Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
File: dTm3oSNBeqcZMllGqong8wqwygk.cer (raw, json)
Hash identifier: OxlhvmVvNabBZCzt/L1jwromHHw+mG7KP5UUih79q64=
Subject key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019102C33F902B861C6C778D78B44F3F3C38
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 30 Jul 2024 08:30:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 3302
AS: 5396
AS: 5602
AS: 12850
AS: 15589
AS: 50552
AS: 207018
IP: 5.150.128.0/20
IP: 31.10.48.0/21
IP: 37.32.104.0/21
IP: 37.139.88.0/21
IP: 46.228.240.0/20
IP: 52.144.64.0/19
IP: 62.94.0.0/16
IP: 62.173.160.0/19
IP: 62.196.0.0/16
IP: 77.43.0.0/17
IP: 77.93.224.0/19
IP: 77.94.68.0 -- 77.94.95.255
IP: 77.246.0.0/20
IP: 80.74.176.0/20
IP: 80.247.64.0/20
IP: 81.27.176.0/20
IP: 81.92.32.0/20
IP: 82.193.0.0/19
IP: 83.211.0.0/16
IP: 84.253.128.0/18
IP: 87.248.32.0/19
IP: 88.86.160.0/19
IP: 89.186.64.0/19
IP: 91.213.129.0/24
IP: 94.138.32.0/19
IP: 94.141.0.0/19
IP: 109.168.0.0/17
IP: 128.65.112.0/20
IP: 178.239.176.0/20
IP: 185.21.172.0/22
IP: 185.48.32.0/22
IP: 185.53.0.0/22
IP: 185.58.44.0/22
IP: 185.82.0.0/22
IP: 185.168.24.0/22
IP: 193.219.30.0/24
IP: 194.20.0.0 -- 194.21.63.255
IP: 194.153.192.0 -- 194.153.211.255
IP: 194.242.192.0/19
IP: 194.244.0.0/16
IP: 195.43.160.0/19
IP: 195.62.224.0/19
IP: 195.78.192.0/19
IP: 195.110.128.0/19
IP: 195.130.195.0/24
IP: 212.29.128.0/19
IP: 212.90.0.0/19
IP: 212.91.64.0/19
IP: 212.97.32.0/19
IP: 212.110.0.0/19
IP: 213.21.128.0/18
IP: 213.136.128.0/18
IP: 213.149.192.0/19
IP: 213.183.128.0/19
IP: 213.198.128.0/18
IP: 213.203.128.0/18
IP: 217.11.80.0/20
IP: 217.12.176.0/20
IP: 217.15.208.0/20
IP: 217.26.80.0/20
IP: 217.29.160.0/20
IP: 2001:750::/29
IP: 2001:1450::/32
IP: 2001:4d38::/32
IP: 2a02:7d8::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:02:c3:3f:90:2b:86:1c:6c:77:8d:78:b4:4f:3f:3c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 30 08:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d4:19:4f:21:3e:8d:5e:58:fd:f4:fc:65:81:
e8:6f:9d:92:76:d9:6d:c9:39:82:5f:5c:1c:45:69:
fe:d6:45:45:3d:6e:62:5f:75:d3:01:c6:34:73:18:
04:f0:f4:36:f9:b9:a5:d1:f3:2c:e3:e1:c8:f9:cb:
ba:ec:cf:12:6b:f1:0b:b6:d1:69:1c:83:a6:d9:3c:
d2:53:26:3f:02:69:8b:3e:90:8f:2e:e8:a5:25:af:
60:25:e1:19:ae:70:2f:65:13:ef:a8:f2:05:47:75:
f7:03:25:68:25:de:32:da:b4:eb:48:11:6e:f7:97:
ad:92:7f:f3:e1:7b:59:62:6d:60:52:ce:79:2b:bf:
ed:f2:3d:70:c4:f9:ba:30:42:34:4d:5c:37:99:48:
5f:f1:c8:a1:71:9b:3b:2d:bf:e6:3d:9e:eb:d2:b8:
79:ba:6c:0d:c3:c0:53:44:37:8a:50:8f:15:35:0d:
df:f3:1e:27:f9:2b:85:90:9f:7e:5a:48:0f:05:00:
bf:6d:41:fe:47:7e:f6:18:aa:cf:cc:ac:c4:3e:ad:
97:c9:bf:f0:2c:84:2c:c5:07:27:b2:10:98:f4:e0:
fc:5a:41:5e:18:6e:ec:e8:6e:ee:1d:bb:47:c6:0f:
d1:e3:cc:e0:9f:c4:f3:4c:ed:48:05:01:2f:ff:eb:
48:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.150.128.0/20
31.10.48.0/21
37.32.104.0/21
37.139.88.0/21
46.228.240.0/20
52.144.64.0/19
62.94.0.0/16
62.173.160.0/19
62.196.0.0/16
77.43.0.0/17
77.93.224.0/19
77.94.68.0-77.94.95.255
77.246.0.0/20
80.74.176.0/20
80.247.64.0/20
81.27.176.0/20
81.92.32.0/20
82.193.0.0/19
83.211.0.0/16
84.253.128.0/18
87.248.32.0/19
88.86.160.0/19
89.186.64.0/19
91.213.129.0/24
94.138.32.0/19
94.141.0.0/19
109.168.0.0/17
128.65.112.0/20
178.239.176.0/20
185.21.172.0/22
185.48.32.0/22
185.53.0.0/22
185.58.44.0/22
185.82.0.0/22
185.168.24.0/22
193.219.30.0/24
194.20.0.0-194.21.63.255
194.153.192.0-194.153.211.255
194.242.192.0/19
194.244.0.0/16
195.43.160.0/19
195.62.224.0/19
195.78.192.0/19
195.110.128.0/19
195.130.195.0/24
212.29.128.0/19
212.90.0.0/19
212.91.64.0/19
212.97.32.0/19
212.110.0.0/19
213.21.128.0/18
213.136.128.0/18
213.149.192.0/19
213.183.128.0/19
213.198.128.0/18
213.203.128.0/18
217.11.80.0/20
217.12.176.0/20
217.15.208.0/20
217.26.80.0/20
217.29.160.0/20
IPv6:
2001:750::/29
2001:1450::/32
2001:4d38::/32
2a02:7d8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3302
5396
5602
12850
15589
50552
207018
Signature Algorithm: sha256WithRSAEncryption
17:8d:b2:08:82:ff:f1:43:f8:e1:40:03:ae:9a:49:95:37:d9:
93:0a:59:78:01:d3:a4:e4:a6:e6:b1:b7:ea:f4:3c:ea:99:d1:
fa:ec:57:f4:e5:7e:9f:d1:f7:73:3c:fa:4e:92:33:44:72:4f:
a5:16:7b:db:4b:6c:31:fd:ca:3c:dd:62:18:7f:98:15:1a:df:
36:63:fb:2f:cc:92:e1:58:c6:83:83:f1:e7:33:34:f2:09:a2:
dc:5f:71:d9:05:44:5b:2a:70:5c:aa:39:e7:02:b8:c5:9d:b0:
bf:81:36:ee:b3:f0:5c:00:13:be:b9:d6:82:f3:4e:f6:17:09:
41:92:b4:20:e4:69:02:fd:d1:9c:b5:a6:5e:0e:74:7e:c5:dd:
a3:09:85:66:a3:9a:48:7f:04:e5:c0:0c:81:9b:bf:a9:6b:6e:
ed:29:e5:03:e3:98:0a:9c:9b:d5:5f:d8:b9:3d:05:e7:31:5a:
95:63:1b:29:59:c0:2f:2a:6a:f8:95:ae:62:37:3f:56:82:f3:
30:5a:2a:04:5e:b9:08:15:84:7a:5e:a0:b3:38:d7:a4:6c:14:
95:fc:ff:80:a8:ed:2f:b3:25:3a:78:93:e3:7e:cb:40:3a:65:
e3:a3:25:24:d7:14:c4:78:cc:9b:ea:45:ee:3d:a8:0c:89:e2:
f6:a8:69:31
-----BEGIN CERTIFICATE-----
MIIHVjCCBj6gAwIBAgISAZECwz+QK4YcbHeNeLRPPzw4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwNzMwMDgzMDM1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTM5YjdhMTIzNDE3YWE3MTkzMjU5NDZhYTg5ZTBmMzBhYjBjYTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19QZTyE+jV5Y/fT8ZYHob52Sdtlt
yTmCX1wcRWn+1kVFPW5iX3XTAcY0cxgE8PQ2+bml0fMs4+HI+cu67M8Sa/ELttFp
HIOm2TzSUyY/AmmLPpCPLuilJa9gJeEZrnAvZRPvqPIFR3X3AyVoJd4y2rTrSBFu
95etkn/z4XtZYm1gUs55K7/t8j1wxPm6MEI0TVw3mUhf8cihcZs7Lb/mPZ7r0rh5
umwNw8BTRDeKUI8VNQ3f8x4n+SuFkJ9+WkgPBQC/bUH+R372GKrPzKzEPq2Xyb/w
LIQsxQcnshCY9OD8WkFeGG7s6G7uHbtHxg/R48zgn8TzTO1IBQEv/+tImwIDAQAB
o4IEYjCCBF4wHQYDVR0OBBYEFHU5t6EjQXqnGTJZRqqJ4PMKsMoJMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZiLzgwN2Vk
NS01MGIzLTRlNWYtOTM2Ny01YjVlMzNjZTcwYWQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIvODA3ZWQ1
LTUwYjMtNGU1Zi05MzY3LTViNWUzM2NlNzBhZC8xL2RUbTNvU05CZXFjWk1sbEdx
b25nOHdxd3lnay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBxgYIKwYB
BQUHAQcBAf8EggG1MIIBsTCCAYkEAgABMIIBgQMEBAWWgAMEAx8KMAMEAyUgaAME
AyWLWAMEBC7k8AMEBTSQQAMDAD5eAwQFPq2gAwMAPsQDBAdNKwADBAVNXeAwDAME
Ak1eRAMEBU1eQAMEBE32AAMEBFBKsAMEBFD3QAMEBFEbsAMEBFFcIAMEBVLBAAMD
AFPTAwQGVP2AAwQFV/ggAwQFWFagAwQFWbpAAwQAW9WBAwQFXoogAwQFXo0AAwQH
bagAAwQEgEFwAwQEsu+wAwQCuRWsAwQCuTAgAwQCuTUAAwQCuTosAwQCuVIAAwQC
uagYAwQAwdseMAsDAwLCFAMEBsIVADAMAwQGwpnAAwQCwpnQAwQFwvLAAwMAwvQD
BAXDK6ADBAXDPuADBAXDTsADBAXDboADBADDgsMDBAXUHYADBAXUWgADBAXUW0AD
BAXUYSADBAXUbgADBAbVFYADBAbViIADBAXVlcADBAXVt4ADBAbVxoADBAbVy4AD
BATZC1ADBATZDLADBATZD9ADBATZGlADBATZHaAwIgQCAAIwHAMFAyABB1ADBQAg
ARRQAwUAIAFNOAMFACoCB9gwMwYIKwYBBQUHAQgBAf8EJDAioCAwHgICDOYCAhUU
AgIV4gICMjICAjzlAgMAxXgCAwMoqjANBgkqhkiG9w0BAQsFAAOCAQEAF42yCIL/
8UP44UADrppJlTfZkwpZeAHTpOSm5rG36vQ86pnR+uxX9OV+n9H3czz6TpIzRHJP
pRZ720tsMf3KPN1iGH+YFRrfNmP7L8yS4VjGg4Px5zM08gmi3F9x2QVEWypwXKo5
5wK4xZ2wv4E27rPwXAATvrnWgvNO9hcJQZK0IORpAv3RnLWmXg50fsXdowmFZqOa
SH8E5cAMgZu/qWtu7SnlA+OYCpyb1V/YuT0F5zFalWMbKVnALypq+JWuYjc/VoLz
MFoqBF65CBWEel6gszjXpGwUlfz/gKjtL7MlOniT437LQDpl46MlJNcUxHjMm+pF
7j2oDIni9qhpMQ==
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:24:21 2024 by rpki-client on console-ams.rpki-client.org