Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Qs3jZdfStYUG5NSr8MLvfNXjtGI.cer
File: Qs3jZdfStYUG5NSr8MLvfNXjtGI.cer (raw, json)
Hash identifier: NDiCJGiyBMl4vydMeL93K1fQ/xMNurjNTExfBqch61k=
Subject key identifier: 42:CD:E3:65:D7:D2:B5:85:06:E4:D4:AB:F0:C2:EF:7C:D5:E3:B4:62
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DFA8671DF8099BB41C8C13B5D06E5D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/Qs3jZdfStYUG5NSr8MLvfNXjtGI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 30848
IP: 5.8.96.0/19
IP: 5.63.168.0/21
IP: 37.148.224.0/21
IP: 45.33.224.0/20
IP: 77.239.128.0/19
IP: 80.210.96.0/19
IP: 81.21.16.0/20
IP: 82.97.224.0/20
IP: 82.113.192.0/19
IP: 82.134.192.0/18
IP: 82.180.32.0/19
IP: 83.217.176.0/20
IP: 95.142.176.0/20
IP: 150.252.224.0/20
IP: 176.57.112.0/20
IP: 178.236.160.0/20
IP: 185.3.108.0/22
IP: 185.25.72.0/22
IP: 217.61.160.0/20
IP: 2a00:7ca0::/32
IP: 2a02:1630::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:a8:67:1d:f8:09:9b:b4:1c:8c:13:b5:d0:6e:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42cde365d7d2b58506e4d4abf0c2ef7cd5e3b462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d5:62:9b:9a:a8:39:b6:2d:f2:2c:26:3a:c7:
1c:9e:38:60:77:5e:05:32:c7:47:1d:e5:f5:b5:a9:
05:6d:9a:5b:8f:ac:30:14:ac:bf:29:5e:e4:4d:97:
6a:23:a5:74:fe:de:6d:35:27:cf:f4:b2:01:30:c7:
97:b5:0d:cb:22:cf:ef:dc:9b:0d:1a:d3:0e:22:2c:
e0:a9:b9:32:c7:53:36:51:c8:9d:1c:33:cc:a6:e4:
3f:29:93:6f:7a:ea:b2:b5:c4:c1:f4:c8:d2:f6:3c:
c0:87:f1:5c:27:5c:a0:ee:fc:2d:df:e1:a5:32:d9:
a4:24:3b:be:7d:ff:ec:93:b7:2b:93:84:96:5d:02:
7f:66:06:4a:eb:0f:6d:4b:58:f3:96:ef:1b:11:e9:
06:c1:a6:16:c1:55:d4:28:a0:ea:9f:e2:42:d1:8e:
cc:23:34:c9:6b:da:f7:a1:47:e4:e9:32:c9:fc:97:
40:20:bf:6a:89:ac:58:f7:dd:d7:3e:61:97:95:d6:
0a:41:45:da:ba:3e:91:c0:39:74:5d:ee:41:5e:9a:
82:8b:bc:0e:05:bc:2d:33:8b:dc:6b:5f:14:8f:6a:
e4:33:f8:61:3b:f2:be:af:85:27:e7:7c:5c:0e:07:
32:3f:3d:72:03:26:37:f1:38:b3:a4:f6:ce:62:bb:
e7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CD:E3:65:D7:D2:B5:85:06:E4:D4:AB:F0:C2:EF:7C:D5:E3:B4:62
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/Qs3jZdfStYUG5NSr8MLvfNXjtGI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.96.0/19
5.63.168.0/21
37.148.224.0/21
45.33.224.0/20
77.239.128.0/19
80.210.96.0/19
81.21.16.0/20
82.97.224.0/20
82.113.192.0/19
82.134.192.0/18
82.180.32.0/19
83.217.176.0/20
95.142.176.0/20
150.252.224.0/20
176.57.112.0/20
178.236.160.0/20
185.3.108.0/22
185.25.72.0/22
217.61.160.0/20
IPv6:
2a00:7ca0::/32
2a02:1630::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
30848
Signature Algorithm: sha256WithRSAEncryption
06:7b:4d:93:13:72:0a:d1:c6:ac:37:ac:76:c7:fa:02:f8:95:
78:21:33:a8:31:6a:81:91:b8:3e:82:df:63:e0:a5:14:48:9e:
7e:34:71:5d:91:6d:0f:1a:31:ce:55:35:54:d0:4d:32:c1:f0:
9c:3f:df:4b:0d:0f:ad:78:84:f9:db:12:8b:89:39:af:99:a4:
99:9d:30:00:5f:44:7d:7f:63:d7:f5:66:0d:59:fe:d4:c2:25:
57:49:4d:86:04:e5:a2:b7:4c:02:77:53:46:59:f9:01:ce:2e:
12:fd:0f:5b:a8:3d:8b:69:a5:70:96:ae:84:80:39:03:8c:08:
6d:be:41:6a:8b:bf:f8:f0:5b:b0:20:12:0c:7e:d7:91:4b:2a:
d1:2d:02:4a:36:e8:66:70:34:e8:42:7f:75:51:05:96:0c:78:
0e:b2:8a:a8:a2:00:fe:1c:8f:ec:b8:1e:b1:52:0b:c1:69:a5:
65:bf:99:de:af:23:2a:d5:ca:87:52:ef:50:6a:d7:f5:10:f1:
c8:ce:ae:f1:b7:fa:1b:23:1e:ac:ea:e3:47:2d:62:f8:4d:18:
2a:5e:2e:a0:fc:58:12:64:63:66:d2:d3:a5:52:f6:c9:f2:dc:
85:1f:73:14:93:a5:c7:c7:28:0f:f1:fe:a9:7a:57:3e:e1:ef:
bf:b4:03:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:16:00 2024 by rpki-client on console-ams.rpki-client.org