Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K6HP11f1Hy_rdFCenDm-RoBr5kI.cer
File: K6HP11f1Hy_rdFCenDm-RoBr5kI.cer (raw, json)
Hash identifier: PuuhKQ45CQruV9tgpKCD8RCOUgq7jy7B0RfwQGQ7m28=
Subject key identifier: 2B:A1:CF:D7:57:F5:1F:2F:EB:74:50:9E:9C:39:BE:46:80:6B:E6:42
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4931FB46061FEA6A90C1E8043555936
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a9/745910-86c6-43d1-9765-5789de424a42/1/K6HP11f1Hy_rdFCenDm-RoBr5kI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a9/745910-86c6-43d1-9765-5789de424a42/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25441
IP: 62.231.32.0/19
IP: 78.135.128.0/17
IP: 83.141.64.0/18
IP: 85.134.128.0/17
IP: 87.192.0.0 -- 87.192.79.255
IP: 87.192.81.0 -- 87.192.219.255
IP: 87.192.222.0 -- 87.192.255.255
IP: 87.232.0.0/19
IP: 87.232.136.0 -- 87.232.192.255
IP: 87.232.194.0 -- 87.232.223.255
IP: 87.232.225.0 -- 87.232.249.255
IP: 89.124.0.0 -- 89.124.241.255
IP: 89.124.245.0 -- 89.127.251.255
IP: 89.127.254.0/23
IP: 185.247.52.0/22
IP: 2001:4d68::/32
IP: 2a01:268::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:1f:b4:60:61:fe:a6:a9:0c:1e:80:43:55:59:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ba1cfd757f51f2feb74509e9c39be46806be642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:61:ab:69:02:05:84:5c:f5:8f:aa:36:f7:35:
00:ed:dd:2f:28:72:fb:34:3b:3e:2c:47:71:78:12:
cf:08:2d:d9:37:c1:d5:bd:50:2a:14:ed:4d:b5:17:
e1:bc:e6:0d:db:8b:62:df:19:c4:85:43:d9:d0:34:
61:8d:ea:e4:2f:d4:64:f4:b3:3e:98:b6:51:10:08:
44:74:f1:06:1f:bd:f0:de:86:9f:ff:44:f4:10:78:
35:5b:ce:79:de:b4:0b:48:0f:7b:cf:ef:f0:be:64:
98:62:bc:18:7e:6a:1e:f4:6a:ee:96:c4:a4:f3:66:
d7:65:4e:8d:3d:53:8f:bc:9f:41:26:7e:d9:b3:39:
2c:32:e0:f3:5e:d1:0f:7a:34:c2:fe:02:9d:cc:80:
04:1a:5a:5b:b5:12:03:f3:83:c1:e2:44:55:3a:ca:
b5:d0:2d:d5:38:ad:68:d1:8b:bf:09:b5:35:5d:28:
ba:af:e5:79:a9:02:60:03:bf:64:cf:3c:00:00:87:
3e:40:ec:ea:a1:70:9a:6f:c5:71:04:6a:8f:50:55:
be:68:34:45:f4:b8:99:1e:5c:93:ab:0f:d7:9c:06:
8d:84:0e:72:1a:a3:5b:d9:6c:9c:d2:af:85:ed:80:
c1:45:63:e0:99:90:60:c1:a5:48:40:8f:38:d4:9b:
f1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A1:CF:D7:57:F5:1F:2F:EB:74:50:9E:9C:39:BE:46:80:6B:E6:42
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/745910-86c6-43d1-9765-5789de424a42/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/745910-86c6-43d1-9765-5789de424a42/1/K6HP11f1Hy_rdFCenDm-RoBr5kI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.231.32.0/19
78.135.128.0/17
83.141.64.0/18
85.134.128.0/17
87.192.0.0-87.192.79.255
87.192.81.0-87.192.219.255
87.192.222.0-87.192.255.255
87.232.0.0/19
87.232.136.0-87.232.192.255
87.232.194.0-87.232.223.255
87.232.225.0-87.232.249.255
89.124.0.0-89.124.241.255
89.124.245.0-89.127.251.255
89.127.254.0/23
185.247.52.0/22
IPv6:
2001:4d68::/32
2a01:268::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25441
Signature Algorithm: sha256WithRSAEncryption
53:a1:13:ca:22:4d:a8:e7:c4:50:b4:7b:9b:62:ef:dc:7a:b1:
7b:da:57:05:f3:c4:62:a4:29:e3:88:be:82:b2:c3:3a:f4:f6:
9f:cd:86:ed:7b:9b:37:15:80:6c:00:6b:f0:ae:7a:8d:b2:c0:
b3:90:59:2a:e0:a9:3a:34:4a:1b:af:88:69:99:9a:ad:4f:93:
b7:cc:70:6a:28:cb:12:26:cf:ce:ba:e6:12:5d:68:26:bc:13:
56:d3:50:46:e3:fb:f1:8d:dc:42:84:e0:77:fe:80:50:a2:57:
d8:21:82:5e:32:b6:79:42:7f:be:2c:9f:99:65:85:e6:61:7e:
cd:c3:4b:74:c4:0e:1f:b7:6a:32:18:12:f1:c9:8c:82:2a:11:
ce:3d:77:3f:df:08:75:80:87:1f:76:6c:93:12:62:96:d0:8c:
f4:45:0b:16:c1:f5:2d:ad:9a:8f:5a:3a:af:96:ff:b8:cd:96:
2b:31:40:08:dc:82:55:e9:77:e9:d4:ff:57:1b:41:41:6b:12:
63:de:af:68:96:7f:67:0f:9a:fb:7e:48:f7:da:63:b0:c7:34:
34:f7:7d:19:94:f9:04:64:c4:88:29:51:8a:3d:d3:42:5a:25:
c5:95:54:0c:24:12:d4:5d:32:d1:b7:6c:f1:a3:5a:02:43:7f:
07:98:b7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:10:29 2024 by rpki-client on console-fra.rpki-client.org