Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/M_6ArqEA6YwNpdH_75izcdEe3aI.cer
File: M_6ArqEA6YwNpdH_75izcdEe3aI.cer (raw, json)
Hash identifier: skB6TUcTI3yOVPX5TkNksTUE+6HzcVlVRaOVY4mRUnE=
Subject key identifier: 33:FE:80:AE:A1:00:E9:8C:0D:A5:D1:FF:EF:98:B3:71:D1:1E:DD:A2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192F620192B0F0183123E09D2CCAFC7AF8C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/M_6ArqEA6YwNpdH_75izcdEe3aI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 04 Nov 2024 07:42:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31214
IP: 5.11.64.0/20
IP: 31.192.128.0/19
IP: 37.60.208.0/20
IP: 83.219.128.0/19
IP: 91.109.128.0/19
IP: 109.111.128.0/19
IP: 141.98.28.0/22
IP: 178.210.0.0/19
IP: 185.16.136.0/22
IP: 185.234.120.0/22
IP: 185.238.76.0/22
IP: 185.251.216.0/22
IP: 193.39.220.0/22
IP: 194.50.12.0/22
IP: 213.149.0.0/19
IP: 2a03:5800::/32
IP: 2a06:50c0::/32
IP: 2a0c:2980::/32
IP: 2a0d:1500::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f6:20:19:2b:0f:01:83:12:3e:09:d2:cc:af:c7:af:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 4 07:42:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33fe80aea100e98c0da5d1ffef98b371d11edda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:20:b4:69:38:12:db:05:01:91:5f:16:68:2d:
74:b9:c0:e1:c5:55:5e:7a:2f:12:f3:e6:64:6c:7c:
4d:b2:ce:06:90:78:ef:82:9b:69:f5:49:a2:07:30:
0c:01:d0:d1:ce:51:9d:73:9c:8d:7f:41:2f:c4:3d:
79:94:5c:4d:05:10:44:41:89:f7:c5:52:30:d8:d3:
26:81:88:4f:2a:7c:46:52:10:e1:8b:92:58:3e:4c:
d0:c6:90:4d:f7:ae:ba:f6:d8:d6:1f:74:30:b0:94:
f5:04:67:fb:96:48:1f:03:32:ef:cd:aa:e4:24:fe:
ed:86:50:8c:98:22:0b:aa:61:30:ac:50:bd:54:75:
56:4e:1d:10:f8:d7:5b:f3:08:a9:21:0e:c5:9a:92:
37:79:8d:95:ed:0b:95:6c:34:aa:04:99:7c:64:86:
75:5e:6e:7c:ab:04:fb:b5:fe:06:e6:06:9f:ac:97:
68:90:6c:ab:4d:55:e8:5d:17:bb:09:fd:51:17:b8:
aa:6a:53:ae:7a:20:3e:de:17:49:70:f7:89:39:05:
d8:50:e1:1f:b9:56:be:df:50:fe:87:71:ec:a8:c6:
13:c7:a5:54:d9:7c:2a:70:a1:d9:1c:f8:29:40:04:
40:de:0f:bb:77:8e:87:7f:8e:37:f0:a5:6d:93:86:
b9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FE:80:AE:A1:00:E9:8C:0D:A5:D1:FF:EF:98:B3:71:D1:1E:DD:A2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/802525-5c2c-4564-ba5a-6cd659acbf07/1/M_6ArqEA6YwNpdH_75izcdEe3aI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.11.64.0/20
31.192.128.0/19
37.60.208.0/20
83.219.128.0/19
91.109.128.0/19
109.111.128.0/19
141.98.28.0/22
178.210.0.0/19
185.16.136.0/22
185.234.120.0/22
185.238.76.0/22
185.251.216.0/22
193.39.220.0/22
194.50.12.0/22
213.149.0.0/19
IPv6:
2a03:5800::/32
2a06:50c0::/32
2a0c:2980::/32
2a0d:1500::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31214
Signature Algorithm: sha256WithRSAEncryption
aa:2b:24:4f:51:fe:84:d2:bb:e3:f5:f6:e9:c3:cf:9a:03:6d:
d9:37:ea:c9:8b:81:34:61:5b:f9:bb:c4:85:ef:3d:db:08:3c:
f9:49:04:79:17:e6:c1:d3:7b:ef:e6:30:a5:b6:3b:80:05:5f:
0f:06:89:b1:c6:bc:68:3c:3d:0d:a8:fa:25:f4:40:c9:ea:a5:
25:3b:23:94:77:83:a8:d1:45:0c:10:11:8b:b7:5d:12:d2:29:
69:85:20:00:0e:81:a9:72:14:f9:f4:f9:a1:cc:15:da:be:0b:
b5:84:18:7f:d8:29:89:3e:54:b3:25:6d:e1:a6:cd:55:1f:fe:
69:53:1c:8f:c1:c1:c2:da:85:0d:29:a7:17:d4:38:2f:8f:5d:
21:bb:20:40:e4:3c:46:26:07:fd:e2:eb:9c:ab:d3:16:5f:fe:
dc:6e:ca:d8:2f:41:8a:f8:94:0b:20:a2:da:0a:74:b1:f1:3e:
f5:68:74:58:04:12:e3:2f:95:3b:a8:e2:e2:31:2d:00:94:34:
f9:b2:1f:bf:ae:56:e1:50:74:05:20:3f:e7:bd:0c:23:87:da:
54:71:2b:09:2b:c0:cc:ae:d3:54:d7:11:a0:e0:03:0d:e7:9b:
1c:78:1c:89:26:18:2d:b8:8e:8e:4d:cb:2c:e7:31:8a:64:ab:
1d:0c:13:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:15:04 2024 by rpki-client on console-ams.rpki-client.org