Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
File: b8zf_aakxIkUtejN59pdgguclxg.cer (raw, json)
Hash identifier: w8uDqWu+jvru+Sa8VZTZzlKEuRe4wF+IvY27MMb8zx4=
Subject key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192E7364EFD53878F574C69AB9D9176E09B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 01 Nov 2024 10:12:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 80.68.159.0/24
IP: 91.90.192.0/22
IP: 91.196.7.0/24
IP: 91.210.164.0/22
IP: 91.215.152.0/22
IP: 91.223.123.0/24
IP: 91.247.36.0/23
IP: 92.118.148.0/22
IP: 94.142.255.0/24
IP: 171.33.241.0/24
IP: 176.126.162.0/23
IP: 185.39.30.0/23
IP: 185.190.250.0/23
IP: 185.198.164.0/22
IP: 185.237.218.0/23
IP: 185.237.224.0/23
IP: 185.253.0.0/24
IP: 185.253.44.0/22
IP: 193.111.210.0/24
IP: 193.162.47.0/24
IP: 195.28.182.0/23
IP: 195.245.112.0/23
IP: 2001:67c:2f4c::/48
IP: 2001:67c:2f5c::/48
IP: 2001:67c:2f6c::/48
IP: 2a0a:8c40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e7:36:4e:fd:53:87:8f:57:4c:69:ab:9d:91:76:e0:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 1 10:12:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0f:3d:6e:6a:51:54:80:15:86:c4:09:f4:21:
dc:9f:10:92:6a:3f:4d:89:9b:8f:68:b4:00:b8:6f:
8b:d1:5c:95:a8:c5:ac:89:d7:5a:0f:ad:33:59:f7:
21:5f:a9:d6:fe:40:85:80:e2:1e:b1:58:9e:00:f7:
db:b0:13:1b:54:33:a3:70:25:35:28:1f:c1:da:9c:
6a:d7:fb:f7:73:65:3b:b2:51:10:b1:de:57:49:49:
1c:c4:65:bf:0c:f9:aa:e2:ef:a8:85:c0:f4:5e:5a:
dd:32:27:55:c5:f3:b4:1c:b6:2f:fa:1f:b2:03:1f:
a1:42:f1:f4:ef:31:e1:b9:9c:87:28:ce:bd:f2:ec:
57:93:10:f9:e1:41:7f:cc:2e:16:d5:09:b2:f5:33:
c4:e4:92:24:1e:a7:51:68:6a:0a:f9:a3:fa:4f:02:
55:54:85:1d:19:38:5d:de:97:b4:d0:45:c9:e3:28:
b3:3e:57:24:44:7a:fa:e8:e9:3d:96:f9:77:27:0c:
94:18:f7:4f:27:46:65:35:85:0d:c0:df:42:bd:81:
70:78:50:87:a4:88:38:48:d1:db:bd:1a:0f:7a:98:
65:be:ba:f5:f1:dd:16:f9:8e:be:4b:14:b8:0c:02:
be:7c:6e:8b:d6:cf:3c:78:cc:dd:20:ff:16:f3:de:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.159.0/24
91.90.192.0/22
91.196.7.0/24
91.210.164.0/22
91.215.152.0/22
91.223.123.0/24
91.247.36.0/23
92.118.148.0/22
94.142.255.0/24
171.33.241.0/24
176.126.162.0/23
185.39.30.0/23
185.190.250.0/23
185.198.164.0/22
185.237.218.0/23
185.237.224.0/23
185.253.0.0/24
185.253.44.0/22
193.111.210.0/24
193.162.47.0/24
195.28.182.0/23
195.245.112.0/23
IPv6:
2001:67c:2f4c::/48
2001:67c:2f5c::/48
2001:67c:2f6c::/48
2a0a:8c40::/29
Signature Algorithm: sha256WithRSAEncryption
28:c4:bf:c5:28:16:11:f3:81:34:d7:f3:c3:a5:8b:cb:a5:c3:
e7:27:23:80:09:bd:c4:9e:8b:b4:0f:5e:14:e8:bd:c4:56:e8:
de:4e:93:f6:66:d5:6e:b6:51:f5:d0:22:5d:11:13:4a:85:bd:
df:de:f0:35:c4:03:34:4e:17:66:c2:96:16:f0:d2:ae:9a:63:
6b:33:7c:01:30:e3:3a:aa:1a:d4:72:19:ee:e4:e2:72:92:ae:
bf:9b:57:71:10:01:52:f9:a9:c0:b2:70:10:02:7b:41:d7:e1:
ad:f8:89:20:0f:dd:7e:2b:e7:68:d6:46:c7:9a:b8:50:3f:a9:
5f:e0:21:89:38:20:66:3c:44:fc:fe:81:06:a7:96:df:d1:a6:
01:a8:04:4c:3d:3a:33:fa:43:03:35:99:41:62:90:b4:35:e4:
dc:a0:57:c2:f5:79:07:c0:64:76:15:a1:0f:a1:e6:1c:28:01:
fc:48:4b:de:c1:19:78:2b:9e:51:d5:b5:c0:c9:5d:4b:c2:4a:
9b:5a:22:80:da:bf:c3:8d:e9:1d:40:fa:bd:ab:e1:0c:79:54:
df:25:21:35:59:cd:bd:45:a8:9d:85:30:ee:b1:e7:ee:09:85:
db:47:6c:5f:fb:08:90:f0:6e:e4:4d:dd:b7:67:b8:df:cd:43:
2b:b2:fe:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:24:24 2024 by rpki-client on console-ams.rpki-client.org