Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZNFx-TzBynFvyAbjalWFLN9PHBw.cer
File: ZNFx-TzBynFvyAbjalWFLN9PHBw.cer (raw, json)
Hash identifier: LXQK3YfQbTo5gm91xeqjweJkz70C1HPIVsZkck257xA=
Subject key identifier: 64:D1:71:F9:3C:C1:CA:71:6F:C8:06:E3:6A:55:85:2C:DF:4F:1C:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C8043A762EA92FACB588EDB0242F1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:48:09 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 57862
IP: 37.122.152.0 -- 37.122.157.255
IP: 176.106.224.0 -- 176.106.228.255
IP: 176.106.230.0/23
IP: 2a0f:6a80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:80:43:a7:62:ea:92:fa:cb:58:8e:db:02:42:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64d171f93cc1ca716fc806e36a55852cdf4f1c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:99:aa:58:7c:ed:4d:97:92:28:f0:53:c3:b2:
45:bf:36:46:cd:7e:c5:d7:b0:2e:2f:49:11:c0:ed:
94:04:8b:83:14:98:cf:62:23:9c:84:72:e1:4d:58:
02:12:23:f0:42:b4:26:3e:6e:78:cf:e1:7c:f5:55:
38:9a:ee:ac:98:b4:33:bc:2f:3f:df:70:a0:e4:b1:
95:4d:61:d3:ab:e7:a0:c5:2f:68:4a:19:a4:56:bf:
64:d2:30:77:a5:03:7a:78:fa:15:75:76:c7:ac:35:
62:4e:ba:c6:ca:88:5e:25:38:7c:77:e1:ec:bd:20:
01:7c:e4:c6:fe:82:00:cb:af:32:65:00:95:9e:01:
94:d9:bd:d1:bd:44:89:1d:e6:68:de:e9:a8:2f:86:
80:a5:db:10:c9:d0:85:19:09:1f:8c:c9:13:4a:63:
24:28:7a:e1:60:5c:a3:5f:42:bf:70:b6:2c:7d:47:
6c:5c:8d:ed:3e:24:b7:7a:03:88:7a:e9:0a:24:75:
27:78:94:39:67:a5:84:19:d3:e7:e1:8e:ab:3e:a6:
ad:97:5e:4b:cf:17:23:2a:45:33:ee:53:0f:a6:20:
e4:a7:93:25:6e:70:a3:0b:11:1a:c7:02:27:90:20:
a0:58:ab:73:0d:42:0f:db:92:b8:13:c9:76:7a:05:
34:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D1:71:F9:3C:C1:CA:71:6F:C8:06:E3:6A:55:85:2C:DF:4F:1C:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f2d9df-16eb-449e-83f0-a4635df47d70/1/ZNFx-TzBynFvyAbjalWFLN9PHBw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.122.152.0-37.122.157.255
176.106.224.0-176.106.228.255
176.106.230.0/23
IPv6:
2a0f:6a80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57862
Signature Algorithm: sha256WithRSAEncryption
88:aa:4d:de:36:66:84:fe:e2:7c:61:c9:32:4d:b2:fc:bf:8c:
58:9c:20:bc:0b:5e:7b:7f:dc:6f:19:9c:c4:64:73:35:65:55:
12:6d:59:2d:74:b1:e0:d8:fd:e9:56:c8:1d:89:4f:ed:28:0a:
4a:bc:9a:f5:2a:08:7e:cf:c3:a5:97:bb:93:11:02:e2:38:28:
48:cd:34:91:f3:4f:c2:77:68:77:b4:62:75:e5:52:fa:e1:6f:
1f:28:8d:12:e5:91:1f:ff:73:18:b5:b1:f8:ae:47:ff:cc:e4:
12:46:9d:1d:fa:95:1c:11:6d:da:b7:c1:d0:27:f7:84:63:f9:
20:df:84:86:64:d6:8c:d1:a9:73:55:25:78:3c:88:a4:f1:ef:
48:4e:81:8e:74:28:e2:c2:26:98:55:f4:68:9f:70:be:6e:89:
94:65:cd:52:60:c6:8c:d9:80:9d:fb:b1:fd:a1:f3:2a:54:f4:
69:7c:c7:72:f6:5e:9f:c4:bc:22:3f:a7:a9:e1:6a:13:f8:bc:
52:26:33:63:e5:86:41:ca:76:27:11:f4:27:68:0e:68:70:bb:
f1:03:bc:44:3c:5a:9d:8b:cd:b4:25:e2:fc:5e:36:e8:5d:3e:
6d:7b:62:a9:4b:a2:28:32:2a:a5:e6:cc:45:5c:3d:f3:51:57:
bd:d1:4d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 04:24:40 2025 by rpki-client