Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pl-8tOowipiwk5diXmOGY4PBbdA.cer
File: pl-8tOowipiwk5diXmOGY4PBbdA.cer (raw, json)
Hash identifier: Pe4oZgvoHaGWNbRnfX0xRZzLLsKNY270noU1naL9kCg=
Subject key identifier: A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192957C9091AADBED9AA2DD780F6CD635BB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/pl-8tOowipiwk5diXmOGY4PBbdA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 16 Oct 2024 13:20:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 32708
AS: 38237
AS: 50193
IP: 45.65.44.0/22
IP: 85.92.100.0/22
IP: 103.91.56.0/22
IP: 103.108.188.0/23
IP: 103.115.204.0/23
IP: 103.143.86.0/23
IP: 103.211.0.0/22
IP: 123.253.104.0/22
IP: 185.211.78.0/24
IP: 2a0d:b8c0::/29
IP: 2a11:b000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:95:7c:90:91:aa:db:ed:9a:a2:dd:78:0f:6c:d6:35:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 16 13:20:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a65fbcb4ea308a98b09397625e63866383c16dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:57:f0:bf:05:52:54:0c:12:29:35:ec:9e:
9b:cb:fd:ca:6e:e3:ba:ec:45:e5:a8:36:9d:97:6e:
9f:88:e3:e9:33:90:93:dc:3b:a0:1f:34:3a:0a:8d:
45:ac:b6:23:59:e8:0c:22:2f:9b:b1:8c:1c:f0:a0:
b2:c5:19:4f:24:da:7c:5a:62:96:c3:8d:6a:78:6e:
00:65:e0:ba:af:bf:e2:13:c8:e1:5d:24:b0:ac:99:
f6:de:15:c4:d4:36:3a:b7:89:6c:17:22:40:ef:e4:
de:ee:06:da:aa:03:97:e5:d6:c4:2f:d5:0f:fe:c6:
22:d3:06:92:23:fa:79:79:9d:c6:a8:16:84:17:0d:
9e:17:7b:64:ab:6a:48:29:52:b2:5c:e1:b0:94:5a:
a4:d5:b0:05:f6:56:22:6d:f9:64:27:b3:7f:8f:21:
66:6b:09:e2:fb:b7:5e:27:da:61:33:17:2e:46:d7:
b5:b8:7a:51:c1:02:ab:6c:0e:0f:bb:f1:50:cc:0d:
df:29:1e:ef:57:69:c4:27:ec:9a:9b:e9:3c:47:b0:
7b:4c:30:d2:8b:3e:e9:d0:b9:b2:88:e8:bb:fe:04:
76:ce:ce:1a:28:d7:5c:a3:a6:d3:85:0e:12:c0:7e:
19:20:2e:7c:ac:59:65:21:97:c8:08:2f:36:aa:3f:
8b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:5F:BC:B4:EA:30:8A:98:B0:93:97:62:5E:63:86:63:83:C1:6D:D0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f7231d-c561-4aa2-b80e-62d42fe6fd3c/1/pl-8tOowipiwk5diXmOGY4PBbdA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.44.0/22
85.92.100.0/22
103.91.56.0/22
103.108.188.0/23
103.115.204.0/23
103.143.86.0/23
103.211.0.0/22
123.253.104.0/22
185.211.78.0/24
IPv6:
2a0d:b8c0::/29
2a11:b000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
32708
38237
50193
Signature Algorithm: sha256WithRSAEncryption
51:1c:15:3e:61:ca:8a:4f:11:d3:75:aa:0e:fb:23:1d:0a:79:
7e:51:5a:f7:5b:ee:94:ed:10:74:84:86:32:d0:d2:76:4b:b7:
9b:3c:1c:18:cb:a7:cb:60:f1:7d:4e:fe:4f:d1:7e:3f:44:f9:
b8:75:ea:f2:3d:bb:a9:03:c7:23:9b:7c:5c:24:31:f3:22:fd:
f0:e9:dd:a1:c1:7d:f5:00:56:2d:24:eb:33:ed:5b:e3:f2:f8:
01:fb:8f:6f:4e:d7:3b:4f:a0:34:97:ab:3b:b6:02:63:a3:bf:
61:3e:9b:6c:da:7a:e6:95:36:c6:bc:f8:8e:60:31:3c:72:f3:
da:72:84:da:d4:f5:bf:d8:aa:08:7c:dc:a0:de:fc:e6:e5:6f:
27:5e:2d:30:ff:17:ba:d3:ca:e4:10:ac:d7:6c:09:af:b0:9b:
80:19:9b:e9:ad:82:4d:93:00:c6:c7:2a:c3:f4:46:bc:41:06:
5e:f7:3d:e1:8a:88:33:52:99:d8:64:ef:50:cf:b6:38:f2:a9:
cc:bc:e0:e5:ec:c3:6a:c8:ca:34:98:02:fb:04:9a:be:fd:a4:
78:c7:05:f7:fd:cc:00:f8:8b:72:7c:a9:f9:5e:f5:2b:ee:e5:
ff:50:ab:30:34:0a:17:b6:36:eb:2c:61:26:4c:d1:a8:3b:2f:
69:e5:b8:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:16:21 2024 by rpki-client on console-fra.rpki-client.org