Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eQvSON99RbeGFUXy0DyvZCMtP_I.cer
File: eQvSON99RbeGFUXy0DyvZCMtP_I.cer (raw, json)
Hash identifier: e6GxmumNVkc5NLFmpr9R+j74wvXTfcPYLebcMsDPmj8=
Subject key identifier: 79:0B:D2:38:DF:7D:45:B7:86:15:45:F2:D0:3C:AF:64:23:2D:3F:F2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01863B64D118861258CC0E51FF661260488B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/1/790BD238DF7D45B7861545F2D03CAF64232D3FF2.mft
caRepository: rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/1
Notify URL: https://magellan.ipxo.com/rrdp/notification.xml
Certificate not before: Fri 10 Feb 2023 12:55:08 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 209526
IP: 2.57.16.0/21
IP: 2.58.28.0/22
IP: 2.58.172.0/22
IP: 5.45.36.0/22
IP: 5.181.124.0 -- 5.181.135.255
IP: 5.182.108.0/22
IP: 5.252.68.0 -- 5.252.83.255
IP: 5.252.160.0/22
IP: 5.253.200.0/22
IP: 37.143.60.0/22
IP: 45.81.0.0/22
IP: 45.87.184.0/22
IP: 45.88.96.0/22
IP: 45.89.240.0/22
IP: 45.89.248.0/21
IP: 45.93.44.0/22
IP: 45.95.12.0/22
IP: 45.95.20.0/22
IP: 45.95.36.0/22
IP: 45.133.168.0 -- 45.133.179.255
IP: 45.137.28.0/22
IP: 45.137.116.0/22
IP: 45.137.124.0/22
IP: 45.137.132.0/22
IP: 45.137.156.0/22
IP: 45.139.180.0/22
IP: 45.231.206.0/23
IP: 85.208.72.0/22
IP: 85.209.176.0/22
IP: 89.19.44.0 -- 89.19.51.255
IP: 89.207.176.0/22
IP: 92.118.160.0/22
IP: 92.119.32.0/22
IP: 92.242.184.0/22
IP: 109.106.0.0/22
IP: 130.185.124.0/22
IP: 141.98.88.0/22
IP: 149.62.40.0/22
IP: 179.61.128.0/17
IP: 181.41.192.0/19
IP: 181.214.0.0/15
IP: 185.34.40.0/22
IP: 185.130.204.0/22
IP: 185.135.8.0/22
IP: 185.135.156.0/22
IP: 185.137.12.0/22
IP: 185.137.92.0/22
IP: 185.139.0.0/22
IP: 185.139.236.0/22
IP: 185.141.164.0/22
IP: 185.142.24.0/22
IP: 185.143.228.0/22
IP: 185.145.36.0/22
IP: 185.151.56.0/22
IP: 185.158.100.0 -- 185.158.107.255
IP: 185.158.132.0/22
IP: 185.158.148.0/22
IP: 185.170.40.0/22
IP: 185.170.56.0/22
IP: 185.172.56.0/22
IP: 185.172.64.0/22
IP: 185.173.24.0/22
IP: 185.173.32.0/22
IP: 185.174.60.0/22
IP: 191.96.0.0/16
IP: 191.101.0.0/16
IP: 193.7.200.0/22
IP: 193.31.40.0/22
IP: 193.58.104.0/22
IP: 193.107.208.0/22
IP: 193.227.122.0/24
IP: 193.227.125.0/24
IP: 193.227.129.0/24
IP: 193.227.135.0/24
IP: 194.53.140.0/22
IP: 194.110.12.0/22
IP: 194.110.242.0/24
IP: 213.109.168.0/22
IP: 2a00:d1a0::/32
IP: 2a03:a960::/29
IP: 2a03:fbc0::/29
IP: 2a06:2b80::/29
IP: 2a09:4b40::/29
IP: 2a0a:4e80::/29
IP: 2a0a:7a00::/29
IP: 2a0a:7e00::/29
IP: 2a0a:8600::/29
IP: 2a0a:8e00::/29
IP: 2a0a:9200::/29
IP: 2a0a:9600::/29
IP: 2a0a:9a00::/29
IP: 2a0a:9e00::/29
IP: 2a0a:9f00::/29
IP: 2a0a:a600::/29
IP: 2a0a:a700::/29
IP: 2a0a:b200::/29
IP: 2a0a:b600::/29
IP: 2a0a:ba00::/29
IP: 2a0a:be00::/29
IP: 2a0a:c600::/29
IP: 2a0a:ce00::/29
IP: 2a0a:d200::/29
IP: 2a0b:300::/29
IP: 2a0b:500::/29
IP: 2a0b:3300::/29
IP: 2a0b:3700::/29
IP: 2a0b:8700::/29
IP: 2a0c:fa40::/29
IP: 2a0d:5c0::/29
IP: 2a0d:4b40::/29
IP: 2a0d:4c40::/29
IP: 2a0e:1c00::/29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:64:d1:18:86:12:58:cc:0e:51:ff:66:12:60:48:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 10 12:55:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=790bd238df7d45b7861545f2d03caf64232d3ff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d8:2c:7a:64:53:98:5b:33:c3:18:32:a3:ac:
a3:12:47:6d:15:8b:4a:67:f7:d6:44:9c:2d:47:05:
d1:21:0b:30:68:a1:ba:b1:d6:b4:fb:e2:70:91:2b:
40:35:e0:a1:c3:1f:c8:d1:0d:11:59:ef:69:eb:89:
e4:f3:b1:80:01:e6:77:22:a7:83:8f:ef:41:46:7c:
b1:93:53:f2:ed:08:c3:21:4c:31:3d:99:e8:c3:87:
ea:64:99:e0:e5:5f:2d:d3:7b:09:1c:83:38:45:68:
52:dd:92:3e:26:a1:1c:e3:fa:eb:cd:33:0f:df:ae:
a0:24:d1:9e:d3:c7:d9:75:0a:7e:1f:88:2b:98:1d:
f0:59:62:51:d3:19:b3:74:82:7e:f8:fd:fd:f0:81:
69:78:d6:7a:28:98:1a:ba:d6:98:e6:b9:e4:e7:4c:
12:e8:7b:16:56:47:34:b8:ba:58:60:84:70:46:84:
8c:56:d8:05:7a:c1:91:e1:02:42:50:4f:a5:1a:d5:
e6:1c:70:20:0b:c9:be:f5:5c:4d:fd:4b:26:17:f3:
c1:d4:de:9f:8a:ce:81:96:ad:9f:97:a9:95:55:e2:
9a:da:15:da:52:cc:7b:fa:37:28:64:93:09:9c:9c:
67:25:06:0c:b0:35:17:63:81:40:32:f5:bb:eb:e8:
d3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0B:D2:38:DF:7D:45:B7:86:15:45:F2:D0:3C:AF:64:23:2D:3F:F2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/1
RPKI Manifest - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/1/790BD238DF7D45B7861545F2D03CAF64232D3FF2.mft
RPKI Notify - URI:https://magellan.ipxo.com/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.16.0/21
2.58.28.0/22
2.58.172.0/22
5.45.36.0/22
5.181.124.0-5.181.135.255
5.182.108.0/22
5.252.68.0-5.252.83.255
5.252.160.0/22
5.253.200.0/22
37.143.60.0/22
45.81.0.0/22
45.87.184.0/22
45.88.96.0/22
45.89.240.0/22
45.89.248.0/21
45.93.44.0/22
45.95.12.0/22
45.95.20.0/22
45.95.36.0/22
45.133.168.0-45.133.179.255
45.137.28.0/22
45.137.116.0/22
45.137.124.0/22
45.137.132.0/22
45.137.156.0/22
45.139.180.0/22
45.231.206.0/23
85.208.72.0/22
85.209.176.0/22
89.19.44.0-89.19.51.255
89.207.176.0/22
92.118.160.0/22
92.119.32.0/22
92.242.184.0/22
109.106.0.0/22
130.185.124.0/22
141.98.88.0/22
149.62.40.0/22
179.61.128.0/17
181.41.192.0/19
181.214.0.0/15
185.34.40.0/22
185.130.204.0/22
185.135.8.0/22
185.135.156.0/22
185.137.12.0/22
185.137.92.0/22
185.139.0.0/22
185.139.236.0/22
185.141.164.0/22
185.142.24.0/22
185.143.228.0/22
185.145.36.0/22
185.151.56.0/22
185.158.100.0-185.158.107.255
185.158.132.0/22
185.158.148.0/22
185.170.40.0/22
185.170.56.0/22
185.172.56.0/22
185.172.64.0/22
185.173.24.0/22
185.173.32.0/22
185.174.60.0/22
191.96.0.0/16
191.101.0.0/16
193.7.200.0/22
193.31.40.0/22
193.58.104.0/22
193.107.208.0/22
193.227.122.0/24
193.227.125.0/24
193.227.129.0/24
193.227.135.0/24
194.53.140.0/22
194.110.12.0/22
194.110.242.0/24
213.109.168.0/22
IPv6:
2a00:d1a0::/32
2a03:a960::/29
2a03:fbc0::/29
2a06:2b80::/29
2a09:4b40::/29
2a0a:4e80::/29
2a0a:7a00::/29
2a0a:7e00::/29
2a0a:8600::/29
2a0a:8e00::/29
2a0a:9200::/29
2a0a:9600::/29
2a0a:9a00::/29
2a0a:9e00::/29
2a0a:9f00::/29
2a0a:a600::/29
2a0a:a700::/29
2a0a:b200::/29
2a0a:b600::/29
2a0a:ba00::/29
2a0a:be00::/29
2a0a:c600::/29
2a0a:ce00::/29
2a0a:d200::/29
2a0b:300::/29
2a0b:500::/29
2a0b:3300::/29
2a0b:3700::/29
2a0b:8700::/29
2a0c:fa40::/29
2a0d:5c0::/29
2a0d:4b40::/29
2a0d:4c40::/29
2a0e:1c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209526
Signature Algorithm: sha256WithRSAEncryption
7a:3b:c5:0d:38:b1:f1:c1:80:58:bd:07:b1:5e:3e:5e:b7:d1:
0f:50:cc:b9:4f:bd:07:2e:7f:20:1f:61:df:a9:3c:eb:a2:59:
f4:1d:94:87:3c:f7:15:f5:c2:3e:a3:b9:55:46:37:62:0c:15:
01:50:13:37:e5:55:2e:b5:b0:84:05:69:d9:fb:9a:47:25:06:
f3:cf:84:33:b8:b5:55:b1:82:fc:73:19:82:0b:c5:60:d3:21:
02:8d:f0:e2:f6:b4:7c:ef:18:91:9c:60:b5:b1:21:4b:c3:ce:
43:6e:1a:46:e5:9a:e6:fd:a9:a1:d2:8d:0a:4a:2e:42:ba:ab:
77:7f:2c:f1:dd:28:56:bf:b4:67:fb:da:61:61:44:2d:aa:88:
dc:c3:e9:c3:50:ae:02:6d:92:f7:fa:2f:1c:2b:32:ca:aa:47:
29:86:70:d9:97:9b:b3:c6:14:4f:49:35:b0:bd:6d:e5:73:07:
c8:aa:c8:c9:67:58:a5:b2:08:4d:6c:fa:7e:a4:91:22:fa:80:
64:6b:99:23:33:24:8b:92:78:12:2e:24:74:c0:ca:71:c4:9f:
31:a4:df:c0:a8:11:09:21:80:08:f2:c2:59:33:09:9e:a3:ea:
65:90:1b:a6:55:2e:01:9e:f7:5f:9f:34:24:90:9f:de:c0:61:
76:93:d0:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:15 2024 by rpki-client on console-fra.rpki-client.org