Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/M_6ArqEA6YwNpdH_75izcdEe3aI.cer
File: M_6ArqEA6YwNpdH_75izcdEe3aI.cer (raw, json)
Hash identifier: rx+BUEKYQ22t3iWRfJshSy+IltrCUV5bgVX79K6+Vm8=
Subject key identifier: 33:FE:80:AE:A1:00:E9:8C:0D:A5:D1:FF:EF:98:B3:71:D1:1E:DD:A2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC349668C515BC4876FBAD60EB12F1393
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/M_6ArqEA6YwNpdH_75izcdEe3aI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:30:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31214
AS: 202765
IP: 5.11.64.0/20
IP: 31.192.128.0/19
IP: 37.60.208.0/20
IP: 83.219.128.0/19
IP: 91.109.128.0/19
IP: 109.111.128.0/19
IP: 178.210.0.0/19
IP: 185.16.136.0/22
IP: 185.234.120.0/22
IP: 185.238.76.0/22
IP: 185.251.216.0/22
IP: 193.39.220.0/22
IP: 194.50.12.0/22
IP: 213.149.0.0/19
IP: 2a03:5800::/32
IP: 2a06:50c0::/32
IP: 2a0c:2980::/32
IP: 2a0d:1500::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:66:8c:51:5b:c4:87:6f:ba:d6:0e:b1:2f:13:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33fe80aea100e98c0da5d1ffef98b371d11edda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:20:b4:69:38:12:db:05:01:91:5f:16:68:2d:
74:b9:c0:e1:c5:55:5e:7a:2f:12:f3:e6:64:6c:7c:
4d:b2:ce:06:90:78:ef:82:9b:69:f5:49:a2:07:30:
0c:01:d0:d1:ce:51:9d:73:9c:8d:7f:41:2f:c4:3d:
79:94:5c:4d:05:10:44:41:89:f7:c5:52:30:d8:d3:
26:81:88:4f:2a:7c:46:52:10:e1:8b:92:58:3e:4c:
d0:c6:90:4d:f7:ae:ba:f6:d8:d6:1f:74:30:b0:94:
f5:04:67:fb:96:48:1f:03:32:ef:cd:aa:e4:24:fe:
ed:86:50:8c:98:22:0b:aa:61:30:ac:50:bd:54:75:
56:4e:1d:10:f8:d7:5b:f3:08:a9:21:0e:c5:9a:92:
37:79:8d:95:ed:0b:95:6c:34:aa:04:99:7c:64:86:
75:5e:6e:7c:ab:04:fb:b5:fe:06:e6:06:9f:ac:97:
68:90:6c:ab:4d:55:e8:5d:17:bb:09:fd:51:17:b8:
aa:6a:53:ae:7a:20:3e:de:17:49:70:f7:89:39:05:
d8:50:e1:1f:b9:56:be:df:50:fe:87:71:ec:a8:c6:
13:c7:a5:54:d9:7c:2a:70:a1:d9:1c:f8:29:40:04:
40:de:0f:bb:77:8e:87:7f:8e:37:f0:a5:6d:93:86:
b9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FE:80:AE:A1:00:E9:8C:0D:A5:D1:FF:EF:98:B3:71:D1:1E:DD:A2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/M_6ArqEA6YwNpdH_75izcdEe3aI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.64.0/20
31.192.128.0/19
37.60.208.0/20
83.219.128.0/19
91.109.128.0/19
109.111.128.0/19
178.210.0.0/19
185.16.136.0/22
185.234.120.0/22
185.238.76.0/22
185.251.216.0/22
193.39.220.0/22
194.50.12.0/22
213.149.0.0/19
IPv6:
2a03:5800::/32
2a06:50c0::/32
2a0c:2980::/32
2a0d:1500::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31214
202765
Signature Algorithm: sha256WithRSAEncryption
6b:4d:ad:f3:ed:04:e4:ff:46:4a:ca:62:92:a5:68:74:22:ff:
1e:d9:99:4b:d4:8a:5f:23:aa:f6:6b:c7:e9:01:c0:90:41:7d:
39:06:59:99:a1:75:41:db:ec:7e:1f:62:53:b8:97:cc:45:2a:
b1:20:4b:56:5d:e3:f6:e3:a0:b6:f3:20:8b:c5:a0:47:c3:66:
93:7d:30:37:3d:52:d4:63:4d:2e:8b:22:c1:fc:8e:74:b6:bc:
50:c5:8a:fc:d0:fe:bd:31:26:f4:fc:dd:dd:4f:23:66:39:c8:
9f:b5:f9:dd:9d:f3:c9:af:6b:6a:67:31:05:77:63:a4:a6:66:
87:9a:22:09:94:d7:be:7d:21:c1:3b:6b:b3:79:e2:c1:95:49:
71:22:25:9b:77:47:88:7e:0c:04:d0:1a:d5:be:55:ff:f9:5d:
c5:6f:d4:77:de:d1:5c:b0:0c:d7:40:3c:ea:e8:09:75:ea:dc:
c3:9b:0d:8c:34:bf:bb:22:3e:db:15:25:0c:07:55:2f:a2:00:
e5:4e:bf:03:dd:b7:45:34:b8:06:fc:7f:70:72:01:e4:d3:cc:
f3:61:95:e6:b5:38:29:2d:14:60:3a:05:f4:de:43:ad:b5:31:
d2:cd:e7:01:20:67:f2:a4:9f:19:d5:90:79:8e:04:82:01:2e:
08:30:64:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:04:16 2024 by rpki-client on console-ams.rpki-client.org