Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer
File: L4Z1RXWU1-dAqu7y59fv0CI5xhc.cer (raw, json)
Hash identifier: MJ3xS7fK2f1piWTlpWxFkg3MSc6UpSZ+fwJlwxEweBU=
Subject key identifier: 2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D5BACEC72DF2FAF4DE6B781754EB2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47583
AS: 204915
IP: 2.57.88.0/22
IP: 31.170.160.0/21
IP: 31.220.16.0/21
IP: 31.220.48.0/20
IP: 31.220.104.0/21
IP: 45.13.132.0/22
IP: 45.13.252.0/22
IP: 45.87.80.0/22
IP: 45.93.136.0/22
IP: 93.188.160.0/21
IP: 153.92.0.0/20
IP: 156.67.208.0/20
IP: 185.28.20.0/22
IP: 185.77.96.0/23
IP: 194.11.154.0/23
IP: 194.11.214.0/23
IP: 195.110.58.0/23
IP: 212.1.208.0/21
IP: 2a02:4780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:5b:ac:ec:72:df:2f:af:4d:e6:b7:81:75:4e:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f8675457594d7e740aaeef2e7d7efd02239c617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:34:e2:25:c2:7e:da:65:05:d9:26:7c:dc:bc:
a0:50:28:44:ef:3d:56:3d:20:58:f3:e6:d2:ab:70:
ec:f2:99:2f:4b:2a:a1:45:5a:26:c3:bc:d7:c3:b2:
9b:e7:2b:15:73:91:e2:e7:93:9b:aa:61:46:d9:7f:
b5:25:7d:d0:c4:54:77:ba:8e:90:ea:a1:98:87:b3:
b8:55:3d:2d:57:cc:5e:ea:85:72:fe:6d:15:dd:49:
40:30:fa:77:dc:6d:f0:14:b5:fa:f9:32:e7:d2:07:
ea:29:8e:6f:56:9d:4f:c9:e5:bc:fb:9f:93:19:02:
27:b5:a5:f9:db:28:e5:9e:36:ad:d5:41:04:6c:22:
c4:d5:6a:ef:39:a2:74:33:79:bc:a6:25:6d:62:7c:
a8:e5:4c:fd:2f:cb:54:b4:31:9d:80:23:e5:fd:92:
22:19:68:e7:13:7a:4e:a1:e9:46:a1:32:95:b7:1c:
3b:81:28:d4:b7:3f:97:cb:00:25:94:14:31:5c:84:
9c:58:b8:5b:9c:98:5b:8e:62:2d:8e:68:ef:4b:8e:
66:cf:95:21:60:32:94:b3:35:d1:92:7f:f4:34:dd:
de:63:46:54:9c:3e:be:c0:19:34:98:19:94:e8:b3:
59:36:ad:ba:fc:50:a0:cc:7f:6d:47:b5:d7:ed:26:
d6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:86:75:45:75:94:D7:E7:40:AA:EE:F2:E7:D7:EF:D0:22:39:C6:17
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4cd4ca-c195-4bc4-bb9f-1031ae1eb032/1/L4Z1RXWU1-dAqu7y59fv0CI5xhc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.88.0/22
31.170.160.0/21
31.220.16.0/21
31.220.48.0/20
31.220.104.0/21
45.13.132.0/22
45.13.252.0/22
45.87.80.0/22
45.93.136.0/22
93.188.160.0/21
153.92.0.0/20
156.67.208.0/20
185.28.20.0/22
185.77.96.0/23
194.11.154.0/23
194.11.214.0/23
195.110.58.0/23
212.1.208.0/21
IPv6:
2a02:4780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47583
204915
Signature Algorithm: sha256WithRSAEncryption
83:2e:dd:f8:83:de:1e:ce:b5:51:f6:ca:99:ba:e0:17:42:7b:
ad:94:51:dc:f8:b2:3e:49:fe:17:36:db:22:7d:d4:d7:f3:10:
55:81:83:31:c9:c1:f1:99:2e:5d:ed:94:35:46:32:3f:44:07:
5a:9a:e2:1c:72:2d:4c:23:e1:13:af:37:ea:47:5e:b3:a9:ed:
5e:9a:7f:82:9d:88:d1:fa:90:65:0a:b3:46:e6:be:d0:f3:ea:
9a:a5:4b:4c:25:02:e8:b2:8c:4d:4f:fc:4b:12:34:d1:0f:11:
92:69:b1:83:54:37:f5:d3:83:71:85:d4:96:42:01:98:bd:0f:
cf:16:15:69:da:62:c7:5d:a4:4b:e9:94:42:b2:0b:11:46:dc:
b5:83:8b:d8:b0:a3:2a:14:d3:f7:80:73:ff:a2:93:d1:bc:e2:
e4:99:ac:3e:2d:35:85:45:0d:b5:8a:1b:3b:2c:da:b6:d9:6c:
da:f9:c3:b2:9d:5e:ed:1b:28:d2:cd:00:f9:5f:50:51:8e:e6:
bb:ba:25:49:e4:68:3c:0d:e9:93:9c:f1:01:6e:d6:fb:0f:af:
3c:e6:db:b5:87:30:c7:53:05:86:06:a1:88:79:f9:77:e8:2a:
08:a2:7f:48:8f:7b:cc:26:e4:f2:2f:f8:b2:57:38:8f:9f:57:
f5:79:eb:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:09:18 2024 by rpki-client on console-fra.rpki-client.org