Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZrB43tN1kjDKLho76QZjjRMGuQg.cer
File: ZrB43tN1kjDKLho76QZjjRMGuQg.cer (raw, json)
Hash identifier: DOOyStfGCf8Gy6G2GAZEWUdTDcKe1/1keq8p5LnZ6tk=
Subject key identifier: 66:B0:78:DE:D3:75:92:30:CA:2E:1A:3B:E9:06:63:8D:13:06:B9:08
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B927CE7D2EA0C339B3A4DCBC426FB5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/763592-a480-444f-a881-402e62c54d32/1/ZrB43tN1kjDKLho76QZjjRMGuQg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/763592-a480-444f-a881-402e62c54d32/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:31:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51400
IP: 77.87.240.0/21
IP: 2001:67c:2190::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b9:27:ce:7d:2e:a0:c3:39:b3:a4:dc:bc:42:6f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66b078ded3759230ca2e1a3be906638d1306b908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4d:95:88:56:ac:47:62:f7:b1:eb:ac:03:ea:
9f:a4:24:4f:ca:b4:07:11:29:c8:87:e6:0c:b1:13:
e9:97:15:e5:c8:5d:a0:47:d9:4a:81:44:be:de:e7:
20:4a:4a:8e:80:bd:b2:8a:5f:82:2f:10:f7:18:b2:
35:ae:47:ef:51:26:42:a0:25:d2:2c:b4:27:23:5d:
a6:14:5d:23:79:90:3f:34:6a:1a:e1:3e:55:38:d4:
18:e5:be:a1:dd:1d:0a:1d:94:1d:74:14:24:68:c3:
70:52:a3:24:f2:81:aa:29:c9:1a:cb:52:c1:40:7a:
49:1d:55:88:d1:1e:b8:a1:d2:2c:62:b7:f9:06:c0:
b6:88:a5:a1:5f:04:1e:8d:09:ea:d6:b2:04:c3:dd:
dd:8a:ed:84:98:7f:4d:13:61:b2:15:5f:89:cd:99:
b0:2f:d9:48:0f:95:67:cc:50:f9:c3:dd:80:77:73:
b7:8e:bb:c9:37:8b:51:bc:60:56:62:9e:8a:df:ca:
9a:94:8f:55:73:9c:82:75:a5:d9:09:2b:1b:5e:2a:
1a:c9:35:9f:16:69:fc:7e:4e:9d:16:b8:2b:a3:73:
78:7c:2f:26:80:56:a5:06:70:8e:b4:ce:e5:8b:71:
fa:d5:25:03:0d:e9:b0:0d:2f:75:03:30:fa:42:88:
c0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B0:78:DE:D3:75:92:30:CA:2E:1A:3B:E9:06:63:8D:13:06:B9:08
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/763592-a480-444f-a881-402e62c54d32/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/763592-a480-444f-a881-402e62c54d32/1/ZrB43tN1kjDKLho76QZjjRMGuQg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.240.0/21
IPv6:
2001:67c:2190::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51400
Signature Algorithm: sha256WithRSAEncryption
62:a1:65:86:ec:cb:df:8f:7c:93:e2:20:b8:63:78:d0:42:89:
1c:0d:be:80:bf:76:71:ec:d0:54:3e:b2:81:6d:1c:ba:d0:30:
cc:f7:bf:93:2e:f1:de:b2:c7:b2:57:b3:04:e4:60:07:b3:e4:
4e:8b:45:1b:bc:bf:9c:42:e0:62:33:a0:58:21:38:f6:56:cb:
e4:62:76:4b:bf:20:25:f6:89:92:27:d4:13:1b:c1:42:8e:b8:
6c:64:7f:f6:27:2f:7f:d1:b3:77:d1:93:13:15:09:b6:71:ac:
d5:86:35:e0:7a:80:5d:7b:fd:c1:6e:cb:ed:a7:6d:6b:62:c1:
bf:3e:c7:40:7d:02:9c:a1:9b:d6:92:05:d4:96:5d:6e:73:dc:
60:aa:ab:2b:38:a0:d6:48:d1:5a:3c:d4:7a:47:3c:b1:d6:5f:
14:36:21:01:d5:bf:ce:61:07:05:97:c5:3b:e0:3e:6e:48:0f:
98:0a:4f:07:d8:83:63:e0:33:00:4a:aa:13:4e:83:8d:a2:20:
3a:f4:eb:65:ab:4a:a7:a1:a4:99:9b:62:72:75:0e:3c:28:f6:
df:a1:da:03:20:03:da:8a:cb:05:3e:d2:13:c2:44:f3:ac:f3:
0e:c5:ee:21:85:f0:6e:f3:c5:12:ac:7b:69:5b:8a:14:e7:a9:
e3:3e:57:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:52:19 2024 by rpki-client on console-ams.rpki-client.org