Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
File: pOuetVR8f18ar8CtoUCAVBlhhyY.cer (raw, json)
Hash identifier: +3zErFbWGo4To0850t+LluI5SuyFBfzCVAyOaTjilQc=
Subject key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B849979A8214524B6CB50EF8A90AA1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35467
AS: 52161
IP: 31.186.160.0/21
IP: 37.0.16.0/21
IP: 81.92.176.0/20
IP: 83.136.192.0/21
IP: 91.106.224.0/21
IP: 93.95.144.0/21
IP: 145.87.224.0/19
IP: 185.0.11.0/24
IP: 185.35.32.0/22
IP: 185.55.108.0/22
IP: 185.250.160.0/22
IP: 212.52.224.0/19
IP: 217.27.224.0/20
IP: 2001:7f8:141::/48
IP: 2a02:5b0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:49:97:9a:82:14:52:4b:6c:b5:0e:f8:a9:0a:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:e3:a6:bc:50:60:ac:18:54:29:5a:52:fd:9c:
13:7f:54:6d:fd:7c:59:ec:fd:5b:83:4d:e4:d0:c1:
3b:b3:22:74:17:cc:bd:9b:05:eb:5c:d3:b6:4a:13:
dd:14:7e:3c:f7:e5:2b:8f:42:20:61:76:f0:4a:7f:
11:f1:94:f0:28:df:c4:f8:e0:a6:b7:a7:db:a9:f3:
32:cb:9a:04:a8:25:5c:43:48:42:8c:05:48:37:87:
16:55:90:5d:92:57:21:9b:a8:c5:f4:f2:33:74:80:
06:5d:6e:94:7f:dc:85:6d:54:e7:79:79:e8:e1:71:
b6:85:78:79:24:c5:9b:94:ff:d3:79:8e:b0:4a:8a:
64:73:7a:ea:e6:d7:ee:fc:89:1e:fa:23:d6:e4:0f:
6a:24:e7:2a:74:20:4c:de:2c:b6:ae:b6:95:28:07:
57:32:49:55:51:be:3d:5e:13:6b:2b:94:c9:d8:5c:
a0:f0:bc:19:ad:48:18:3c:21:e6:71:54:99:1e:74:
e3:b0:a9:38:57:77:03:60:8a:25:93:20:01:e0:19:
48:ea:83:44:8c:43:a5:a0:3a:52:11:70:7d:69:a0:
eb:0e:03:ee:05:39:8a:c9:e1:ff:69:b3:a6:a5:6b:
5c:3b:76:3d:c6:b1:f6:2b:dd:d0:0a:43:d5:58:6e:
7d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.160.0/21
37.0.16.0/21
81.92.176.0/20
83.136.192.0/21
91.106.224.0/21
93.95.144.0/21
145.87.224.0/19
185.0.11.0/24
185.35.32.0/22
185.55.108.0/22
185.250.160.0/22
212.52.224.0/19
217.27.224.0/20
IPv6:
2001:7f8:141::/48
2a02:5b0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35467
52161
Signature Algorithm: sha256WithRSAEncryption
43:20:7d:4e:00:b5:e5:dc:8c:e3:0f:79:d6:b0:58:a6:26:88:
4f:04:33:34:9c:b2:7b:07:e6:5a:41:46:ff:b7:2c:59:71:62:
2e:15:10:52:56:9e:fe:da:b7:ef:47:49:41:78:e4:4a:ab:e8:
71:b2:64:24:55:6d:7b:17:29:38:c3:a4:a1:46:df:54:be:c3:
32:01:f8:72:f3:be:18:c3:a8:1b:32:2b:f7:a2:1e:e4:0e:e1:
80:20:63:47:ab:03:e5:7b:f0:e3:35:09:6e:6a:7a:1d:7d:06:
9e:67:94:00:90:ba:1c:56:fb:ab:24:de:dc:f7:aa:c9:a5:3e:
69:57:5c:3c:a8:05:d1:d1:37:24:1c:52:30:cd:03:3a:7e:53:
6f:57:9a:cb:8e:5d:dc:08:1a:32:81:99:2b:41:fa:94:85:7e:
28:d8:f7:1d:15:35:3e:42:f7:a2:89:73:86:41:c0:e0:5a:1d:
ce:64:f6:39:e5:ee:06:c4:48:6e:22:4d:ac:fd:08:d3:99:cd:
37:1a:0f:ed:5e:26:4f:a8:27:ff:68:38:74:d5:50:e5:ee:c6:
4e:2b:56:ab:54:db:03:19:9d:de:78:dc:34:1f:85:78:0b:03:
36:60:ca:72:ec:4d:09:1b:98:7e:e6:a3:6d:2a:89:05:ec:e7:
ee:1f:cb:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:57 2024 by rpki-client on console-fra.rpki-client.org