Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZpPysE64W2oqbiHAPPu3coekWv8.cer
File: ZpPysE64W2oqbiHAPPu3coekWv8.cer (raw, json)
Hash identifier: vN7OJT5mhkMN5lkthD8pcKWo3ZxVAyJO2cpUMOBRx5E=
Subject key identifier: 66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC726006A20C482D226BADCFEB6B2FEC1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ZpPysE64W2oqbiHAPPu3coekWv8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:30:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44227
IP: 156.67.15.0/24
IP: 2001:67c:978::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 23:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:00:6a:20:c4:82:d2:26:ba:dc:fe:b6:b2:fe:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6693f2b04eb85b6a2a6e21c03cfbb77287a45aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9e:38:41:71:94:87:02:50:5d:6b:b3:f7:af:
3f:f8:d5:eb:06:31:49:95:fa:bc:75:30:86:08:30:
e6:60:2d:ff:04:a7:91:dd:2c:76:25:b2:57:2b:73:
e5:7e:c9:70:23:ee:7a:8b:c8:ae:39:87:58:a2:8e:
dd:89:e0:80:bb:2b:d3:cd:00:57:c0:46:43:4b:0b:
6d:57:bb:ae:85:d0:14:44:37:00:76:91:82:ce:9f:
ef:ad:6f:51:f0:e3:a5:ed:92:4d:eb:6c:83:6e:7a:
26:b1:19:7a:5c:cc:5e:5b:aa:22:b6:56:94:d6:d4:
6e:dd:80:8c:d7:5a:88:9f:c4:c9:1e:34:86:66:fe:
11:01:df:c0:6a:39:b4:b7:ee:17:11:71:82:b8:6f:
dc:ff:9e:b2:cd:bd:e4:eb:5c:02:82:2e:12:1b:96:
2a:4f:d3:12:fb:5b:59:c4:78:54:cd:9c:02:c4:b1:
d6:33:e3:a3:1c:f8:1d:40:c8:d3:60:f4:b6:28:fc:
7d:29:5f:cf:d2:be:7b:61:be:92:f0:db:c3:b5:48:
86:f0:a0:cb:ea:e0:7c:67:bb:0a:13:ce:b3:8e:96:
cd:ce:2a:f9:1e:e6:f9:fc:b0:61:ae:7d:a8:9b:40:
21:31:9a:9f:8e:14:7d:d5:14:20:7f:7c:e8:30:d1:
db:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ZpPysE64W2oqbiHAPPu3coekWv8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.15.0/24
IPv6:
2001:67c:978::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44227
Signature Algorithm: sha256WithRSAEncryption
58:d8:e7:85:7a:e8:79:41:99:55:d1:03:5e:06:0e:93:9b:d9:
74:d8:79:ff:7d:7e:87:e0:09:7d:14:f5:9c:c8:31:4c:f0:44:
51:cb:1e:11:6d:9a:da:b1:8b:1b:5e:ed:f3:7d:c0:e9:91:0b:
ec:7e:83:89:5e:0f:fe:e1:aa:47:99:c0:1f:f5:c9:bb:6a:db:
ab:a3:7e:31:ab:d3:28:ee:6f:41:82:49:bb:f7:79:f2:5e:e0:
31:04:d3:59:27:9d:29:4a:36:8e:d1:2d:56:77:16:a8:a3:d4:
5b:8b:5b:4f:f6:4d:f5:9f:4b:09:9a:19:53:de:a6:66:ea:7b:
d8:56:4a:73:6d:2c:e9:dd:59:4d:44:e6:5a:ff:94:5a:34:00:
90:eb:a3:15:65:ca:f0:a0:c2:7c:ea:bf:0a:75:c6:b3:47:ee:
e4:f9:93:55:9f:a7:c8:73:43:e5:ab:37:57:d2:dd:d4:cb:07:
91:1e:76:cb:a9:57:00:c3:a5:65:9d:47:05:15:31:06:9c:a3:
d1:c4:4f:3c:a8:b0:96:38:96:25:d6:d7:2d:10:17:96:61:fa:
2f:c6:44:c4:d7:84:d5:6d:5b:e2:bf:aa:60:c6:53:1d:43:ca:
d2:a8:be:f4:40:74:35:9f:5f:a3:b2:d4:56:f2:8b:ba:e1:4e:
e2:e6:67:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 03:10:38 2024 by rpki-client on console-fra.rpki-client.org