Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
File: lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer (raw, json)
Hash identifier: CM8spV6YlXK0dDNuWjcHf223ziSzLKjuRHyQkT5nG/U=
Subject key identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019223A749F67FF7260EC421FAC04BED448B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 24 Sep 2024 10:50:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48294
IP: 91.194.46.0/23
IP: 94.126.208.0/21
IP: 185.38.244.0/22
IP: 185.77.56.0/22
IP: 185.81.232.0/22
IP: 185.81.244.0/22
IP: 185.81.252.0/22
IP: 185.126.248.0/22
IP: 188.164.224.0/21
IP: 194.150.200.0/23
IP: 2a02:5d80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:23:a7:49:f6:7f:f7:26:0e:c4:21:fa:c0:4b:ed:44:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 24 10:50:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bb:40:09:ef:c9:21:e0:f1:1d:42:b6:3a:cd:
8a:aa:fe:86:a8:38:b4:6d:dc:55:cd:ae:28:c8:00:
3f:83:61:fb:ad:f8:70:57:04:c2:37:d8:9a:23:53:
2d:6a:30:9c:51:18:67:81:c5:fb:d6:35:81:51:d8:
8d:8e:ce:92:5a:4a:4d:84:63:59:e0:78:9b:6e:aa:
a7:da:37:df:20:a1:38:ff:be:a3:36:00:6b:1d:ee:
e2:fd:dd:a4:0e:c7:4b:38:96:b0:46:8a:c7:01:57:
ea:c2:8c:f8:f3:fc:5d:67:47:ef:bf:df:bd:6b:81:
25:3c:4c:9e:95:76:20:92:28:de:53:24:47:00:36:
ee:e8:c9:95:94:79:53:1e:79:95:69:7e:44:f7:ab:
e5:f5:a0:94:fc:5e:58:0b:e3:00:d7:b2:b6:5c:8d:
7c:74:25:7d:25:79:a9:0b:d5:22:8e:1f:be:51:c4:
dd:e3:e4:18:ac:1b:73:56:fd:75:ad:f2:ef:e4:57:
bb:49:b9:7e:11:08:34:a3:a3:47:42:ca:d2:42:f2:
97:ac:d3:4c:9c:96:40:ce:cb:b4:90:54:29:95:e3:
e9:cf:69:77:ec:00:2e:40:33:b9:90:e6:43:a8:c5:
b0:5f:d9:e2:e7:51:83:91:32:9c:6a:fc:a9:bf:48:
53:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.46.0/23
94.126.208.0/21
185.38.244.0/22
185.77.56.0/22
185.81.232.0/22
185.81.244.0/22
185.81.252.0/22
185.126.248.0/22
188.164.224.0/21
194.150.200.0/23
IPv6:
2a02:5d80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48294
Signature Algorithm: sha256WithRSAEncryption
67:77:43:65:df:9c:5f:52:ba:62:d9:dc:25:0d:31:db:c1:d6:
72:15:fd:df:5f:4c:d8:39:8d:0d:90:e0:46:c3:71:33:c2:74:
b2:56:04:98:f0:5c:20:d0:74:fb:8e:a1:61:13:af:90:10:d3:
bf:44:b7:23:50:91:24:6f:36:6b:95:ea:07:aa:85:dd:ed:7a:
e9:06:00:63:4f:41:44:97:19:88:8c:14:39:ec:e8:9a:c4:f7:
10:f8:ab:3b:cd:40:c6:cc:29:3b:e5:19:f4:ef:32:3f:65:98:
5a:3b:cb:7e:35:a9:fe:50:d6:ae:89:d9:1e:5c:7f:3f:3b:42:
cb:12:9a:b7:0d:0f:0e:1b:64:c6:f5:5d:cd:6e:4f:a3:1e:b4:
c7:8a:f0:c6:8e:ba:c6:71:dc:88:88:f4:5a:df:0f:fc:92:81:
e5:37:7b:fc:a4:8a:69:13:34:e5:f7:f4:c4:60:bb:c0:a4:c5:
e1:07:44:b3:df:eb:d8:73:b7:78:2b:f2:39:b2:ef:2c:e8:8e:
d4:27:8a:43:ed:48:c0:38:53:64:f2:63:76:a7:ea:18:c6:10:
13:c1:c5:3a:8e:87:a7:5e:67:9f:78:8f:65:7f:85:1e:41:ab:
81:54:6e:6c:54:51:d8:3c:77:0f:c0:87:b1:83:60:b2:7a:43:
f2:3f:69:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:29:46 2024 by rpki-client on console-ams.rpki-client.org