Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
File: k6Ip4mayVYiZ81R-5j2E7WWUdos.cer (raw, json)
Hash identifier: AaOP3y+QAqBKaxodcl0Sm/xnEbRJmcTGraPDkZU6qLg=
Subject key identifier: 93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F1019C4D4869F97FAD2C853AA5815D75F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 24 Apr 2024 12:34:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56655
AS: 57775
IP: 45.88.200.0/22
IP: 185.1.174.0/24
IP: 185.14.97.0/24
IP: 185.125.168.0/22
IP: 185.181.60.0/22
IP: 185.243.216.0/22
IP: 193.243.189.0/24
IP: 194.32.107.0/24
IP: 195.16.73.0/24
IP: 198.140.141.0/24
IP: 2001:7f8:f7::/48
IP: 2a03:94e0::/29
IP: 2a0a:cd80::/29
IP: 2a0c:2c40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:10:19:c4:d4:86:9f:97:fa:d2:c8:53:aa:58:15:d7:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 24 12:34:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93a229e266b2558899f3547ee63d84ed6594768b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:ec:72:c4:fb:8f:e2:54:e1:e7:85:a8:c0:
a7:45:b3:43:aa:ff:7f:d2:1b:37:87:d1:6b:6e:32:
94:af:1d:93:53:7e:36:2f:85:f8:79:14:a8:0b:3b:
44:87:00:cd:6e:4c:96:94:44:a6:0d:5f:e5:d8:d3:
10:bb:b0:70:92:cf:71:78:89:2f:60:25:98:40:d7:
48:65:3d:30:2f:f6:b7:79:30:ab:92:75:df:94:e1:
10:f3:76:30:85:05:cf:44:25:d8:02:45:67:35:94:
5e:6b:ee:b7:56:b7:5c:80:68:16:f1:c9:f9:33:ef:
06:69:1a:1c:90:49:d5:1f:6a:49:34:26:f8:f8:83:
41:c4:42:2b:c9:2f:9d:52:91:0e:2b:f8:a8:50:66:
4e:81:46:dc:a5:90:4e:bb:36:9a:1e:7b:28:72:17:
99:e0:fd:01:95:12:d1:bd:7e:89:11:53:01:74:64:
b9:16:43:18:5c:5e:a9:50:91:b2:4e:b8:88:39:30:
1d:62:96:39:a9:fb:35:5d:4c:2f:f4:35:0c:a7:1b:
0b:fc:01:74:c9:da:57:6c:2a:a5:ec:8c:b3:da:55:
e8:b5:dc:0b:c7:4b:50:ba:50:c7:fc:c4:7d:43:63:
a3:74:66:00:d2:9d:b3:fa:53:66:da:f8:01:53:33:
ad:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.200.0/22
185.1.174.0/24
185.14.97.0/24
185.125.168.0/22
185.181.60.0/22
185.243.216.0/22
193.243.189.0/24
194.32.107.0/24
195.16.73.0/24
198.140.141.0/24
IPv6:
2001:7f8:f7::/48
2a03:94e0::/29
2a0a:cd80::/29
2a0c:2c40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56655
57775
Signature Algorithm: sha256WithRSAEncryption
4b:06:29:85:d6:9d:95:ad:23:09:99:1e:e7:a1:14:24:af:16:
9c:db:e7:f8:49:2b:39:88:2f:b7:6c:8e:9e:32:52:a8:88:95:
3e:48:ea:df:c4:ba:91:12:38:c3:5d:7f:40:27:60:e8:5d:d1:
3c:3b:8f:7e:ba:de:a1:9f:a4:bd:0e:dd:7d:4f:8a:6a:5f:20:
11:0c:7a:fb:06:d9:7b:35:a6:ae:eb:49:7e:80:bd:84:e8:5f:
48:4f:e1:2f:0e:3d:71:52:e8:74:f6:bd:e3:ca:c6:4e:c1:0b:
c1:29:89:84:b3:15:76:49:79:33:f1:cd:90:07:42:0b:1a:53:
7c:6e:92:5e:49:b3:9b:ea:e1:7f:76:6a:84:1c:62:af:b5:d8:
7b:03:a5:63:7c:f4:c9:7f:44:5c:25:08:c6:2c:cc:8c:5e:fd:
65:3c:34:e7:10:79:04:21:ac:a8:39:2b:02:0d:87:73:0f:74:
6d:ee:82:88:84:bd:44:b5:3c:be:66:33:2b:f3:90:ef:ad:80:
6f:c5:52:10:b8:5f:c6:b6:99:ea:af:58:cb:b0:91:ea:2a:8b:
c8:03:1b:4c:2e:65:04:8f:15:90:bf:31:84:e2:d9:66:49:53:
2b:b8:00:23:4f:48:39:d6:0a:3e:2f:7f:dc:81:d8:8c:2b:86:
64:42:78:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:13:58 2024 by rpki-client on console-fra.rpki-client.org