Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pOeG5ICTc8GYVFWFjGsCswpxrRs.cer
File: pOeG5ICTc8GYVFWFjGsCswpxrRs.cer (raw, json)
Hash identifier: 54X67xLViynejPranuey8v4GbCUJA8wnGEs8fN3N7AI=
Subject key identifier: A4:E7:86:E4:80:93:73:C1:98:54:55:85:8C:6B:02:B3:0A:71:AD:1B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500158951745FE5727C797F3BD83F9F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/3ce395-67da-4161-aef1-f6697bfd2d4f/1/pOeG5ICTc8GYVFWFjGsCswpxrRs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/3ce395-67da-4161-aef1-f6697bfd2d4f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 34432
IP: 37.228.152.0/21
IP: 77.75.248.0/21
IP: 85.158.176.0/21
IP: 91.151.16.0/21
IP: 178.250.8.0/21
IP: 185.39.220.0/22
IP: 185.61.40.0/22
IP: 2a00:5a80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:15:89:51:74:5f:e5:72:7c:79:7f:3b:d8:3f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4e786e4809373c1985455858c6b02b30a71ad1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:69:2c:bb:45:46:f9:de:87:09:db:5e:13:
4a:70:28:87:40:dd:09:16:18:9d:9d:ea:72:b1:f0:
69:c1:2e:c4:ad:fc:36:64:cf:b8:73:a4:37:f9:45:
d1:ec:c7:21:9a:13:cf:bd:02:03:52:ad:59:a6:dd:
b4:57:ce:de:3a:25:67:af:e4:d2:31:3c:41:eb:e4:
1c:03:3d:1b:ba:1e:41:ed:8a:58:61:05:92:37:9f:
69:2c:45:fd:8b:c2:33:d1:53:fe:a1:23:70:e5:a6:
aa:9a:ed:8c:73:8e:ef:93:1c:15:27:d4:74:2c:b2:
83:96:8d:7c:f6:4f:73:51:a1:7a:18:3e:46:31:c1:
55:40:10:b4:7d:c2:e4:47:1a:f9:67:50:59:2b:ad:
7d:33:26:66:83:9f:40:82:db:e0:2a:c0:fb:68:3e:
38:f7:90:ca:b1:d8:9b:36:b5:97:1f:50:ba:07:07:
b4:dc:86:29:f7:f1:e5:f2:07:a0:13:fc:72:eb:31:
de:29:c3:4e:ff:19:18:f9:22:83:72:c9:92:0f:64:
30:c2:c9:c8:24:c7:40:d9:53:54:27:24:ab:5c:f0:
3b:dd:c8:f2:4a:57:93:4a:c4:87:6e:35:5f:c9:98:
33:d8:27:19:70:c5:f2:b6:ad:2d:44:17:f4:b3:a1:
be:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E7:86:E4:80:93:73:C1:98:54:55:85:8C:6B:02:B3:0A:71:AD:1B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/3ce395-67da-4161-aef1-f6697bfd2d4f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/3ce395-67da-4161-aef1-f6697bfd2d4f/1/pOeG5ICTc8GYVFWFjGsCswpxrRs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.152.0/21
77.75.248.0/21
85.158.176.0/21
91.151.16.0/21
178.250.8.0/21
185.39.220.0/22
185.61.40.0/22
IPv6:
2a00:5a80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34432
Signature Algorithm: sha256WithRSAEncryption
11:4c:07:46:2a:88:5e:22:96:3a:ae:08:8b:b7:0a:3b:ed:f1:
4a:56:00:72:67:8a:b8:fd:8a:03:3f:b1:16:7d:2d:ab:48:23:
ce:40:c3:aa:d7:af:c6:bb:45:7a:a1:de:d3:88:fc:00:e5:8a:
a5:33:27:2f:dc:f5:81:bf:e5:ef:a3:f6:a1:93:00:c0:cf:a6:
b4:7a:9b:49:4a:e4:15:09:9b:53:7f:dd:ef:df:a4:3d:cb:6e:
60:c4:84:b7:b7:d6:8e:80:7f:4b:d9:83:3c:da:bd:7a:44:5e:
d4:54:56:f0:fd:d9:62:b9:ef:2a:19:c9:be:9c:c9:35:bb:46:
87:32:38:a1:e4:aa:1c:ea:b3:35:b1:97:71:43:c3:b0:c0:ae:
33:db:7b:38:e1:b6:ae:a6:0e:f4:e1:3e:4d:f5:83:27:19:d7:
bd:b8:99:fb:fd:8f:ff:23:4b:c2:d6:0e:be:07:93:36:54:3b:
7b:93:12:d4:7a:24:17:6a:c3:6f:97:e5:ff:e0:a9:23:b3:a1:
38:a0:4c:96:84:da:cd:27:82:b5:94:34:09:4f:02:e0:5c:62:
9d:16:5a:4e:23:50:45:cd:79:6e:34:c7:38:3c:d9:7e:68:6e:
09:1c:77:1f:8f:8c:7a:34:b9:48:16:74:53:56:fc:4f:48:46:
1d:e1:8f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:03:07 2024 by rpki-client on console-ams.rpki-client.org