Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
File: L4FK3B1SCeCY8HitvIVrrYO3ScI.cer (raw, json)
Hash identifier: rAi2q4KzAZW2oma+1MZ27oCB74QaWp6Og/fFiVNGzcQ=
Subject key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019233B166708E632633AC7D648EF1C1FD34
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 27 Sep 2024 13:35:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16322
AS: 60976
AS: 61061
IP: 31.214.132.0/23
IP: 31.214.146.0/23
IP: 31.214.154.0/24
IP: 31.214.168.0/21
IP: 31.214.200.0/23
IP: 31.214.228.0/22
IP: 31.214.248.0/21
IP: 37.10.64.0/22
IP: 37.10.109.0/24
IP: 37.10.117.0/24
IP: 37.228.131.0/24
IP: 37.228.133.0/24
IP: 37.228.135.0 -- 37.228.139.255
IP: 46.41.192.0/18
IP: 46.251.224.0/24
IP: 46.251.226.0/24
IP: 46.251.237.0/24
IP: 82.99.192.0/18
IP: 95.156.222.0/23
IP: 95.156.233.0 -- 95.156.237.255
IP: 95.156.248.0/23
IP: 95.156.252.0/22
IP: 109.230.192.0/23
IP: 109.230.200.0/24
IP: 109.230.204.0/22
IP: 109.230.221.0/24
IP: 109.230.223.0/24
IP: 109.230.242.0/24
IP: 109.230.246.0/23
IP: 109.230.251.0/24
IP: 134.255.196.0/23
IP: 134.255.200.0/21
IP: 134.255.245.0 -- 134.255.246.255
IP: 134.255.249.0/24
IP: 185.10.71.0/24
IP: 185.13.228.0/22
IP: 2a00:1a88::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:33:b1:66:70:8e:63:26:33:ac:7d:64:8e:f1:c1:fd:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 27 13:35:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d1:10:f5:a6:76:1c:24:47:4d:20:48:94:73:
41:ca:a8:ff:c1:7d:86:0c:63:ea:f8:ec:8c:25:8b:
8e:a0:3d:53:a5:51:90:98:db:81:0c:c7:a9:af:d2:
c5:6c:b1:a6:fc:5f:1a:25:ac:0f:94:fb:d5:cc:eb:
0b:72:c7:81:ad:77:7d:99:9a:1b:bc:9a:78:8d:93:
71:7a:2f:78:79:37:ac:98:17:2d:c2:9a:41:07:0c:
71:1b:cd:0f:7c:5b:1d:f9:9e:a2:ba:e4:31:fa:18:
ce:e0:8a:3b:7a:e7:a1:a2:81:50:f5:a9:0a:2f:c8:
47:15:80:dd:8f:8d:b8:48:a9:39:53:06:86:de:27:
32:6a:29:33:66:2a:c1:d7:11:a6:fb:6c:0a:e4:da:
82:a2:16:08:89:90:d7:a8:dd:cc:98:11:c3:66:a1:
dd:f1:a0:7d:c1:ba:d4:12:ea:de:29:1f:60:0e:9e:
61:01:95:51:89:35:79:20:34:1d:76:eb:e3:33:96:
a4:d8:d4:f5:6a:68:b8:e9:d0:1e:b5:28:6a:3f:c8:
6d:e1:d8:75:2a:ce:cd:20:0c:2e:2f:c7:61:86:23:
8f:5d:77:ec:07:ef:2e:c3:ec:68:68:e1:c1:16:ea:
ea:f2:bc:d7:b1:42:7a:9d:fe:7b:56:4c:6e:68:87:
1d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.132.0/23
31.214.146.0/23
31.214.154.0/24
31.214.168.0/21
31.214.200.0/23
31.214.228.0/22
31.214.248.0/21
37.10.64.0/22
37.10.109.0/24
37.10.117.0/24
37.228.131.0/24
37.228.133.0/24
37.228.135.0-37.228.139.255
46.41.192.0/18
46.251.224.0/24
46.251.226.0/24
46.251.237.0/24
82.99.192.0/18
95.156.222.0/23
95.156.233.0-95.156.237.255
95.156.248.0/23
95.156.252.0/22
109.230.192.0/23
109.230.200.0/24
109.230.204.0/22
109.230.221.0/24
109.230.223.0/24
109.230.242.0/24
109.230.246.0/23
109.230.251.0/24
134.255.196.0/23
134.255.200.0/21
134.255.245.0-134.255.246.255
134.255.249.0/24
185.10.71.0/24
185.13.228.0/22
IPv6:
2a00:1a88::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16322
60976
61061
Signature Algorithm: sha256WithRSAEncryption
0f:c2:8f:15:8a:73:84:8b:ba:29:d7:d4:b8:1b:c4:eb:b4:41:
2d:d8:0d:31:7b:6c:f0:72:b2:a9:78:95:d0:81:6f:57:c1:48:
17:50:a8:66:b6:58:11:09:99:bc:34:15:d7:82:28:23:46:c3:
ed:0c:ba:c1:cb:8c:ef:86:73:c2:5f:8b:3d:19:30:25:e9:5f:
d4:73:9c:14:e5:f9:32:aa:6b:3f:a0:05:2b:52:27:5b:5c:77:
47:e9:32:f2:65:76:39:dd:a3:45:4d:49:52:32:3d:a9:2a:07:
e9:58:ee:8f:04:35:ec:9e:9f:ff:e0:5b:3e:8b:8a:23:d8:55:
29:a6:32:ec:0d:bc:1d:dd:b7:18:13:8b:b0:24:63:2b:13:8d:
5b:f4:63:6e:6b:1c:43:51:b8:13:e0:89:7b:73:5a:9f:5f:58:
49:ab:c6:86:fe:cc:b5:77:28:35:4d:a6:2b:74:af:d7:b1:ce:
62:27:8c:ba:de:9a:96:fd:ea:fd:80:1e:2c:21:f9:2b:96:a7:
b9:7b:67:ef:41:c0:74:64:37:77:9c:ee:20:aa:67:34:ef:cc:
e8:21:eb:10:bc:1f:8a:3b:d2:18:eb:ba:d9:54:b3:dc:d6:9d:
c0:3a:08:c4:a6:01:e4:76:c2:10:b5:65:ee:29:81:16:74:58:
3b:e4:19:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:29:51 2024 by rpki-client on console-fra.rpki-client.org