Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
File: lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer (raw, json)
Hash identifier: n2Nd4RHvrS1Ng7Bmcd1hJSyHLFjAPxdYidKLTfaMwH0=
Subject key identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BB417C6D3A40A05FB36E5A5DD1C557
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48294
AS: 201354
IP: 91.194.46.0/23
IP: 94.126.208.0/21
IP: 185.38.244.0/22
IP: 185.77.56.0/22
IP: 185.81.232.0/22
IP: 185.81.244.0/22
IP: 185.81.252.0/22
IP: 185.126.248.0/22
IP: 188.164.224.0/21
IP: 194.150.200.0/23
IP: 2a02:5d80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:41:7c:6d:3a:40:a0:5f:b3:6e:5a:5d:d1:c5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:40:09:ef:c9:21:e0:f1:1d:42:b6:3a:cd:
8a:aa:fe:86:a8:38:b4:6d:dc:55:cd:ae:28:c8:00:
3f:83:61:fb:ad:f8:70:57:04:c2:37:d8:9a:23:53:
2d:6a:30:9c:51:18:67:81:c5:fb:d6:35:81:51:d8:
8d:8e:ce:92:5a:4a:4d:84:63:59:e0:78:9b:6e:aa:
a7:da:37:df:20:a1:38:ff:be:a3:36:00:6b:1d:ee:
e2:fd:dd:a4:0e:c7:4b:38:96:b0:46:8a:c7:01:57:
ea:c2:8c:f8:f3:fc:5d:67:47:ef:bf:df:bd:6b:81:
25:3c:4c:9e:95:76:20:92:28:de:53:24:47:00:36:
ee:e8:c9:95:94:79:53:1e:79:95:69:7e:44:f7:ab:
e5:f5:a0:94:fc:5e:58:0b:e3:00:d7:b2:b6:5c:8d:
7c:74:25:7d:25:79:a9:0b:d5:22:8e:1f:be:51:c4:
dd:e3:e4:18:ac:1b:73:56:fd:75:ad:f2:ef:e4:57:
bb:49:b9:7e:11:08:34:a3:a3:47:42:ca:d2:42:f2:
97:ac:d3:4c:9c:96:40:ce:cb:b4:90:54:29:95:e3:
e9:cf:69:77:ec:00:2e:40:33:b9:90:e6:43:a8:c5:
b0:5f:d9:e2:e7:51:83:91:32:9c:6a:fc:a9:bf:48:
53:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.46.0/23
94.126.208.0/21
185.38.244.0/22
185.77.56.0/22
185.81.232.0/22
185.81.244.0/22
185.81.252.0/22
185.126.248.0/22
188.164.224.0/21
194.150.200.0/23
IPv6:
2a02:5d80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48294
201354
Signature Algorithm: sha256WithRSAEncryption
b0:9a:f4:5e:a1:cb:84:1f:c5:12:ca:3d:0f:64:48:be:0f:26:
53:12:2a:3b:62:95:34:76:4b:a9:2a:f4:6d:10:f6:34:89:6c:
17:9e:91:54:26:d7:0a:cd:88:81:28:be:71:25:2a:09:64:05:
e3:d9:6b:cc:0e:aa:00:13:44:77:5b:96:ea:b8:b2:87:7d:27:
67:66:54:1e:c9:c2:be:9d:42:fe:d3:2a:d5:94:4a:c5:cc:55:
78:21:0f:9e:81:d1:7f:19:96:8c:74:ed:3b:2a:62:a2:7e:b0:
d2:9d:15:c9:c0:eb:e5:19:dc:41:03:d9:3a:55:94:53:9d:cb:
ac:25:98:b0:03:cf:c5:9a:a9:c8:99:f1:e5:c2:55:1e:d4:39:
08:ac:8c:89:2f:86:e7:ab:f8:2b:fe:f8:7d:38:25:b6:93:f9:
f6:f4:ed:33:09:c4:80:fc:e7:7d:1d:37:5c:a9:33:fd:fb:0f:
ba:dd:23:28:65:4b:a7:82:a1:e2:f3:d9:39:2a:8c:71:72:02:
6d:93:95:27:75:03:6b:0a:46:6c:21:84:b9:41:36:6f:d1:34:
68:51:76:be:a4:45:d4:8a:94:25:0f:05:51:e8:4a:4d:77:b0:
69:eb:28:96:6f:cf:df:6a:99:bf:24:10:14:04:ea:90:00:18:
9b:15:2a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:01:00 2024 by rpki-client on console-ams.rpki-client.org