Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dXzv42s_zGikLAr_gdFEmA8yd38.cer
File: dXzv42s_zGikLAr_gdFEmA8yd38.cer (raw, json)
Hash identifier: 91cqxHcBqCW9MQ/QEn92/bq1l1+6kc4pUT3JPpP1Lfs=
Subject key identifier: 75:7C:EF:E3:6B:3F:CC:68:A4:2C:0A:FF:81:D1:44:98:0F:32:77:7F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F1A65E41849C3B071F916273E8F724A37
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/28/972db6-770f-4462-9fc7-ee9b9517f2ec/1/dXzv42s_zGikLAr_gdFEmA8yd38.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/28/972db6-770f-4462-9fc7-ee9b9517f2ec/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 26 Apr 2024 12:33:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 5.42.215.0/24
IP: 45.142.252.0/22
IP: 193.19.190.0/24
IP: 195.211.166.0/24
IP: 2a04:fa00::/29
IP: 2a11:1480::/29
IP: 2a11:1540::/29
IP: 2a11:3440::/29
IP: 2a11:45c0::/29
IP: 2a11:4a80::/29
IP: 2a12:1c40::/29
IP: 2a12:2ec0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1a:65:e4:18:49:c3:b0:71:f9:16:27:3e:8f:72:4a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 26 12:33:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=757cefe36b3fcc68a42c0aff81d144980f32777f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a3:dc:c9:0c:df:24:42:d6:82:21:49:21:54:
6d:33:84:b5:b6:3f:c4:b7:74:f2:04:d4:f3:42:ad:
97:91:04:62:cf:1a:23:9a:b0:2a:4f:e9:2d:75:4b:
31:6f:5a:4e:ed:fc:3f:27:d0:8e:c4:0e:a1:6e:e3:
e4:8d:84:f0:60:94:21:dd:ec:c7:e3:9b:a3:e7:15:
a6:3b:24:4f:99:e3:b0:a1:62:04:84:b8:9c:4d:46:
14:c3:30:67:ae:4c:e6:a4:a0:43:e0:1d:f3:f5:c0:
a3:87:bb:a4:e6:7d:cf:ad:0e:4f:ac:07:a9:a2:1a:
5f:9f:6c:47:ea:11:bc:78:75:59:f8:39:c7:f5:a9:
31:da:b7:36:c5:c8:78:e1:80:3d:7b:9f:3b:fe:70:
50:6a:8b:31:5f:fe:73:c0:78:af:70:2c:d9:05:6f:
c6:0d:b0:fe:2c:6b:e6:9c:1e:fe:9b:ab:99:df:5d:
f4:ef:2c:62:f9:cb:43:e8:d5:76:3b:17:bd:ad:19:
d0:ea:cb:04:b4:cd:e8:56:a6:74:47:9d:90:cb:6c:
b5:e2:ee:fe:0f:45:11:b0:2e:44:37:19:f5:82:8c:
de:19:a3:c0:a2:5d:07:7d:ba:de:58:3f:1c:bf:fc:
0e:3f:65:1c:1d:3d:c4:e0:06:d5:80:b0:d9:2f:4f:
69:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7C:EF:E3:6B:3F:CC:68:A4:2C:0A:FF:81:D1:44:98:0F:32:77:7F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/972db6-770f-4462-9fc7-ee9b9517f2ec/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/972db6-770f-4462-9fc7-ee9b9517f2ec/1/dXzv42s_zGikLAr_gdFEmA8yd38.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.215.0/24
45.142.252.0/22
193.19.190.0/24
195.211.166.0/24
IPv6:
2a04:fa00::/29
2a11:1480::/29
2a11:1540::/29
2a11:3440::/29
2a11:45c0::/29
2a11:4a80::/29
2a12:1c40::/29
2a12:2ec0::/29
Signature Algorithm: sha256WithRSAEncryption
9a:a5:d5:35:31:ac:e4:3b:05:43:ac:0d:75:61:95:a3:73:84:
a4:c0:29:d3:87:5b:c0:97:9d:5d:93:70:a7:24:74:60:4d:75:
0a:c9:44:b4:8f:b9:83:ec:91:37:64:ac:a8:f3:6b:77:47:91:
bc:e3:21:af:bc:46:97:fb:76:10:ef:ec:ec:e9:6a:66:44:40:
96:dd:09:3a:c5:a7:a6:c3:36:4b:10:dc:74:93:e8:33:c2:67:
73:01:ac:12:74:f0:c6:7d:cf:5b:cb:b6:9f:70:45:9f:13:3e:
42:f6:3e:85:90:2e:e6:1c:2e:31:59:02:a6:30:cf:25:35:77:
7d:53:bd:f7:20:bd:e4:13:2b:3b:26:3d:ca:23:e1:67:98:d7:
10:27:02:35:98:d7:f0:95:e4:e3:bd:22:29:2b:ad:f8:ac:f1:
b9:6f:1d:84:be:aa:e5:a5:33:18:ee:81:70:0b:2c:30:58:c0:
6c:0f:3e:a0:d1:30:ac:46:71:27:01:e9:7f:bd:63:56:4a:95:
11:8b:e8:ea:bb:7f:ce:61:1a:93:12:64:09:4a:38:85:78:4f:
3b:c5:9d:63:48:e8:56:72:b4:7c:1a:2a:94:fd:f6:9d:4c:da:
4a:2f:72:86:29:66:db:0f:9f:8a:d7:04:ea:dc:b2:64:d7:b4:
07:46:5f:c0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri May 3 03:24:01 2024 by rpki-client on console-fra.rpki-client.org