Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
File: SU14c0FlEKL7I0bvNCKAFVUicTs.cer (raw, json)
Hash identifier: a7lJRUHpXtUA0yb7mDdMZigcf9lMIodPG6H1d3AAEHY=
Subject key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94DAE09362B22F356BDD8F7AEC0B245
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29141
IP: 5.45.176.0/21
IP: 31.14.46.0/23
IP: 31.170.104.0/21
IP: 80.83.112.0/20
IP: 130.255.72.0/21
IP: 130.255.184.0/21
IP: 185.13.148.0/22
IP: 185.45.112.0/22
IP: 195.68.246.0/23
IP: 195.128.160.0/23
IP: 2a02:e00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:ae:09:36:2b:22:f3:56:bd:d8:f7:ae:c0:b2:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=494d7873416510a2fb2346ef342280155522713b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:10:47:54:e4:a0:ea:f4:84:3c:b0:11:2c:6d:
00:18:88:85:9b:11:8f:51:18:1b:14:bf:3e:a7:bc:
8d:1f:06:07:a4:ba:2d:d9:4d:13:65:d6:09:db:c6:
6c:17:0a:f0:68:60:40:4d:2b:b6:e9:46:76:7a:81:
11:9d:19:99:ce:65:2b:dd:05:ac:09:ff:9d:bc:7c:
68:0e:1b:69:b6:fb:42:c1:c9:af:50:24:1f:43:c2:
1a:58:54:23:e8:80:3b:6f:bf:da:65:29:ea:23:03:
f8:36:67:9c:0d:49:88:58:90:92:8f:1d:43:59:32:
83:54:72:f9:82:06:ae:4e:5e:47:42:c2:d3:5b:c1:
b8:24:59:00:1a:0a:2a:f4:f6:93:95:6b:54:7b:75:
ed:6e:de:2f:74:da:a3:23:ab:94:85:b9:46:3a:53:
2a:bf:4c:1d:c4:6a:b1:82:28:23:9a:d4:8b:7f:f4:
ff:29:28:ba:80:a4:7f:46:5f:7f:d6:9b:c3:80:3a:
29:af:ba:b0:2c:01:8b:3b:d3:ec:c3:54:e9:54:27:
87:91:d3:ea:30:09:41:3a:c1:4c:68:cd:2f:e9:b0:
c4:95:b1:98:fa:ac:37:1a:18:77:36:15:44:ad:c6:
08:23:08:7f:eb:03:5f:14:92:3d:d0:04:b9:89:83:
00:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.176.0/21
31.14.46.0/23
31.170.104.0/21
80.83.112.0/20
130.255.72.0/21
130.255.184.0/21
185.13.148.0/22
185.45.112.0/22
195.68.246.0/23
195.128.160.0/23
IPv6:
2a02:e00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29141
Signature Algorithm: sha256WithRSAEncryption
08:15:23:af:3c:cd:7c:98:96:cf:bd:f3:bc:67:64:ba:d4:40:
ab:aa:f7:47:d8:65:8f:24:67:7b:00:b9:b5:41:a9:67:00:42:
73:04:d9:ad:a6:b5:87:1e:c2:d2:ee:95:20:66:4d:17:09:d3:
02:19:d5:6f:a2:a6:7b:03:90:a1:49:52:d9:4a:d9:c1:a3:42:
ce:e1:88:f9:d4:53:ee:2c:55:43:57:5a:07:0b:e4:f2:5c:f6:
be:fa:de:59:80:2f:b6:fd:31:5a:d8:3b:66:b5:b4:4e:8f:c3:
91:9b:74:a3:0d:77:28:0e:2c:77:3c:82:29:68:4d:d6:15:a9:
3f:bb:37:c6:2d:48:1c:f9:19:75:d7:2c:8b:6b:ab:ed:3c:32:
73:70:2c:95:10:63:7e:b0:50:44:ba:88:d3:5f:3e:b2:71:b9:
c9:62:c9:ae:d2:7f:47:3c:56:9a:be:a2:d9:9b:3f:a1:20:1e:
0d:70:f4:3b:5e:9b:3c:ec:8b:49:50:68:4f:9c:30:ac:ca:00:
f3:4a:d4:24:7e:0c:f9:a2:13:65:26:a3:53:8b:d8:86:ac:99:
4e:16:8f:12:59:bd:18:6c:05:c8:64:69:b7:99:6a:00:fd:71:
bf:6c:68:37:09:ca:b0:c5:ea:3f:6e:bd:37:3e:d0:d9:c6:9c:
7b:a2:84:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 10:15:45 2024 by rpki-client on console-fra.rpki-client.org