Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LvlXq6LvADUoUOICRkxx0zyoFEg.cer
File: LvlXq6LvADUoUOICRkxx0zyoFEg.cer (raw, json)
Hash identifier: 1Xgu8rM/OhDUvcyF3Txpfk1DOGFww+7ljksUpZO0h/Y=
Subject key identifier: 2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC49301F48BEDDCE12497D5FC1E9D145A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 3256
IP: 81.194.0.0/16
IP: 193.48.0.0 -- 193.52.255.255
IP: 193.54.0.0/15
IP: 194.57.0.0/16
IP: 194.167.0.0/16
IP: 194.199.0.0/16
IP: 194.214.0.0/16
IP: 194.254.0.0/16
IP: 195.83.0.0/16
IP: 195.98.224.0/19
IP: 195.220.0.0/15
IP: 2001:660::/29
IP: 2001:7f8:4e::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:01:f4:8b:ed:dc:e1:24:97:d5:fc:1e:9d:14:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ef957aba2ef00352850e202464c71d33ca81448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:76:80:0f:46:9e:44:b9:c7:89:83:8b:13:4a:
1c:0b:38:ff:03:8d:f9:67:76:2a:06:d0:89:f3:06:
4c:5e:a3:dc:f3:a8:27:84:64:f0:83:d9:13:6f:56:
89:fa:22:04:e1:46:72:cc:1d:11:ca:e8:94:87:ec:
c7:0a:01:cf:89:cd:09:a9:4d:70:66:ba:6d:25:cd:
7a:38:e5:9f:db:fe:e3:57:58:89:dd:fc:45:d5:1e:
4a:7e:72:fc:d9:ab:3a:fb:ce:20:7c:41:4c:83:61:
ae:87:78:ee:19:59:fc:bf:7a:4f:16:0d:c6:98:4e:
b5:27:fc:36:c5:87:d9:0d:8c:4a:bb:99:e1:43:21:
ee:1f:e0:ed:fa:c4:d7:b8:59:f9:d7:1e:3e:c7:03:
13:76:f9:fb:13:1a:c0:22:63:34:bf:38:2a:c0:01:
f1:86:84:c1:83:a1:e9:41:16:18:98:67:41:ec:4b:
cf:0f:30:2f:ea:7d:28:1f:7b:bb:10:d6:a7:84:ec:
0c:66:6c:f1:9d:92:0e:c8:5f:4e:f4:f6:0a:e5:02:
bf:c5:69:d6:47:e5:74:ef:9b:80:05:e2:9b:36:fc:
51:06:4c:ee:34:18:00:15:45:36:34:fe:f0:d7:83:
ed:93:49:35:d2:b0:b5:3b:91:3c:02:fc:4e:7a:de:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F9:57:AB:A2:EF:00:35:28:50:E2:02:46:4C:71:D3:3C:A8:14:48
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a584e4-ccd4-4c4f-9d16-04a27c4d5453/1/LvlXq6LvADUoUOICRkxx0zyoFEg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.194.0.0/16
193.48.0.0-193.52.255.255
193.54.0.0/15
194.57.0.0/16
194.167.0.0/16
194.199.0.0/16
194.214.0.0/16
194.254.0.0/16
195.83.0.0/16
195.98.224.0/19
195.220.0.0/15
IPv6:
2001:660::/29
2001:7f8:4e::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3256
Signature Algorithm: sha256WithRSAEncryption
72:26:e3:0d:91:44:b4:1e:21:15:ae:54:17:22:8f:c1:dd:9d:
c7:8e:93:a6:87:54:f9:8a:14:79:9a:bd:f3:d6:00:7c:c6:0e:
fa:2a:be:d1:18:50:c5:9f:71:bc:f1:34:27:ec:e9:0e:f9:7e:
03:70:f0:fc:9b:08:5f:80:e1:1d:f4:5d:ba:ba:50:f1:e2:0f:
95:2d:79:5b:2e:d9:7f:01:f4:90:ea:c9:14:db:5c:da:1a:d5:
d7:9c:ee:eb:7d:e3:98:7c:8f:34:d2:22:73:2e:8b:0f:1e:6a:
bf:ad:6f:6b:00:50:ec:05:26:08:09:da:44:66:bf:b8:9c:12:
f5:d5:97:a1:9f:92:94:06:fe:eb:4c:f0:2d:a0:96:22:59:16:
e4:c9:7a:13:f9:ce:c6:32:01:05:c2:a8:a7:02:45:3e:43:e7:
9e:d8:93:22:5c:1b:db:e0:1c:91:d4:70:21:fa:86:8c:df:34:
41:e4:5a:21:92:ff:20:95:99:80:d6:a9:fc:8f:fe:3a:6b:1d:
1a:0d:a1:c1:3e:8f:2f:42:ff:dd:17:1c:b0:7f:7d:a9:25:cc:
02:6f:8d:0a:78:82:af:60:32:0a:47:09:5c:ca:36:0f:71:27:
74:fe:10:47:73:46:d0:2a:b9:90:cf:f3:a0:6e:89:6a:1d:c7:
14:4d:a9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:14:54 2024 by rpki-client on console-ams.rpki-client.org