Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer (raw, json)
Hash identifier: x+3mA1XFFNUDI3Z6maOL1J5IkqC5N+06dWErwLsat8o=
Subject key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019081DC8A3DDFA7E121377E88B59BEE3014
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 05 Jul 2024 07:47:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 25350
IP: 81.200.224.0/20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Sep 2024 14:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:81:dc:8a:3d:df:a7:e1:21:37:7e:88:b5:9b:ee:30:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 5 07:47:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf40e25606651a075484c709fa766d80dad52d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:5c:a1:42:37:14:6b:a0:f6:ab:85:41:83:
0d:91:81:5c:09:54:e8:61:71:9b:23:2e:a5:db:f6:
35:65:4d:d7:8f:86:16:c1:e8:67:1f:ee:68:a6:0e:
22:fc:11:7f:1a:09:0d:49:f1:63:a2:a8:f1:01:f9:
72:3e:98:52:ca:eb:4c:63:9d:a3:38:f1:df:56:c5:
e7:18:1d:cf:22:a8:1b:1b:d7:ce:47:d1:e8:98:3a:
11:c1:c5:79:a5:67:d1:89:0b:b8:6c:a7:4d:90:e1:
e4:40:7c:73:b1:be:9b:e3:35:fd:3e:75:e8:10:b7:
99:ee:9a:74:2a:42:95:de:75:bc:c3:7f:c2:66:99:
27:10:7e:57:86:c5:1b:bb:ce:91:58:ae:12:41:32:
da:6a:52:04:cb:b4:37:75:5b:5d:63:80:41:71:25:
28:47:b9:ab:4f:71:38:78:d7:ee:39:ed:e3:42:96:
04:a6:ca:b9:0a:73:c0:6d:cb:e6:ca:82:1a:8d:49:
f1:d0:79:50:10:da:49:25:8b:c0:10:1d:63:1c:a5:
9d:db:0d:23:13:cc:60:bc:d0:80:a5:65:9c:ee:a0:
57:03:30:30:34:01:66:6b:53:fc:34:71:6b:ae:c5:
b5:33:4f:ca:f2:4c:14:a8:8f:85:23:8a:45:48:80:
21:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.200.224.0/20
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25350
Signature Algorithm: sha256WithRSAEncryption
a6:59:48:c1:7f:d9:5a:4b:7e:cd:ed:41:74:af:23:1e:da:61:
8e:c7:a4:9d:ee:9b:83:7f:14:e8:eb:c0:17:79:e0:c8:84:76:
a6:16:a6:03:bb:c4:a6:6b:fd:ef:bd:2f:b1:0b:92:fc:17:26:
91:5d:68:1a:94:e3:92:18:d5:76:a9:35:f5:96:77:fd:70:22:
04:b6:4f:5f:f2:03:4a:07:2c:84:99:6b:06:f8:c7:79:47:0c:
9c:74:03:ab:57:65:17:da:89:2e:eb:d6:5d:5f:5c:6b:97:8c:
2a:34:9c:f1:2c:ac:ed:50:a9:cc:10:43:88:ca:50:6e:55:2d:
6d:94:1b:97:94:c5:61:98:6a:4a:87:3a:fd:7f:47:17:44:d7:
f0:5d:ec:fa:f4:f2:20:79:6f:a2:28:e2:cc:7e:60:98:fd:1f:
7c:ab:ca:ba:e3:bc:c3:e2:d6:1a:10:fc:9e:6d:48:ca:9f:72:
9a:60:20:79:99:ab:4b:ad:a1:c2:79:01:4e:48:db:0e:c5:b4:
1c:f4:6a:4d:5a:63:b7:1e:7a:68:12:1c:62:5f:42:a5:e1:4f:
f5:35:2c:22:20:6d:12:3f:d4:fd:b3:53:e0:8c:89:b5:22:c8:
89:76:8f:68:87:67:07:17:1d:a5:74:43:1a:2d:6b:af:dd:fb:
64:16:1b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 21:23:24 2024 by rpki-client on console-ams.rpki-client.org