Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w98u83AH1U-Gu6J1c9M61pXJ7lw.cer
File: w98u83AH1U-Gu6J1c9M61pXJ7lw.cer (raw, json)
Hash identifier: twGREt6B5GV/aaWp6ipW15ULwbAd99hqLG6BwcppUGg=
Subject key identifier: C3:DF:2E:F3:70:07:D5:4F:86:BB:A2:75:73:D3:3A:D6:95:C9:EE:5C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26CF9A9EF93C90A7C59072657CA5FA0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/w98u83AH1U-Gu6J1c9M61pXJ7lw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198187
IP: 91.231.23.0/24
IP: 91.232.62.0/23
IP: 176.100.192.0/21
IP: 185.174.112.0/22
IP: 193.42.240.0/22
IP: 195.170.190.0/24
IP: 195.182.10.0/24
IP: 195.182.15.0/24
IP: 195.182.19.0/24
IP: 2a0b:9d00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f9:a9:ef:93:c9:0a:7c:59:07:26:57:ca:5f:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3df2ef37007d54f86bba27573d33ad695c9ee5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:8d:df:90:17:83:d5:bd:f5:75:25:5c:a9:
f9:4b:58:b5:31:80:d0:00:12:73:7c:ec:43:7b:60:
2a:a0:d9:4d:10:03:a3:45:b5:dc:da:9c:53:4f:93:
14:4c:9f:9f:98:12:5c:79:c2:a5:fc:cf:9e:04:a5:
7e:08:60:67:87:77:c6:52:47:6b:0c:89:75:04:42:
e0:8a:3e:95:0e:29:43:31:c6:87:31:a2:e8:b3:9a:
fe:e0:1a:7a:59:7c:5e:99:fa:0a:b6:f1:f0:ef:30:
d9:2c:91:08:a4:7a:f6:ba:d0:bb:38:11:85:e8:c5:
4c:4e:6a:1f:c0:7f:13:fe:fb:94:ed:d0:6c:aa:7d:
e1:81:5e:02:f1:4b:f4:e9:7a:fc:07:f0:9b:c7:7a:
b2:e7:3b:68:f9:7d:61:c3:cd:e8:06:f7:f0:b5:a4:
dc:89:33:e1:9a:c7:5d:55:e6:20:55:ea:51:e7:3c:
73:f1:82:0c:a7:df:90:e9:db:49:54:a1:60:a8:7a:
e0:9a:8d:28:a4:90:cb:85:dd:08:9a:a8:be:f4:ff:
82:25:1c:3c:87:59:a9:f8:eb:ed:8f:fe:ae:2b:6d:
a0:25:28:dc:32:34:0e:d8:1f:8e:71:cc:9d:47:cc:
a8:b2:ec:5f:41:b3:be:2a:1a:03:db:66:c4:2f:f8:
80:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DF:2E:F3:70:07:D5:4F:86:BB:A2:75:73:D3:3A:D6:95:C9:EE:5C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/w98u83AH1U-Gu6J1c9M61pXJ7lw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.23.0/24
91.232.62.0/23
176.100.192.0/21
185.174.112.0/22
193.42.240.0/22
195.170.190.0/24
195.182.10.0/24
195.182.15.0/24
195.182.19.0/24
IPv6:
2a0b:9d00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198187
Signature Algorithm: sha256WithRSAEncryption
22:a4:dd:a8:7d:24:d7:32:7d:7f:58:86:fc:02:e6:57:48:d3:
e5:17:da:70:53:8a:24:5c:ce:bc:e7:13:7e:b1:2f:c5:0b:c1:
f2:c4:4b:7a:d6:e8:14:3e:39:d6:fd:f0:d1:f9:bf:4c:ae:67:
e0:5a:db:19:2c:22:63:eb:80:89:a7:84:d6:6a:3e:47:ff:1a:
c8:2e:48:87:a4:21:72:aa:e3:7d:26:0b:15:5f:08:32:cb:89:
53:e0:9e:6c:91:d1:7f:fc:c2:a7:3e:4d:76:00:86:3c:24:19:
dc:86:71:5b:98:9d:78:23:5c:a0:70:78:6f:c3:9b:cb:3b:74:
a1:94:28:8e:4d:e1:1c:77:45:f6:ee:46:6d:4a:db:3d:47:be:
e4:f6:92:0d:8d:21:ce:13:01:d5:66:ee:5d:c2:4c:7c:66:a7:
4c:51:79:d9:cc:bf:68:23:cf:5f:bb:90:7e:fd:d8:85:f9:f9:
3e:ae:0d:c8:33:5a:71:6f:03:37:03:84:1b:4f:9f:76:f2:b5:
02:f6:f6:37:bd:e8:b5:48:8e:a0:28:28:92:ae:4e:fc:88:69:
6c:58:9d:74:92:ab:5d:ad:17:d1:1e:39:b8:d2:fa:1f:34:29:
98:0a:76:bd:18:31:73:9d:aa:9f:c1:e7:d9:a1:8a:d9:8c:20:
56:bb:9f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:49:57 2024 by rpki-client on console-fra.rpki-client.org