Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qXJG_EMZM_Cyggztllx4URgLFe4.cer
File: qXJG_EMZM_Cyggztllx4URgLFe4.cer (raw, json)
Hash identifier: 9hKBhQktL/imQ+5GqfKDCmOLP66oFG7I50i4jKMHuBI=
Subject key identifier: A9:72:46:FC:43:19:33:F0:B2:82:0C:ED:96:5C:78:51:18:0B:15:EE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D389233BC9CCE911E36D2D8AFBB72
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/786319-ff5f-412f-aa74-caad51694e97/1/qXJG_EMZM_Cyggztllx4URgLFe4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/786319-ff5f-412f-aa74-caad51694e97/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208968
IP: 45.13.20.0/22
IP: 85.190.224.0/22
IP: 185.35.132.0/22
IP: 185.160.100.0/22
IP: 185.170.168.0/22
IP: 185.172.40.0/22
IP: 185.198.220.0/22
IP: 185.211.144.0/22
IP: 185.233.240.0/22
IP: 2a0e:ab00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:38:92:33:bc:9c:ce:91:1e:36:d2:d8:af:bb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a97246fc431933f0b2820ced965c7851180b15ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e2:0a:a6:5b:4d:fd:80:61:5f:19:98:01:09:
38:ec:80:2d:d7:c4:68:40:b1:73:9d:46:de:1e:54:
e8:64:b5:65:3a:7f:92:8d:1e:f2:b6:cb:87:20:12:
ff:c2:f9:f1:a9:42:9c:bd:fe:82:e9:a8:66:35:62:
88:0b:ac:e0:e8:04:a7:41:55:3a:d6:27:8e:7f:d2:
75:58:38:d3:32:dd:69:2d:12:81:70:db:76:79:70:
68:bf:35:6d:1f:4f:c8:cd:80:da:a3:54:c8:2a:92:
6e:9b:eb:ae:59:27:e5:5a:fa:2b:29:08:64:5d:b1:
74:fc:f1:98:2f:9d:1a:64:bc:93:93:44:9b:55:da:
10:a6:7a:c4:29:cd:40:bf:21:81:0c:eb:aa:92:b8:
4f:71:f7:5a:a3:7b:ca:4f:56:df:56:43:54:01:0c:
90:23:3d:25:c1:3b:45:83:1f:c3:e0:46:66:cd:fc:
a9:bb:c2:33:fe:54:49:87:59:3e:0f:bd:8c:51:0f:
a3:b8:5a:e6:b8:ca:35:d5:72:b6:17:51:1c:70:26:
12:99:33:a5:f1:a9:8d:cd:71:ed:c6:57:8f:fc:7e:
b5:10:ea:5e:b6:fc:2a:f7:18:30:10:35:a7:08:1e:
77:7d:96:5a:8a:12:9a:34:16:fa:2f:80:65:49:ea:
a8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:72:46:FC:43:19:33:F0:B2:82:0C:ED:96:5C:78:51:18:0B:15:EE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/786319-ff5f-412f-aa74-caad51694e97/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/786319-ff5f-412f-aa74-caad51694e97/1/qXJG_EMZM_Cyggztllx4URgLFe4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.20.0/22
85.190.224.0/22
185.35.132.0/22
185.160.100.0/22
185.170.168.0/22
185.172.40.0/22
185.198.220.0/22
185.211.144.0/22
185.233.240.0/22
IPv6:
2a0e:ab00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208968
Signature Algorithm: sha256WithRSAEncryption
16:10:54:89:63:81:e3:1e:47:8d:93:8a:39:fe:c8:e7:3c:10:
5a:45:d8:2f:0f:ae:dd:8b:a1:53:a5:5d:5c:7e:87:b5:50:39:
3e:72:0d:a9:e4:8c:85:42:ad:0f:4f:42:0e:64:14:e2:8e:ae:
47:de:2e:87:64:89:21:9a:26:36:79:5d:3e:1e:23:e4:b3:63:
d2:1e:80:c7:27:76:09:a0:fa:a6:7c:dd:e2:e4:3c:e0:b9:4c:
91:7b:1f:7c:0a:69:ea:12:a7:5d:91:5b:33:e3:ea:1f:09:93:
9a:1d:5b:cd:ab:ea:5b:58:10:3e:ca:79:10:a9:e2:33:00:e2:
ce:3a:a5:71:d4:b3:7b:a8:61:e4:01:94:fe:1a:a1:e7:5b:9c:
4b:2e:6b:73:4c:62:3a:55:44:ec:4c:0c:0d:6f:09:cc:bd:04:
41:13:86:48:4d:64:6f:4f:c9:0f:6a:23:22:e2:b9:bc:d2:ed:
2c:80:d3:3f:30:48:2a:68:b1:93:bf:99:d4:6d:99:96:1b:8c:
b8:a4:28:bb:5c:f7:53:d4:83:6f:42:0b:20:07:13:e4:35:13:
4e:a7:4c:0c:44:a6:15:be:de:ba:8c:c4:41:20:42:fe:74:a7:
2f:ca:e1:2f:31:33:63:8c:ac:80:34:35:e7:04:75:29:96:ae:
59:df:88:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:37:58 2024 by rpki-client on console-ams.rpki-client.org