Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pl-8tOowipiwk5diXmOGY4PBbdA.cer
File: pl-8tOowipiwk5diXmOGY4PBbdA.cer (raw, json)
Hash identifier: Ro2+kKV6GAuKRr9ITnBoXTmIRQTDPhu0JxTytRFwVAs=
Subject key identifier: A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC727271826E0F56FBA0055B050233DFE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/pl-8tOowipiwk5diXmOGY4PBbdA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 32708
AS: 38237
AS: 50193
IP: 85.92.100.0/22
IP: 103.91.56.0/22
IP: 103.108.188.0/23
IP: 103.115.204.0/23
IP: 123.253.104.0/22
IP: 185.211.78.0/24
IP: 2a0d:b8c0::/29
IP: 2a11:b000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:27:18:26:e0:f5:6f:ba:00:55:b0:50:23:3d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a65fbcb4ea308a98b09397625e63866383c16dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:57:f0:bf:05:52:54:0c:12:29:35:ec:9e:
9b:cb:fd:ca:6e:e3:ba:ec:45:e5:a8:36:9d:97:6e:
9f:88:e3:e9:33:90:93:dc:3b:a0:1f:34:3a:0a:8d:
45:ac:b6:23:59:e8:0c:22:2f:9b:b1:8c:1c:f0:a0:
b2:c5:19:4f:24:da:7c:5a:62:96:c3:8d:6a:78:6e:
00:65:e0:ba:af:bf:e2:13:c8:e1:5d:24:b0:ac:99:
f6:de:15:c4:d4:36:3a:b7:89:6c:17:22:40:ef:e4:
de:ee:06:da:aa:03:97:e5:d6:c4:2f:d5:0f:fe:c6:
22:d3:06:92:23:fa:79:79:9d:c6:a8:16:84:17:0d:
9e:17:7b:64:ab:6a:48:29:52:b2:5c:e1:b0:94:5a:
a4:d5:b0:05:f6:56:22:6d:f9:64:27:b3:7f:8f:21:
66:6b:09:e2:fb:b7:5e:27:da:61:33:17:2e:46:d7:
b5:b8:7a:51:c1:02:ab:6c:0e:0f:bb:f1:50:cc:0d:
df:29:1e:ef:57:69:c4:27:ec:9a:9b:e9:3c:47:b0:
7b:4c:30:d2:8b:3e:e9:d0:b9:b2:88:e8:bb:fe:04:
76:ce:ce:1a:28:d7:5c:a3:a6:d3:85:0e:12:c0:7e:
19:20:2e:7c:ac:59:65:21:97:c8:08:2f:36:aa:3f:
8b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/pl-8tOowipiwk5diXmOGY4PBbdA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.100.0/22
103.91.56.0/22
103.108.188.0/23
103.115.204.0/23
123.253.104.0/22
185.211.78.0/24
IPv6:
2a0d:b8c0::/29
2a11:b000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
32708
38237
50193
Signature Algorithm: sha256WithRSAEncryption
6f:00:8d:b8:ec:6d:b7:5e:ef:9f:ed:43:88:63:43:0e:fc:85:
25:f4:43:fe:b4:f5:e3:22:17:0e:b6:54:57:3b:ab:9f:6b:8d:
ac:b8:00:4d:e4:fe:04:84:43:c9:77:70:77:4f:17:27:51:48:
ae:14:1a:2b:04:be:03:df:68:67:92:5e:50:c6:18:3e:b0:6c:
df:a7:f4:c6:2e:94:67:52:85:fc:81:b6:9d:36:93:06:17:f3:
6c:66:ee:c4:71:ae:8b:06:bb:48:ea:ca:41:9b:73:cd:b1:81:
be:1c:1d:bd:2f:76:3e:b8:13:e6:0b:7b:6f:77:2b:ef:b9:98:
ce:0a:e9:b1:63:05:24:fe:77:89:28:10:a1:2b:d4:eb:68:27:
45:ab:00:47:de:34:c0:a8:af:e0:e0:26:03:d4:66:cd:aa:89:
a3:88:c1:c9:67:3f:24:fa:3d:96:b4:59:75:ad:96:e6:4d:64:
16:c0:c5:fe:71:c8:d5:dd:fc:4f:4c:28:2e:92:13:04:ec:4b:
7b:76:04:95:24:e0:2d:26:d6:38:e8:a8:2d:64:17:d9:18:73:
1d:85:78:9f:5c:1e:47:ea:77:d8:11:a9:d6:46:ba:1e:9e:50:
2b:22:e3:3e:67:81:75:94:a4:2e:18:58:13:ae:2d:b9:be:47:
4b:0a:86:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:15:00 2024 by rpki-client on console-ams.rpki-client.org