Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IMotTLPla10plwqX_GResv1odqE.cer
File: IMotTLPla10plwqX_GResv1odqE.cer (raw, json)
Hash identifier: It9ix9r4f8uDotWXyzlJdchQF9K45w8eTIU2gUjT9pY=
Subject key identifier: 20:CA:2D:4C:B3:E5:6B:5D:29:97:0A:97:FC:64:5E:B2:FD:68:76:A1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D6CE15FFC47CB2654D14238727AFA1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d4/2c2817-3701-4783-8fbd-eec4885c4f8d/1/IMotTLPla10plwqX_GResv1odqE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d4/2c2817-3701-4783-8fbd-eec4885c4f8d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:47:47 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 198770
IP: 37.18.74.0 -- 37.18.77.255
IP: 37.230.152.0/22
IP: 37.230.248.0/24
IP: 62.113.58.0 -- 62.113.63.255
IP: 85.92.116.0 -- 85.92.118.255
IP: 128.0.66.0/23
IP: 141.101.204.0/24
IP: 141.101.228.0/24
IP: 141.101.231.0/24
IP: 178.170.225.0/24
IP: 2a0d:b1c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:ce:15:ff:c4:7c:b2:65:4d:14:23:87:27:af:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=20ca2d4cb3e56b5d29970a97fc645eb2fd6876a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:72:89:04:15:60:67:a8:e1:ec:e2:39:8e:6e:
77:d7:d1:db:a1:fd:51:94:f9:30:ed:17:ac:cf:da:
b1:19:2b:e7:af:01:3c:15:70:6e:92:d5:18:3f:19:
a6:26:08:ff:92:e0:8a:dd:3f:53:13:02:a7:2f:7d:
5b:b5:35:b0:f8:5c:8e:ea:06:43:64:3b:2b:dc:71:
20:48:6c:9d:21:98:f7:4b:e8:e2:c0:06:c7:a5:92:
7b:09:ec:e5:4d:13:c2:07:b1:f8:79:47:d9:35:72:
e4:dd:a1:05:99:99:82:75:fd:26:4c:13:24:c3:04:
1b:46:df:6c:ed:4d:9d:b5:d2:72:43:35:6a:35:54:
34:f8:1d:af:b3:c5:ff:88:15:e7:5c:c2:ea:28:46:
a7:32:3a:21:e6:fb:25:38:75:d2:ab:8e:51:dc:aa:
95:fc:82:72:dc:79:b4:7d:39:6f:30:44:25:35:f0:
2e:c3:46:19:e2:6f:fc:24:14:5a:c4:e6:fe:07:77:
8a:40:e4:2c:08:69:2f:e0:b6:1a:cf:b5:c6:81:ec:
34:e5:c4:a8:86:c5:f5:91:35:5d:5a:7f:80:00:ab:
e6:09:33:84:25:95:a7:b8:2b:08:cf:3f:c6:ec:1d:
d7:1b:eb:3d:2b:c7:c1:cd:be:22:7c:06:b4:84:b4:
3e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CA:2D:4C:B3:E5:6B:5D:29:97:0A:97:FC:64:5E:B2:FD:68:76:A1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2c2817-3701-4783-8fbd-eec4885c4f8d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2c2817-3701-4783-8fbd-eec4885c4f8d/1/IMotTLPla10plwqX_GResv1odqE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.74.0-37.18.77.255
37.230.152.0/22
37.230.248.0/24
62.113.58.0-62.113.63.255
85.92.116.0-85.92.118.255
128.0.66.0/23
141.101.204.0/24
141.101.228.0/24
141.101.231.0/24
178.170.225.0/24
IPv6:
2a0d:b1c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198770
Signature Algorithm: sha256WithRSAEncryption
00:87:92:45:8b:59:f1:bd:9e:cc:5a:f4:26:7a:ba:46:36:c2:
29:87:4f:45:d7:4f:b1:be:3a:90:e1:6d:df:c8:a3:ab:e9:5c:
78:20:2a:45:b3:41:65:24:aa:8e:df:d2:37:be:96:6d:45:56:
88:40:95:1f:79:1a:c9:0c:a8:a9:12:11:ae:76:1d:e3:44:10:
67:b3:f4:f4:06:e5:d4:da:00:04:a7:14:3b:bd:bb:62:fa:62:
f7:3d:f1:4d:0e:78:69:85:08:c4:fb:f9:fe:dc:bb:56:b4:b7:
e5:bc:40:90:f8:fc:e3:0f:34:8b:18:f6:c9:7d:76:95:ed:2d:
d8:73:ec:e1:70:37:36:52:9e:90:78:7d:32:d4:b7:60:15:9b:
29:c9:05:59:cd:6e:0c:2f:51:06:cc:9c:3d:3e:6a:73:db:95:
2e:0b:b8:d8:c9:bd:c3:40:b3:ac:37:6c:b1:76:89:40:79:35:
d3:0f:95:63:52:d8:39:19:ec:43:e1:02:37:56:50:f4:68:d9:
d7:8a:c0:71:c3:52:9f:4b:53:9c:4a:c9:05:af:ad:6a:2f:c9:
37:08:3b:e0:ad:e3:92:04:f4:f1:33:cf:95:b1:6e:42:b7:35:
13:7c:30:d3:61:da:2a:6d:a8:e4:ef:1f:6d:08:dd:7c:59:33:
6b:97:59:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:14 2025 by rpki-client