Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
File: Ze3JFheq3wwsx_H115bb237YWQ0.cer (raw, json)
Hash identifier: B64RkmciffC6Mu0Tz1zYQrEdtAy3dev36IMTmZ4m9TI=
Subject key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D1E8C6F5E3CC888F31795F7D6DA9932EC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 18 Jan 2024 21:48:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206088
IP: 185.196.180.0/22
IP: 2a14:1800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1e:8c:6f:5e:3c:c8:88:f3:17:95:f7:d6:da:99:32:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 18 21:48:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:32:05:a5:07:60:b5:66:0f:80:dc:1a:de:a3:
e7:c1:73:c6:f5:7d:b3:18:be:6e:b9:c4:d7:52:d9:
79:5d:8e:97:07:2f:d3:f3:da:94:46:e8:2a:4e:87:
9d:58:2f:72:68:4c:e9:73:cc:87:12:c7:b4:a2:70:
8e:21:a5:ea:37:30:38:e8:84:63:6c:58:de:c0:66:
31:9f:f8:e3:8d:8f:ba:e4:ea:46:91:8d:cf:f7:47:
d3:ff:4f:7a:96:50:19:bc:18:68:d3:91:f5:13:0a:
26:18:06:ae:1d:f8:51:bb:bc:0e:82:aa:92:9f:6c:
18:cb:2a:d6:61:48:43:0d:36:bd:06:b5:00:08:9a:
88:13:29:37:17:ab:23:fe:99:22:ce:b5:a7:3e:51:
79:45:b2:6c:9e:e8:02:03:6d:e0:90:5e:ef:55:db:
9e:49:3d:90:c1:95:79:28:c1:74:3b:c7:fa:40:63:
b8:a2:31:b2:d1:9a:85:98:5a:39:80:19:22:9b:a6:
ee:31:3f:85:bc:b2:02:fe:fb:4e:44:3b:1c:4b:2f:
d3:2e:ec:c9:d0:a2:48:d6:59:e3:f4:fd:74:e5:90:
f2:5c:33:35:25:05:15:2d:49:47:5f:29:03:c5:01:
9e:93:bc:a1:3b:2b:c8:2e:f6:73:b1:2e:2e:e8:83:
a9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.180.0/22
IPv6:
2a14:1800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206088
Signature Algorithm: sha256WithRSAEncryption
84:f4:c1:a6:41:8f:ee:a8:4d:cc:74:16:c8:7c:83:68:b0:9c:
14:fe:66:f0:98:5a:14:2e:73:b3:e8:40:b8:23:e7:60:c8:d3:
be:90:8b:21:1c:2f:44:1f:02:89:7a:40:5d:3b:31:8e:9b:11:
09:8a:4a:13:34:c1:8d:4e:6f:94:15:02:c0:30:4d:fd:84:36:
e5:df:5f:c7:c0:16:f9:db:30:7c:cd:01:f7:e2:22:a1:43:4d:
6c:66:5f:64:d1:dd:e5:49:6e:4b:7b:e1:93:92:c0:2a:f2:66:
b9:b8:cc:e4:d2:6f:96:e5:45:d5:3b:32:f5:47:af:03:9e:f0:
e1:a2:14:67:dc:93:3a:81:88:9e:15:57:8e:25:aa:3a:16:a2:
7c:a9:33:31:61:25:33:cf:59:ca:2a:4e:65:42:a5:d5:4f:c8:
ac:4d:f5:05:e6:e9:0d:c2:d1:70:57:29:7c:90:4f:a3:c9:9a:
1e:de:07:72:f3:3c:01:51:6c:02:de:f0:b5:f6:e2:9c:45:59:
a7:3c:df:86:c8:41:ef:58:63:d1:de:7d:8d:9c:21:9d:54:57:
14:2f:43:b9:f7:c0:ee:65:82:0a:61:5d:36:d3:66:19:4b:d6:
df:bc:2d:3d:14:11:88:25:e7:c7:89:ea:a4:26:64:81:92:3c:
71:2d:d3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:49:38 2024 by rpki-client on console-ams.rpki-client.org