Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
File: rSQ9z_DLOCEff-fbP5ExabRM9FY.cer (raw, json)
Hash identifier: HO5Y7/4Yw92FfUQpW9X4giLx81juWucIUtz6saV5F1Q=
Subject key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726E8CFAEA9E2B59473458D31F2F08C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 12929
AS: 25400
AS: 41164
AS: 41483
AS: 47853
AS: 49455
AS: 51135
AS: 198309
IP: 46.15.0.0/16
IP: 46.212.0.0/16
IP: 46.249.224.0/19
IP: 62.73.192.0/18
IP: 62.97.160.0/19
IP: 62.113.128.0/19
IP: 62.141.128.0/19
IP: 78.156.0.0/19
IP: 80.232.0.0/17
IP: 80.239.0.0/17
IP: 82.194.192.0/19
IP: 84.38.144.0/20
IP: 84.208.0.0/13
IP: 85.19.0.0/16
IP: 89.8.0.0/15
IP: 89.254.64.0/18
IP: 93.124.128.0/17
IP: 109.108.192.0/19
IP: 109.163.0.0/17
IP: 158.58.152.0/21
IP: 176.11.0.0/16
IP: 176.74.208.0/21
IP: 178.17.144.0/20
IP: 178.232.0.0/16
IP: 185.46.224.0/22
IP: 185.71.208.0/22
IP: 185.72.96.0/22
IP: 185.97.84.0/22
IP: 185.138.32.0/22
IP: 185.201.120.0/22
IP: 188.113.64.0/18
IP: 188.124.128.0/19
IP: 188.126.192.0/19
IP: 193.109.210.0/24
IP: 195.70.160.0/19
IP: 195.191.116.0/23
IP: 212.20.192.0/19
IP: 212.37.224.0/19
IP: 212.45.160.0/19
IP: 212.125.192.0/18
IP: 212.169.64.0/18
IP: 213.188.0.0/19
IP: 213.225.64.0/18
IP: 213.236.128.0/17
IP: 217.68.96.0/19
IP: 2a00:a240::/29
IP: 2a00:a540::/32
IP: 2a02:228::/29
IP: 2a02:fe0::/29
IP: 2a02:2200::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:e8:cf:ae:a9:e2:b5:94:73:45:8d:31:f2:f0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a2:15:75:aa:43:c2:47:6f:80:67:0f:6b:43:
9e:4d:0b:07:e2:19:49:2c:6c:d8:3f:db:cd:c8:0c:
2e:f6:18:95:00:cf:8d:30:0a:c5:52:8c:c3:37:27:
a9:29:14:5b:db:a7:b8:ff:c5:4a:37:d3:65:23:e4:
ce:99:7a:b2:ec:ec:4e:3d:26:98:2e:80:25:34:2d:
73:d0:65:bb:04:fd:f4:61:97:d8:6f:d4:b2:03:b3:
2c:e9:c6:f5:0b:e6:30:28:ff:2f:5a:b0:cf:48:db:
4f:e7:2e:12:84:1a:08:96:20:ed:5c:46:9f:c6:dc:
cb:4f:0c:a4:a7:49:c5:37:25:fe:b8:61:30:2c:9e:
5b:10:1e:78:ce:c6:ea:18:7f:53:d4:94:e8:88:08:
c7:32:90:04:d2:6d:de:81:7e:04:ab:57:18:f0:9d:
a3:b2:3f:ba:fb:68:f3:ff:2f:06:01:57:f2:bc:ff:
7f:8c:f3:a8:53:1e:fd:61:c2:fd:3e:94:23:1a:be:
c8:9e:45:a6:ba:f4:40:75:4c:65:95:3b:2a:8a:76:
d5:d9:eb:c2:f6:60:20:71:7e:c2:ee:a0:b1:75:13:
38:5a:22:b1:ca:c8:b7:c8:a9:e5:3a:09:e5:b4:ce:
b3:fe:43:b8:45:06:13:25:8c:39:af:ad:20:d9:20:
95:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.15.0.0/16
46.212.0.0/16
46.249.224.0/19
62.73.192.0/18
62.97.160.0/19
62.113.128.0/19
62.141.128.0/19
78.156.0.0/19
80.232.0.0/17
80.239.0.0/17
82.194.192.0/19
84.38.144.0/20
84.208.0.0/13
85.19.0.0/16
89.8.0.0/15
89.254.64.0/18
93.124.128.0/17
109.108.192.0/19
109.163.0.0/17
158.58.152.0/21
176.11.0.0/16
176.74.208.0/21
178.17.144.0/20
178.232.0.0/16
185.46.224.0/22
185.71.208.0/22
185.72.96.0/22
185.97.84.0/22
185.138.32.0/22
185.201.120.0/22
188.113.64.0/18
188.124.128.0/19
188.126.192.0/19
193.109.210.0/24
195.70.160.0/19
195.191.116.0/23
212.20.192.0/19
212.37.224.0/19
212.45.160.0/19
212.125.192.0/18
212.169.64.0/18
213.188.0.0/19
213.225.64.0/18
213.236.128.0/17
217.68.96.0/19
IPv6:
2a00:a240::/29
2a00:a540::/32
2a02:228::/29
2a02:fe0::/29
2a02:2200::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12929
25400
41164
41483
47853
49455
51135
198309
Signature Algorithm: sha256WithRSAEncryption
51:06:19:3c:29:c6:d4:9e:60:3c:92:de:87:9d:93:47:11:df:
33:12:97:85:25:a4:93:7b:21:f3:ae:14:88:03:8b:3b:39:1e:
d5:c7:94:a6:2d:cb:e0:1a:71:df:65:32:6b:7f:ef:47:4e:6d:
12:28:7a:0c:95:a3:10:20:62:04:6f:f3:8d:06:c5:24:3a:57:
96:a6:d0:80:6e:b6:8b:2a:8f:35:34:16:c4:5a:9d:68:6f:f4:
1a:8f:d0:e3:f5:d4:40:e2:19:d2:0e:9c:ff:97:31:e4:67:96:
e7:17:4e:db:4f:be:ec:95:4c:1e:4b:0e:94:88:2e:cd:91:df:
9e:50:52:3d:78:05:9e:e0:51:9c:6e:28:25:6d:20:d7:97:f9:
0f:93:f1:e8:97:f6:fc:c0:76:63:47:d9:4d:3f:8e:5e:68:5d:
7c:85:94:67:06:4e:32:55:b7:5e:80:6a:05:de:bb:7a:f0:3b:
5c:dd:eb:01:66:64:34:51:ce:47:7d:7b:a4:c2:c2:61:8d:06:
ee:fb:71:cd:1a:88:46:84:13:fd:72:c9:fb:b0:e2:8a:8c:76:
a7:2a:6b:86:02:7f:e7:25:af:40:94:0b:0c:c1:f6:68:20:af:
b0:49:ad:d4:c7:41:f0:6d:72:81:7e:28:08:a9:92:fd:24:98:
4f:5f:03:99
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 02:31:08 2024 by rpki-client on console-ams.rpki-client.org