Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
File: Wm-SlVId8woVj1Brp8uHOrlSncM.cer (raw, json)
Hash identifier: +G6kAYjXNAS02oAvcuO1QOsxfoWeL7jN7okUEK2NCMU=
Subject key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348EF2393DF88493692FA42B19BD386
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 5408
AS: 50745
AS: 199399
IP: 37.32.128.0/17
IP: 62.217.64.0/18
IP: 83.212.0.0/16
IP: 91.227.108.0/24
IP: 176.126.38.0/24
IP: 185.1.123.0/24
IP: 185.5.76.0/22
IP: 185.81.196.0/22
IP: 193.105.109.0/24
IP: 194.42.50.0 -- 194.42.54.255
IP: 194.177.192.0/19
IP: 195.130.64.0/18
IP: 195.251.0.0/16
IP: 2001:648::/29
IP: 2001:7f8:6e::/48
IP: 2001:7f8:ce::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ef:23:93:df:88:49:36:92:fa:42:b1:9b:d3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:96:5a:25:c2:86:86:a0:66:e0:be:61:0e:30:
e8:e2:6c:2c:e1:5b:ec:48:75:fc:78:42:80:5c:93:
3c:4e:df:e4:2a:20:67:35:21:94:e3:6f:d5:4d:67:
11:e3:a8:84:5f:44:7a:6c:bf:9e:2b:94:0c:30:d5:
f1:a7:12:06:c9:7d:94:d6:14:23:73:87:ff:f4:b9:
ce:26:08:48:2a:5a:1a:89:21:4a:2c:1e:e4:47:23:
4c:a1:67:3c:1e:bd:ba:b4:66:f2:cd:0e:20:23:28:
3b:24:32:a4:d9:cb:76:e1:84:1e:69:41:b0:fc:8a:
0f:29:59:ae:c3:e2:f1:a3:58:39:ba:14:c7:b8:2b:
52:63:bd:da:b1:32:e8:57:8a:84:87:ac:3f:08:4c:
15:33:e2:77:b7:37:e6:e3:72:15:d0:ab:8c:a9:c9:
b2:0b:b7:23:e8:b9:1a:a6:21:7d:d7:bc:7d:00:7b:
57:44:27:9c:b9:25:a9:37:f6:af:3c:87:9d:4a:e3:
6a:8d:cc:35:a6:fd:f6:8c:46:63:fb:80:dc:34:c2:
cf:92:02:a7:75:94:2e:c5:5c:77:85:fa:97:81:3e:
4c:01:e6:ee:90:f5:d4:2f:8f:21:00:f6:29:d2:50:
9c:46:f6:6b:fe:d7:ea:4b:ed:7c:4c:aa:ba:de:34:
32:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.128.0/17
62.217.64.0/18
83.212.0.0/16
91.227.108.0/24
176.126.38.0/24
185.1.123.0/24
185.5.76.0/22
185.81.196.0/22
193.105.109.0/24
194.42.50.0-194.42.54.255
194.177.192.0/19
195.130.64.0/18
195.251.0.0/16
IPv6:
2001:648::/29
2001:7f8:6e::/48
2001:7f8:ce::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5408
50745
199399
Signature Algorithm: sha256WithRSAEncryption
70:46:b7:a4:68:71:c3:22:a5:0d:b3:e6:4f:75:e2:9b:25:94:
1b:8d:21:1e:d8:51:e3:d7:75:b7:e3:3b:39:ed:00:70:da:8f:
fd:0c:4d:93:35:cb:4a:7d:0a:b5:3d:aa:2c:84:89:31:51:fe:
f7:24:d9:4b:9d:41:73:60:c1:f9:f1:e9:87:c8:21:66:73:10:
0d:8f:32:20:d8:87:c7:0a:bf:e5:3d:7b:f3:3a:ec:fa:4f:5c:
64:39:ba:24:e1:43:53:00:1e:93:53:48:a8:f6:ed:3f:ae:12:
48:06:b1:e8:7a:10:c1:ec:cf:94:22:d6:c8:18:20:19:f4:80:
13:c7:7c:8e:6a:29:cf:69:15:54:d1:48:35:79:37:51:2c:6e:
f6:cb:a5:2f:42:28:91:0e:31:34:70:2b:da:27:eb:25:2e:b1:
1b:d6:8b:ae:9e:e7:cf:25:ab:5d:4c:f7:1f:f8:b7:6a:15:a6:
41:d5:2b:e1:47:78:39:db:92:2d:8b:83:1d:7b:b5:41:22:e7:
de:94:8d:c9:21:c5:6f:49:16:6b:5b:17:df:4a:03:06:68:1b:
ec:77:bc:60:f3:1d:93:7c:cf:ec:78:64:36:32:c6:8c:92:4a:
ba:b2:f3:0d:fa:8b:f8:9e:38:9d:38:bd:6c:fb:eb:f1:82:c6:
a2:79:9e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:17:21 2024 by rpki-client on console-ams.rpki-client.org