Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
File: pjvMbSX3R2-7PsM_bbw-nurZIhI.cer (raw, json)
Hash identifier: F3BkRQd3kVCIaCgC+zREBfX4Y8VrUrJ0k83uibEu2dc=
Subject key identifier: A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01931B59ECEF0A9D79D6AFACD96EB2E58DB7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 11 Nov 2024 13:11:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29255
AS: 34400
AS: 35819
AS: 48237
IP: 5.82.0.0/16
IP: 5.108.0.0/14
IP: 5.244.0.0/14
IP: 31.166.0.0/15
IP: 37.16.32.0/19
IP: 37.16.128.0/17
IP: 37.42.0.0/15
IP: 37.121.0.0/16
IP: 37.124.0.0/14
IP: 37.141.0.0/16
IP: 37.216.0.0/15
IP: 37.240.0.0/14
IP: 45.135.112.0/22
IP: 46.44.64.0/18
IP: 46.52.0.0/17
IP: 46.152.0.0/15
IP: 46.230.0.0/17
IP: 46.240.0.0/17
IP: 46.251.128.0/19
IP: 62.120.0.0/16
IP: 78.138.192.0/18
IP: 82.147.192.0/19
IP: 84.23.96.0/19
IP: 85.194.64.0/18
IP: 86.51.0.0/16
IP: 89.237.128.0/18
IP: 92.48.0.0/18
IP: 109.82.0.0/15
IP: 146.251.0.0/16
IP: 176.16.0.0/14
IP: 176.224.0.0/15
IP: 178.73.64.0/18
IP: 178.80.0.0/15
IP: 185.27.220.0/22
IP: 185.29.92.0/22
IP: 188.132.0.0/17
IP: 212.24.224.0/19
IP: 2a00:f580::/32
IP: 2a02:9b0::/32
IP: 2a02:ce0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1b:59:ec:ef:0a:9d:79:d6:af:ac:d9:6e:b2:e5:8d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 11 13:11:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e3:d1:d4:86:e9:bc:24:c1:a2:e0:bd:92:a3:
64:76:8c:19:f4:5c:b2:ad:c9:56:6c:74:f3:84:34:
b6:c4:8d:b4:32:0f:7c:e6:6f:1b:f7:1b:b1:bc:eb:
1a:40:1e:db:6e:21:90:4f:d1:ce:79:b1:12:f0:a6:
54:44:75:56:0c:63:27:63:8e:e7:0e:d7:14:6e:cb:
19:f7:50:a4:76:c7:2f:ba:21:54:50:48:e9:2d:a4:
7b:48:1b:33:35:e2:e3:d0:e0:49:4c:67:b4:5f:ee:
7f:5e:d7:68:1f:15:6b:b1:77:56:9c:47:8a:cc:7d:
8a:2f:72:c1:83:44:dd:3a:85:a0:4c:3f:18:15:4e:
b7:d1:5c:3e:5b:b0:77:a5:43:c4:2f:1e:66:03:e8:
14:13:b5:0e:51:75:34:02:83:02:cc:e9:30:48:a6:
51:62:a9:02:8d:6f:6f:da:04:9b:5e:13:f9:f2:33:
5f:58:8f:b5:a5:b0:f1:90:1c:87:58:80:8d:db:d4:
7d:ca:56:94:12:ef:8e:69:3b:c6:4c:74:7f:b0:3a:
e9:5b:b2:96:b3:18:b4:b6:0f:14:db:53:e5:5c:03:
80:29:ea:25:cc:41:a2:85:da:d1:e7:08:e4:b1:06:
2d:ee:d1:7a:6b:58:39:27:b0:6d:0b:b2:19:0c:a3:
2c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.82.0.0/16
5.108.0.0/14
5.244.0.0/14
31.166.0.0/15
37.16.32.0/19
37.16.128.0/17
37.42.0.0/15
37.121.0.0/16
37.124.0.0/14
37.141.0.0/16
37.216.0.0/15
37.240.0.0/14
45.135.112.0/22
46.44.64.0/18
46.52.0.0/17
46.152.0.0/15
46.230.0.0/17
46.240.0.0/17
46.251.128.0/19
62.120.0.0/16
78.138.192.0/18
82.147.192.0/19
84.23.96.0/19
85.194.64.0/18
86.51.0.0/16
89.237.128.0/18
92.48.0.0/18
109.82.0.0/15
146.251.0.0/16
176.16.0.0/14
176.224.0.0/15
178.73.64.0/18
178.80.0.0/15
185.27.220.0/22
185.29.92.0/22
188.132.0.0/17
212.24.224.0/19
IPv6:
2a00:f580::/32
2a02:9b0::/32
2a02:ce0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29255
34400
35819
48237
Signature Algorithm: sha256WithRSAEncryption
04:99:0c:c5:22:72:1d:6b:be:ce:54:63:97:d5:ff:cb:81:6e:
0b:da:13:aa:be:42:f0:e4:f4:b0:ce:4e:ed:ab:b6:1d:a6:35:
65:dc:f1:bd:d9:28:64:be:fb:c4:39:16:84:5e:bc:6d:5a:44:
34:4a:89:72:60:98:83:bf:02:17:3d:af:cd:34:8a:9f:e5:bd:
1c:8a:8a:ea:a1:70:fc:46:2a:29:29:13:4e:21:6c:0c:ba:5a:
f3:a1:63:85:78:c2:89:05:db:fb:b7:d1:b2:5f:f8:05:48:43:
12:1e:dc:08:54:73:81:7f:85:8d:c9:41:bd:29:96:6b:cc:03:
92:8d:30:eb:7d:ce:a2:f0:c3:4a:3c:69:29:e3:df:2f:b5:fe:
6b:df:d8:e2:31:5d:e2:67:30:e5:46:f1:a9:b1:e2:89:43:90:
19:c7:5f:01:c2:5c:e2:af:dc:43:de:c0:13:b2:38:75:52:78:
17:20:9d:c1:80:ee:f6:38:51:05:50:6e:82:a5:63:64:63:0a:
6c:12:cf:a2:4a:5f:b9:5f:61:29:0b:3f:0d:ca:29:c2:25:93:
bd:f3:70:3e:34:7c:c8:41:2c:c3:17:ef:f2:3b:93:1c:e0:7b:
1b:dc:12:14:27:e3:a2:10:5d:7f:31:3c:13:b2:43:eb:57:ba:
01:8f:c3:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 00:56:53 2024 by rpki-client on console-fra.rpki-client.org