Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
File: bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer (raw, json)
Hash identifier: n0EmIUTSMh/7uZH4CgDga7octaZekvvry7+wm2tqmUw=
Subject key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0191DB499AD6AD3E2811BDC7FD97549C1AE3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 10 Sep 2024 09:35:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12792
AS: 29390
AS: 29632
AS: 39249
AS: 42372
AS: 43426
AS: 60817
IP: 62.205.128.0/19
IP: 91.198.133.0/24
IP: 94.131.0.0 -- 94.131.191.255
IP: 94.131.224.0/20
IP: 95.164.0.0/16
IP: 149.154.184.0/22
IP: 185.39.28.0/23
IP: 193.33.64.0/23
IP: 195.149.96.0/24
IP: 195.214.208.0/21
IP: 212.86.97.0/24
IP: 212.86.103.0/24
IP: 212.86.107.0/24
IP: 212.86.110.0 -- 212.86.113.255
IP: 212.86.116.0 -- 212.86.127.255
IP: 2001:67c:1728::/48
IP: 2a01:d0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:49:9a:d6:ad:3e:28:11:bd:c7:fd:97:54:9c:1a:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 10 09:35:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:21:28:7e:c4:13:37:24:91:d8:56:57:96:17:
10:5f:e2:2a:f7:c8:a9:27:69:75:1f:6c:62:26:9a:
6b:46:88:1c:56:09:9f:d2:3a:1a:1f:84:87:ba:e2:
e2:9c:94:99:1d:af:82:33:71:7a:79:44:f2:31:0c:
32:01:47:ee:9b:62:05:8f:ca:32:7c:b4:a0:75:71:
e4:0f:a6:50:2a:95:40:fb:a8:0e:56:88:a9:0e:d8:
93:9d:37:56:11:d8:88:4c:fe:22:27:7e:35:08:01:
54:d4:b7:93:46:b0:e9:4e:31:48:6b:10:1e:36:c4:
97:2e:9a:73:b4:95:c9:db:42:66:c0:11:7b:4c:6e:
e3:f9:cb:10:de:ea:ba:5e:08:a3:2c:b9:c3:c0:f8:
27:ab:92:a8:df:fd:b2:29:92:4c:c4:b0:61:0b:5b:
cb:e1:d3:83:e1:21:cc:35:35:2d:16:20:f3:05:95:
7a:5e:2b:ec:e9:0f:0b:bf:a8:e3:ba:e7:9c:e5:62:
9f:e9:6d:c1:73:d8:58:64:2b:7f:b4:6d:49:18:07:
3e:ed:58:93:3a:43:70:a6:fb:fc:ce:9a:a9:8f:e0:
b2:4a:6a:9d:ca:f1:26:22:7c:fb:c3:25:e7:9f:c6:
50:67:db:df:6a:63:bd:76:2d:8b:f3:1b:1d:b8:15:
71:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
91.198.133.0/24
94.131.0.0-94.131.191.255
94.131.224.0/20
95.164.0.0/16
149.154.184.0/22
185.39.28.0/23
193.33.64.0/23
195.149.96.0/24
195.214.208.0/21
212.86.97.0/24
212.86.103.0/24
212.86.107.0/24
212.86.110.0-212.86.113.255
212.86.116.0-212.86.127.255
IPv6:
2001:67c:1728::/48
2a01:d0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12792
29390
29632
39249
42372
43426
60817
Signature Algorithm: sha256WithRSAEncryption
5f:05:70:9e:ec:4d:5a:35:c6:af:81:77:ae:bf:c1:6a:cf:60:
67:e4:ee:67:01:a5:19:28:d9:47:f8:0c:83:1d:3f:2e:23:d6:
c3:44:77:20:66:36:0b:f9:2c:8b:a3:c4:12:4e:62:46:da:bc:
d0:c5:29:d4:6f:7c:6c:e7:89:26:e2:7e:c4:99:9e:f5:42:bb:
d8:49:b8:23:b6:c6:2d:9b:f4:45:0d:86:b1:78:da:f6:85:a6:
0a:fe:0d:ac:5c:df:6c:3a:d1:c3:0a:c6:86:08:6f:f7:ac:e4:
65:99:e0:5c:fa:a5:03:57:06:e0:49:2a:cf:b5:59:ae:2e:4d:
bd:cf:31:15:b5:0d:7f:cc:9d:14:a3:c1:e9:eb:d4:8e:13:e0:
65:08:c1:7c:02:75:fe:b5:83:2f:a9:17:55:ae:22:e7:17:3b:
4a:b5:7a:4c:0d:ce:5a:0d:2f:b4:be:b5:89:13:ac:23:8c:b4:
97:64:e8:93:a8:6e:7b:28:0d:67:74:a7:16:8b:01:09:e8:da:
5b:e8:25:75:46:3a:e3:c7:09:36:a0:b0:a0:3f:0d:49:48:de:
6c:71:0d:47:0c:74:43:06:19:22:72:ad:dd:8a:6d:53:42:be:
5c:97:df:0f:b2:b8:29:69:8e:c9:17:a9:76:f8:ef:43:90:64:
fc:aa:8a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:29:05 2024 by rpki-client on console-ams.rpki-client.org