Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
File: Vo_jXMliYzonV68QoOboq20B9Mk.cer (raw, json)
Hash identifier: WnxLal7inj7aJh06cfxNEVCQkX7RXQh+ZZqQlKm67dM=
Subject key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B92B731A8113F9E4F0D6695B92F7EF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8386
AS: 15924
AS: 31654
AS: 35080
IP: 31.145.0.0/16
IP: 31.155.0.0/16
IP: 31.206.0.0/16
IP: 45.156.12.0/22
IP: 46.2.0.0/16
IP: 46.234.0.0/19
IP: 62.244.192.0/18
IP: 81.8.0.0/17
IP: 82.150.64.0/19
IP: 84.44.0.0/17
IP: 85.119.64.0/21
IP: 95.65.128.0/17
IP: 188.3.0.0/16
IP: 193.243.192.0/19
IP: 195.46.128.0/19
IP: 195.87.0.0/16
IP: 212.12.128.0/19
IP: 212.15.0.0/19
IP: 212.98.192.0/18
IP: 212.115.0.0/19
IP: 212.133.128.0/17
IP: 213.186.128.0/19
IP: 213.194.64.0/18
IP: 213.248.128.0/18
IP: 2001:930::/32
IP: 2a01:718::/32
IP: 2a03:c00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:2b:73:1a:81:13:f9:e4:f0:d6:69:5b:92:f7:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9f:e3:a5:47:2e:61:4d:16:61:e6:ce:4b:21:
13:9a:96:f7:45:a5:e7:58:b9:d0:ef:35:20:ca:29:
1c:5b:cd:43:17:1b:5b:80:2c:2a:aa:8b:76:43:dd:
74:02:dd:64:fa:30:bc:07:30:5c:af:62:31:a9:69:
b2:89:17:b1:d6:77:07:7e:7b:60:09:62:4b:3c:b3:
92:2d:3c:72:9a:36:0d:70:e3:14:00:17:04:b6:13:
bf:0d:29:3e:9c:9f:aa:67:67:ed:15:65:3b:ab:a2:
1a:2c:de:a5:2b:58:da:dd:7f:f1:80:1a:fd:99:d6:
54:5d:7f:2a:e6:25:13:e1:d0:23:17:70:ed:5c:15:
df:33:9c:72:dd:65:ac:86:a9:91:65:ad:66:8b:07:
ac:ab:e1:3f:6f:6b:32:72:bc:b9:50:fa:49:ec:51:
45:89:49:67:7c:9c:42:dc:bd:7f:56:12:83:f5:64:
2a:4e:9f:0d:18:46:06:5a:b0:0b:57:35:59:47:fe:
8f:e1:cf:0f:ea:95:16:31:e2:a5:4f:45:58:94:1f:
be:32:55:47:eb:b6:4e:b2:76:97:17:16:aa:12:7a:
8a:07:91:4b:15:79:59:93:da:0a:cd:c0:88:71:23:
b5:42:32:6d:7b:d2:13:0c:32:8c:47:f2:0b:31:a2:
f8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.0.0/16
31.155.0.0/16
31.206.0.0/16
45.156.12.0/22
46.2.0.0/16
46.234.0.0/19
62.244.192.0/18
81.8.0.0/17
82.150.64.0/19
84.44.0.0/17
85.119.64.0/21
95.65.128.0/17
188.3.0.0/16
193.243.192.0/19
195.46.128.0/19
195.87.0.0/16
212.12.128.0/19
212.15.0.0/19
212.98.192.0/18
212.115.0.0/19
212.133.128.0/17
213.186.128.0/19
213.194.64.0/18
213.248.128.0/18
IPv6:
2001:930::/32
2a01:718::/32
2a03:c00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8386
15924
31654
35080
Signature Algorithm: sha256WithRSAEncryption
21:76:ac:cf:4c:fa:a1:3c:6d:e7:78:e1:ae:cc:bc:53:41:ec:
dc:9f:7d:a5:d0:87:7c:be:69:cd:dd:f2:bc:8e:6c:7a:4e:e0:
2a:7b:0f:cb:46:ec:46:73:bb:b0:5e:f8:ef:72:f2:e3:96:cf:
65:6a:d3:7f:15:2b:6d:72:fa:1f:d5:b2:ae:cd:7f:58:37:b9:
e9:8e:ec:3f:e2:e0:38:64:02:13:89:ff:7f:99:ff:e9:19:56:
6a:f6:cb:ae:53:e1:03:3f:82:3f:41:de:23:c1:d0:79:35:5e:
59:96:cb:a7:82:7f:31:7a:22:a7:7a:51:db:62:48:c3:2a:ca:
61:19:80:1f:c1:2c:2d:ee:61:cd:85:39:53:69:a6:92:0a:35:
34:76:51:fa:6d:84:f7:c1:da:f9:fe:ba:9f:16:f0:c6:f9:e7:
77:c1:6c:a2:69:6a:29:08:7e:c5:04:9e:b2:77:c9:5c:05:e5:
85:63:45:fa:24:e8:a7:7f:88:fd:62:5f:76:b9:65:4f:42:8e:
c3:c5:b2:ff:1d:d9:9f:0c:9a:70:2a:98:26:86:8a:37:34:41:
50:97:32:3a:fb:61:2e:da:57:0c:93:a2:26:33:a8:73:a0:43:
38:07:e7:6b:d2:71:f7:62:e2:fe:4a:de:4d:49:0e:78:49:74:
42:ef:9d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:52:23 2024 by rpki-client on console-fra.rpki-client.org