Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
File: Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer (raw, json)
Hash identifier: WgxofZoJSNLe7GGX3eh05ruVZbqzF1dwUlQscpMESSU=
Subject key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3495D7D3322BB442FEE71D88B15B4F4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:30:14 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209319
IP: 45.150.220.0/22
IP: 85.209.204.0/22
IP: 2a09:33c0::/29
IP: 2a09:3440::/29
IP: 2a09:72c0::/29
IP: 2a09:9f40::/29
IP: 2a09:d840::/29
IP: 2a09:fe40::/29
IP: 2a0f:300::/29
IP: 2a10:1c80::/29
IP: 2a10:2500::/29
IP: 2a11:ed00::/29
IP: 2a11:ef00::/29
IP: 2a11:f100::/29
IP: 2a11:f300::/29
IP: 2a11:f500::/29
IP: 2a11:f700::/29
IP: 2a11:f900::/29
IP: 2a11:fb00::/29
IP: 2a12:7240::/29
IP: 2a12:72c0::/29
IP: 2a12:7340::/29
IP: 2a12:73c0::/29
IP: 2a12:7440::/29
IP: 2a12:74c0::/29
IP: 2a12:7540::/29
IP: 2a12:9ec0::/29
IP: 2a12:9f40::/29
IP: 2a12:9fc0::/29
IP: 2a12:a040::/29
IP: 2a12:a140::/29
IP: 2a12:a1c0::/29
IP: 2a12:a240::/29
IP: 2a12:a2c0::/29
IP: 2a12:a540::/29
IP: 2a12:a5c0::/29
IP: 2a12:a640::/29
IP: 2a12:a6c0::/29
IP: 2a12:a740::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Apr 2024 08:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:5d:7d:33:22:bb:44:2f:ee:71:d8:8b:15:b4:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:30:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:54:83:51:ef:d2:80:f2:7e:04:0c:aa:98:62:
11:6f:db:82:7c:3d:86:78:c1:90:5b:4d:d1:69:1d:
d3:69:4e:07:d5:f8:e4:bd:6f:44:e8:0f:0e:b4:c2:
86:dd:52:27:39:dd:74:9d:2d:81:95:c3:51:7c:9a:
9e:78:ef:80:e3:3d:5c:1f:d8:fb:1a:a8:76:5e:65:
e7:b2:aa:3d:37:d7:22:44:3c:64:c5:12:ee:98:49:
01:35:9e:72:d2:39:2a:91:6f:88:2f:df:f6:ac:b0:
f3:d9:74:6f:4e:6d:f4:1b:c0:22:a7:bc:cd:d0:d0:
5e:d6:13:88:30:9f:38:3a:9c:41:28:0e:00:d9:d0:
51:72:cf:0b:a9:bf:30:db:e6:d1:b4:44:27:e6:cd:
a5:e4:2c:d9:b0:41:87:83:82:d6:5a:6f:24:f8:85:
8a:96:e9:e6:72:d3:42:9e:d5:58:4e:76:b1:fb:d7:
fd:11:33:d0:25:71:d9:ca:39:da:0f:5a:2e:f5:fb:
e0:8c:51:c4:65:7f:da:0d:64:b9:6e:0a:01:dc:45:
02:55:20:77:0e:66:15:da:65:1b:8d:b5:90:69:c3:
c0:5e:e1:30:b5:ba:8a:b2:b5:23:d9:9f:31:2a:4b:
81:e0:f6:cd:9b:ce:e0:c7:de:5f:fd:d4:d6:35:36:
10:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.220.0/22
85.209.204.0/22
IPv6:
2a09:33c0::/29
2a09:3440::/29
2a09:72c0::/29
2a09:9f40::/29
2a09:d840::/29
2a09:fe40::/29
2a0f:300::/29
2a10:1c80::/29
2a10:2500::/29
2a11:ed00::/29
2a11:ef00::/29
2a11:f100::/29
2a11:f300::/29
2a11:f500::/29
2a11:f700::/29
2a11:f900::/29
2a11:fb00::/29
2a12:7240::/29
2a12:72c0::/29
2a12:7340::/29
2a12:73c0::/29
2a12:7440::/29
2a12:74c0::/29
2a12:7540::/29
2a12:9ec0::/29
2a12:9f40::/29
2a12:9fc0::/29
2a12:a040::/29
2a12:a140::/29
2a12:a1c0::/29
2a12:a240::/29
2a12:a2c0::/29
2a12:a540::/29
2a12:a5c0::/29
2a12:a640::/29
2a12:a6c0::/29
2a12:a740::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209319
Signature Algorithm: sha256WithRSAEncryption
68:9a:27:6d:79:9b:70:76:b5:6f:b3:c1:84:47:9c:73:32:dc:
b1:fb:e4:4e:9f:86:dd:9a:58:42:5c:d0:c7:14:9e:98:70:f0:
e8:03:5c:85:06:59:90:bb:87:c9:5a:06:9c:b8:3e:cd:e9:99:
3f:41:b1:be:26:eb:44:01:02:6e:10:e5:6a:73:da:25:2c:e8:
59:ae:44:71:25:c0:76:7f:3a:01:99:d6:ff:70:ab:f7:ed:2c:
d5:f6:9b:2a:07:b6:55:16:97:3b:77:35:f9:5e:6a:c6:d3:23:
bd:44:c4:00:3e:e6:94:88:ba:76:ad:aa:bc:2b:2b:33:45:15:
0e:83:e0:73:42:34:4a:c6:d0:14:5c:da:0d:21:2d:ca:aa:6e:
f0:22:23:91:a9:f7:91:c0:98:f8:c3:b5:06:07:ca:1e:c0:f9:
be:a8:8b:ba:28:d0:f0:11:23:ce:7c:64:48:b1:16:95:3e:a6:
15:3d:c2:3b:5f:00:d8:3b:4a:37:5d:5c:6e:63:d7:2d:e0:a2:
6f:c9:1f:29:fe:d4:67:12:0c:74:a1:24:b8:f6:96:2b:34:4b:
9e:3b:a9:b3:a2:02:d4:cd:f1:5e:45:3a:ea:a2:50:17:bb:b4:
91:a1:a4:00:70:82:3c:15:83:65:da:3a:8d:20:47:68:5a:20:
62:28:36:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 12:06:58 2024 by rpki-client on console-ams.rpki-client.org