Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
File: _zFJJHOnjG_p9Tn5-n0iUlYKK34.cer (raw, json)
Hash identifier: 2fd4h5h21BCdnrxj3MeN89AcwKnD1uQdHijvUeN4pGg=
Subject key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC725756DAEA0A6EA1E8988BCE477E1D4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:29:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44716
IP: 87.225.128.0/17
IP: 212.21.64.0/19
IP: 212.42.224.0/19
IP: 2001:bf0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:75:6d:ae:a0:a6:ea:1e:89:88:bc:e4:77:e1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7d:86:ef:46:44:11:e2:8e:eb:d1:90:98:26:
c0:25:b1:ad:65:94:5d:87:f4:a8:99:49:f2:ec:08:
45:ea:37:66:a3:3f:0f:17:d0:33:92:59:31:f3:11:
47:d0:98:99:9f:57:71:51:a2:dd:5e:b6:a8:37:c9:
d9:0b:79:d4:2a:69:28:c5:04:9e:ce:35:d3:f3:f3:
00:87:54:e6:45:dd:a5:8f:7e:4a:10:21:2a:71:46:
4b:0d:50:1a:8c:a7:a4:fe:f0:00:4b:50:02:84:05:
8c:19:04:e9:ab:4e:e6:b4:4a:d6:65:ad:af:70:33:
0b:f0:ec:0b:d3:66:6d:8c:3c:12:21:93:c5:aa:6a:
9d:86:7c:87:62:25:2d:e8:ed:be:66:d3:13:71:59:
e3:d6:37:58:71:e7:75:15:b0:cb:e2:29:ad:6c:6a:
ab:2d:84:06:ea:34:fd:96:48:19:79:9a:b5:a2:20:
c6:36:f2:4f:a5:99:4f:80:78:3e:69:ff:06:26:ac:
1c:29:9d:ce:73:22:b8:ce:5f:4b:81:73:e2:0c:1f:
f9:23:3f:7a:ce:c6:0c:f4:fd:21:c1:4d:f4:c4:47:
69:ca:31:76:33:f5:3e:27:09:23:a9:ae:f8:1b:4d:
97:6e:0b:4f:a5:cc:eb:53:e8:1d:b3:f7:07:eb:f0:
79:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.225.128.0/17
212.21.64.0/19
212.42.224.0/19
IPv6:
2001:bf0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44716
Signature Algorithm: sha256WithRSAEncryption
a2:ba:9d:2e:ff:dd:a2:2f:18:5e:b1:8a:0d:79:a1:33:57:4e:
ab:f7:7d:be:ec:a0:1b:bb:85:b9:46:67:d5:e5:4d:18:b0:47:
de:c8:63:03:3f:d1:ab:97:ca:2c:3b:25:63:4a:19:9d:c8:7d:
cc:8e:ee:b0:cb:8d:a1:b7:c5:8e:ba:12:a9:a2:f8:97:06:fd:
3f:53:a0:5e:b5:09:f3:aa:fb:67:fa:c5:84:25:5f:83:1a:05:
98:a3:6f:43:db:e1:89:1f:6b:62:a4:50:40:36:1b:32:14:ea:
96:fe:5d:99:d0:ef:75:d3:51:ec:b2:f9:2b:25:2a:9b:e5:b6:
25:6c:51:86:e1:39:82:80:a8:99:dc:ce:58:6a:12:df:fd:a4:
9b:91:33:ea:c9:6f:f0:f2:fe:b0:82:f3:1c:12:5f:78:33:ee:
24:63:f2:63:1f:dd:5c:40:44:55:93:21:8a:ad:5b:7f:82:cc:
dc:c2:75:f6:87:24:30:3e:91:f2:7c:db:9f:2b:5c:92:a5:32:
44:b1:67:00:a1:cd:df:b3:44:25:6b:ce:57:57:f1:a4:80:f3:
5c:a5:8e:d1:22:3b:b4:77:ec:e5:fc:4f:2f:d7:fd:d7:05:07:
fe:a3:38:4d:48:54:a4:93:16:6a:8d:e3:42:c1:ac:ac:50:f6:
5d:1f:c2:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 07:06:05 2024 by rpki-client on console-ams.rpki-client.org