Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gKn_9jo0d5V_91zNwAPatoz50VU.cer
File: gKn_9jo0d5V_91zNwAPatoz50VU.cer (raw, json)
Hash identifier: bKw5BCL5PbIPGeeV8wLkxCCyS1yC1pCtAePnrjUvuv8=
Subject key identifier: 80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801B67915B656FB9E805C2F1229067D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 16276
AS: 35540
IP: 5.39.0.0/17
IP: 5.135.0.0/16
IP: 5.196.0.0/16
IP: 37.59.0.0/16
IP: 37.187.0.0/16
IP: 46.105.0.0/16
IP: 51.38.0.0/16
IP: 51.68.0.0/16
IP: 51.75.0.0/16
IP: 51.77.0.0/16
IP: 51.83.0.0/16
IP: 51.89.0.0/16
IP: 51.91.0.0/16
IP: 51.178.0.0/16
IP: 51.195.0.0/16
IP: 51.210.0.0/16
IP: 51.254.0.0/15
IP: 54.36.0.0 -- 54.38.255.255
IP: 57.128.0.0/14
IP: 79.137.0.0/17
IP: 87.98.128.0/17
IP: 91.121.0.0/16
IP: 91.134.0.0/16
IP: 92.222.0.0/16
IP: 94.23.0.0/16
IP: 109.190.0.0/16
IP: 135.125.0.0/16
IP: 137.74.0.0/16
IP: 141.94.0.0/15
IP: 141.227.128.0/17
IP: 145.239.0.0/16
IP: 146.59.0.0/16
IP: 147.135.128.0/17
IP: 149.202.0.0/16
IP: 151.80.0.0/16
IP: 151.127.0.0/16
IP: 152.228.128.0/17
IP: 159.173.0.0/16
IP: 162.19.0.0/16
IP: 164.132.0.0/16
IP: 176.31.0.0/16
IP: 178.32.0.0/15
IP: 185.15.68.0/22
IP: 188.165.0.0/16
IP: 193.70.0.0/17
IP: 198.244.128.0/17
IP: 213.32.0.0/17
IP: 213.186.32.0/19
IP: 213.251.128.0/18
IP: 217.182.0.0/16
IP: 2001:41d0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b6:79:15:b6:56:fb:9e:80:5c:2f:12:29:06:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80a9fff63a3477957ff75ccdc003dab68cf9d155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b6:e7:cf:59:50:e7:42:a4:db:00:96:4f:3f:
9b:7a:a0:46:27:59:eb:35:5d:9f:f5:25:fc:43:1e:
6d:51:2c:8d:a5:ae:0c:2e:04:cf:17:8c:43:a6:20:
51:5a:87:99:58:b5:77:25:01:e0:28:3a:ea:f2:82:
5c:c9:8e:94:db:ca:24:82:c2:54:f0:3e:83:1d:b5:
2e:85:fd:4e:4d:63:77:4f:31:a7:a8:f0:15:bb:e2:
8d:23:a5:cc:13:2e:84:b3:2a:66:d6:c2:90:0b:cc:
91:f1:6a:3f:19:fb:32:95:03:93:eb:a8:8c:ab:00:
fc:67:c8:89:ad:46:13:cd:33:ab:37:32:91:62:2f:
78:b0:d1:dc:34:d8:d5:07:f0:03:c5:0d:57:25:f1:
c6:86:43:88:ee:32:68:8f:8f:49:f8:d0:df:6a:84:
bd:31:e5:11:c2:16:f9:29:78:68:70:2e:8c:02:18:
5d:68:44:92:ac:fb:ca:cc:c2:eb:df:09:da:ef:da:
bf:c6:f8:1b:16:bf:65:4c:ef:92:cd:c0:c9:df:c2:
74:a2:1f:a1:88:11:15:a9:00:d1:2e:f4:f7:1d:ef:
0a:71:64:c1:f7:37:80:6c:e1:34:ac:6a:bb:55:58:
62:65:2a:14:e1:4b:03:52:10:e6:72:7c:ad:1b:ef:
e6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A9:FF:F6:3A:34:77:95:7F:F7:5C:CD:C0:03:DA:B6:8C:F9:D1:55
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b084bf-a454-43cf-ac92-47d98e58545a/1/gKn_9jo0d5V_91zNwAPatoz50VU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.0.0/17
5.135.0.0/16
5.196.0.0/16
37.59.0.0/16
37.187.0.0/16
46.105.0.0/16
51.38.0.0/16
51.68.0.0/16
51.75.0.0/16
51.77.0.0/16
51.83.0.0/16
51.89.0.0/16
51.91.0.0/16
51.178.0.0/16
51.195.0.0/16
51.210.0.0/16
51.254.0.0/15
54.36.0.0-54.38.255.255
57.128.0.0/14
79.137.0.0/17
87.98.128.0/17
91.121.0.0/16
91.134.0.0/16
92.222.0.0/16
94.23.0.0/16
109.190.0.0/16
135.125.0.0/16
137.74.0.0/16
141.94.0.0/15
141.227.128.0/17
145.239.0.0/16
146.59.0.0/16
147.135.128.0/17
149.202.0.0/16
151.80.0.0/16
151.127.0.0/16
152.228.128.0/17
159.173.0.0/16
162.19.0.0/16
164.132.0.0/16
176.31.0.0/16
178.32.0.0/15
185.15.68.0/22
188.165.0.0/16
193.70.0.0/17
198.244.128.0/17
213.32.0.0/17
213.186.32.0/19
213.251.128.0/18
217.182.0.0/16
IPv6:
2001:41d0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16276
35540
Signature Algorithm: sha256WithRSAEncryption
34:40:1a:92:5f:7e:1d:5a:86:02:cf:6a:31:b4:00:9b:c8:ce:
b5:bb:f3:a0:67:41:95:b9:23:d4:15:75:fa:b2:b4:76:f7:89:
e5:71:5c:41:e7:04:a0:75:b9:fc:7e:d4:ea:36:cf:f0:49:8e:
4a:a6:22:b0:de:ea:e0:a2:3c:ac:e2:43:06:95:92:64:f9:72:
a2:e0:b9:0e:cc:3e:eb:1e:ba:be:3b:79:7b:1a:c9:60:fe:9d:
fc:9e:a9:54:d3:97:dc:d8:b0:13:09:d6:ae:8e:7a:4a:4a:b4:
20:2f:ad:93:dc:85:e6:9f:17:5c:bd:78:af:75:cf:31:3c:b7:
82:da:c4:3c:dd:6d:50:f4:84:bd:a1:c7:0e:df:83:32:d1:29:
a6:c9:28:f7:de:59:71:74:1f:6d:e5:5a:4d:bc:1c:3d:7d:de:
64:37:d7:51:ef:95:43:b5:f9:e9:1e:40:db:d3:fb:bc:7e:b1:
0f:78:bf:2e:5f:5b:7e:49:51:ee:27:7e:b3:ea:c7:a8:93:3a:
c7:69:a1:99:44:b5:71:db:69:83:13:02:fc:4e:7b:c1:eb:6a:
0f:b8:e4:f6:2f:3d:19:e7:ef:2f:40:b0:05:15:e0:7a:90:a0:
3a:02:ef:a4:d1:42:fc:ed:eb:c7:b2:4f:d8:37:51:8b:2c:d3:
b3:cf:ff:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:10:38 2024 by rpki-client on console-fra.rpki-client.org