Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer (raw, json)
Hash identifier: 2H5znJwOR3yc9UUrxmPa3f7IN4KU3iK5NIbaYCaRTOo=
Subject key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BC67B1CB780F4EDAC8E4379182F61F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:33:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48449
IP: 46.20.96.0/20
IP: 185.100.168.0/22
IP: 185.160.192.0/22
IP: 185.169.220.0/22
IP: 2a14:80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:67:b1:cb:78:0f:4e:da:c8:e4:37:91:82:f6:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:33:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67499595a65aab0b53768def08091e31061e9e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8a:ce:7f:be:26:a0:1a:d4:00:f1:00:c9:0e:
7f:98:2e:c3:96:9b:19:a9:c9:23:bd:55:fa:f8:e5:
54:1a:1b:8f:e7:4c:5b:0b:ad:42:e7:b1:95:44:eb:
d5:82:f5:20:0f:b6:f1:aa:03:93:c1:d3:10:fd:53:
48:c3:6c:82:cf:15:27:68:c9:c8:72:b3:82:4f:0e:
ed:3c:5b:e6:76:0b:1f:f2:a1:23:0a:4f:73:1d:4e:
81:2d:0c:62:b5:65:57:0e:e1:79:36:0a:59:61:d2:
09:c6:fa:34:2c:57:a7:10:62:36:35:cf:8c:d7:b1:
8a:a8:8b:e6:b0:61:ba:3d:b5:64:d5:22:bd:ea:57:
f9:4d:6c:f7:18:53:56:8a:67:a3:aa:e1:95:e2:c5:
7d:54:ad:e3:9c:2e:e3:71:6e:b2:24:f4:fa:ba:4b:
ce:ad:ac:54:de:20:79:db:01:91:ad:79:97:fd:ee:
bd:dc:6d:65:af:f5:1f:70:da:dd:a1:25:a6:a4:85:
a2:46:a0:c1:9f:0a:3b:42:f0:c9:eb:85:ab:aa:dd:
e2:71:aa:e8:47:af:56:51:ab:c9:e9:c6:a6:ae:6c:
49:79:6d:cb:db:a4:27:fa:4f:7a:d6:23:f2:e5:88:
08:78:21:68:79:e1:cc:a9:b7:3a:b5:8b:28:26:f3:
cf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.96.0/20
185.100.168.0/22
185.160.192.0/22
185.169.220.0/22
IPv6:
2a14:80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48449
Signature Algorithm: sha256WithRSAEncryption
47:9e:f0:16:c5:c0:73:d6:13:eb:2b:bf:a7:2c:89:4d:1d:44:
c1:f8:5f:90:64:a8:cf:8b:ee:d7:59:cd:2e:2f:f9:22:e9:a7:
6c:26:8f:8d:16:c1:fc:24:3c:25:6e:8d:bc:1b:d7:b9:7d:c6:
ef:95:43:2f:54:4c:a4:2a:67:9a:f8:25:6f:97:c6:e1:cb:a7:
8d:41:21:38:73:25:27:14:d7:53:c6:22:9d:fb:a6:3b:bb:00:
7f:b7:a3:a9:10:f6:94:b4:4f:a5:c3:b8:13:43:df:ad:70:a0:
7b:98:13:fc:a3:3c:c1:d5:60:9f:d1:ea:32:41:01:80:88:dc:
02:c1:ef:42:ec:74:5e:fa:3e:97:b3:13:fe:79:02:e5:ed:e7:
ff:7d:3c:e5:7f:ec:ad:e9:9b:ff:99:49:66:82:db:8c:4c:78:
85:b3:ec:41:e6:d2:15:27:62:89:4c:e9:6c:b5:7a:18:63:b0:
69:67:12:f5:d3:3c:49:f9:fa:f8:82:c8:54:5a:d8:24:33:17:
8b:16:97:79:ac:5e:a6:9e:fc:ec:3d:4e:0c:56:35:16:61:c5:
3d:d6:b3:7e:9b:5e:c5:d2:9b:db:af:05:70:a3:45:3f:b8:04:
53:40:d7:a9:ba:77:e8:ad:37:f2:31:0b:20:e9:ed:48:a1:bf:
bb:44:2f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:04:54 2024 by rpki-client on console-ams.rpki-client.org