Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HQH03_1vumbN-MN0ybDwR1UnBd0.cer
File: HQH03_1vumbN-MN0ybDwR1UnBd0.cer (raw, json)
Hash identifier: hx4+liz0+mDJaBv1zr+LqW74Qyciif7o6unkfIird04=
Subject key identifier: 1D:01:F4:DF:FD:6F:BA:66:CD:F8:C3:74:C9:B0:F0:47:55:27:05:DD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F061F73F0B9BA6EFAB23876D1DDB6D3D1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/HQH03_1vumbN-MN0ybDwR1UnBd0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 22 Apr 2024 14:04:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8897
IP: 62.164.128.0 -- 62.164.223.255
IP: 62.169.128.0 -- 62.169.147.255
IP: 62.169.150.0/24
IP: 62.169.154.0/24
IP: 62.169.156.0/24
IP: 62.169.158.0/23
IP: 86.54.0.0/16
IP: 193.108.168.0/23
IP: 194.62.44.0/22
IP: 194.164.2.0/24
IP: 194.164.12.0/24
IP: 194.164.32.0 -- 194.164.38.255
IP: 194.164.40.0/21
IP: 194.164.80.0/22
IP: 194.164.85.0 -- 194.164.86.255
IP: 194.164.97.0 -- 194.164.100.255
IP: 194.164.102.0 -- 194.164.104.255
IP: 194.164.106.0 -- 194.164.119.255
IP: 194.164.128.0/19
IP: 194.164.176.0/20
IP: 194.164.208.0 -- 194.164.221.255
IP: 194.164.223.0/24
IP: 194.164.225.0 -- 194.164.243.255
IP: 194.164.245.0 -- 194.164.255.255
IP: 195.26.224.0/20
IP: 195.184.228.0/23
IP: 195.184.235.0 -- 195.184.236.255
IP: 195.184.245.0/24
IP: 195.184.249.0/24
IP: 195.184.252.0/22
IP: 195.200.16.0 -- 195.200.22.255
IP: 195.200.24.0/23
IP: 195.200.27.0 -- 195.200.31.255
IP: 212.32.0.0 -- 212.32.29.255
IP: 212.32.42.0/24
IP: 212.32.44.0/23
IP: 212.32.48.0/22
IP: 212.32.54.0 -- 212.32.95.255
IP: 212.47.64.0 -- 212.47.81.255
IP: 212.47.84.0/24
IP: 212.56.32.0 -- 212.56.55.255
IP: 212.56.57.0/24
IP: 212.56.60.0/22
IP: 213.254.160.0 -- 213.254.179.255
IP: 213.254.184.0/21
IP: 217.29.196.0 -- 217.29.207.255
IP: 217.154.0.0/16
IP: 2001:15e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:06:1f:73:f0:b9:ba:6e:fa:b2:38:76:d1:dd:b6:d3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 22 14:04:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d01f4dffd6fba66cdf8c374c9b0f047552705dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:6e:95:0c:9f:b0:ac:50:2b:99:da:22:7c:
01:94:66:f3:44:aa:58:46:5b:4b:cd:b0:82:1d:67:
e6:af:06:b3:3c:f3:cd:91:27:14:51:bf:52:e9:11:
9a:4d:86:98:a3:69:dc:d1:4a:7d:a5:19:44:6f:8a:
d9:20:07:68:fd:97:d3:1a:fa:fa:fb:e2:31:62:3b:
92:97:c2:1d:7c:af:7a:0e:64:3b:f9:c0:31:83:02:
bd:73:9c:5b:76:ad:40:70:d1:b9:8f:a5:07:6f:47:
3f:fa:95:e2:40:47:18:5c:05:98:d6:96:10:76:73:
16:78:a0:cc:6a:c3:eb:bd:f5:bb:bd:a2:00:cd:c7:
17:6c:6f:e8:8a:e9:1b:e7:1b:54:36:bb:1c:cb:5b:
3e:2a:76:7b:c8:ec:4e:5c:f3:99:0f:fa:bc:89:22:
4b:f4:a0:9d:9c:ff:a2:e0:88:91:bc:e7:95:2f:15:
2b:0f:14:91:15:24:87:97:40:1b:24:c8:87:85:35:
ba:a5:2f:21:fb:b1:e6:89:82:f9:b2:63:81:99:e3:
ca:5b:3d:3e:dd:a8:1d:d9:f6:28:0f:f9:43:34:d6:
6b:0e:63:60:4c:16:51:a5:3d:dc:5a:9a:68:3f:a5:
38:62:71:59:27:c3:de:ea:dc:fa:e9:71:94:65:0d:
d1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:01:F4:DF:FD:6F:BA:66:CD:F8:C3:74:C9:B0:F0:47:55:27:05:DD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b80384-f2fe-4456-9cae-fe4a02caef7f/1/HQH03_1vumbN-MN0ybDwR1UnBd0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.164.128.0-62.164.223.255
62.169.128.0-62.169.147.255
62.169.150.0/24
62.169.154.0/24
62.169.156.0/24
62.169.158.0/23
86.54.0.0/16
193.108.168.0/23
194.62.44.0/22
194.164.2.0/24
194.164.12.0/24
194.164.32.0-194.164.38.255
194.164.40.0/21
194.164.80.0/22
194.164.85.0-194.164.86.255
194.164.97.0-194.164.100.255
194.164.102.0-194.164.104.255
194.164.106.0-194.164.119.255
194.164.128.0/19
194.164.176.0/20
194.164.208.0-194.164.221.255
194.164.223.0/24
194.164.225.0-194.164.243.255
194.164.245.0-194.164.255.255
195.26.224.0/20
195.184.228.0/23
195.184.235.0-195.184.236.255
195.184.245.0/24
195.184.249.0/24
195.184.252.0/22
195.200.16.0-195.200.22.255
195.200.24.0/23
195.200.27.0-195.200.31.255
212.32.0.0-212.32.29.255
212.32.42.0/24
212.32.44.0/23
212.32.48.0/22
212.32.54.0-212.32.95.255
212.47.64.0-212.47.81.255
212.47.84.0/24
212.56.32.0-212.56.55.255
212.56.57.0/24
212.56.60.0/22
213.254.160.0-213.254.179.255
213.254.184.0/21
217.29.196.0-217.29.207.255
217.154.0.0/16
IPv6:
2001:15e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8897
Signature Algorithm: sha256WithRSAEncryption
30:6e:b3:f1:bb:51:25:14:b3:ba:fa:a8:b5:a7:0f:00:53:ea:
33:05:b7:30:73:d0:e6:59:2f:3e:8e:3a:57:76:9d:7d:9b:e9:
e2:f5:35:73:4c:03:f2:fb:ca:4e:19:6d:bf:8e:20:13:43:8a:
03:ac:12:bc:35:27:b3:53:14:dc:32:03:35:3c:90:e6:f0:a5:
56:c1:c5:b4:c0:8a:de:e9:42:7d:9e:1e:4a:02:0d:74:96:16:
29:6f:d0:0c:8a:ac:d0:17:f0:a2:bb:17:bb:85:89:f0:6f:6e:
ef:9e:5e:ca:b1:7b:b4:14:de:72:cc:47:b1:d2:34:73:83:c2:
c2:cd:c0:74:2b:aa:30:a1:ef:62:69:76:3d:00:e7:10:5a:dc:
39:1e:c0:96:c0:28:2a:dc:ef:20:84:06:65:68:67:c4:5f:1e:
88:7b:ad:30:15:5c:82:b7:b0:df:83:d0:e4:d0:d2:b2:cd:c0:
8c:17:b5:d1:9b:e2:b4:45:15:59:b8:1d:2a:11:b6:9a:61:16:
b4:25:8c:3d:ae:86:7f:75:22:65:72:1c:f6:b9:a5:f0:e2:12:
86:d4:b0:72:84:ad:f0:b9:a6:61:2b:2e:f6:64:3f:2e:ca:fd:
ec:e8:f4:b5:7f:00:96:a6:e0:55:67:f2:7d:c5:fd:39:44:70:
3f:54:ef:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 21:13:06 2024 by rpki-client on console-fra.rpki-client.org