Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xmR5vfftuQtRqnKWNBBMDSgCrJ8.cer
File: xmR5vfftuQtRqnKWNBBMDSgCrJ8.cer (raw, json)
Hash identifier: qHZm7lv4uDXosgWk2C21AcKmdU4qhEBqlxNnUh220vw=
Subject key identifier: C6:64:79:BD:F7:ED:B9:0B:51:AA:72:96:34:10:4C:0D:28:02:AC:9F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC79337FD294DE1CBB8411D6B1E2662A4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/xmR5vfftuQtRqnKWNBBMDSgCrJ8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:23 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 50960
AS: 200780
IP: 45.9.104.0/22
IP: 45.85.132.0/22
IP: 45.155.228.0/22
IP: 46.19.104.0/21
IP: 91.227.36.0/22
IP: 93.177.68.0/22
IP: 185.73.204.0/22
IP: 185.144.24.0/22
IP: 194.11.255.0/24
IP: 194.13.1.0/24
IP: 194.13.64.0/24
IP: 194.13.67.0/24
IP: 2a05:46c0::/29
IP: 2a10:5140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:37:fd:29:4d:e1:cb:b8:41:1d:6b:1e:26:62:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c66479bdf7edb90b51aa729634104c0d2802ac9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:86:1a:eb:49:78:ea:a6:23:53:e7:f0:b4:8d:
ef:a5:e2:f2:c1:2a:10:77:1d:9b:a8:c8:f7:82:e1:
18:2b:73:c4:74:f2:3f:68:73:e4:90:b9:60:b4:62:
31:7f:ab:14:be:2e:d8:46:4f:2d:c7:99:52:fb:4d:
62:a7:d2:77:2e:07:53:47:5d:56:32:e7:0b:91:3e:
bd:44:d3:69:c1:95:11:2e:f8:62:c8:10:a1:bb:38:
29:ca:1e:70:76:2f:9b:83:fd:fe:f0:97:61:a7:d4:
70:13:bb:25:c3:8f:1d:34:46:b0:d1:ed:1b:7c:c4:
f1:55:8d:d6:ae:48:95:78:70:03:01:11:bc:0c:ea:
d6:ce:03:45:c7:11:75:35:01:33:ec:0a:16:b8:9f:
dd:c6:e6:fd:0c:f6:01:91:12:13:7f:63:fa:fd:95:
36:1a:27:a6:8f:36:99:c9:a4:1c:fa:28:60:c6:96:
d7:f2:a9:3a:60:ac:f2:81:d0:2d:8d:da:53:a4:4d:
67:b2:79:0c:9d:8f:d1:60:95:f7:fb:64:4b:7a:52:
e6:c6:16:9e:77:d1:27:78:62:76:ed:9c:a6:87:7f:
ef:98:a2:d1:e8:fb:32:ee:cc:5a:59:9f:b5:81:69:
4a:18:54:8c:13:09:ff:79:52:16:c1:28:85:af:87:
7f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:64:79:BD:F7:ED:B9:0B:51:AA:72:96:34:10:4C:0D:28:02:AC:9F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/395224-8ca2-444f-985b-5f0b4ce64867/1/xmR5vfftuQtRqnKWNBBMDSgCrJ8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.104.0/22
45.85.132.0/22
45.155.228.0/22
46.19.104.0/21
91.227.36.0/22
93.177.68.0/22
185.73.204.0/22
185.144.24.0/22
194.11.255.0/24
194.13.1.0/24
194.13.64.0/24
194.13.67.0/24
IPv6:
2a05:46c0::/29
2a10:5140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50960
200780
Signature Algorithm: sha256WithRSAEncryption
63:33:68:d5:8d:2b:5b:1f:7f:dd:41:61:84:0a:b7:fc:05:a9:
e9:19:f5:8e:c6:a2:fa:40:05:1a:ee:16:5d:e7:02:45:cb:d5:
19:4d:43:0f:76:8f:46:4d:f5:5c:3b:88:56:cb:7e:cc:39:f9:
04:be:39:39:2b:a2:0f:2f:50:67:0d:22:85:80:e6:12:aa:42:
cc:e3:35:a4:7c:00:ec:10:38:5e:ef:c2:45:5c:88:c9:d6:ec:
fc:47:ba:05:61:85:cd:95:bf:ed:31:8f:17:80:58:8c:3c:e2:
5b:8b:bb:a7:ee:d4:df:56:c6:16:30:f5:ea:30:81:97:8a:53:
22:fd:73:7f:27:66:03:d5:f2:8c:de:5a:69:b3:9f:b6:e0:da:
c7:d2:ea:16:b4:ea:c5:d8:1d:50:83:72:a0:43:62:65:82:7f:
9b:e8:24:a7:b3:8e:ac:5b:fa:d8:28:36:ec:d4:da:9e:be:05:
12:a7:24:d0:c7:52:56:b7:24:93:d7:f3:d7:02:f8:f4:35:43:
52:67:05:5b:3f:7c:8b:37:ee:7b:fc:3d:71:73:e2:20:ca:7c:
60:5d:41:16:b3:e8:96:13:05:22:7c:6f:7b:d3:1b:fb:5b:f9:
c3:5e:7d:99:d5:1c:dc:4c:09:27:50:99:4d:f4:57:e8:d9:58:
26:bf:c0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:51:15 2024 by rpki-client on console-fra.rpki-client.org