Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer
File: ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer (raw, json)
Hash identifier: EK+buS6m3DvjsMtxP453C2crhm95T9hLSdRuwIbDUSQ=
Subject key identifier: 64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D5FB1B7EE98A93713C726C52F50F9A98D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 31 Jan 2024 13:24:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210897
AS: 215603
IP: 103.56.172.0/24
IP: 193.23.125.0/24
IP: 194.8.135.0/24
IP: 2a11:2b80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:b1:b7:ee:98:a9:37:13:c7:26:c5:2f:50:f9:a9:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 31 13:24:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64b59ae521952da55e03f779b885031c0c809cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:10:78:46:60:28:30:dd:ca:93:d5:24:e5:d2:
cc:de:67:19:3b:ef:3b:9b:80:6e:84:8a:a3:6f:af:
4c:fb:fc:d0:64:4a:bb:4c:3c:c3:50:76:16:26:d2:
fa:e6:84:10:97:ae:67:1f:f6:73:67:87:6a:03:41:
a1:85:b7:36:be:45:17:b8:77:74:e5:6f:eb:56:d8:
e2:dd:2f:1a:2c:7e:14:7f:3f:9a:5f:2e:ef:33:e7:
0d:94:ee:33:eb:ba:1b:e4:dc:c2:b7:ec:6b:58:e8:
8d:c8:3d:4d:56:77:c6:79:ca:00:73:8d:d2:31:67:
96:f4:c6:c6:65:4f:fe:9d:12:74:af:20:16:96:c5:
32:4e:01:b5:e0:ad:86:21:57:92:2c:e1:f8:08:f9:
86:e7:cf:7b:0b:94:04:64:89:f9:55:fe:06:7e:56:
a3:98:79:b4:c2:9e:a5:7f:69:77:be:f7:80:5f:f9:
38:4f:4e:ac:06:49:0a:16:6e:ef:15:4b:30:ad:33:
07:99:37:45:a9:18:07:8e:d8:a2:e6:53:cd:88:28:
4a:86:d4:d3:fe:74:3c:5a:5b:9b:14:7d:b6:eb:64:
8a:95:6e:49:fb:f2:c7:f2:31:80:c5:f2:98:c9:39:
34:5f:6a:73:43:fd:77:6a:7b:49:27:ff:0c:fb:5c:
7e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.56.172.0/24
193.23.125.0/24
194.8.135.0/24
IPv6:
2a11:2b80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210897
215603
Signature Algorithm: sha256WithRSAEncryption
62:bb:8e:76:86:cc:4a:d0:25:b2:66:ef:49:37:51:ce:b9:e3:
e8:5b:e8:8f:71:d5:5f:84:f2:97:d6:c2:7d:93:40:f7:c6:b2:
7f:28:b9:99:04:a4:68:06:ab:74:24:47:d7:79:9b:1b:12:d7:
64:ae:a7:34:a4:32:c5:28:4f:7d:3d:74:31:52:e3:49:7c:0f:
ba:41:8b:7d:00:4d:91:ed:45:4e:9e:10:46:be:e1:3c:b1:42:
9f:34:ba:fd:53:a7:70:e4:35:25:29:40:bb:ef:38:d4:21:39:
84:28:cb:c3:5e:33:19:81:08:ee:65:06:8f:59:63:93:2b:30:
51:bc:17:ee:37:d9:43:91:35:2d:3b:c0:48:84:9c:4d:7e:2f:
f2:05:f1:29:49:22:ac:08:51:83:b5:99:0f:ba:d7:ad:54:a9:
1c:c5:97:3b:76:04:59:9a:88:1a:e6:97:bc:4d:c5:a6:c4:fb:
7e:be:46:65:46:cf:4e:92:4c:13:5d:ab:f8:58:0f:57:73:cc:
19:81:fe:18:b6:7b:8d:ba:37:d1:b9:46:01:8d:4c:46:76:0b:
64:22:32:e5:1c:2b:a7:4b:95:f9:ef:3a:a2:db:64:fe:8e:1c:
aa:e0:b4:3f:40:f4:b4:8d:80:e0:e8:5a:91:c9:73:ce:ad:3f:
bb:5b:f6:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:06:17 2024 by rpki-client on console-fra.rpki-client.org