Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/egz9WlEBPl_WyvgJh4BHpgXunW0.cer
File: egz9WlEBPl_WyvgJh4BHpgXunW0.cer (raw, json)
Hash identifier: INyyEfaRHN0xu0g4DWYNnoE2i5DBdzfxI59n5DFaXx8=
Subject key identifier: 7A:0C:FD:5A:51:01:3E:5F:D6:CA:F8:09:87:80:47:A6:05:EE:9D:6D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2A439FF39B91A1221B1FD8CA6DBCFA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/aa/ee04d8-49dc-409f-92fc-dd5623048ea2/1/egz9WlEBPl_WyvgJh4BHpgXunW0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/aa/ee04d8-49dc-409f-92fc-dd5623048ea2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:33:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198551
IP: 185.76.0.0/22
IP: 185.171.112.0/22
IP: 185.204.204.0 -- 185.204.211.255
IP: 185.206.116.0/22
IP: 185.208.60.0/22
IP: 185.218.32.0/22
IP: 185.226.16.0/22
IP: 185.234.140.0/22
IP: 212.84.56.0/21
IP: 2a00:dfc0::/29
IP: 2a0a:d100::/29
IP: 2a0c:200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:43:9f:f3:9b:91:a1:22:1b:1f:d8:ca:6d:bc:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:33:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a0cfd5a51013e5fd6caf809878047a605ee9d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e9:83:85:d9:c2:ce:6d:45:be:16:24:60:b0:
48:39:38:00:5e:1a:32:05:7a:50:41:a8:b8:0c:9d:
60:d3:c7:b1:c7:31:14:cd:3e:eb:1c:cf:ef:19:74:
2e:33:28:e6:27:33:bf:2d:63:b5:1b:12:98:d4:25:
27:8e:a6:f4:f0:fe:3a:99:ea:f8:97:60:2e:92:11:
52:73:73:5b:07:cb:0b:20:b2:92:ac:a7:62:e3:c6:
c6:77:ad:77:40:7e:15:7c:23:ee:3f:3a:f2:c7:ed:
2b:13:60:69:32:fa:b1:f4:77:11:37:d5:0f:bc:ad:
5b:d8:e1:d9:e5:cc:de:ef:3f:eb:d2:54:e5:ff:e6:
58:e0:9d:fc:6b:a4:2c:7f:1d:89:94:2d:6b:03:93:
9d:c9:d8:53:0f:84:3b:36:68:dd:ba:27:1d:e5:79:
0a:48:87:06:65:e1:7e:2d:c7:96:69:91:f9:c9:c1:
7a:b5:bf:72:c3:cb:4e:cc:5a:7d:86:33:c8:fc:8a:
23:2d:b5:96:e1:f5:2c:33:ae:21:90:13:29:94:0a:
1c:ea:d2:86:fa:4a:0c:91:46:a5:3a:b0:ff:dd:20:
0b:71:f9:c9:5a:e6:ec:15:55:e3:15:87:ea:ab:25:
28:e8:2b:29:3e:3f:8c:70:51:9b:14:6f:aa:32:70:
55:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0C:FD:5A:51:01:3E:5F:D6:CA:F8:09:87:80:47:A6:05:EE:9D:6D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee04d8-49dc-409f-92fc-dd5623048ea2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee04d8-49dc-409f-92fc-dd5623048ea2/1/egz9WlEBPl_WyvgJh4BHpgXunW0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.0.0/22
185.171.112.0/22
185.204.204.0-185.204.211.255
185.206.116.0/22
185.208.60.0/22
185.218.32.0/22
185.226.16.0/22
185.234.140.0/22
212.84.56.0/21
IPv6:
2a00:dfc0::/29
2a0a:d100::/29
2a0c:200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198551
Signature Algorithm: sha256WithRSAEncryption
6a:15:d9:6f:5b:17:fd:db:d4:96:bd:9d:ed:24:02:a8:49:c7:
f9:0f:56:78:86:4a:fe:86:f8:96:a3:60:b8:b1:0f:fa:9d:28:
70:0a:81:aa:93:38:13:e4:f0:10:4f:ed:68:eb:5c:e1:fb:5f:
77:2e:b6:28:43:c4:01:b3:2f:ee:78:d8:1e:a4:6c:ae:ef:42:
ac:db:de:b9:26:bc:62:98:1f:a4:2b:d9:33:f5:51:6d:cb:92:
13:77:46:2c:50:0f:53:d5:38:37:04:b2:4c:14:c3:3a:14:0a:
e9:bb:c7:9c:5d:75:a3:ff:9a:73:99:f0:38:4e:c3:69:14:12:
54:e6:a2:d4:8b:e8:59:15:cd:ff:59:35:ce:03:29:c3:45:c5:
d7:0c:1f:d0:bd:c7:a3:57:45:3a:0d:82:f9:94:7a:60:f1:1b:
b9:b6:24:80:5f:16:2f:df:76:6e:2a:94:37:a0:ef:44:e6:4d:
75:89:27:93:6c:95:4e:58:aa:3d:fc:a1:a9:fb:6f:8c:a0:f2:
1e:db:d2:34:af:89:ce:be:bf:a8:5b:1e:97:24:03:f1:79:4b:
1d:cc:b9:fc:5b:0d:85:ac:4d:e0:2f:be:89:c8:95:c2:b4:f1:
48:3e:be:89:fe:d2:83:f0:b0:5c:c8:c7:17:e8:75:c1:20:95:
1a:78:ca:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 01:02:42 2024 by rpki-client on console-fra.rpki-client.org