Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
File: zvzkSb6o3q7bGATbolxYTfWHPcQ.cer (raw, json)
Hash identifier: PsUKyD+Hxu1Qidqyus73u5/UAD2DKVdE8sAA+sqQqsE=
Subject key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FEC6C13233FC4CA969B0136CDC85DA6D8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 06 Jun 2024 07:20:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 2.58.84.0/22
IP: 45.8.172.0/22
IP: 45.13.148.0/22
IP: 45.66.148.0/22
IP: 62.3.18.0/24
IP: 62.122.185.0 -- 62.122.186.255
IP: 83.138.50.0/24
IP: 89.107.9.0/24
IP: 130.193.75.0/24
IP: 146.19.22.0/24
IP: 146.19.53.0/24
IP: 146.19.215.0 -- 146.19.216.255
IP: 176.126.105.0/24
IP: 185.212.113.0/24
IP: 185.251.23.0/24
IP: 193.35.226.0/24
IP: 212.18.115.0 -- 212.18.116.255
IP: 212.24.127.0/24
IP: 213.5.128.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:6c:13:23:3f:c4:ca:96:9b:01:36:cd:c8:5d:a6:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 6 07:20:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:5e:f0:35:ba:81:43:f5:a5:af:cd:eb:cf:
86:ab:b7:fa:c0:38:07:c1:d6:bc:af:46:b1:87:49:
23:69:3f:04:c0:68:8e:dc:06:5f:ba:3a:ee:74:af:
be:e5:5b:6d:c6:8f:a5:2b:3d:94:51:61:6c:08:02:
1f:99:e0:57:f3:3e:b5:38:9a:ce:62:3e:14:ae:2f:
26:64:0a:ca:3d:75:b2:27:46:d3:60:04:40:97:67:
fa:ab:a0:33:fc:ad:a6:71:80:1e:59:d3:ff:f2:54:
11:35:93:99:2a:fd:91:55:6c:87:0c:4f:1e:2a:36:
42:96:a5:8f:4d:1f:f5:c1:a0:1e:d8:0f:77:b3:39:
57:eb:9a:f5:b6:ad:db:6a:1a:27:b7:ca:a7:e5:42:
25:8e:f0:5c:9c:48:56:14:34:5e:ff:81:09:2e:01:
27:2e:47:bb:41:25:57:f4:43:bd:83:05:77:2c:f5:
5b:81:41:8d:0e:bc:9d:0b:e9:b3:ec:10:a9:cb:43:
09:fc:68:de:3d:56:c4:7d:de:0e:50:d0:f5:73:d8:
9a:c4:2a:bc:d2:da:e0:f7:47:89:18:12:61:e2:2b:
f4:a3:40:02:14:1a:4f:89:b5:9d:d1:6e:5b:86:26:
1e:8c:dc:98:40:01:17:4e:a5:07:b2:22:10:10:28:
ea:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.84.0/22
45.8.172.0/22
45.13.148.0/22
45.66.148.0/22
62.3.18.0/24
62.122.185.0-62.122.186.255
83.138.50.0/24
89.107.9.0/24
130.193.75.0/24
146.19.22.0/24
146.19.53.0/24
146.19.215.0-146.19.216.255
176.126.105.0/24
185.212.113.0/24
185.251.23.0/24
193.35.226.0/24
212.18.115.0-212.18.116.255
212.24.127.0/24
213.5.128.0/24
Signature Algorithm: sha256WithRSAEncryption
63:78:2a:bb:c5:30:18:19:20:6f:c8:14:ca:34:7c:a8:42:b3:
78:50:f8:28:a5:e5:69:07:9d:2a:3f:da:18:e4:c3:29:bb:0c:
ee:0f:75:e8:42:2d:c4:71:6d:7b:f3:dc:f3:66:7a:f4:fc:72:
bb:32:7e:c5:97:d4:e9:9c:1c:30:86:9f:d3:43:da:f4:16:c7:
e0:5d:51:33:b3:31:f6:cf:49:38:49:dd:4e:e9:d5:7b:10:b7:
81:36:34:7f:c5:75:f4:98:0b:8d:1e:d3:79:08:63:4f:4b:0b:
39:9d:24:ef:6e:c4:16:bb:8f:fb:74:0d:3d:30:37:f9:a7:cd:
0d:09:f8:c1:95:bb:fa:0f:c1:b3:93:97:21:20:1e:49:f1:ac:
16:e4:43:e8:b3:e3:5b:84:d4:9b:78:88:68:59:0a:9b:1b:77:
83:6e:51:3e:5d:38:1d:83:de:46:72:6e:db:ba:a9:91:b4:a8:
f7:b6:b3:9f:a6:26:09:b1:ba:48:c3:9b:1a:cb:a9:6c:3f:d2:
35:de:e6:49:cd:e4:d3:cb:fb:ab:63:f6:60:26:89:bc:a3:19:
0e:dc:db:4e:24:74:79:6b:f1:10:50:88:84:63:08:ce:5e:b0:
e9:54:58:bd:ea:02:9f:45:9b:c2:9f:80:7e:c9:d4:c1:60:81:
77:0e:b8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:59:06 2024 by rpki-client on console-fra.rpki-client.org