91.230.162.0-91.230.167.255
91.231.116.0/23
91.238.232.0/22
93.105.0.0/16
93.176.192.0/18
94.231.48.0/20
95.160.0.0/16
109.107.0.0/19
109.197.56.0-109.197.71.255
109.241.0.0/16
178.235.0.0/16
185.51.180.0/22
192.166.120.0/23
193.108.228.0/23
193.201.18.0/23
194.54.188.0/22
195.26.72.0/22
195.28.170.0/23
195.95.170.0/24
195.191.162.0/23
195.225.92.0/22
195.242.252.0/22
IPv6:
2a00:9f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29314
Signature Algorithm: sha256WithRSAEncryption
5b:c6:0f:d9:56:18:15:6e:45:45:e2:52:3d:f1:68:d4:7b:35:
56:1e:4d:08:ee:56:50:d9:49:eb:9f:1c:79:5c:07:47:09:ff:
9b:5a:4f:ba:24:5f:b3:8b:f6:03:3e:e3:51:13:a8:35:4e:f9:
17:a0:38:fb:5c:f3:8a:4d:a4:08:f8:fd:7b:a0:97:80:aa:41:
3d:df:94:32:f7:4f:99:ed:0a:99:6c:ba:ca:82:5e:3c:41:6f:
c2:c5:70:d7:da:24:64:0b:14:6f:4a:a4:f1:16:fb:29:2f:dd:
25:53:80:42:ca:9b:ff:64:98:f6:57:7e:24:70:1b:b3:28:ea:
61:e4:a9:17:48:6e:8c:d7:2d:58:5f:64:7a:a1:b6:a6:11:b4:
ab:5a:cb:f0:f2:8f:20:58:48:92:06:ab:10:43:84:9a:f7:fb:
a5:75:8d:64:ba:cd:71:79:02:81:15:f3:1a:69:f7:88:3a:9c:
50:91:de:3f:79:e7:5d:df:c4:0a:6e:62:34:20:07:27:07:16:
a6:94:00:22:82:cc:48:6b:6f:60:5a:a2:d4:54:5a:49:52:ef:
3f:fe:38:e5:f8:03:3d:f2:31:41:38:7b:c7:2c:29:00:98:d1:
fd:02:4e:13:e3:b0:df:92:e1:06:12:72:81:f0:9b:2e:ec:8c:
c6:45:da:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:22 2025 by rpki-client