Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
File: G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer (raw, json)
Hash identifier: QGYnR3C/MRTv2TeZk9S8IRR71NUcg446A8Zj80HNpRk=
Subject key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B90F40D3F0CBEABB2677776A1960B6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 31.14.219.0/24
IP: 31.14.236.0/23
IP: 43.240.140.0/22
IP: 45.94.244.0/22
IP: 45.95.48.0/22
IP: 45.116.168.0/22
IP: 45.138.232.0/22
IP: 45.142.92.0 -- 45.142.99.255
IP: 45.149.148.0/22
IP: 58.97.128.0/21
IP: 58.97.232.0 -- 58.97.255.255
IP: 77.81.104.0/21
IP: 77.95.116.0/22
IP: 78.138.1.0 -- 78.138.2.255
IP: 78.138.16.0/24
IP: 78.138.25.0/24
IP: 78.138.30.0/24
IP: 78.138.40.0/24
IP: 78.138.47.0 -- 78.138.48.255
IP: 78.138.50.0/24
IP: 83.229.76.0/22
IP: 83.229.104.0/22
IP: 84.39.224.0/21
IP: 89.19.40.0/22
IP: 89.32.129.0/24
IP: 89.34.7.0/24
IP: 89.34.78.0/23
IP: 89.38.132.0/23
IP: 89.41.62.0/24
IP: 89.44.115.0/24
IP: 89.44.245.0/24
IP: 89.46.152.0/21
IP: 89.249.51.0/24
IP: 89.249.56.0/22
IP: 91.132.184.0/22
IP: 91.197.252.0/22
IP: 91.245.235.0/24
IP: 92.43.84.0/22
IP: 93.113.124.0/23
IP: 93.114.0.0/20
IP: 93.115.12.0/23
IP: 93.180.192.0/20
IP: 93.180.224.0/20
IP: 94.176.112.0/20
IP: 94.176.163.0/24
IP: 94.176.216.0/22
IP: 94.177.52.0 -- 94.177.57.255
IP: 95.215.36.0/22
IP: 103.204.124.0/22
IP: 103.204.212.0/22
IP: 119.13.192.0/19
IP: 121.91.80.0/21
IP: 138.124.144.0/22
IP: 150.129.92.0/22
IP: 176.119.8.0/21
IP: 185.38.102.0/24
IP: 185.90.243.0/24
IP: 185.125.192.0/22
IP: 185.131.220.0/24
IP: 185.221.221.0/24
IP: 185.223.56.0/24
IP: 185.223.58.0/23
IP: 185.225.104.0/22
IP: 185.229.250.0/24
IP: 185.240.252.0/24
IP: 185.240.255.0/24
IP: 185.243.108.0/22
IP: 188.95.152.0/21
IP: 188.119.116.0/22
IP: 188.214.93.0/24
IP: 188.241.146.0/24
IP: 202.181.20.0/22
IP: 203.109.52.0/22
IP: 203.109.60.0/22
IP: 203.166.144.0 -- 203.166.157.255
IP: 209.20.160.0/19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:0f:40:d3:f0:cb:ea:bb:26:77:77:6a:19:60:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:da:9e:89:e0:ed:49:ef:6f:5d:1e:1e:28:cf:
e1:2b:d0:77:48:7f:c5:96:be:66:1e:c8:2b:44:71:
97:97:73:90:ad:ca:4b:3a:14:d7:1c:8e:e0:f9:0f:
3b:6f:40:8b:83:37:96:32:6b:86:05:ce:c5:fa:a5:
b2:5a:c1:fb:2d:c5:91:f1:2f:3b:87:69:d7:d4:2f:
4e:fe:91:06:ec:32:9a:4b:42:05:bf:24:6b:eb:6e:
37:29:e1:5f:0a:d7:7a:8f:72:77:24:96:18:2e:68:
9f:7c:84:e5:37:74:68:6d:b0:1d:3f:3a:a2:8e:c4:
1e:63:25:52:85:41:80:69:0a:8b:d5:56:f6:f5:d3:
ed:63:2a:16:8b:e2:3a:36:3b:d9:7c:9b:3e:75:63:
f7:6b:4f:27:10:24:3a:d7:aa:07:e0:b9:71:74:6d:
69:57:ec:8f:4a:73:5c:89:96:a8:c2:5e:7c:82:cc:
58:78:0f:b0:d0:49:de:46:1b:ec:34:13:5e:20:cd:
8d:a3:35:61:51:53:e5:05:9d:96:14:51:5d:6f:e4:
ed:3a:9f:7b:76:22:f5:a6:0f:6d:59:2c:ac:d9:c6:
37:1a:cb:58:a4:7e:77:fa:ba:d7:27:62:0a:a2:e1:
36:a5:08:2f:5e:f4:ba:20:0c:81:b1:18:8e:3c:38:
00:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.219.0/24
31.14.236.0/23
43.240.140.0/22
45.94.244.0/22
45.95.48.0/22
45.116.168.0/22
45.138.232.0/22
45.142.92.0-45.142.99.255
45.149.148.0/22
58.97.128.0/21
58.97.232.0-58.97.255.255
77.81.104.0/21
77.95.116.0/22
78.138.1.0-78.138.2.255
78.138.16.0/24
78.138.25.0/24
78.138.30.0/24
78.138.40.0/24
78.138.47.0-78.138.48.255
78.138.50.0/24
83.229.76.0/22
83.229.104.0/22
84.39.224.0/21
89.19.40.0/22
89.32.129.0/24
89.34.7.0/24
89.34.78.0/23
89.38.132.0/23
89.41.62.0/24
89.44.115.0/24
89.44.245.0/24
89.46.152.0/21
89.249.51.0/24
89.249.56.0/22
91.132.184.0/22
91.197.252.0/22
91.245.235.0/24
92.43.84.0/22
93.113.124.0/23
93.114.0.0/20
93.115.12.0/23
93.180.192.0/20
93.180.224.0/20
94.176.112.0/20
94.176.163.0/24
94.176.216.0/22
94.177.52.0-94.177.57.255
95.215.36.0/22
103.204.124.0/22
103.204.212.0/22
119.13.192.0/19
121.91.80.0/21
138.124.144.0/22
150.129.92.0/22
176.119.8.0/21
185.38.102.0/24
185.90.243.0/24
185.125.192.0/22
185.131.220.0/24
185.221.221.0/24
185.223.56.0/24
185.223.58.0/23
185.225.104.0/22
185.229.250.0/24
185.240.252.0/24
185.240.255.0/24
185.243.108.0/22
188.95.152.0/21
188.119.116.0/22
188.214.93.0/24
188.241.146.0/24
202.181.20.0/22
203.109.52.0/22
203.109.60.0/22
203.166.144.0-203.166.157.255
209.20.160.0/19
Signature Algorithm: sha256WithRSAEncryption
97:26:17:56:86:3a:bd:85:b8:2c:46:cf:30:cf:ef:f7:35:48:
5c:4e:d8:8e:7d:6e:f0:cc:d6:70:5f:cb:f3:7c:23:52:81:e2:
10:1e:19:ce:ec:44:1f:ab:1c:e9:34:bf:60:c4:7f:ad:82:da:
5c:95:81:af:92:5d:9b:57:ab:86:3b:2d:11:4a:b7:c4:96:f4:
6c:89:9e:cb:d4:91:a2:03:fd:e5:9b:41:d2:26:bc:7c:bc:fb:
4a:27:e1:24:59:55:8d:50:7c:31:05:1e:ed:b3:b6:ba:5d:68:
51:4c:03:87:44:4f:98:9d:bb:4c:06:aa:b5:f8:a3:dc:a8:48:
7f:07:01:b3:65:42:27:30:45:64:fc:0c:4b:0a:84:f4:3f:1c:
af:96:38:40:14:3a:af:64:d1:76:df:1f:72:29:3b:da:cb:11:
84:2c:05:90:25:4d:2a:e7:18:77:47:c0:24:c5:32:0f:f6:5b:
ba:72:df:54:92:af:5e:08:90:4b:99:a6:20:86:cf:58:a9:0e:
91:c5:56:46:d0:f9:8c:c7:98:07:16:d4:b0:ab:7b:89:0c:1b:
20:7a:bd:14:85:67:c0:20:57:21:01:db:02:c6:f5:43:05:b3:
1e:4c:73:1f:38:5b:dc:18:14:53:3b:73:1f:a3:58:5b:51:42:
8c:83:32:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 09:55:43 2024 by rpki-client on console-ams.rpki-client.org