Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer
File: r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.cer (raw, json)
Hash identifier: LgecwzNkwCgkz5lj3K/icUVeSdGfzCG3cJxtwl2xyIw=
Subject key identifier: AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BB188BAD3B3574FF9EADE435643F64
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 2.57.68.0/22
IP: 45.13.28.0/22
IP: 45.83.184.0/22
IP: 45.86.28.0/22
IP: 45.94.24.0/22
IP: 45.134.148.0/22
IP: 45.153.232.0/22
IP: 77.83.220.0/22
IP: 141.98.128.0/22
IP: 193.160.76.0/22
IP: 212.80.220.0/22
IP: 213.139.196.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:18:8b:ad:3b:35:74:ff:9e:ad:e4:35:64:3f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aff6f85aad101c456c1ac9a01a7192fc5788e92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d9:67:59:a6:dd:b3:40:91:d4:c3:17:51:65:
d8:34:7f:97:c2:78:8c:1a:8a:cf:8c:4c:14:17:5f:
27:a8:61:b3:76:ff:ea:ef:21:11:ad:69:e9:71:3b:
3a:51:6f:7f:d2:30:87:64:7f:c5:75:85:db:c8:cc:
8c:4c:28:15:c0:57:5f:37:08:58:54:72:35:8e:58:
21:5f:96:ca:ca:ed:8a:32:ca:6d:16:97:72:c6:29:
c6:68:50:89:8f:a8:08:16:0c:cd:1f:e3:14:09:c3:
69:34:82:f7:c9:fd:4e:62:6d:59:96:58:ca:16:91:
78:a1:b6:87:fd:f9:ed:83:bd:e7:7f:b9:76:d2:bc:
93:72:2c:99:02:4a:51:44:af:a0:e2:8e:92:97:cc:
9f:c5:d3:6f:db:cd:e9:56:b8:f3:06:ce:a8:0a:29:
02:8d:cf:7e:69:45:f8:81:f3:16:c5:33:40:df:10:
23:67:71:90:1c:53:fc:de:91:8e:65:2e:a4:3f:25:
2a:62:41:32:25:83:26:58:3b:d1:6e:e0:f3:52:12:
98:fa:e6:ca:73:ce:78:73:4b:14:8d:25:98:11:74:
d7:07:2f:a7:a2:b8:fd:96:ef:c1:e0:6e:d2:d7:e5:
91:11:9d:49:2c:50:6b:5c:fd:a5:84:a3:5d:06:49:
64:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F6:F8:5A:AD:10:1C:45:6C:1A:C9:A0:1A:71:92:FC:57:88:E9:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/df719a-492f-47cb-9212-644bd0fc7f80/1/r_b4Wq0QHEVsGsmgGnGS_FeI6Sw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.68.0/22
45.13.28.0/22
45.83.184.0/22
45.86.28.0/22
45.94.24.0/22
45.134.148.0/22
45.153.232.0/22
77.83.220.0/22
141.98.128.0/22
193.160.76.0/22
212.80.220.0/22
213.139.196.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:f8:13:db:45:ea:9c:df:38:26:72:a2:50:ee:11:35:61:60:
21:92:5d:68:69:14:98:73:82:b1:01:99:ef:07:a8:e7:b5:c5:
72:92:55:38:30:ce:fe:7d:76:88:e8:22:1c:a0:5c:a5:d6:aa:
1d:15:00:d5:ea:c2:2d:95:4d:7f:1b:9d:cc:63:45:e5:36:67:
1f:b9:e4:00:90:c4:67:d7:54:58:61:3b:8c:16:65:f2:d6:8b:
4a:05:bb:03:02:8c:99:81:ea:3a:6f:5a:fe:50:46:73:2e:79:
af:48:00:c8:80:47:39:86:da:cd:c1:ad:7a:a5:d1:df:2b:7c:
2a:96:d5:33:2e:8e:61:b8:4d:74:20:07:d7:7c:a3:5a:3c:4a:
ae:c7:19:5d:44:fd:3f:62:01:a9:aa:0c:7c:87:e7:22:01:4c:
15:ca:04:56:d5:c4:4d:99:ae:83:35:dc:95:a4:dd:4b:96:91:
60:fc:cd:4f:48:9a:08:0b:a5:55:e9:e2:3d:fd:b0:1a:ac:42:
47:4f:51:a2:7b:ec:68:c1:dd:62:e5:ce:a7:e7:c8:d3:f4:87:
1d:db:cf:a9:f8:86:77:9d:37:5f:7b:05:ca:80:ca:d3:ab:f7:
86:db:7f:c0:4c:30:f4:5d:e6:03:05:32:dd:c0:38:c0:54:8e:
43:2c:54:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 08:20:43 2024 by rpki-client on console-fra.rpki-client.org