Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
File: gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer (raw, json)
Hash identifier: o94eyZYd1xgia6v0IzzhriHT3P8lYMI9t6Oa4S9/8OM=
Subject key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC42D04CBC49EFA6007B7182E99C5B2AD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:38:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201963
IP: 45.89.148.0/22
IP: 45.93.184.0/22
IP: 45.128.12.0/22
IP: 45.132.216.0/22
IP: 45.140.36.0/22
IP: 45.145.240.0/22
IP: 185.250.40.0/22
IP: 2a02:d800::/29
IP: 2a04:de00::/29
IP: 2a0b:fb80::/29
IP: 2a0e:2f40::/29
IP: 2a0e:3cc0::/29
IP: 2a0e:7140::/29
IP: 2a0e:b180::/29
IP: 2a0e:e480::/29
IP: 2a0e:fcc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:2d:04:cb:c4:9e:fa:60:07:b7:18:2e:99:c5:b2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:38:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:24:74:93:15:5d:38:a5:d8:8b:4a:d4:a1:b2:
19:df:fe:a4:41:53:8b:f0:9b:8b:fe:df:34:61:2a:
84:ed:19:14:53:30:28:ec:9c:56:f1:9a:0e:88:7b:
78:6d:c3:02:ca:ce:1e:fb:e5:45:f1:27:3c:4c:65:
93:09:18:85:8a:f9:c5:54:15:88:2e:e2:a2:bd:71:
69:67:5f:9f:22:6d:c5:84:1f:23:1b:81:85:58:27:
06:37:63:2c:e8:1e:7d:44:ca:02:48:c4:58:99:f9:
46:31:a7:e7:dc:37:28:25:ba:9f:41:03:d7:87:e9:
94:0d:10:2a:c2:7a:e7:e0:8c:71:76:e0:b8:49:00:
e5:12:39:02:24:39:2a:f0:73:4f:9b:f8:90:25:98:
39:d2:b8:a0:a4:6c:67:bd:f0:69:01:d4:16:4c:ff:
35:4f:87:3e:3e:42:86:ed:81:d3:e2:1f:04:a5:36:
c8:da:31:00:77:a9:9d:10:6f:e7:c3:58:65:0b:73:
97:b4:dd:82:9c:44:51:6a:a1:da:50:e0:f3:0f:4a:
d2:f5:28:ef:81:71:b0:a2:40:73:a5:5c:32:9d:b4:
6f:a8:02:25:f0:b1:e4:a3:ce:e9:d7:f2:ba:22:d1:
35:bb:04:67:42:20:75:50:2d:3d:9f:f2:7e:f0:ec:
fa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.148.0/22
45.93.184.0/22
45.128.12.0/22
45.132.216.0/22
45.140.36.0/22
45.145.240.0/22
185.250.40.0/22
IPv6:
2a02:d800::/29
2a04:de00::/29
2a0b:fb80::/29
2a0e:2f40::/29
2a0e:3cc0::/29
2a0e:7140::/29
2a0e:b180::/29
2a0e:e480::/29
2a0e:fcc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201963
Signature Algorithm: sha256WithRSAEncryption
56:76:fb:1e:f5:49:ac:ef:67:2a:08:96:69:7e:5f:55:7b:26:
ad:4b:be:a4:ae:a5:f0:1e:3c:ef:fd:2e:f3:b8:45:f1:ec:88:
99:b4:09:ad:06:65:8d:20:78:27:19:64:84:4b:b1:23:19:58:
0a:f3:31:71:fe:ed:80:a8:43:dd:78:10:11:48:8e:94:9c:3f:
ec:b8:43:48:ab:67:e9:12:a0:cf:8e:4c:9b:84:ca:67:28:27:
98:60:6a:06:f8:4c:72:75:0b:2f:71:b3:77:a9:33:7d:e8:ca:
6d:ce:b7:43:53:aa:96:87:a5:67:a1:94:d7:f0:5b:2f:26:c5:
9a:55:0d:b2:ff:0b:43:47:14:1a:f5:3c:1f:de:bd:47:58:e5:
42:24:35:df:17:9e:1b:db:ee:75:da:9c:20:a6:58:b6:27:e7:
c2:66:b1:0e:b6:10:dc:96:65:f6:a7:92:dd:2d:0e:61:7d:ed:
c6:52:7f:05:2c:cc:e7:ca:5b:44:48:2a:c3:26:3c:1d:ec:fe:
41:19:3e:14:64:cc:12:af:04:ec:f1:b3:4f:ea:25:49:4a:1e:
98:ae:a2:e1:01:09:2a:61:49:30:ad:ac:f9:e2:f9:99:d7:80:
6d:94:31:0d:cd:a1:45:a6:16:f5:72:5f:10:7d:14:95:22:bf:
15:22:fe:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 17:09:31 2024 by rpki-client on console-ams.rpki-client.org