Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Znrl7XyovV-O_zCw5Hq035OCj_E.cer
File: Znrl7XyovV-O_zCw5Hq035OCj_E.cer (raw, json)
Hash identifier: a4falpgyd//iryarzmNr0eGTAnFEcIryOEXQ1sP5VYU=
Subject key identifier: 66:7A:E5:ED:7C:A8:BD:5F:8E:FF:30:B0:E4:7A:B4:DF:93:82:8F:F1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC86F88F3C12F403E1A1A48C486FA565B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/Znrl7XyovV-O_zCw5Hq035OCj_E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:30:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 206182
IP: 185.77.48.0/22
IP: 2a03:52e0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:88:f3:c1:2f:40:3e:1a:1a:48:c4:86:fa:56:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=667ae5ed7ca8bd5f8eff30b0e47ab4df93828ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d3:51:54:2c:c6:a5:31:8b:8f:9a:25:49:a1:
ef:9e:b6:d2:7d:0a:c6:1b:cf:18:b7:fe:98:c5:93:
cc:c2:87:bc:22:04:e2:5f:9a:9f:04:48:9f:ba:90:
04:90:d2:1f:b8:14:e6:c8:66:f0:db:9c:1c:70:8f:
7b:37:eb:9f:c7:ca:bd:a9:89:e8:fb:62:d6:0e:1c:
03:e9:e7:4c:cb:5e:43:24:8f:22:6b:64:e1:b0:0a:
d7:be:7b:e9:36:0a:31:e6:a2:06:7b:d9:5a:42:06:
88:82:87:fe:bd:c0:dd:9c:37:9d:e1:66:96:40:af:
8b:2e:65:d1:e9:c2:00:ff:8c:52:57:2b:7a:0f:2e:
bc:40:be:55:ef:94:19:24:57:bf:00:a7:2f:60:e0:
86:2a:95:01:39:1a:bd:ea:3b:84:d5:71:e6:ce:33:
06:20:9c:ea:0d:20:53:e8:87:2e:9b:86:a9:f9:fb:
6c:81:81:82:82:56:82:27:ab:d1:18:fa:20:63:3f:
18:c4:15:00:30:7e:b8:7e:d2:07:12:ac:d2:00:60:
2c:33:07:80:90:e6:61:03:2a:13:26:d1:da:1b:d8:
e0:65:e5:5f:96:df:59:86:40:c9:95:a7:d9:52:fa:
e2:31:4b:06:05:08:f5:1d:93:8a:f7:10:b7:0c:6a:
0f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7A:E5:ED:7C:A8:BD:5F:8E:FF:30:B0:E4:7A:B4:DF:93:82:8F:F1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4ae0bd-d7e4-44d5-877e-4a9ce2131b42/1/Znrl7XyovV-O_zCw5Hq035OCj_E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.48.0/22
IPv6:
2a03:52e0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206182
Signature Algorithm: sha256WithRSAEncryption
65:e5:1b:30:4d:94:c1:ed:1d:ed:79:8d:f2:5f:a4:df:a1:8d:
1e:09:d8:11:d7:ed:a8:7a:18:35:62:21:80:c6:27:be:ac:d2:
20:e5:f6:d9:88:16:d6:b8:bf:0f:4b:a9:09:92:96:19:f6:74:
7d:fe:4b:25:cd:bb:22:4c:cd:16:4b:73:8a:30:04:68:3a:0f:
87:9c:49:5b:fa:ce:a2:63:27:9a:81:c9:5b:67:71:5e:a8:09:
81:31:c2:79:b5:91:0c:1d:3b:3e:fd:f7:da:fb:34:7b:23:35:
43:9f:17:a8:21:47:8d:b0:b6:d2:98:3d:0f:da:62:4f:5d:59:
a5:37:0d:e3:fc:b4:9e:1d:1f:ca:fc:a3:61:f2:1a:70:ae:43:
5b:56:44:f8:85:19:5e:1f:17:75:0e:4e:67:21:69:70:5d:de:
21:dd:8d:cf:08:9a:a8:ff:32:26:1a:4c:d1:38:ed:7d:df:a8:
17:a9:cf:2e:3b:08:0c:16:42:cf:07:91:56:4e:d7:28:9c:36:
6d:47:52:f2:25:62:cd:6e:c0:f6:3e:a6:d2:66:31:df:d2:9e:
2a:95:e5:f1:52:45:1d:4c:dd:17:8e:ff:c4:6b:97:4e:6d:81:
5b:5f:5d:b9:64:e8:cf:e5:5c:ca:5b:a9:e6:39:fd:40:b9:9f:
42:cc:71:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:30:53 2024 by rpki-client on console-ams.rpki-client.org