Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer
File: ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer (raw, json)
Hash identifier: WWcRKdt39ovK5T+EV+lQNXZKwyIldV2fsvjBS7T3QNs=
Subject key identifier: 64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019428254C9610DC1F51A778CA437398D9D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:52:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210897
AS: 215603
IP: 103.56.172.0/24
IP: 193.23.125.0/24
IP: 194.8.135.0/24
IP: 209.177.176.0/23
IP: 2a11:2b80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:4c:96:10:dc:1f:51:a7:78:ca:43:73:98:d9:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:52:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64b59ae521952da55e03f779b885031c0c809cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:10:78:46:60:28:30:dd:ca:93:d5:24:e5:d2:
cc:de:67:19:3b:ef:3b:9b:80:6e:84:8a:a3:6f:af:
4c:fb:fc:d0:64:4a:bb:4c:3c:c3:50:76:16:26:d2:
fa:e6:84:10:97:ae:67:1f:f6:73:67:87:6a:03:41:
a1:85:b7:36:be:45:17:b8:77:74:e5:6f:eb:56:d8:
e2:dd:2f:1a:2c:7e:14:7f:3f:9a:5f:2e:ef:33:e7:
0d:94:ee:33:eb:ba:1b:e4:dc:c2:b7:ec:6b:58:e8:
8d:c8:3d:4d:56:77:c6:79:ca:00:73:8d:d2:31:67:
96:f4:c6:c6:65:4f:fe:9d:12:74:af:20:16:96:c5:
32:4e:01:b5:e0:ad:86:21:57:92:2c:e1:f8:08:f9:
86:e7:cf:7b:0b:94:04:64:89:f9:55:fe:06:7e:56:
a3:98:79:b4:c2:9e:a5:7f:69:77:be:f7:80:5f:f9:
38:4f:4e:ac:06:49:0a:16:6e:ef:15:4b:30:ad:33:
07:99:37:45:a9:18:07:8e:d8:a2:e6:53:cd:88:28:
4a:86:d4:d3:fe:74:3c:5a:5b:9b:14:7d:b6:eb:64:
8a:95:6e:49:fb:f2:c7:f2:31:80:c5:f2:98:c9:39:
34:5f:6a:73:43:fd:77:6a:7b:49:27:ff:0c:fb:5c:
7e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.56.172.0/24
193.23.125.0/24
194.8.135.0/24
209.177.176.0/23
IPv6:
2a11:2b80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210897
215603
Signature Algorithm: sha256WithRSAEncryption
10:7f:fa:4c:eb:97:9d:b1:41:6a:8c:a4:27:01:3f:95:4f:81:
b4:05:8f:0f:6d:82:37:ee:c6:12:71:7f:69:27:6c:cb:56:ed:
86:4f:8f:14:d6:41:3c:f5:4d:0a:f7:af:38:cd:b6:e7:fa:9c:
0f:83:bc:9f:28:d0:e2:41:00:17:66:99:b2:11:4e:22:5c:af:
68:72:d8:73:db:57:96:3e:c2:ca:19:be:64:01:14:be:0e:23:
1c:be:dc:41:4d:e6:ed:89:3e:c7:92:8f:35:77:f9:54:e9:c8:
ae:4f:02:bf:67:51:ad:e0:94:5a:6b:80:f1:38:76:27:26:e9:
7f:53:0a:7c:ff:fd:ef:6d:fd:57:4c:49:5e:11:82:51:79:52:
5a:9a:2a:4d:85:4e:d7:9c:ea:03:78:9b:38:8a:cc:da:ba:ae:
da:6f:e0:23:bd:c6:a4:4c:f5:10:88:e6:cb:ff:3f:b7:d6:90:
85:8a:03:00:4b:8c:49:e3:01:a5:25:d0:14:46:e1:16:4d:68:
8d:1c:8e:15:c5:45:13:51:74:59:3a:18:e7:1e:93:05:c0:cf:
e5:6e:59:69:b4:69:0b:e4:6d:18:fb:01:4e:e2:5b:ee:fc:72:
f4:15:3c:1d:73:14:8a:c0:07:15:7e:4b:fe:03:7d:93:c2:21:
c4:6e:14:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:59:08 2025 by rpki-client