Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer
File: p-LOMQlICu57P9KEbsj4ZGiFzbo.cer (raw, json)
Hash identifier: vgxm2ZcEnslqHnMJ7vpIEqeUbOkd3IBfWYSCR67D8sc=
Subject key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC801D79BE84EDDB3BF03146628C792EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:30:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 13193
AS: 34659
AS: 50796
IP: 5.23.40.0/21
IP: 5.104.192.0/21
IP: 37.32.56.0/21
IP: 62.212.96.0/19
IP: 77.247.104.0/22
IP: 78.40.48.0/21
IP: 79.170.216.0/21
IP: 80.65.224.0/20
IP: 80.248.208.0/20
IP: 83.136.160.0/21
IP: 85.31.168.0/22
IP: 93.184.32.0/20
IP: 171.25.208.0/22
IP: 178.21.176.0/21
IP: 178.22.0.0/21
IP: 178.132.16.0/20
IP: 185.3.196.0/22
IP: 185.33.40.0/22
IP: 185.43.68.0/22
IP: 185.45.228.0/22
IP: 185.83.236.0/22
IP: 185.96.156.0/22
IP: 185.153.96.0/22
IP: 185.185.4.0 -- 185.185.11.255
IP: 192.166.204.0/22
IP: 193.36.52.0/22
IP: 194.79.128.0/18
IP: 194.104.16.0/22
IP: 194.146.224.0/22
IP: 194.169.176.0/22
IP: 194.180.116.0/22
IP: 194.242.112.0/22
IP: 195.5.192.0/18
IP: 213.41.128.0/17
IP: 213.215.0.0/18
IP: 2001:7a8::/32
IP: 2a00:1db8::/29
IP: 2a00:1e30::/32
IP: 2a01:68::/32
IP: 2a01:6460::/32
IP: 2a07:8580::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:d7:9b:e8:4e:dd:b3:bf:03:14:66:28:c7:92:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:89:c6:56:ea:23:8a:45:06:31:34:7f:ad:61:
c8:df:80:cf:2d:15:e4:ab:d9:76:39:c6:32:13:f7:
12:7d:fc:6a:ea:c8:f1:42:9c:6c:89:83:23:1f:44:
49:38:85:d1:a4:6e:d9:07:28:4f:52:d3:4e:87:96:
18:d0:ab:48:b1:85:fb:b8:a7:65:36:27:d6:7e:4a:
1d:ac:33:45:98:85:d4:06:71:c7:58:37:5f:3f:6d:
e4:47:50:0f:22:41:11:40:87:1b:31:4e:54:12:f7:
8f:38:21:d4:79:e5:4b:29:1d:f9:56:97:8c:95:ea:
3e:9a:a5:ee:1c:ea:e4:85:69:60:57:41:7a:2e:4e:
8e:bf:e6:54:9f:d1:c2:46:f6:fc:5e:cf:3e:f7:80:
d9:36:65:7b:2f:5c:70:a1:1f:77:c4:0a:74:2a:31:
5f:52:32:9c:fd:aa:b7:cc:2d:b5:5e:54:2e:0a:3c:
6d:d9:65:12:36:6a:03:0d:e3:18:d0:ef:1d:88:6b:
9f:f2:06:77:6b:de:a6:95:f7:54:e5:f0:bb:ef:5a:
5b:87:62:1a:a3:aa:be:9d:a5:f7:97:aa:30:7a:1f:
27:64:a9:57:4d:b4:38:0d:0a:e7:4a:cb:c0:cc:06:
29:91:44:73:69:50:00:3c:10:30:76:fe:60:81:54:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.40.0/21
5.104.192.0/21
37.32.56.0/21
62.212.96.0/19
77.247.104.0/22
78.40.48.0/21
79.170.216.0/21
80.65.224.0/20
80.248.208.0/20
83.136.160.0/21
85.31.168.0/22
93.184.32.0/20
171.25.208.0/22
178.21.176.0/21
178.22.0.0/21
178.132.16.0/20
185.3.196.0/22
185.33.40.0/22
185.43.68.0/22
185.45.228.0/22
185.83.236.0/22
185.96.156.0/22
185.153.96.0/22
185.185.4.0-185.185.11.255
192.166.204.0/22
193.36.52.0/22
194.79.128.0/18
194.104.16.0/22
194.146.224.0/22
194.169.176.0/22
194.180.116.0/22
194.242.112.0/22
195.5.192.0/18
213.41.128.0/17
213.215.0.0/18
IPv6:
2001:7a8::/32
2a00:1db8::/29
2a00:1e30::/32
2a01:68::/32
2a01:6460::/32
2a07:8580::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
13193
34659
50796
Signature Algorithm: sha256WithRSAEncryption
67:ae:51:52:a1:f5:51:94:5c:b3:10:fd:84:d7:83:60:5a:e8:
70:95:b0:2e:7a:5b:01:a8:72:34:2c:de:a8:39:a7:56:c2:0d:
6e:cc:74:c9:11:08:2a:5e:fe:2f:c4:ed:05:75:7b:8a:0b:c0:
62:ff:02:ae:2a:c3:ca:2b:10:8e:43:9b:0b:10:d7:9d:b4:07:
07:3e:a9:3e:10:5e:ba:12:0f:16:9f:24:cf:c2:da:2e:88:db:
ab:2f:8c:a5:44:ea:81:ba:66:a7:1d:35:69:ab:ce:0b:eb:72:
d2:b9:68:79:ed:65:50:c3:5f:e0:b2:32:22:77:b4:41:23:35:
f4:7d:27:57:ef:50:97:98:22:48:fc:99:e6:25:e8:33:31:47:
2f:14:90:b6:6a:5b:de:94:2b:ea:67:05:2c:09:4a:c1:5a:c0:
cb:8f:61:e8:8f:0e:45:7c:54:5d:f4:8e:99:e6:5e:ea:0b:75:
84:aa:cb:70:2a:d7:32:9d:e1:0c:52:dc:3a:19:25:80:61:07:
ea:0e:de:3f:25:e5:80:59:74:93:a0:8e:e8:03:99:e6:7c:71:
5a:9b:aa:79:a1:67:ea:14:fc:49:bf:22:b4:ae:6d:31:b0:b5:
35:20:7d:fe:2c:f8:cd:72:5e:35:22:10:6e:f9:5a:dc:dc:29:
6e:22:13:df
-----BEGIN CERTIFICATE-----
MIIGqzCCBZOgAwIBAgISAYzIAdeb6E7ds78DFGYox5LqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAyMDIzMDEzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2UyY2UzMTA5NDgwYWVlN2IzZmQyODQ2ZWM4Zjg2NDY4ODVjZGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4nGVuojikUGMTR/rWHI34DPLRXk
q9l2OcYyE/cSffxq6sjxQpxsiYMjH0RJOIXRpG7ZByhPUtNOh5YY0KtIsYX7uKdl
NifWfkodrDNFmIXUBnHHWDdfP23kR1APIkERQIcbMU5UEvePOCHUeeVLKR35VpeM
leo+mqXuHOrkhWlgV0F6Lk6Ov+ZUn9HCRvb8Xs8+94DZNmV7L1xwoR93xAp0KjFf
UjKc/aq3zC21XlQuCjxt2WUSNmoDDeMY0O8diGuf8gZ3a96mlfdU5fC771pbh2Ia
o6q+naX3l6oweh8nZKlXTbQ4DQrnSsvAzAYpkURzaVAAPBAwdv5ggVRCBQIDAQAB
o4IDtzCCA7MwHQYDVR0OBBYEFKfizjEJSAruez/ShG7I+GRohc26MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IyL2I2MWFk
ZC0zMmYwLTQyZjQtYTMwMS03ODE4YTg5NDU2Y2IvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIvYjYxYWRk
LTMyZjAtNDJmNC1hMzAxLTc4MThhODk0NTZjYi8xL3AtTE9NUWxJQ3U1N1A5S0Vi
c2o0WkdpRnpiby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBKwYIKwYB
BQUHAQcBAf8EggEaMIIBFjCB4QQCAAEwgdoDBAMFFygDBAMFaMADBAMlIDgDBAU+
1GADBAJN92gDBANOKDADBANPqtgDBARQQeADBARQ+NADBANTiKADBAJVH6gDBARd
uCADBAKrGdADBAOyFbADBAOyFgADBASyhBADBAK5A8QDBAK5ISgDBAK5K0QDBAK5
LeQDBAK5U+wDBAK5YJwDBAK5mWAwDAMEArm5BAMEArm5CAMEAsCmzAMEAsEkNAME
BsJPgAMEAsJoEAMEAsKS4AMEAsKpsAMEAsK0dAMEAsLycAMEBsMFwAMEB9UpgAME
BtXXADAwBAIAAjAqAwUAIAEHqAMFAyoAHbgDBQAqAB4wAwUAKgEAaAMFACoBZGAD
BQMqB4WAMCMGCCsGAQUFBwEIAQH/BBQwEqAQMA4CAjOJAgMAh2MCAwDGbDANBgkq
hkiG9w0BAQsFAAOCAQEAZ65RUqH1UZRcsxD9hNeDYFrocJWwLnpbAahyNCzeqDmn
VsINbsx0yREIKl7+L8TtBXV7igvAYv8CrirDyisQjkObCxDXnbQHBz6pPhBeuhIP
Fp8kz8LaLojbqy+MpUTqgbpmpx01aavOC+ty0rloee1lUMNf4LIyIne0QSM19H0n
V+9Ql5giSPyZ5iXoMzFHLxSQtmpb3pQr6mcFLAlKwVrAy49h6I8ORXxUXfSOmeZe
6gt1hKrLcCrXMp3hDFLcOhklgGEH6g7ePyXlgFl0k6CO6AOZ5nxxWpuqeaFn6hT8
Sb8itK5tMbC1NSB9/iz4zXJeNSIQbvla3NwpbiIT3w==
-----END CERTIFICATE-----
Generated at Wed Nov 27 01:06:43 2024 by rpki-client on console-fra.rpki-client.org