Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
File: _liVLTk5NfDTvOgU_ZF40EaTrrk.cer (raw, json)
Hash identifier: aTNYOTGSt8Wc1FMZwjw/Yu8m8N0TwfgQ5C2XnL/woX0=
Subject key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EE553222257DD3CA837DE0B551193C4FE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 16 Apr 2024 05:13:34 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41494
AS: 56512
IP: 85.204.78.0/24
IP: 85.204.98.0/24
IP: 85.204.122.0/24
IP: 85.204.125.0/24
IP: 85.204.127.0/24
IP: 85.204.254.0/24
IP: 86.104.125.0/24
IP: 86.104.128.0/22
IP: 86.105.253.0/24
IP: 86.106.80.0/24
IP: 86.106.84.0/23
IP: 86.106.97.0/24
IP: 86.106.104.0/24
IP: 86.106.200.0/21
IP: 88.218.0.0/22
IP: 88.218.120.0/22
IP: 89.33.5.0/24
IP: 89.33.20.0/22
IP: 89.33.120.0/21
IP: 89.33.163.0/24
IP: 89.33.176.0/22
IP: 89.33.242.0/24
IP: 89.33.248.0/23
IP: 89.33.253.0/24
IP: 89.34.8.0/21
IP: 89.35.38.0/24
IP: 89.35.160.0/23
IP: 89.36.20.0/24
IP: 89.36.150.0/23
IP: 89.36.198.0/24
IP: 89.37.136.0/24
IP: 89.37.156.0/23
IP: 89.39.110.0/24
IP: 89.39.252.0/24
IP: 89.40.22.0/23
IP: 89.40.25.0/24
IP: 89.40.27.0/24
IP: 89.40.31.0/24
IP: 89.40.130.0/24
IP: 89.40.196.0/22
IP: 89.43.16.0/22
IP: 89.43.40.0/21
IP: 89.43.73.0/24
IP: 89.43.136.0/22
IP: 89.43.200.0/23
IP: 89.44.209.0/24
IP: 89.44.214.0/23
IP: 89.44.224.0/21
IP: 89.45.16.0/21
IP: 89.45.34.0/24
IP: 89.47.54.0/24
IP: 89.47.91.0/24
IP: 92.114.111.0/24
IP: 93.113.47.0/24
IP: 93.113.158.0/24
IP: 93.113.202.0/23
IP: 93.114.55.0/24
IP: 93.114.99.0/24
IP: 93.114.171.0/24
IP: 93.114.187.0/24
IP: 93.114.232.0/23
IP: 93.115.34.0/24
IP: 139.28.8.0/22
IP: 185.1.36.0/24
IP: 185.86.64.0/22
IP: 185.202.84.0/22
IP: 188.212.134.0/24
IP: 188.212.192.0/21
IP: 188.213.18.0/24
IP: 188.215.72.0/23
IP: 188.215.95.0/24
IP: 188.240.14.0/24
IP: 188.241.10.0/23
IP: 188.241.36.0/23
IP: 193.23.4.0/22
IP: 193.187.148.0/22
IP: 195.95.178.0/24
IP: 2001:7f8:64::/48
IP: 2001:7f8:97::/48
IP: 2a05:b680::/29
IP: 2a09:b80::/29
IP: 2a0c:9fc0::/32
IP: 2a10:bf00::/29
IP: 2a10:c300::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e5:53:22:22:57:dd:3c:a8:37:de:0b:55:11:93:c4:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 16 05:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bf:0f:d4:9d:52:7c:04:f9:52:fc:00:9a:d1:
1f:e7:bf:8f:99:e9:e5:a3:aa:a6:7d:1d:a8:68:06:
65:e2:40:78:49:80:7c:8e:49:d1:6b:00:1c:d5:9d:
f0:31:d3:df:a8:d7:74:bb:a9:4b:8b:0f:b6:65:a0:
9d:6e:74:23:26:f4:aa:cf:c2:21:3f:e8:6c:5f:c2:
3d:ef:a7:e8:dc:df:5f:1d:72:f5:2e:b4:9e:d9:bc:
ac:94:7a:8d:96:b8:8d:48:6d:f0:07:6c:01:44:6d:
03:cf:31:6a:46:3a:7a:41:46:e2:da:c6:be:7c:be:
6d:28:30:53:cf:07:3b:10:38:14:78:76:7f:b7:91:
2a:75:19:42:71:0e:e5:e4:8a:b7:39:1e:c7:e8:75:
05:e8:60:cd:84:65:c0:16:85:a6:7e:f0:fc:dc:3c:
83:9a:22:f1:b3:28:94:9c:ea:ac:0f:94:80:d2:a2:
69:ad:d5:9b:27:9e:eb:99:41:88:06:e9:69:c6:54:
aa:58:77:a8:bf:fe:01:3b:44:cc:df:1a:e6:97:20:
9c:13:69:18:09:94:53:5a:56:75:ef:d9:46:74:17:
09:19:85:12:77:7e:1d:57:6f:83:33:24:3a:58:e9:
81:14:3f:76:ea:bf:61:3c:a5:44:d1:35:80:16:58:
6e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.78.0/24
85.204.98.0/24
85.204.122.0/24
85.204.125.0/24
85.204.127.0/24
85.204.254.0/24
86.104.125.0/24
86.104.128.0/22
86.105.253.0/24
86.106.80.0/24
86.106.84.0/23
86.106.97.0/24
86.106.104.0/24
86.106.200.0/21
88.218.0.0/22
88.218.120.0/22
89.33.5.0/24
89.33.20.0/22
89.33.120.0/21
89.33.163.0/24
89.33.176.0/22
89.33.242.0/24
89.33.248.0/23
89.33.253.0/24
89.34.8.0/21
89.35.38.0/24
89.35.160.0/23
89.36.20.0/24
89.36.150.0/23
89.36.198.0/24
89.37.136.0/24
89.37.156.0/23
89.39.110.0/24
89.39.252.0/24
89.40.22.0/23
89.40.25.0/24
89.40.27.0/24
89.40.31.0/24
89.40.130.0/24
89.40.196.0/22
89.43.16.0/22
89.43.40.0/21
89.43.73.0/24
89.43.136.0/22
89.43.200.0/23
89.44.209.0/24
89.44.214.0/23
89.44.224.0/21
89.45.16.0/21
89.45.34.0/24
89.47.54.0/24
89.47.91.0/24
92.114.111.0/24
93.113.47.0/24
93.113.158.0/24
93.113.202.0/23
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
93.114.187.0/24
93.114.232.0/23
93.115.34.0/24
139.28.8.0/22
185.1.36.0/24
185.86.64.0/22
185.202.84.0/22
188.212.134.0/24
188.212.192.0/21
188.213.18.0/24
188.215.72.0/23
188.215.95.0/24
188.240.14.0/24
188.241.10.0/23
188.241.36.0/23
193.23.4.0/22
193.187.148.0/22
195.95.178.0/24
IPv6:
2001:7f8:64::/48
2001:7f8:97::/48
2a05:b680::/29
2a09:b80::/29
2a0c:9fc0::/32
2a10:bf00::/29
2a10:c300::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41494
56512
Signature Algorithm: sha256WithRSAEncryption
27:02:67:04:eb:4e:4b:7c:8c:85:cd:a0:41:62:06:e6:db:1c:
e0:00:2d:ce:b2:98:a3:cb:53:37:fb:b3:eb:7e:fc:03:79:50:
23:df:39:e3:94:ca:58:e7:02:1b:b8:5e:2e:f5:91:2d:51:ad:
8e:78:69:20:10:d2:f2:22:11:b6:f0:9d:2c:a2:a2:05:91:37:
78:4c:ec:a4:99:c8:09:64:fa:93:c1:1f:76:e5:8a:20:be:e5:
21:89:52:63:4c:07:8c:4b:2b:9d:dd:8c:0f:69:d3:8b:6d:b0:
8a:03:e7:62:d2:21:91:2e:fa:0b:5d:6b:ba:3c:bc:ce:86:05:
af:7a:d2:ee:2a:06:ca:7b:81:d4:69:15:a2:57:47:8f:59:2e:
09:39:28:33:1c:78:86:fb:99:77:8f:14:b4:ca:e9:35:93:95:
0c:68:37:8b:11:18:f0:7a:e5:b6:7c:e4:04:8f:7c:a3:93:82:
91:3e:90:fd:8e:1f:90:cc:e6:d8:5f:15:6e:5c:63:6c:15:00:
4b:e7:f3:aa:b6:4d:38:f1:bc:4e:54:e3:9e:bd:66:16:66:01:
48:ec:fb:67:0f:b6:96:45:f0:1c:ef:28:d9:92:47:17:6d:5c:
a9:f9:ef:98:73:93:ef:44:81:55:94:1e:be:18:be:5b:0a:3c:
a0:1a:6a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:07:31 2024 by rpki-client on console-fra.rpki-client.org