Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
File: vxB-B5UsBpNYzT-CquzrTGlIPKk.cer (raw, json)
Hash identifier: QKMyO340rNckiAIU3hBU24pHYGTraea3fkT1VMTBtps=
Subject key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B339E86FEF0493055F3F4EB5B8983
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:06 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206488
AS: 208257
AS: 208265
AS: 211650
IP: 45.149.180.0/22
IP: 151.248.20.0/22
IP: 185.185.92.0/22
IP: 185.251.70.0/24
IP: 2a0b:5080::/29
IP: 2a0f:6a00::/29
IP: 2a0f:f200::/29
IP: 2a10:aec0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:33:9e:86:fe:f0:49:30:55:f3:f4:eb:5b:89:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:42:80:a7:ab:db:f4:09:48:d4:d8:d4:06:28:
ba:11:f6:27:50:9e:e3:65:65:61:dc:3b:a3:ed:8d:
59:ac:3c:9e:2d:e7:b0:7d:29:a0:4b:fe:07:2a:e3:
ef:3c:42:36:bd:7a:84:ad:7e:71:a9:ed:96:6c:b6:
83:b6:0f:2f:0f:c6:78:b1:1f:e9:19:50:ef:1b:a5:
d3:29:88:63:10:77:d8:bb:4d:d8:29:af:9a:6e:a8:
e2:c2:7e:71:fa:db:d2:ef:33:35:cc:96:71:d6:05:
8a:e6:46:67:0c:b4:8b:eb:79:19:c3:de:7e:e6:1c:
c8:d2:2d:1d:24:3e:3d:8a:6f:3d:a2:61:11:e3:42:
1e:00:b5:c7:04:3d:6f:4e:3d:02:08:b6:6a:7a:ca:
e6:39:e9:aa:ac:06:07:78:2b:54:d0:70:14:db:ae:
64:cc:64:c8:2e:a5:1b:8e:05:72:ca:38:40:bb:f5:
9f:8d:68:fe:56:3e:0a:bf:c5:a5:07:bc:b5:36:8c:
29:1a:b0:f5:f4:e0:e8:ea:3b:60:89:38:dc:9e:66:
ad:3a:c6:3f:60:ee:a7:e6:8b:58:92:9e:0b:43:47:
28:ea:f9:72:61:8d:10:46:c2:0d:30:73:54:50:61:
86:2e:6c:40:14:ae:5a:fb:5e:58:86:69:c7:d6:d0:
d2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.180.0/22
151.248.20.0/22
185.185.92.0/22
185.251.70.0/24
IPv6:
2a0b:5080::/29
2a0f:6a00::/29
2a0f:f200::/29
2a10:aec0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206488
208257
208265
211650
Signature Algorithm: sha256WithRSAEncryption
58:59:00:72:77:1a:6a:31:ee:10:13:27:3c:3a:12:fb:4c:0e:
63:92:a0:1e:f4:40:f0:4c:55:d0:81:d7:68:29:75:52:f6:54:
bf:0c:14:48:4e:b3:04:2e:aa:20:78:e2:5c:6e:91:65:62:18:
c5:03:02:ba:d5:04:51:78:82:1d:5f:2f:53:a5:78:5c:f0:aa:
62:1f:96:11:c3:7a:a0:21:eb:13:f8:79:a3:4b:ac:a6:3d:2a:
22:d3:59:53:83:09:b8:64:92:ed:a7:e4:10:43:ac:b8:76:65:
34:14:eb:12:ed:14:a0:80:a2:aa:25:de:65:05:af:cc:76:89:
2d:92:83:29:50:b8:c5:df:a1:8b:04:7d:bc:63:ef:39:9c:8a:
23:3a:77:21:b5:b4:1b:88:5e:34:87:3e:de:6e:67:14:78:fb:
3d:a4:5a:17:ce:13:db:ee:fd:1e:bc:01:29:5e:dd:02:92:2e:
4a:47:5c:fc:76:20:79:ce:83:08:43:c7:90:62:ae:68:7b:ca:
a3:ff:48:67:90:20:08:5d:54:ae:27:c1:69:91:96:3a:4c:22:
58:e3:74:ef:b9:2b:a7:ea:ad:b4:39:ec:22:4c:4b:cc:30:39:
f4:cb:0e:a2:b3:0d:84:39:4d:a1:e2:59:c2:60:84:72:b8:82:
3d:74:4b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 09:41:25 2024 by rpki-client on console-ams.rpki-client.org