Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vM1Spqf5VxcbFfe-XiCRZCg2lAE.cer
File: vM1Spqf5VxcbFfe-XiCRZCg2lAE.cer (raw, json)
Hash identifier: MPOW0OFhO3hj1POfttZr6+CZKSJ1Tosn4v9r/evgYvg=
Subject key identifier: BC:CD:52:A6:A7:F9:57:17:1B:15:F7:BE:5E:20:91:64:28:36:94:01
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2B32065D1BCB968B2C27E7A1CAD0E4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/vM1Spqf5VxcbFfe-XiCRZCg2lAE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:34:37 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 5.252.124.0/22
IP: 45.87.16.0/22
IP: 62.68.0.0/19
IP: 185.218.168.0/22
IP: 193.35.216.0/24
IP: 193.36.3.0/24
IP: 193.36.42.0/24
IP: 193.36.74.0/24
IP: 195.245.0.0/18
IP: 217.140.64.0/19
IP: 2a09:48c0::/29
IP: 2a0e:ed80::/29
IP: 2a0f:8040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:32:06:5d:1b:cb:96:8b:2c:27:e7:a1:ca:d0:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:34:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bccd52a6a7f957171b15f7be5e20916428369401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:19:2f:95:7c:43:23:43:03:b2:df:5c:9d:14:
72:31:51:70:f0:18:90:5a:71:53:dc:9a:86:19:0f:
b4:9a:de:0f:b1:09:76:8e:fc:f8:7c:02:db:d1:4c:
bc:eb:a6:fe:a9:ec:b3:28:93:6c:57:34:05:69:cf:
19:53:e1:4a:1d:c6:97:96:49:cc:e5:70:17:75:f7:
2b:30:a2:ce:50:92:86:a9:55:fc:03:7a:c1:df:16:
af:8b:f6:26:07:77:e9:66:49:4a:25:11:f7:84:37:
9d:50:55:b3:7b:c0:9a:2d:7b:6b:40:6b:51:35:88:
78:22:2d:9b:b1:e2:d9:8a:04:d6:87:5e:af:db:85:
3a:84:79:d1:c4:9d:76:eb:1c:ee:f6:76:02:cd:cc:
41:cf:2a:4b:9b:8e:4f:98:20:b8:a4:0f:e2:e1:e4:
9e:bd:11:c5:b4:a7:cc:19:a0:a7:47:24:34:54:9f:
57:c1:15:a5:31:f4:17:73:9c:44:c6:25:18:af:7c:
7d:75:fa:e9:2e:12:e1:f3:b0:44:20:af:93:a1:2d:
3b:e5:ed:af:66:9a:b5:92:af:cc:a4:fc:64:18:b2:
2f:8f:c9:9b:7e:b3:d3:55:8a:68:46:b5:3b:99:e6:
ce:79:4c:b1:31:3c:ea:d8:50:3c:f2:c4:52:8d:44:
53:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:CD:52:A6:A7:F9:57:17:1B:15:F7:BE:5E:20:91:64:28:36:94:01
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/vM1Spqf5VxcbFfe-XiCRZCg2lAE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.124.0/22
45.87.16.0/22
62.68.0.0/19
185.218.168.0/22
193.35.216.0/24
193.36.3.0/24
193.36.42.0/24
193.36.74.0/24
195.245.0.0/18
217.140.64.0/19
IPv6:
2a09:48c0::/29
2a0e:ed80::/29
2a0f:8040::/29
Signature Algorithm: sha256WithRSAEncryption
49:7e:96:9f:84:8f:c0:8c:72:4f:cd:d6:44:1b:eb:f6:d1:ef:
ee:31:e7:5c:be:6a:6e:09:11:dd:79:11:21:c7:7c:44:7d:89:
97:d9:e4:27:61:9c:6d:54:66:12:94:e2:b5:cc:19:93:7c:38:
76:09:77:68:a5:88:f2:29:f3:5a:cd:c2:5f:16:4b:80:29:93:
86:a2:48:01:ff:b7:8c:1a:a0:4e:76:03:91:6d:d3:56:fd:eb:
d8:c7:19:5a:3a:5b:46:b5:4a:20:f2:ec:a3:9d:46:a4:84:f9:
33:80:55:4c:a1:23:68:62:e3:eb:46:e5:60:31:42:48:14:ae:
03:86:6a:30:b5:2a:92:ed:fb:19:b5:a3:1c:53:1c:af:ac:83:
1c:29:7c:81:5d:32:25:d6:00:17:80:7c:d6:16:08:18:89:49:
7a:b8:ad:97:2b:3a:1c:08:7b:3c:87:97:2b:00:1a:47:90:f2:
05:26:e3:90:b9:9a:6b:b2:14:c2:b1:1b:60:c0:9f:39:0f:da:
21:d2:01:42:5a:96:96:75:2c:5a:f2:1b:83:ad:7e:58:b1:f9:
ea:76:01:7a:c9:15:9e:ad:24:51:a2:b4:5f:7c:4e:3c:e1:1e:
77:47:a0:61:2c:a3:bd:f9:98:fd:9b:20:6c:21:4e:27:26:a1:
e5:26:10:36
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 3 07:33:52 2024 by rpki-client on console-ams.rpki-client.org