Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZNFx-TzBynFvyAbjalWFLN9PHBw.cer
File: ZNFx-TzBynFvyAbjalWFLN9PHBw.cer (raw, json)
Hash identifier: zBO3UsUdDvNSXZX0+rEkDSfjNgZIeeVHJyPsDnxVhB4=
Subject key identifier: 64:D1:71:F9:3C:C1:CA:71:6F:C8:06:E3:6A:55:85:2C:DF:4F:1C:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D050FF6528C8BB202D43C1F0DFC21
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57862
IP: 37.122.152.0 -- 37.122.157.255
IP: 176.106.224.0 -- 176.106.228.255
IP: 176.106.230.0/23
IP: 2a0f:6a80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:05:0f:f6:52:8c:8b:b2:02:d4:3c:1f:0d:fc:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64d171f93cc1ca716fc806e36a55852cdf4f1c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:99:aa:58:7c:ed:4d:97:92:28:f0:53:c3:b2:
45:bf:36:46:cd:7e:c5:d7:b0:2e:2f:49:11:c0:ed:
94:04:8b:83:14:98:cf:62:23:9c:84:72:e1:4d:58:
02:12:23:f0:42:b4:26:3e:6e:78:cf:e1:7c:f5:55:
38:9a:ee:ac:98:b4:33:bc:2f:3f:df:70:a0:e4:b1:
95:4d:61:d3:ab:e7:a0:c5:2f:68:4a:19:a4:56:bf:
64:d2:30:77:a5:03:7a:78:fa:15:75:76:c7:ac:35:
62:4e:ba:c6:ca:88:5e:25:38:7c:77:e1:ec:bd:20:
01:7c:e4:c6:fe:82:00:cb:af:32:65:00:95:9e:01:
94:d9:bd:d1:bd:44:89:1d:e6:68:de:e9:a8:2f:86:
80:a5:db:10:c9:d0:85:19:09:1f:8c:c9:13:4a:63:
24:28:7a:e1:60:5c:a3:5f:42:bf:70:b6:2c:7d:47:
6c:5c:8d:ed:3e:24:b7:7a:03:88:7a:e9:0a:24:75:
27:78:94:39:67:a5:84:19:d3:e7:e1:8e:ab:3e:a6:
ad:97:5e:4b:cf:17:23:2a:45:33:ee:53:0f:a6:20:
e4:a7:93:25:6e:70:a3:0b:11:1a:c7:02:27:90:20:
a0:58:ab:73:0d:42:0f:db:92:b8:13:c9:76:7a:05:
34:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D1:71:F9:3C:C1:CA:71:6F:C8:06:E3:6A:55:85:2C:DF:4F:1C:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.122.152.0-37.122.157.255
176.106.224.0-176.106.228.255
176.106.230.0/23
IPv6:
2a0f:6a80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57862
Signature Algorithm: sha256WithRSAEncryption
15:f2:86:63:9a:d1:d1:4f:2d:c0:e7:f6:63:9c:64:a8:14:0d:
fb:54:bd:75:9b:f3:9a:f8:82:5a:44:ce:b9:be:2f:a3:8c:0c:
bd:67:28:d8:2c:8d:3a:3e:54:34:0a:3f:bd:b7:ba:b7:2d:ed:
57:b0:47:15:5c:74:80:37:e8:87:f3:86:13:a3:5a:8a:65:5e:
38:b3:89:d6:5c:82:37:c4:09:b5:20:94:55:c2:c4:82:88:9c:
c0:eb:b1:32:cd:9e:6a:06:48:70:f8:0c:33:ff:36:5d:76:5f:
9d:74:e2:78:8f:01:8c:05:0c:eb:06:51:90:e8:18:04:92:ea:
d3:85:5e:78:62:0e:f1:70:c3:3d:99:92:e7:2c:59:d6:61:12:
02:6f:aa:09:4b:55:46:3f:d2:ad:9e:77:3b:c6:49:af:ff:f4:
7a:c4:53:9a:27:2c:8e:3e:a6:a7:c9:12:22:93:d6:78:de:1d:
0e:4c:28:24:c4:89:42:e0:48:7b:0b:4f:49:c0:c5:d3:3a:c2:
8f:85:d3:32:cc:c9:4d:e6:56:f7:53:cd:be:3f:94:71:ac:e8:
e1:72:a8:d1:19:72:84:1d:81:7c:9f:d5:cb:01:6a:de:fd:56:
fa:b9:be:aa:44:5c:fb:24:6c:1b:eb:25:d2:80:37:d3:05:46:
97:ec:82:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:12 2024 by rpki-client on console-ams.rpki-client.org