Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iym9J0Fhg8UB5nO78ppxppi0HEc.cer
File: Iym9J0Fhg8UB5nO78ppxppi0HEc.cer (raw, json)
Hash identifier: GyaQ1Hnm3n/p8iYxLXtAFlGiJTu6PBvjve8aZIe9MmM=
Subject key identifier: 23:29:BD:27:41:61:83:C5:01:E6:73:BB:F2:9A:71:A6:98:B4:1C:47
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856FB728B712790D858EC416DF36C523C5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://r.magellan.ipxo.com/repo/e85e3348-30c7-45bb-9f86-6285dfe96efa-0/0/2329BD27416183C501E673BBF29A71A698B41C47.mft
caRepository: rsync://r.magellan.ipxo.com/repo/e85e3348-30c7-45bb-9f86-6285dfe96efa-0/0
Notify URL: https://magellan.ipxo.com/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 23:42:32 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 39619
AS: 41186
AS: 48028
AS: 209675
IP: 5.181.180.0/22
IP: 185.176.92.0/22
IP: 185.216.104.0/22
IP: 185.229.220.0/22
IP: 2a04:a700::/29
IP: 2a05:5480::/29
IP: 2a06:88c0::/29
IP: 2a09:dc80::/29
IP: 2a0b:b5c0::/29
IP: 2a0d:d200::/29
IP: 2a0e:a000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 May 2023 06:17:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b7:28:b7:12:79:0d:85:8e:c4:16:df:36:c5:23:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:42:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2329bd27416183c501e673bbf29a71a698b41c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e1:58:14:61:b6:3a:7c:a8:ad:4b:a8:06:12:
60:e2:be:3d:ea:0f:1a:c0:b3:f9:8b:a4:e9:79:49:
8f:5e:a1:fe:1b:94:2e:d4:d7:6f:26:f6:2b:2c:f7:
18:5b:dc:54:7d:4d:9f:54:c4:e9:c9:6e:17:10:8c:
e8:c7:8b:c3:cc:3a:07:a9:d9:39:e2:b6:21:d7:33:
9e:65:ac:08:be:db:01:d2:8c:68:19:87:ad:2c:41:
ea:90:2c:7f:e1:3d:a9:11:2b:e5:0e:54:bd:16:5c:
9c:f7:f9:b5:d5:5d:3e:8d:48:1f:db:16:54:11:13:
01:06:4c:0a:2f:08:23:9b:a6:05:2b:9d:a4:0a:47:
be:2b:52:cb:86:a0:c7:1c:6f:6f:3d:58:a3:4f:d2:
57:b4:52:85:30:31:0e:37:85:94:dd:d2:cb:54:a0:
76:67:0a:55:27:c0:cf:0f:9a:fe:3f:23:5d:b4:37:
50:44:c4:97:03:73:78:e2:ee:94:a1:64:b8:e9:8d:
68:bc:a4:6e:d5:5b:9d:dd:6e:4e:d8:38:93:02:57:
81:7d:98:bd:8a:6d:bb:85:f8:6d:d9:a4:5b:69:5c:
0d:7c:71:78:bf:fc:d9:0a:8b:96:91:85:fb:5a:4a:
90:aa:85:80:81:79:8c:d7:47:e5:8f:c1:ed:84:03:
fa:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:29:BD:27:41:61:83:C5:01:E6:73:BB:F2:9A:71:A6:98:B4:1C:47
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://r.magellan.ipxo.com/repo/e85e3348-30c7-45bb-9f86-6285dfe96efa-0/0
RPKI Manifest - URI:rsync://r.magellan.ipxo.com/repo/e85e3348-30c7-45bb-9f86-6285dfe96efa-0/0/2329BD27416183C501E673BBF29A71A698B41C47.mft
RPKI Notify - URI:https://magellan.ipxo.com/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.180.0/22
185.176.92.0/22
185.216.104.0/22
185.229.220.0/22
IPv6:
2a04:a700::/29
2a05:5480::/29
2a06:88c0::/29
2a09:dc80::/29
2a0b:b5c0::/29
2a0d:d200::/29
2a0e:a000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39619
41186
48028
209675
Signature Algorithm: sha256WithRSAEncryption
4e:09:ec:5b:a7:b3:17:6f:91:7c:dc:c5:e4:ed:41:b8:f3:94:
77:70:48:49:93:a6:c8:b5:d0:bb:7e:a4:9d:1d:16:2f:24:e0:
a2:31:f4:5f:1d:4b:50:01:88:4b:60:60:77:4e:5b:f6:4c:0f:
af:be:4f:25:30:c5:cd:19:9e:f6:e7:67:b5:2d:ee:7d:26:8f:
99:67:a8:10:2a:25:99:cc:f8:91:9d:3b:f1:05:3c:11:30:e8:
33:83:b0:f9:ca:0a:c7:9f:2d:71:60:7c:84:19:90:f8:c1:eb:
ad:1a:75:03:72:1f:8c:b5:86:0d:69:21:e4:f6:0a:a8:92:74:
57:42:4b:0a:f6:6d:c5:74:b6:91:bd:21:da:e0:7b:27:8f:4e:
da:78:89:b9:b2:7e:5f:f5:41:31:fd:51:5b:8b:5c:df:10:01:
72:b7:b4:b3:66:b4:b0:40:8c:bf:4a:e3:85:d7:d4:b4:02:2b:
08:c6:91:11:b1:26:39:89:fa:0d:d7:0d:e4:0e:98:29:55:47:
dd:98:12:39:a5:84:38:05:af:db:f3:c7:8c:ad:a9:4d:54:9c:
bf:3e:51:7d:2c:ea:f9:c5:8e:dd:61:1e:54:4c:79:4d:c1:e1:
fb:9f:9c:68:bb:af:9a:c7:3c:cc:74:b0:9d:59:ad:f6:a6:60:
06:92:47:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 3 14:13:44 2023 by rpki-client on console-ams.rpki-client.org