Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer
File: rVwudMbUbMc8mKTBYIeoo7Om91k.cer (raw, json)
Hash identifier: Gm62I69OcLESDEixlpK+H7bAt1bvlenbtQTxhSiOEiw=
Subject key identifier: AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D63E6CA014B0291532E2C045BF380B3D0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Feb 2024 09:01:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211373
AS: 212335
AS: 212384
IP: 45.91.32.0/22
IP: 45.94.236.0/22
IP: 45.133.56.0/22
IP: 45.138.32.0/22
IP: 45.148.44.0/22
IP: 62.204.55.0/24
IP: 91.246.33.0/24
IP: 146.19.43.0/24
IP: 146.19.171.0/24
IP: 178.212.140.0/24
IP: 185.180.147.0/24
IP: 188.244.121.0/24
IP: 193.3.176.0/24
IP: 193.238.85.0/24
IP: 194.104.234.0/24
IP: 217.119.140.0/24
IP: 2a0e:ac0::/29
IP: 2a10:8c0::/29
IP: 2a10:ac0::/29
IP: 2a10:c40::/29
IP: 2a10:fc0::/29
IP: 2a10:63c0::/29
IP: 2a11:80::/29
IP: 2a11:4dc0::/29
IP: 2a11:67c0::/29
IP: 2a11:7d40::/29
IP: 2a11:9740::/29
IP: 2a11:b640::/29
IP: 2a11:f7c0::/29
IP: 2a12:3380::/29
IP: 2a12:3900::/29
IP: 2a12:dd00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:63:e6:ca:01:4b:02:91:53:2e:2c:04:5b:f3:80:b3:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 1 09:01:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:93:70:6f:2b:ac:28:dc:44:6a:f0:c9:7e:c6:
94:81:5e:0f:07:29:70:9e:12:1e:39:b6:d3:2a:9e:
ad:99:45:a9:91:4b:14:10:cd:26:7d:40:79:e8:ac:
10:2f:13:73:f1:ba:3d:87:8c:fe:18:2c:09:b4:20:
96:3f:00:b7:47:c2:75:2f:88:45:ba:09:39:9a:5e:
29:9f:fd:c6:1b:66:57:0a:d7:08:01:54:73:2d:b2:
e7:18:c7:1a:d9:69:bd:04:eb:37:bd:7f:ea:74:29:
b2:c9:e0:90:11:fc:88:60:64:49:0c:86:66:0d:ac:
89:aa:3c:4d:07:c1:59:8b:67:4e:4b:ab:30:4b:6b:
40:be:fd:dd:9f:02:dc:d6:a1:37:91:a0:3d:5a:7c:
73:07:e9:44:42:f6:ca:dd:b2:19:ba:4b:09:37:61:
4a:80:d5:fa:ea:be:93:24:a1:8d:15:52:8a:0d:9f:
e5:79:5b:3d:df:7a:35:9d:68:3b:89:38:56:ea:61:
80:11:1e:ad:db:e9:30:3f:80:7a:3d:ab:5b:1b:a2:
ae:a9:49:49:eb:c4:e0:44:2f:dc:b5:50:1b:ef:49:
c2:cb:86:35:7a:f5:79:1b:89:23:88:86:20:e2:25:
81:69:f4:c2:d3:f1:59:17:38:43:f7:90:66:56:11:
8b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.32.0/22
45.94.236.0/22
45.133.56.0/22
45.138.32.0/22
45.148.44.0/22
62.204.55.0/24
91.246.33.0/24
146.19.43.0/24
146.19.171.0/24
178.212.140.0/24
185.180.147.0/24
188.244.121.0/24
193.3.176.0/24
193.238.85.0/24
194.104.234.0/24
217.119.140.0/24
IPv6:
2a0e:ac0::/29
2a10:8c0::/29
2a10:ac0::/29
2a10:c40::/29
2a10:fc0::/29
2a10:63c0::/29
2a11:80::/29
2a11:4dc0::/29
2a11:67c0::/29
2a11:7d40::/29
2a11:9740::/29
2a11:b640::/29
2a11:f7c0::/29
2a12:3380::/29
2a12:3900::/29
2a12:dd00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211373
212335
212384
Signature Algorithm: sha256WithRSAEncryption
0d:14:5b:cc:57:22:fd:a8:8e:61:34:6e:d8:69:9b:20:a9:45:
3b:18:18:07:d5:47:2a:aa:1a:4b:85:d2:c0:88:2b:bc:d3:69:
71:23:92:c1:4c:95:04:cb:17:48:47:10:e5:a2:d4:d5:12:c6:
2e:81:5e:a2:2d:01:7e:b6:a5:1d:fb:8d:4a:01:7f:75:1f:21:
cb:7e:4a:32:5c:7f:a9:6d:7c:98:77:2a:51:c3:48:e7:af:05:
7a:ed:7f:2b:25:5d:e2:07:76:b4:d8:13:36:ab:d8:7a:d7:83:
79:33:2c:53:a0:7e:2c:91:00:0b:6c:bb:ab:23:ae:b8:bd:b8:
21:27:c9:93:b9:2b:c7:46:17:62:a6:ab:ce:1d:3e:4a:43:22:
b4:75:07:ea:4e:a4:3f:ed:ce:26:22:1a:ce:b3:57:6b:45:2f:
7b:12:df:a5:6a:95:1b:2a:24:d8:64:56:b6:51:d5:a9:fd:fd:
68:04:85:67:9a:9b:d0:24:c3:1a:d5:e4:42:b3:02:ac:ad:26:
cc:64:c5:73:94:90:54:8f:77:b4:37:67:42:87:02:e5:46:6c:
83:1d:e9:a4:55:04:8b:b5:27:3f:51:5c:fe:30:b2:32:4c:d6:
09:41:db:9f:a4:6e:be:bf:5f:82:a1:d4:bd:f2:6a:9c:fa:a4:
78:3b:76:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:38:30 2024 by rpki-client on console-ams.rpki-client.org