Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
File: b8zf_aakxIkUtejN59pdgguclxg.cer (raw, json)
Hash identifier: xPSypIeYOeX2QXLyMm3glMNiMkV3WYXJIGvbtBi2qEo=
Subject key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94C942EDB2019F00861929BBF9FB62C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:31:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 91.90.192.0/22
IP: 91.210.164.0/22
IP: 91.215.152.0/22
IP: 91.223.123.0/24
IP: 91.247.36.0/23
IP: 92.118.148.0/22
IP: 176.126.162.0/23
IP: 185.39.30.0/23
IP: 185.190.250.0/23
IP: 185.198.164.0/22
IP: 185.237.218.0/23
IP: 185.237.224.0/23
IP: 185.253.0.0/24
IP: 185.253.44.0/22
IP: 193.162.47.0/24
IP: 195.28.182.0/23
IP: 195.245.112.0/23
IP: 2001:67c:2f4c::/48
IP: 2001:67c:2f5c::/48
IP: 2001:67c:2f6c::/48
IP: 2a0a:8c40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:94:2e:db:20:19:f0:08:61:92:9b:bf:9f:b6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0f:3d:6e:6a:51:54:80:15:86:c4:09:f4:21:
dc:9f:10:92:6a:3f:4d:89:9b:8f:68:b4:00:b8:6f:
8b:d1:5c:95:a8:c5:ac:89:d7:5a:0f:ad:33:59:f7:
21:5f:a9:d6:fe:40:85:80:e2:1e:b1:58:9e:00:f7:
db:b0:13:1b:54:33:a3:70:25:35:28:1f:c1:da:9c:
6a:d7:fb:f7:73:65:3b:b2:51:10:b1:de:57:49:49:
1c:c4:65:bf:0c:f9:aa:e2:ef:a8:85:c0:f4:5e:5a:
dd:32:27:55:c5:f3:b4:1c:b6:2f:fa:1f:b2:03:1f:
a1:42:f1:f4:ef:31:e1:b9:9c:87:28:ce:bd:f2:ec:
57:93:10:f9:e1:41:7f:cc:2e:16:d5:09:b2:f5:33:
c4:e4:92:24:1e:a7:51:68:6a:0a:f9:a3:fa:4f:02:
55:54:85:1d:19:38:5d:de:97:b4:d0:45:c9:e3:28:
b3:3e:57:24:44:7a:fa:e8:e9:3d:96:f9:77:27:0c:
94:18:f7:4f:27:46:65:35:85:0d:c0:df:42:bd:81:
70:78:50:87:a4:88:38:48:d1:db:bd:1a:0f:7a:98:
65:be:ba:f5:f1:dd:16:f9:8e:be:4b:14:b8:0c:02:
be:7c:6e:8b:d6:cf:3c:78:cc:dd:20:ff:16:f3:de:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.90.192.0/22
91.210.164.0/22
91.215.152.0/22
91.223.123.0/24
91.247.36.0/23
92.118.148.0/22
176.126.162.0/23
185.39.30.0/23
185.190.250.0/23
185.198.164.0/22
185.237.218.0/23
185.237.224.0/23
185.253.0.0/24
185.253.44.0/22
193.162.47.0/24
195.28.182.0/23
195.245.112.0/23
IPv6:
2001:67c:2f4c::/48
2001:67c:2f5c::/48
2001:67c:2f6c::/48
2a0a:8c40::/29
Signature Algorithm: sha256WithRSAEncryption
74:12:63:1b:36:58:17:55:f0:88:64:1d:ea:99:bb:a9:fd:72:
fb:75:72:fb:6b:d1:e6:b2:2e:19:ac:28:66:26:2d:49:5f:eb:
64:52:bd:f7:fd:48:52:8f:3f:02:67:3e:6e:3e:b3:02:f5:f4:
ee:32:20:72:0d:dc:6d:01:b5:77:19:25:86:6a:d8:9a:93:ec:
51:7b:a5:c7:f2:84:15:77:d5:c3:6f:57:e1:99:f7:a4:b2:40:
ab:57:03:ef:d5:b7:1c:eb:76:6a:43:20:78:f6:1a:e3:29:be:
da:d8:37:f5:da:1c:98:56:91:2c:3a:93:3b:dc:5b:5f:2e:8c:
0f:b8:62:34:a0:26:08:9e:98:46:53:4f:63:64:e2:3d:13:91:
26:b6:9d:36:60:57:d3:88:58:f3:6c:81:0e:3d:f5:6f:5f:29:
14:ec:8d:75:58:30:80:84:dd:9f:b7:9d:e0:df:ad:64:e5:da:
d5:a8:6c:db:e9:1c:b9:cd:ca:c0:90:b8:3d:47:d1:94:28:01:
5d:e8:a9:97:f5:9a:fe:c1:f2:b0:48:44:16:4d:1e:1b:c1:95:
89:5f:16:20:62:e5:96:d3:1c:1d:97:f9:00:72:83:a4:23:f4:
59:8f:8c:47:c9:ad:2e:83:2c:fa:09:dd:1e:60:d6:39:76:09:
78:f5:2a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:54:59 2024 by rpki-client on console-ams.rpki-client.org