Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
File: xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer (raw, json)
Hash identifier: sUv5amXcrPtJV3iX2SJnQm5xpoHe1ahqKHXPNwisX5A=
Subject key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424F16DBA454D82C14D876272D0B9A7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:30:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29262
AS: 201064
IP: 46.29.24.0/22
IP: 91.106.216.0/22
IP: 91.194.53.0/24
IP: 91.194.55.0/24
IP: 93.190.12.0/22
IP: 109.236.48.0/22
IP: 160.20.108.0/22
IP: 185.85.188.0/22
IP: 185.85.236.0/22
IP: 185.86.4.0/22
IP: 185.86.12.0/22
IP: 185.86.152.0/22
IP: 185.86.164.0/22
IP: 185.87.24.0/22
IP: 185.87.120.0/22
IP: 185.88.172.0/22
IP: 185.98.60.0/22
IP: 185.119.80.0/22
IP: 185.141.32.0/22
IP: 185.184.24.0/22
IP: 185.185.232.0/22
IP: 185.243.180.0/22
IP: 185.249.200.0/22
IP: 185.250.210.0/24
IP: 185.254.28.0/22
IP: 185.254.236.0/22
IP: 193.35.152.0/22
IP: 193.35.204.0/22
IP: 193.160.140.0/22
IP: 193.223.104.0/22
IP: 194.62.52.0/22
IP: 194.127.116.0/22
IP: 2a03:f3c0::/29
IP: 2a05:4f80::/29
IP: 2a05:bf00::/29
IP: 2a06:3440::/29
IP: 2a06:a700::/29
IP: 2a07:21c0::/29
IP: 2a07:d800::/29
IP: 2a07:e700::/29
IP: 2a07:fe40::/29
IP: 2a0b:2780::/29
IP: 2a0b:6780::/29
IP: 2a0c:1340::/29
IP: 2a0c:46c0::/29
IP: 2a0c:5c40::/29
IP: 2a0c:67c0::/29
IP: 2a0c:7a40::/29
IP: 2a0c:89c0::/29
IP: 2a0c:9dc0::/29
IP: 2a0c:acc0::/29
IP: 2a0d:7c0::/29
IP: 2a0d:49c0::/29
IP: 2a10:8b00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:f1:6d:ba:45:4d:82:c1:4d:87:62:72:d0:b9:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:6d:f9:3c:13:64:c3:c3:e5:36:e5:d4:2f:
da:22:c9:ab:49:b8:12:d0:a7:0e:02:d9:53:09:b3:
b9:89:f2:1d:72:29:f4:27:49:2c:50:14:ee:d7:93:
e6:f6:ee:1f:66:29:31:1a:d3:95:51:e6:98:bf:9f:
75:ed:39:c1:4f:10:19:27:12:6b:d5:17:cf:11:b5:
29:70:a4:9b:af:86:ce:6d:93:d1:5c:7c:5b:80:1b:
71:f6:6a:42:03:44:25:7e:66:bb:5e:58:e1:19:f1:
0a:60:a0:3d:8f:eb:74:5f:c7:89:7e:d4:82:36:00:
c9:db:06:58:e5:87:29:93:94:79:dd:d6:b4:0c:cb:
0c:71:38:f9:50:b1:b9:be:59:6d:51:31:84:86:61:
1e:0f:89:c5:be:e0:20:cc:6a:55:bd:89:07:0d:60:
3b:0d:4d:1e:4f:70:04:c0:fa:ad:fb:ef:81:cd:ab:
9e:76:a2:22:a3:de:45:e4:ce:6b:e7:bb:17:64:dc:
cb:15:f5:66:53:0d:dd:5f:46:3e:c7:b9:14:1c:04:
1c:24:40:20:99:52:f9:12:ff:9e:c3:7f:fe:e9:34:
62:b1:07:35:ba:20:03:20:fe:33:80:28:1d:ae:87:
f2:a3:91:e0:cf:10:60:39:31:fe:d9:fc:5c:ca:cc:
d8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.24.0/22
91.106.216.0/22
91.194.53.0/24
91.194.55.0/24
93.190.12.0/22
109.236.48.0/22
160.20.108.0/22
185.85.188.0/22
185.85.236.0/22
185.86.4.0/22
185.86.12.0/22
185.86.152.0/22
185.86.164.0/22
185.87.24.0/22
185.87.120.0/22
185.88.172.0/22
185.98.60.0/22
185.119.80.0/22
185.141.32.0/22
185.184.24.0/22
185.185.232.0/22
185.243.180.0/22
185.249.200.0/22
185.250.210.0/24
185.254.28.0/22
185.254.236.0/22
193.35.152.0/22
193.35.204.0/22
193.160.140.0/22
193.223.104.0/22
194.62.52.0/22
194.127.116.0/22
IPv6:
2a03:f3c0::/29
2a05:4f80::/29
2a05:bf00::/29
2a06:3440::/29
2a06:a700::/29
2a07:21c0::/29
2a07:d800::/29
2a07:e700::/29
2a07:fe40::/29
2a0b:2780::/29
2a0b:6780::/29
2a0c:1340::/29
2a0c:46c0::/29
2a0c:5c40::/29
2a0c:67c0::/29
2a0c:7a40::/29
2a0c:89c0::/29
2a0c:9dc0::/29
2a0c:acc0::/29
2a0d:7c0::/29
2a0d:49c0::/29
2a10:8b00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29262
201064
Signature Algorithm: sha256WithRSAEncryption
76:26:52:72:ff:be:04:13:9b:79:be:7f:c3:6c:db:41:79:52:
d6:49:ed:29:de:c4:36:c6:cc:78:b8:bd:8d:3a:d6:34:c9:e9:
c3:65:7e:50:f6:69:0f:73:3f:88:86:7f:2c:c6:cb:fc:33:2c:
8d:85:1d:9f:d0:9c:68:49:bb:fc:39:24:c1:98:c7:eb:47:79:
05:4c:ec:0e:31:45:42:74:df:20:34:7b:9f:45:fb:a8:4e:d8:
b3:bc:9a:5c:2b:39:b1:86:5e:3f:81:10:3e:35:d3:fe:2c:a3:
2d:86:df:81:78:55:7d:a5:c9:65:74:3e:52:e2:4c:3f:99:25:
92:2c:da:7f:1b:fb:fb:92:da:d6:a2:9f:87:61:dc:dc:a3:46:
1c:65:85:f2:2e:a1:06:f7:52:31:0b:b0:43:4d:a9:d4:45:7a:
1d:76:c3:65:61:da:35:82:5b:f9:bb:c8:ff:51:60:06:49:8f:
33:c9:7f:41:27:56:fb:c0:c5:25:01:62:31:d3:40:d6:54:89:
4d:01:2e:fc:5a:58:b6:8d:98:e4:ec:f1:cc:39:ce:f1:2b:ad:
ff:ad:a8:7e:59:3a:4a:10:a0:ff:fa:1d:ed:59:25:8a:37:f4:
73:c5:73:00:c5:35:10:0a:f9:7e:25:bb:8a:cb:78:32:34:a8:
90:68:94:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:06:28 2024 by rpki-client on console-fra.rpki-client.org