Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZLCrAcoNA05Q0QhadBIy_oy7TL8.cer
File: ZLCrAcoNA05Q0QhadBIy_oy7TL8.cer (raw, json)
Hash identifier: fuprh41qSMzAKntU0fon2ONTPDQyjRLfzn+DwrbkRhQ=
Subject key identifier: 64:B0:AB:01:CA:0D:03:4E:50:D1:08:5A:74:12:32:FE:8C:BB:4C:BF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500EC6F4E636B6635AD8ABDFEE7A052
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2e/30279f-79e7-4dd2-a2e6-732fee90855d/1/ZLCrAcoNA05Q0QhadBIy_oy7TL8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2e/30279f-79e7-4dd2-a2e6-732fee90855d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:21 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 82.115.14.0/24
IP: 194.127.197.0/24
IP: 212.11.93.0/24
IP: 212.104.211.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:ec:6f:4e:63:6b:66:35:ad:8a:bd:fe:e7:a0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64b0ab01ca0d034e50d1085a741232fe8cbb4cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7b:7c:e7:78:01:65:5c:5d:8e:b9:7b:05:70:
22:67:c5:53:00:78:4d:6d:61:79:59:ba:70:09:9c:
d5:27:e6:60:10:cc:6e:4e:8e:d4:28:a7:b2:cd:9e:
ce:11:11:e4:5f:87:fd:31:79:a3:8b:06:e9:bb:5c:
07:24:58:b9:7c:de:9c:68:48:49:79:50:d8:f4:2b:
37:f0:03:21:9d:1c:6c:05:19:0c:06:fa:88:a2:5c:
fb:2f:48:ad:28:28:04:00:72:94:40:4c:30:f9:78:
f8:10:33:0f:9a:83:4f:91:d1:dc:d6:6b:4e:07:fd:
c4:9a:29:ef:45:8e:a3:bc:31:a2:7a:34:09:a6:8d:
32:6d:13:e2:8d:19:00:82:21:31:d6:fa:40:ee:4c:
65:81:e4:01:4d:b8:bd:1b:30:8b:e7:8c:45:f3:9d:
39:fe:fe:2e:ca:af:5a:3f:07:89:70:b3:db:17:c8:
7d:9b:73:1d:28:0f:ae:b1:35:65:93:2d:d8:73:41:
cd:cb:35:3b:87:0b:10:95:99:5a:43:0e:12:e6:64:
43:97:d0:95:2d:21:ac:e0:33:8d:5c:01:ec:ac:c5:
17:91:43:1b:98:c9:1b:a8:5f:e7:17:50:74:e5:d2:
69:81:2f:ba:f4:19:67:ef:1d:e8:3d:e5:72:1e:bf:
f9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B0:AB:01:CA:0D:03:4E:50:D1:08:5A:74:12:32:FE:8C:BB:4C:BF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/30279f-79e7-4dd2-a2e6-732fee90855d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/30279f-79e7-4dd2-a2e6-732fee90855d/1/ZLCrAcoNA05Q0QhadBIy_oy7TL8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.14.0/24
194.127.197.0/24
212.11.93.0/24
212.104.211.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:3f:ab:09:91:b3:d1:59:ca:75:30:0a:db:30:cc:55:0a:b8:
63:77:02:59:33:c9:5a:1c:f0:3b:48:6a:87:52:e1:4a:76:4a:
36:8b:79:b0:d4:3a:af:c6:be:38:47:e6:e9:3b:d9:fd:c2:18:
a2:a3:ce:79:7f:02:68:58:eb:fb:ee:69:bc:83:a5:d5:ac:46:
b0:d9:d2:9d:b9:3f:ce:1d:90:2d:11:d7:d1:98:24:e3:19:38:
b8:1b:f8:27:53:79:b4:1b:2a:c2:02:fc:f3:5b:79:e7:09:4c:
d2:81:c4:0e:1a:87:52:cc:e3:90:48:53:97:80:b9:21:38:92:
1a:68:2a:05:0f:2c:e3:8f:eb:be:d1:38:01:2d:dc:25:a4:24:
52:86:f6:bb:36:ab:af:54:98:b9:ac:24:ee:8d:fb:75:66:f8:
2d:d4:f2:ab:fd:ae:65:21:53:e6:75:84:e5:79:02:2f:cf:78:
8d:60:be:bf:c9:e2:49:ff:35:3a:61:37:57:54:5a:0f:e0:20:
57:ab:24:df:e1:d5:5b:c9:be:82:02:d2:ee:3e:6d:f4:8f:2d:
0f:f2:fb:11:95:12:b5:12:7e:2c:df:a3:76:96:4d:a2:11:ac:
d2:4a:d2:9e:77:1c:a3:2e:8c:d6:cc:2f:0c:03:34:cc:f0:0e:
a8:f8:a0:a8
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgISAYzFAOxvTmNrZjWtir3+56BSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjQwMTAxMTIzMDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NGIwYWIwMWNhMGQwMzRlNTBkMTA4NWE3NDEyMzJmZThjYmI0Y2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm3t853gBZVxdjrl7BXAiZ8VTAHhN
bWF5WbpwCZzVJ+ZgEMxuTo7UKKeyzZ7OERHkX4f9MXmjiwbpu1wHJFi5fN6caEhJ
eVDY9Cs38AMhnRxsBRkMBvqIolz7L0itKCgEAHKUQEww+Xj4EDMPmoNPkdHc1mtO
B/3EminvRY6jvDGiejQJpo0ybRPijRkAgiEx1vpA7kxlgeQBTbi9GzCL54xF8505
/v4uyq9aPweJcLPbF8h9m3MdKA+usTVlky3Yc0HNyzU7hwsQlZlaQw4S5mRDl9CV
LSGs4DONXAHsrMUXkUMbmMkbqF/nF1B05dJpgS+69Bln7x3oPeVyHr/5HQIDAQAB
o4ICljCCApIwHQYDVR0OBBYEFGSwqwHKDQNOUNEIWnQSMv6Mu0y/MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJlLzMwMjc5
Zi03OWU3LTRkZDItYTJlNi03MzJmZWU5MDg1NWQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUvMzAyNzlm
LTc5ZTctNGRkMi1hMmU2LTczMmZlZTkwODU1ZC8xL1pMQ3JBY29OQTA1UTBRaGFk
Qkl5X295N1RMOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF
BwEHAQH/BCIwIDAeBAIAATAYAwQAUnMOAwQAwn/FAwQA1AtdAwQA1GjTMA0GCSqG
SIb3DQEBCwUAA4IBAQB7P6sJkbPRWcp1MArbMMxVCrhjdwJZM8laHPA7SGqHUuFK
dko2i3mw1Dqvxr44R+bpO9n9whiio855fwJoWOv77mm8g6XVrEaw2dKduT/OHZAt
EdfRmCTjGTi4G/gnU3m0GyrCAvzzW3nnCUzSgcQOGodSzOOQSFOXgLkhOJIaaCoF
Dyzjj+u+0TgBLdwlpCRShva7NquvVJi5rCTujft1Zvgt1PKr/a5lIVPmdYTleQIv
z3iNYL6/yeJJ/zU6YTdXVFoP4CBXqyTf4dVbyb6CAtLuPm30jy0P8vsRlRK1En4s
36N2lk2iEazSStKedxyjLozWzC8MAzTM8A6o+KCo
-----END CERTIFICATE-----
Generated at Fri May 3 09:11:41 2024 by rpki-client on console-ams.rpki-client.org