Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/T2ytpcCy7sgMoSwVTO4FYDuEXf4.cer
File: T2ytpcCy7sgMoSwVTO4FYDuEXf4.cer (raw, json)
Hash identifier: iDiph3fIU4OXa9ShsOY0MI7TbYO+/aBSSWy6RbUEanA=
Subject key identifier: 4F:6C:AD:A5:C0:B2:EE:C8:0C:A1:2C:15:4C:EE:05:60:3B:84:5D:FE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0181D3A685D10E4F2E8181533D8AA078FF0E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0/4F6CADA5C0B2EEC80CA12C154CEE05603B845DFE.mft
caRepository: rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0
Notify URL: https://magellan.ipxo.com/rrdp/notification.xml
Certificate not before: Wed 06 Jul 2022 13:15:14 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 209526
IP: 2.57.16.0/21
IP: 2.58.28.0/22
IP: 2.58.172.0/22
IP: 5.45.36.0/22
IP: 5.181.124.0 -- 5.181.135.255
IP: 5.182.108.0/22
IP: 5.252.68.0 -- 5.252.83.255
IP: 5.252.160.0/22
IP: 5.253.200.0/22
IP: 37.143.60.0/22
IP: 45.81.0.0/22
IP: 45.87.184.0/22
IP: 45.88.96.0/22
IP: 45.89.240.0/22
IP: 45.89.248.0/21
IP: 45.93.44.0/22
IP: 45.95.12.0/22
IP: 45.95.20.0/22
IP: 45.95.36.0/22
IP: 45.133.168.0 -- 45.133.179.255
IP: 45.137.28.0/22
IP: 45.137.116.0/22
IP: 45.137.124.0/22
IP: 45.137.132.0/22
IP: 45.137.156.0/22
IP: 45.139.180.0/22
IP: 45.231.206.0/23
IP: 85.208.72.0/22
IP: 85.209.176.0/22
IP: 89.19.44.0 -- 89.19.51.255
IP: 89.207.176.0/22
IP: 92.118.160.0/22
IP: 92.119.32.0/22
IP: 92.242.184.0/22
IP: 109.106.0.0/22
IP: 130.185.124.0/22
IP: 141.98.88.0/22
IP: 149.62.40.0/22
IP: 179.61.128.0/17
IP: 181.41.192.0/19
IP: 181.214.0.0/15
IP: 185.34.40.0/22
IP: 185.130.204.0/22
IP: 185.135.8.0/22
IP: 185.135.156.0/22
IP: 185.137.12.0/22
IP: 185.137.92.0/22
IP: 185.139.0.0/22
IP: 185.139.236.0/22
IP: 185.141.164.0/22
IP: 185.142.24.0/22
IP: 185.143.228.0/22
IP: 185.145.36.0/22
IP: 185.151.56.0/22
IP: 185.158.100.0 -- 185.158.107.255
IP: 185.158.132.0/22
IP: 185.158.148.0/22
IP: 185.170.40.0/22
IP: 185.170.56.0/22
IP: 185.172.56.0/22
IP: 185.172.64.0/22
IP: 185.173.24.0/22
IP: 185.173.32.0/22
IP: 185.174.60.0/22
IP: 191.96.0.0/16
IP: 191.101.0.0/16
IP: 193.7.200.0/22
IP: 193.31.40.0/22
IP: 193.58.104.0/22
IP: 193.107.208.0/22
IP: 193.227.122.0/24
IP: 193.227.125.0/24
IP: 193.227.129.0/24
IP: 193.227.135.0/24
IP: 194.53.140.0/22
IP: 194.110.12.0/22
IP: 194.110.242.0/24
IP: 213.109.168.0/22
IP: 2a00:d1a0::/32
IP: 2a03:a960::/29
IP: 2a03:fbc0::/29
IP: 2a06:2b80::/29
IP: 2a09:4b40::/29
IP: 2a0a:4e80::/29
IP: 2a0a:7a00::/29
IP: 2a0a:7e00::/29
IP: 2a0a:8600::/29
IP: 2a0a:8e00::/29
IP: 2a0a:9200::/29
IP: 2a0a:9600::/29
IP: 2a0a:9a00::/29
IP: 2a0a:9e00::/29
IP: 2a0a:9f00::/29
IP: 2a0a:a600::/29
IP: 2a0a:a700::/29
IP: 2a0a:b200::/29
IP: 2a0a:b600::/29
IP: 2a0a:ba00::/29
IP: 2a0a:be00::/29
IP: 2a0a:c600::/29
IP: 2a0a:ce00::/29
IP: 2a0a:d200::/29
IP: 2a0b:300::/29
IP: 2a0b:500::/29
IP: 2a0b:3300::/29
IP: 2a0b:3700::/29
IP: 2a0b:8700::/29
IP: 2a0c:fa40::/29
IP: 2a0d:5c0::/29
IP: 2a0d:4b40::/29
IP: 2a0d:4c40::/29
IP: 2a0e:1c00::/29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:a6:85:d1:0e:4f:2e:81:81:53:3d:8a:a0:78:ff:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 6 13:15:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f6cada5c0b2eec80ca12c154cee05603b845dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:35:72:c8:64:b2:a5:78:a9:7f:e9:18:2f:aa:
09:dd:ac:89:d2:33:3a:4a:a6:48:84:dd:92:16:52:
2d:71:24:5b:21:2b:6d:9d:7b:98:16:0a:0e:d1:d9:
1c:dc:9f:60:1a:fe:32:91:a4:a9:33:a0:93:38:5e:
06:db:34:65:72:61:46:73:bd:d0:ac:89:bd:ce:72:
90:b8:93:0f:32:0d:4e:0f:8f:e6:5b:5a:7f:31:9f:
95:69:fd:57:d2:3c:67:5d:db:f7:ef:21:a1:13:63:
cd:c1:b5:bc:f6:a6:70:27:31:82:a4:11:16:40:47:
34:b2:94:7f:02:82:73:6a:40:6d:a8:c5:a2:6e:53:
05:1d:41:71:03:d0:cc:46:6b:18:74:26:04:46:ca:
94:3f:45:06:26:5d:62:fc:23:29:7c:08:d8:4f:e6:
7f:98:f5:c8:d1:17:95:86:f3:e0:6e:f7:1b:0a:9c:
6e:6f:33:e5:81:80:7b:53:75:90:ac:55:0d:1a:3f:
cd:f1:40:c4:d2:3d:6e:b9:ff:40:b8:54:0f:a6:1f:
ac:58:e5:55:24:a1:b7:8b:64:6b:e5:f2:bb:d3:81:
db:58:75:5e:9a:bb:fb:b0:25:0d:c5:c3:2a:13:00:
1f:0f:2c:95:c9:cf:ce:5e:54:2a:b0:9a:0b:c1:e7:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6C:AD:A5:C0:B2:EE:C8:0C:A1:2C:15:4C:EE:05:60:3B:84:5D:FE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0
RPKI Manifest - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0/4F6CADA5C0B2EEC80CA12C154CEE05603B845DFE.mft
RPKI Notify - URI:https://magellan.ipxo.com/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.16.0/21
2.58.28.0/22
2.58.172.0/22
5.45.36.0/22
5.181.124.0-5.181.135.255
5.182.108.0/22
5.252.68.0-5.252.83.255
5.252.160.0/22
5.253.200.0/22
37.143.60.0/22
45.81.0.0/22
45.87.184.0/22
45.88.96.0/22
45.89.240.0/22
45.89.248.0/21
45.93.44.0/22
45.95.12.0/22
45.95.20.0/22
45.95.36.0/22
45.133.168.0-45.133.179.255
45.137.28.0/22
45.137.116.0/22
45.137.124.0/22
45.137.132.0/22
45.137.156.0/22
45.139.180.0/22
45.231.206.0/23
85.208.72.0/22
85.209.176.0/22
89.19.44.0-89.19.51.255
89.207.176.0/22
92.118.160.0/22
92.119.32.0/22
92.242.184.0/22
109.106.0.0/22
130.185.124.0/22
141.98.88.0/22
149.62.40.0/22
179.61.128.0/17
181.41.192.0/19
181.214.0.0/15
185.34.40.0/22
185.130.204.0/22
185.135.8.0/22
185.135.156.0/22
185.137.12.0/22
185.137.92.0/22
185.139.0.0/22
185.139.236.0/22
185.141.164.0/22
185.142.24.0/22
185.143.228.0/22
185.145.36.0/22
185.151.56.0/22
185.158.100.0-185.158.107.255
185.158.132.0/22
185.158.148.0/22
185.170.40.0/22
185.170.56.0/22
185.172.56.0/22
185.172.64.0/22
185.173.24.0/22
185.173.32.0/22
185.174.60.0/22
191.96.0.0/16
191.101.0.0/16
193.7.200.0/22
193.31.40.0/22
193.58.104.0/22
193.107.208.0/22
193.227.122.0/24
193.227.125.0/24
193.227.129.0/24
193.227.135.0/24
194.53.140.0/22
194.110.12.0/22
194.110.242.0/24
213.109.168.0/22
IPv6:
2a00:d1a0::/32
2a03:a960::/29
2a03:fbc0::/29
2a06:2b80::/29
2a09:4b40::/29
2a0a:4e80::/29
2a0a:7a00::/29
2a0a:7e00::/29
2a0a:8600::/29
2a0a:8e00::/29
2a0a:9200::/29
2a0a:9600::/29
2a0a:9a00::/29
2a0a:9e00::/29
2a0a:9f00::/29
2a0a:a600::/29
2a0a:a700::/29
2a0a:b200::/29
2a0a:b600::/29
2a0a:ba00::/29
2a0a:be00::/29
2a0a:c600::/29
2a0a:ce00::/29
2a0a:d200::/29
2a0b:300::/29
2a0b:500::/29
2a0b:3300::/29
2a0b:3700::/29
2a0b:8700::/29
2a0c:fa40::/29
2a0d:5c0::/29
2a0d:4b40::/29
2a0d:4c40::/29
2a0e:1c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209526
Signature Algorithm: sha256WithRSAEncryption
1c:6a:04:5d:b4:1c:93:a6:98:9a:a7:c3:d8:0f:e6:4a:7c:22:
e6:2b:fd:26:1d:82:b3:57:ef:6b:4e:3b:55:28:82:b1:c8:56:
54:a2:3c:39:d6:e4:14:84:77:b5:ce:13:b2:f8:d6:f4:cb:08:
b5:a9:2c:64:ae:76:7a:4d:dd:bd:3c:8c:4f:cf:bd:f2:a3:63:
88:8d:12:37:24:c9:1e:37:df:9a:50:8f:e7:35:83:c7:7e:3d:
ca:f4:92:da:55:3b:74:61:c9:dc:c2:48:91:c1:d4:03:c9:24:
7e:3f:9f:23:bf:68:98:79:85:cf:62:1a:f7:76:a2:3d:51:24:
c3:7e:44:ce:4d:13:e3:df:7f:8c:b4:b3:9a:13:f8:12:9a:17:
41:d1:b6:0a:3f:da:62:11:42:2d:a8:72:31:7e:75:1f:51:e8:
60:a1:6e:29:d4:d8:aa:33:65:77:3b:c0:2f:5f:bb:a9:7c:79:
76:1a:f5:4b:59:15:85:47:96:d3:40:7f:f1:6e:7a:4d:7b:65:
ce:05:c7:90:e4:52:f7:f1:5a:2f:39:5a:16:f6:4e:c2:05:51:
6c:f0:ac:22:fc:77:0f:e5:4b:72:10:43:77:b3:de:d8:4b:97:
8a:a9:08:bb:c9:ad:fa:b3:d9:ef:4f:69:20:b2:90:27:6b:67:
ab:ef:0b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:33:04 2024 by rpki-client on console-ams.rpki-client.org