Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZPkGZT-2cypVatNVKNHVk40bDpg.cer
File: ZPkGZT-2cypVatNVKNHVk40bDpg.cer (raw, json)
Hash identifier: 0S2YpfzRIjVRll7etzVSRDNex7OyeHVmGe4+ml2DH8o=
Subject key identifier: 64:F9:06:65:3F:B6:73:2A:55:6A:D3:55:28:D1:D5:93:8D:1B:0E:98
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26CF0C2F16105F83601C057E5B5368C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/ZPkGZT-2cypVatNVKNHVk40bDpg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:29:28 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60022
AS: 208055
IP: 45.133.160.0/22
IP: 185.62.68.0/22
IP: 2a03:60::/29
IP: 2a0e:7640::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6c:f0:c2:f1:61:05:f8:36:01:c0:57:e5:b5:36:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64f906653fb6732a556ad35528d1d5938d1b0e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:15:2d:32:f9:ef:1e:9e:c9:c7:f3:07:66:
b5:46:1a:fa:70:41:ba:76:89:08:30:b8:2c:15:05:
2e:46:65:8d:ef:4a:92:7d:41:d1:ba:00:6e:e6:b6:
e2:13:1d:e4:76:b0:dd:0e:65:5d:0d:d6:de:d7:ad:
bf:19:db:88:65:c3:dc:28:22:70:04:51:64:b0:08:
8b:3c:ea:99:48:40:5e:d3:d0:02:1b:e7:30:a8:8b:
8d:61:c2:79:a7:f6:e8:a2:4f:e1:8b:6b:24:b4:c1:
5a:13:0b:52:ef:c1:3e:ee:c9:9a:00:a5:85:aa:75:
ff:cb:7c:7c:fb:eb:72:0e:f1:97:17:c5:1b:16:aa:
5a:29:2d:19:a7:43:39:a7:8a:b8:8e:c2:bf:3b:a0:
f0:b8:97:e7:07:cd:5e:26:85:05:80:07:3f:d6:f4:
01:12:2e:ae:d9:1a:53:d1:ac:b5:35:10:1c:65:61:
c1:f1:ab:e4:fe:17:73:9e:12:de:74:0a:92:94:5c:
a7:a2:1b:86:98:24:a5:f4:37:de:32:3b:f7:24:69:
1d:c8:ea:23:43:36:0d:45:8a:da:91:e9:53:87:26:
b5:e1:a6:9e:04:83:71:0f:07:fc:e6:86:c4:06:33:
27:67:37:d9:d3:40:fb:7d:bb:d8:35:e5:65:be:bb:
8f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F9:06:65:3F:B6:73:2A:55:6A:D3:55:28:D1:D5:93:8D:1B:0E:98
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/897061-9217-403c-a0e5-13d28c653efe/1/ZPkGZT-2cypVatNVKNHVk40bDpg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.160.0/22
185.62.68.0/22
IPv6:
2a03:60::/29
2a0e:7640::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60022
208055
Signature Algorithm: sha256WithRSAEncryption
64:27:54:22:cd:17:f0:cd:cd:98:46:6b:ab:1c:41:e1:9d:b5:
a0:10:b2:03:4c:20:6d:23:67:5a:f1:8d:de:89:c4:7e:b8:54:
be:ee:d8:a9:41:be:62:ec:13:28:ed:38:d8:74:f9:64:96:94:
54:79:91:22:d1:2b:ec:e4:fe:24:8b:19:08:47:cb:07:11:97:
1b:b6:c6:52:e6:42:ac:80:12:fc:eb:b8:f7:4b:88:c1:18:ed:
ee:f2:ae:0c:10:48:d3:5e:ce:42:8d:32:06:4f:ac:1f:aa:43:
fd:72:2b:5f:c6:3e:c0:fa:d1:19:6c:65:9f:40:a8:1a:3c:f3:
ed:b0:95:9f:3f:31:bd:bd:9a:47:13:04:76:51:76:a9:64:a9:
71:b3:c3:ea:3f:dd:17:c7:c7:cd:4d:b3:a5:d9:dc:87:be:63:
c9:89:91:e2:13:28:e3:8f:4a:58:94:5e:67:8f:52:38:8b:0b:
1e:f0:a2:d9:34:2b:a7:76:a0:41:f1:85:49:da:67:4a:4c:45:
43:f4:11:b9:12:07:60:bc:bf:d6:ac:7b:63:d0:a9:85:52:e6:
b8:5f:21:1f:02:55:6f:be:d3:eb:8a:e5:b9:87:60:bc:59:aa:
86:56:5d:e0:60:24:9e:a6:4c:2c:11:84:9f:21:99:1c:1e:6c:
ae:76:32:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:10:52 2024 by rpki-client on console-fra.rpki-client.org