Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ecxiHNIQmTgYSipkrR9liW5Ii3w.cer
File: ecxiHNIQmTgYSipkrR9liW5Ii3w.cer (raw, json)
Hash identifier: r+qG+3GAuMQ7ORxqV+lvaxF0C0kuJpUg/HS/YMtHdSc=
Subject key identifier: 79:CC:62:1C:D2:10:99:38:18:4A:2A:64:AD:1F:65:89:6E:48:8B:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0182DEAB490F8293EC36306F07ED026A8911
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0/79CC621CD2109938184A2A64AD1F65896E488B7C.mft
caRepository: rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0
Notify URL: https://magellan.ipxo.com/rrdp/notification.xml
Certificate not before: Sat 27 Aug 2022 09:39:03 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 209526
IP: 2.57.16.0/21
IP: 2.58.28.0/22
IP: 2.58.172.0/22
IP: 5.45.36.0/22
IP: 5.181.124.0 -- 5.181.135.255
IP: 5.182.108.0/22
IP: 5.252.68.0 -- 5.252.83.255
IP: 5.252.160.0/22
IP: 5.253.200.0/22
IP: 37.143.60.0/22
IP: 45.81.0.0/22
IP: 45.87.184.0/22
IP: 45.88.96.0/22
IP: 45.89.240.0/22
IP: 45.89.248.0/21
IP: 45.93.44.0/22
IP: 45.95.12.0/22
IP: 45.95.20.0/22
IP: 45.95.36.0/22
IP: 45.133.168.0 -- 45.133.179.255
IP: 45.137.28.0/22
IP: 45.137.116.0/22
IP: 45.137.124.0/22
IP: 45.137.132.0/22
IP: 45.137.156.0/22
IP: 45.139.180.0/22
IP: 45.231.206.0/23
IP: 85.208.72.0/22
IP: 85.209.176.0/22
IP: 89.19.44.0 -- 89.19.51.255
IP: 89.207.176.0/22
IP: 92.118.160.0/22
IP: 92.119.32.0/22
IP: 92.242.184.0/22
IP: 109.106.0.0/22
IP: 130.185.124.0/22
IP: 141.98.88.0/22
IP: 149.62.40.0/22
IP: 179.61.128.0/17
IP: 181.41.192.0/19
IP: 181.214.0.0/15
IP: 185.34.40.0/22
IP: 185.130.204.0/22
IP: 185.135.8.0/22
IP: 185.135.156.0/22
IP: 185.137.12.0/22
IP: 185.137.92.0/22
IP: 185.139.0.0/22
IP: 185.139.236.0/22
IP: 185.141.164.0/22
IP: 185.142.24.0/22
IP: 185.143.228.0/22
IP: 185.145.36.0/22
IP: 185.151.56.0/22
IP: 185.158.100.0 -- 185.158.107.255
IP: 185.158.132.0/22
IP: 185.158.148.0/22
IP: 185.170.40.0/22
IP: 185.170.56.0/22
IP: 185.172.56.0/22
IP: 185.172.64.0/22
IP: 185.173.24.0/22
IP: 185.173.32.0/22
IP: 185.174.60.0/22
IP: 191.96.0.0/16
IP: 191.101.0.0/16
IP: 193.7.200.0/22
IP: 193.31.40.0/22
IP: 193.58.104.0/22
IP: 193.107.208.0/22
IP: 193.227.122.0/24
IP: 193.227.125.0/24
IP: 193.227.129.0/24
IP: 193.227.135.0/24
IP: 194.53.140.0/22
IP: 194.110.12.0/22
IP: 194.110.242.0/24
IP: 213.109.168.0/22
IP: 2a00:d1a0::/32
IP: 2a03:a960::/29
IP: 2a03:fbc0::/29
IP: 2a06:2b80::/29
IP: 2a09:4b40::/29
IP: 2a0a:4e80::/29
IP: 2a0a:7a00::/29
IP: 2a0a:7e00::/29
IP: 2a0a:8600::/29
IP: 2a0a:8e00::/29
IP: 2a0a:9200::/29
IP: 2a0a:9600::/29
IP: 2a0a:9a00::/29
IP: 2a0a:9e00::/29
IP: 2a0a:9f00::/29
IP: 2a0a:a600::/29
IP: 2a0a:a700::/29
IP: 2a0a:b200::/29
IP: 2a0a:b600::/29
IP: 2a0a:ba00::/29
IP: 2a0a:be00::/29
IP: 2a0a:c600::/29
IP: 2a0a:ce00::/29
IP: 2a0a:d200::/29
IP: 2a0b:300::/29
IP: 2a0b:500::/29
IP: 2a0b:3300::/29
IP: 2a0b:3700::/29
IP: 2a0b:8700::/29
IP: 2a0c:fa40::/29
IP: 2a0d:5c0::/29
IP: 2a0d:4b40::/29
IP: 2a0d:4c40::/29
IP: 2a0e:1c00::/29
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:de:ab:49:0f:82:93:ec:36:30:6f:07:ed:02:6a:89:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 27 09:39:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79cc621cd2109938184a2a64ad1f65896e488b7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:78:bb:72:d5:a6:c6:0b:6c:7f:8b:79:d7:28:
ed:9a:87:38:45:d6:49:d8:ea:61:21:10:32:6e:c0:
ff:aa:e0:c6:e5:73:44:1b:bc:34:bf:0c:32:ba:48:
96:3d:dd:d0:a6:95:7f:19:8e:8f:35:73:2e:a7:ed:
c4:6d:f8:fa:8e:7b:7b:5a:f9:9e:69:2b:9d:d6:99:
a2:25:7f:19:33:ad:90:f9:ab:0f:56:e5:f9:27:cf:
7e:b3:f2:51:47:44:52:c5:31:aa:b6:8b:60:db:e6:
39:5b:16:b2:d2:76:8e:62:c6:33:8d:01:e5:3d:8a:
f5:bf:66:85:b7:ab:b9:2d:f4:4c:72:ac:bd:27:52:
07:7c:ba:51:48:81:c2:bd:e7:c4:9f:15:ec:ba:74:
ff:5a:37:fe:fa:73:cb:f5:25:c2:fc:9d:2a:9b:58:
7f:e8:ea:01:b2:d3:7b:84:d6:a4:84:67:0d:5e:5e:
78:31:1f:3d:f0:fc:d6:5d:26:11:32:82:43:82:77:
0e:72:7c:6b:c9:7d:68:bb:1c:ff:bb:69:59:01:db:
e4:48:26:f6:64:48:39:b4:be:ea:12:a8:c3:45:21:
23:c2:b3:6b:07:20:d0:4a:c8:fb:65:37:24:9d:e3:
16:43:3c:b4:6f:04:2d:0b:88:e9:4a:5a:c8:a2:67:
9a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CC:62:1C:D2:10:99:38:18:4A:2A:64:AD:1F:65:89:6E:48:8B:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0
RPKI Manifest - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0/79CC621CD2109938184A2A64AD1F65896E488B7C.mft
RPKI Notify - URI:https://magellan.ipxo.com/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.16.0/21
2.58.28.0/22
2.58.172.0/22
5.45.36.0/22
5.181.124.0-5.181.135.255
5.182.108.0/22
5.252.68.0-5.252.83.255
5.252.160.0/22
5.253.200.0/22
37.143.60.0/22
45.81.0.0/22
45.87.184.0/22
45.88.96.0/22
45.89.240.0/22
45.89.248.0/21
45.93.44.0/22
45.95.12.0/22
45.95.20.0/22
45.95.36.0/22
45.133.168.0-45.133.179.255
45.137.28.0/22
45.137.116.0/22
45.137.124.0/22
45.137.132.0/22
45.137.156.0/22
45.139.180.0/22
45.231.206.0/23
85.208.72.0/22
85.209.176.0/22
89.19.44.0-89.19.51.255
89.207.176.0/22
92.118.160.0/22
92.119.32.0/22
92.242.184.0/22
109.106.0.0/22
130.185.124.0/22
141.98.88.0/22
149.62.40.0/22
179.61.128.0/17
181.41.192.0/19
181.214.0.0/15
185.34.40.0/22
185.130.204.0/22
185.135.8.0/22
185.135.156.0/22
185.137.12.0/22
185.137.92.0/22
185.139.0.0/22
185.139.236.0/22
185.141.164.0/22
185.142.24.0/22
185.143.228.0/22
185.145.36.0/22
185.151.56.0/22
185.158.100.0-185.158.107.255
185.158.132.0/22
185.158.148.0/22
185.170.40.0/22
185.170.56.0/22
185.172.56.0/22
185.172.64.0/22
185.173.24.0/22
185.173.32.0/22
185.174.60.0/22
191.96.0.0/16
191.101.0.0/16
193.7.200.0/22
193.31.40.0/22
193.58.104.0/22
193.107.208.0/22
193.227.122.0/24
193.227.125.0/24
193.227.129.0/24
193.227.135.0/24
194.53.140.0/22
194.110.12.0/22
194.110.242.0/24
213.109.168.0/22
IPv6:
2a00:d1a0::/32
2a03:a960::/29
2a03:fbc0::/29
2a06:2b80::/29
2a09:4b40::/29
2a0a:4e80::/29
2a0a:7a00::/29
2a0a:7e00::/29
2a0a:8600::/29
2a0a:8e00::/29
2a0a:9200::/29
2a0a:9600::/29
2a0a:9a00::/29
2a0a:9e00::/29
2a0a:9f00::/29
2a0a:a600::/29
2a0a:a700::/29
2a0a:b200::/29
2a0a:b600::/29
2a0a:ba00::/29
2a0a:be00::/29
2a0a:c600::/29
2a0a:ce00::/29
2a0a:d200::/29
2a0b:300::/29
2a0b:500::/29
2a0b:3300::/29
2a0b:3700::/29
2a0b:8700::/29
2a0c:fa40::/29
2a0d:5c0::/29
2a0d:4b40::/29
2a0d:4c40::/29
2a0e:1c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209526
Signature Algorithm: sha256WithRSAEncryption
97:0e:3e:e5:9d:c1:f1:37:54:36:46:23:e3:3b:0e:cc:4b:ce:
02:97:58:a1:ac:30:2f:7e:d1:a8:6d:e1:8e:51:cf:2f:fb:bd:
d2:34:ab:a9:cf:08:56:9a:b8:26:f9:f8:11:30:82:f9:94:7f:
62:44:36:d1:4b:75:04:36:7e:a6:23:4f:b3:df:1e:78:6a:4c:
d2:58:62:13:9a:7e:fc:9f:c6:11:33:22:21:49:35:95:0d:e2:
b6:ea:88:38:49:c2:1a:3b:44:f9:f9:fc:cf:42:a7:d0:5e:5a:
5f:5d:7c:e3:51:56:b3:cb:53:f5:6a:8c:5a:35:e3:e3:93:dd:
61:74:7c:26:bd:17:20:e9:5f:63:44:4f:53:d9:75:da:d2:99:
77:cf:36:ee:9e:a5:42:aa:5d:3c:9e:45:61:8b:b9:2d:19:65:
2b:d6:68:ad:7f:68:99:76:a4:a6:80:20:d0:a8:e3:1c:56:1a:
85:80:c9:f3:d7:20:66:6e:19:0d:6a:93:c4:3c:3d:44:4b:70:
c8:27:8f:ce:53:4a:77:da:d1:8b:a7:73:88:a5:39:0a:42:d7:
19:17:38:1e:fe:f0:3b:b1:e3:78:8a:ae:36:1e:1b:24:79:42:
a6:2b:d5:6e:30:13:0a:d1:3f:a7:0b:9a:23:4c:51:26:59:d8:
ba:99:90:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:42 2024 by rpki-client on console-fra.rpki-client.org