Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6DNGHp0r2vzCmtkYn7Cs8fM5YKk.cer
File: 6DNGHp0r2vzCmtkYn7Cs8fM5YKk.cer (raw, json)
Hash identifier: bmsquaUAg8LMzQld2gPdf+XCDGoPNrCHMo0JSVPG6bE=
Subject key identifier: E8:33:46:1E:9D:2B:DA:FC:C2:9A:D9:18:9F:B0:AC:F1:F3:39:60:A9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348E674177B00E56171612BAB780A02
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/6DNGHp0r2vzCmtkYn7Cs8fM5YKk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205275
IP: 85.204.19.0/24
IP: 86.104.13.0/24
IP: 86.105.214.0/24
IP: 86.106.30.0/24
IP: 86.107.23.0/24
IP: 86.107.169.0/24
IP: 89.33.24.0/22
IP: 89.33.44.0/24
IP: 89.34.92.0/24
IP: 89.36.248.0/22
IP: 89.37.57.0/24
IP: 89.37.212.0/22
IP: 89.39.83.0/24
IP: 89.39.246.0/24
IP: 89.40.72.0/24
IP: 89.41.36.0/22
IP: 89.42.216.0/21
IP: 89.44.137.0/24
IP: 89.45.15.0/24
IP: 89.45.83.0/24
IP: 89.47.53.0/24
IP: 89.47.240.0/22
IP: 93.113.152.0/23
IP: 93.115.53.0/24
IP: 94.177.66.0/24
IP: 185.162.64.0/22
IP: 188.209.214.0/24
IP: 188.213.205.0/24
IP: 188.214.210.0/23
IP: 188.214.215.0/24
IP: 188.215.2.0/24
IP: 188.240.20.0/22
IP: 188.241.142.0/24
IP: 188.241.152.0/24
IP: 188.241.155.0/24
IP: 2a13:7140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:e6:74:17:7b:00:e5:61:71:61:2b:ab:78:0a:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e833461e9d2bdafcc29ad9189fb0acf1f33960a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:ad:2d:02:d6:30:78:b1:0f:67:4c:7a:aa:
0e:81:e1:c6:31:09:f4:c4:6c:4d:8f:02:ec:64:d1:
bc:8c:8d:b4:cc:3b:35:a2:c6:de:5a:54:b3:ba:f6:
bf:5e:82:ec:9d:af:aa:44:0a:42:e9:6b:0d:03:01:
a1:36:99:29:82:db:84:43:be:d5:09:38:37:d3:39:
90:e6:cf:18:8a:87:80:df:b4:1e:0e:59:31:2f:a3:
67:d1:5c:c2:0b:c2:2a:6a:d0:6f:e6:39:34:78:11:
65:0d:43:27:a8:38:95:45:67:58:79:ac:ca:e1:86:
b4:c1:aa:9e:e5:de:a5:39:3a:bb:cd:f6:19:27:d2:
35:35:db:93:51:33:59:9f:29:4d:d2:30:4f:54:2c:
68:ca:8b:62:05:5f:09:f8:8a:0a:1d:83:e1:1a:84:
72:98:95:86:c5:b8:ec:1b:50:b7:fc:ed:56:f5:48:
8f:12:2f:57:42:6c:87:37:58:17:fe:eb:d5:10:5c:
e0:1b:18:de:e4:c3:61:f5:2f:c7:5d:6e:7d:55:15:
9a:14:5c:08:d0:94:76:ea:87:16:1f:4e:f1:44:f0:
26:4a:46:47:e5:1a:ee:9f:f2:d4:f2:95:64:e8:b3:
3e:2d:e7:8b:77:ad:c7:47:ab:a6:80:5a:7d:e5:ee:
8a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:33:46:1E:9D:2B:DA:FC:C2:9A:D9:18:9F:B0:AC:F1:F3:39:60:A9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/671194-51c8-4bcf-bd83-aefe8d178e6a/1/6DNGHp0r2vzCmtkYn7Cs8fM5YKk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.19.0/24
86.104.13.0/24
86.105.214.0/24
86.106.30.0/24
86.107.23.0/24
86.107.169.0/24
89.33.24.0/22
89.33.44.0/24
89.34.92.0/24
89.36.248.0/22
89.37.57.0/24
89.37.212.0/22
89.39.83.0/24
89.39.246.0/24
89.40.72.0/24
89.41.36.0/22
89.42.216.0/21
89.44.137.0/24
89.45.15.0/24
89.45.83.0/24
89.47.53.0/24
89.47.240.0/22
93.113.152.0/23
93.115.53.0/24
94.177.66.0/24
185.162.64.0/22
188.209.214.0/24
188.213.205.0/24
188.214.210.0/23
188.214.215.0/24
188.215.2.0/24
188.240.20.0/22
188.241.142.0/24
188.241.152.0/24
188.241.155.0/24
IPv6:
2a13:7140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205275
Signature Algorithm: sha256WithRSAEncryption
7e:6e:05:79:77:b9:b1:40:0b:e3:03:50:4f:97:36:f8:36:f1:
bd:7f:62:1c:2c:85:e5:b3:24:5b:ad:cb:74:8b:7d:f1:58:33:
72:05:dc:35:8f:4d:d0:36:69:d9:aa:6f:85:ad:60:71:23:d2:
ab:31:4b:d8:29:2a:4e:ad:3e:8a:9c:79:ab:86:e9:f3:a1:5b:
7a:5f:a0:4c:26:4a:d4:51:83:fa:f3:cd:6b:28:cf:c5:79:14:
ca:4a:1a:bb:66:7e:37:ce:d4:4c:3d:bf:2a:24:81:52:3c:d0:
41:52:a9:a0:9c:a2:9c:58:8e:8e:8b:8f:75:68:86:54:af:ef:
9c:bb:fd:48:17:b6:2d:6a:16:98:fa:bb:84:18:ae:8b:a6:46:
03:45:bb:58:0b:68:e1:96:33:6b:7f:cd:85:20:d5:7a:e1:a6:
ed:d7:d8:c3:47:27:0c:40:6e:87:15:d4:9b:6b:b1:25:ea:bd:
88:dc:ef:b3:dc:9e:1d:4a:a2:de:4b:c6:4f:77:d2:c3:09:ca:
38:5b:83:35:af:2e:e1:76:3e:c7:be:de:b9:bd:ea:dc:f5:70:
97:86:12:22:75:b8:e7:56:7a:50:23:03:03:24:dd:00:e4:65:
a7:28:14:b1:78:a1:70:a1:70:93:f8:62:c0:15:95:ad:dd:b8:
eb:cf:9c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 08:53:25 2024 by rpki-client on console-fra.rpki-client.org