Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b-NJEELvMdzG4K2OVcvhSd0MMYI.cer
File: b-NJEELvMdzG4K2OVcvhSd0MMYI.cer (raw, json)
Hash identifier: pRN81unnNTOCUuHF0AdGAxIvMslU21vbm1x4qshASq0=
Subject key identifier: 6F:E3:49:10:42:EF:31:DC:C6:E0:AD:8E:55:CB:E1:49:DD:0C:31:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801C33EAF4DA9D9C8F2997FC5A1DB6F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/b-NJEELvMdzG4K2OVcvhSd0MMYI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:07 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 47748
IP: 31.13.215.0/24
IP: 31.13.228.0/23
IP: 37.60.137.0/24
IP: 87.120.9.0/24
IP: 87.120.90.0/24
IP: 87.121.4.0/23
IP: 87.121.120.0/24
IP: 93.123.21.0/24
IP: 93.123.103.0/24
IP: 94.156.9.0/24
IP: 94.156.13.0/24
IP: 94.156.46.0/23
IP: 178.211.146.0/24
IP: 2a05:140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:c3:3e:af:4d:a9:d9:c8:f2:99:7f:c5:a1:db:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fe3491042ef31dcc6e0ad8e55cbe149dd0c3182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b0:3b:dd:9a:c0:a2:89:8f:aa:b9:66:66:f8:
c0:85:ea:2d:7c:0b:7d:c7:19:7a:39:cb:1b:35:1b:
81:4d:aa:e6:87:03:be:3a:12:67:d9:e9:5a:a8:3f:
77:60:c5:1f:ff:b1:fd:9a:e1:b2:c8:90:e7:35:63:
6d:1f:09:c6:3b:d7:c7:71:a6:33:bf:27:6c:5b:de:
fd:e4:3b:47:df:b0:71:4e:49:78:33:72:25:73:72:
7d:a6:49:ba:d6:21:06:24:12:b9:5b:39:46:77:d4:
73:6e:02:1e:a0:53:db:6d:a6:2e:7e:97:e4:60:8d:
ab:82:48:d2:c5:8a:56:50:58:bf:f1:66:45:77:06:
77:00:7f:8a:65:51:ca:e8:d6:f5:bc:33:0e:97:ec:
1b:07:53:b3:0c:5f:72:94:71:ae:0e:52:6c:cf:c4:
a0:be:29:70:ee:58:cd:23:e7:58:16:c8:72:27:2d:
fd:05:71:53:c8:4f:27:2c:44:30:60:d5:07:12:cb:
4d:fc:3b:e6:66:a0:49:3e:13:2d:4d:f2:be:43:45:
59:34:9c:a7:9b:8e:a3:99:59:8d:c9:0d:e9:60:c4:
25:cf:66:2c:b9:c8:2f:38:97:32:a5:55:5b:66:59:
cd:ba:47:08:49:56:ba:64:f1:33:8c:9a:61:2e:d0:
f2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E3:49:10:42:EF:31:DC:C6:E0:AD:8E:55:CB:E1:49:DD:0C:31:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/f89bf0-3d6f-4b4d-bf42-c78bd228a91d/1/b-NJEELvMdzG4K2OVcvhSd0MMYI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.215.0/24
31.13.228.0/23
37.60.137.0/24
87.120.9.0/24
87.120.90.0/24
87.121.4.0/23
87.121.120.0/24
93.123.21.0/24
93.123.103.0/24
94.156.9.0/24
94.156.13.0/24
94.156.46.0/23
178.211.146.0/24
IPv6:
2a05:140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47748
Signature Algorithm: sha256WithRSAEncryption
96:63:e7:0f:89:2e:22:fa:cd:8c:72:c5:12:89:5d:01:94:cf:
20:42:a8:a7:93:19:b7:9b:e8:45:45:ac:db:03:84:f7:c1:72:
65:d0:e7:75:67:33:e7:a4:20:3f:3c:e9:6c:e7:a7:c4:c6:97:
14:0e:c8:44:0b:32:eb:9e:21:b6:fb:ab:a4:36:9b:fd:3e:ed:
0f:57:19:38:03:39:e4:a9:5b:18:66:95:a2:07:7b:1a:a6:14:
27:b9:f6:26:f5:23:dc:94:32:be:48:5a:1e:a1:69:02:0f:9c:
8d:0e:8d:f7:8f:7b:4b:a5:06:fe:51:b3:4d:0d:84:c6:8e:4b:
14:66:fd:b4:1e:82:71:c3:2b:2c:81:2d:bc:92:f1:dc:d8:7a:
e4:9d:04:11:fb:56:b8:4f:3b:ef:3e:c5:7f:e2:3b:f8:3d:0e:
d1:c5:8a:d1:52:2d:57:a6:66:e6:48:03:3c:d5:fc:49:4a:a4:
42:42:47:0f:8a:20:2a:c3:4d:34:81:e0:42:ca:cd:9c:80:fc:
6a:db:b0:87:88:49:1b:72:38:3c:4b:9e:b9:67:8a:58:85:2e:
40:c2:8e:f6:84:75:3c:92:25:63:df:88:1c:f8:03:ad:aa:2d:
ab:d8:be:53:22:5d:c2:c5:73:e9:9f:a9:47:03:04:94:4b:fb:
f1:e1:20:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:52:38 2024 by rpki-client on console-ams.rpki-client.org