Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/H9X-9pK0wtIr3QMfq_pxELezboE.cer
File: H9X-9pK0wtIr3QMfq_pxELezboE.cer (raw, json)
Hash identifier: Sw+vXJ7sUNeNYWBaeTFGRqeUet+m2um5EtzxVO42HVk=
Subject key identifier: 1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8023E4C08DAEFC1CB415C43E15C0722
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 6793
AS: 8236
AS: 16086
AS: 20542
AS: 49422
IP: 37.33.0.0/16
IP: 37.130.160.0/19
IP: 37.136.0.0/16
IP: 37.219.0.0/16
IP: 62.44.192.0/18
IP: 62.78.96.0 -- 62.78.255.255
IP: 62.113.160.0/19
IP: 62.165.128.0/18
IP: 62.183.128.0/17
IP: 62.197.160.0/19
IP: 62.236.0.0/15
IP: 62.241.192.0/18
IP: 78.27.64.0/18
IP: 80.64.0.0/20
IP: 81.175.128.0/17
IP: 82.128.128.0/17
IP: 82.181.0.0/16
IP: 82.203.128.0/17
IP: 83.100.0.0/17
IP: 83.102.0.0/17
IP: 84.253.192.0/18
IP: 85.23.0.0/16
IP: 85.131.0.0/17
IP: 87.92.0.0/14
IP: 87.100.128.0/17
IP: 88.148.128.0/17
IP: 89.27.0.0/17
IP: 89.166.0.0/17
IP: 91.145.64.0/18
IP: 109.108.0.0/19
IP: 159.255.224.0/19
IP: 176.93.0.0/16
IP: 178.55.0.0/16
IP: 178.75.128.0/18
IP: 185.15.212.0/22
IP: 185.55.32.0/22
IP: 185.61.232.0/22
IP: 188.67.0.0/16
IP: 188.94.64.0/21
IP: 192.107.200.0 -- 192.107.231.255
IP: 193.143.70.0/23
IP: 193.143.73.0/24
IP: 193.143.79.0 -- 193.143.89.255
IP: 193.143.91.0/24
IP: 193.143.93.0 -- 193.143.95.255
IP: 194.100.0.0/16
IP: 195.10.128.0/18
IP: 212.50.128.0/19
IP: 212.86.0.0/19
IP: 212.90.64.0/19
IP: 212.146.0.0/18
IP: 212.149.128.0/17
IP: 213.139.160.0/19
IP: 213.141.96.0/19
IP: 213.186.224.0/19
IP: 213.216.192.0/18
IP: 213.243.128.0/18
IP: 217.78.192.0/19
IP: 2001:6e8::/29
IP: 2001:14b8::/29
IP: 2001:4078::/29
IP: 2a01:a800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:3e:4c:08:da:ef:c1:cb:41:5c:43:e1:5c:07:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1fd5fef692b4c2d22bdd031fabfa7110b7b36e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1e:f6:ec:9d:b5:47:87:4f:94:80:5c:da:1a:
7a:07:d3:69:18:f6:55:7d:20:9c:57:8f:83:90:f0:
2b:9b:cd:33:7b:aa:a8:be:ee:14:28:98:dd:e9:76:
0a:10:d6:a9:4f:be:a7:2a:c0:43:4d:8b:0c:fc:33:
dd:82:f7:90:3f:de:f6:0f:91:6f:8d:c1:56:d6:43:
48:69:af:2d:ed:9e:21:20:f8:57:7d:04:cc:2a:3c:
04:1a:76:05:39:8b:b7:d6:5a:13:67:94:69:56:37:
89:3f:c1:bb:17:8e:be:c2:f3:4e:6c:cc:52:43:10:
3d:a6:d4:81:ee:4c:ff:3c:60:f8:a1:ce:dc:95:e7:
ff:91:3d:7c:b8:c1:14:7a:89:e4:11:57:47:a0:16:
95:1c:e1:8c:80:26:ad:fd:64:36:64:fa:56:1c:7a:
69:71:ae:92:eb:3d:69:53:82:2d:40:f1:63:da:e2:
18:f5:c5:94:3c:e3:df:d9:64:1b:39:ca:b4:db:1e:
1e:07:e4:6d:1a:52:b4:75:2c:dd:91:82:01:71:cd:
05:e0:89:5d:cd:22:48:a5:a4:73:9b:d6:23:7e:85:
ee:c9:e6:f2:b9:d9:60:3f:f4:84:ec:d2:d7:69:dd:
10:b5:89:6e:a9:56:f9:97:07:8c:d4:9d:7e:32:c3:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D5:FE:F6:92:B4:C2:D2:2B:DD:03:1F:AB:FA:71:10:B7:B3:6E:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/48e1ae-90e8-4e42-af3d-5101be5dd615/1/H9X-9pK0wtIr3QMfq_pxELezboE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.33.0.0/16
37.130.160.0/19
37.136.0.0/16
37.219.0.0/16
62.44.192.0/18
62.78.96.0-62.78.255.255
62.113.160.0/19
62.165.128.0/18
62.183.128.0/17
62.197.160.0/19
62.236.0.0/15
62.241.192.0/18
78.27.64.0/18
80.64.0.0/20
81.175.128.0/17
82.128.128.0/17
82.181.0.0/16
82.203.128.0/17
83.100.0.0/17
83.102.0.0/17
84.253.192.0/18
85.23.0.0/16
85.131.0.0/17
87.92.0.0/14
87.100.128.0/17
88.148.128.0/17
89.27.0.0/17
89.166.0.0/17
91.145.64.0/18
109.108.0.0/19
159.255.224.0/19
176.93.0.0/16
178.55.0.0/16
178.75.128.0/18
185.15.212.0/22
185.55.32.0/22
185.61.232.0/22
188.67.0.0/16
188.94.64.0/21
192.107.200.0-192.107.231.255
193.143.70.0/23
193.143.73.0/24
193.143.79.0-193.143.89.255
193.143.91.0/24
193.143.93.0-193.143.95.255
194.100.0.0/16
195.10.128.0/18
212.50.128.0/19
212.86.0.0/19
212.90.64.0/19
212.146.0.0/18
212.149.128.0/17
213.139.160.0/19
213.141.96.0/19
213.186.224.0/19
213.216.192.0/18
213.243.128.0/18
217.78.192.0/19
IPv6:
2001:6e8::/29
2001:14b8::/29
2001:4078::/29
2a01:a800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6793
8236
16086
20542
49422
Signature Algorithm: sha256WithRSAEncryption
16:f2:02:1b:4d:4e:2e:b0:79:50:9e:91:01:b0:47:1b:65:a4:
c8:01:b7:2c:8f:ce:3e:4e:4e:f3:10:46:90:16:b4:a0:e2:45:
fd:81:ec:43:b1:35:19:0d:b7:eb:e8:12:31:4a:6c:a2:c2:ae:
7a:80:9b:55:60:c8:96:19:e6:d6:67:16:c8:1f:4e:3c:15:ec:
b0:5d:bf:b0:8d:5b:a8:89:f9:14:8f:c5:9a:66:d4:1f:32:57:
bc:b2:5d:0f:a0:30:98:a6:82:65:14:d1:51:bd:b1:7d:39:51:
90:53:01:5b:b7:d2:ef:aa:b9:82:a4:7b:6b:16:c3:09:c8:e6:
23:00:e2:d9:00:2e:22:30:92:1b:67:1f:14:2e:7f:d3:63:5f:
7a:d6:ae:c5:9f:42:f1:e1:a2:97:1e:0a:36:24:8f:25:09:ef:
14:c3:ce:d7:b6:a3:86:9b:44:36:c1:c9:1f:40:11:15:71:7b:
59:72:65:34:8e:cb:c6:3e:7b:48:ea:52:f9:0a:31:98:71:a2:
ce:5f:18:eb:40:9d:e1:5f:63:a2:ae:d5:c5:bd:af:77:46:d6:
95:b3:35:87:69:bf:47:30:08:a0:90:f2:f8:9e:49:f3:f4:0c:
49:cd:27:d2:a9:73:87:74:42:2d:a8:a2:48:80:ee:f7:7b:6c:
0a:c1:29:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:22:23 2024 by rpki-client on console-fra.rpki-client.org