Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z11k85hBuOQkhzhDPDUl0qRHzV0.cer
File: z11k85hBuOQkhzhDPDUl0qRHzV0.cer (raw, json)
Hash identifier: l/2c4PbIKd0hqNRztjNc6n5BAyg767bAdXjiDqgF9Ow=
Subject key identifier: CF:5D:64:F3:98:41:B8:E4:24:87:38:43:3C:35:25:D2:A4:47:CD:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3490EE87812B572EC996EA4BA275D18
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/z11k85hBuOQkhzhDPDUl0qRHzV0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211522
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:0e:e8:78:12:b5:72:ec:99:6e:a4:ba:27:5d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf5d64f39841b8e4248738433c3525d2a447cd5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:93:d9:c1:f9:7a:30:6f:15:54:b5:de:b7:a8:
65:a0:28:f5:17:24:f9:21:e0:74:11:df:5c:74:c1:
bc:27:a6:67:7c:4b:f9:06:f0:75:67:dc:97:8a:9c:
7b:5d:ee:bc:0e:fb:f5:4e:09:80:a4:b8:0e:37:6f:
1d:94:21:30:b1:7a:9c:6d:a0:ae:67:3e:6a:f0:41:
3a:06:7d:b3:de:cc:da:59:98:c5:7b:9f:ba:87:b3:
90:9a:07:7a:f3:3a:63:1d:5c:09:10:61:36:62:c1:
8b:df:4a:f3:ff:04:51:7a:97:43:11:be:53:7f:b3:
de:36:7e:56:0f:05:42:56:e2:19:e2:c4:d0:03:34:
ec:e9:76:27:46:34:38:9b:9f:6d:6f:fa:18:5a:31:
41:22:3f:cf:92:b0:ca:c7:e9:04:ae:fd:30:4b:20:
9b:63:17:06:1c:fc:4e:40:50:87:16:9a:0b:b5:5d:
7a:96:d4:7e:74:5a:04:5a:a7:28:d0:49:91:c5:42:
48:21:25:dc:f3:e4:11:1d:d9:c4:a3:26:5a:56:ae:
b4:38:19:49:53:b4:20:41:0a:4a:0a:94:33:ac:7b:
7e:e8:9d:d5:46:0f:e4:f5:c8:49:b3:0b:98:ad:fe:
d7:65:8b:c0:47:b9:d0:ce:26:6b:d6:e6:b4:be:2b:
83:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5D:64:F3:98:41:B8:E4:24:87:38:43:3C:35:25:D2:A4:47:CD:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/z11k85hBuOQkhzhDPDUl0qRHzV0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211522
Signature Algorithm: sha256WithRSAEncryption
55:73:7d:cc:cc:66:9c:7e:1a:9f:07:e3:25:12:73:a5:22:62:
02:30:46:92:5a:15:05:4f:a6:b2:16:a6:f0:35:f5:e7:60:08:
20:a6:18:34:df:fe:9a:e8:b6:1d:ca:9d:43:53:cb:1e:ee:43:
30:f2:14:eb:fb:81:cf:7f:1a:ec:0a:92:7d:d0:ba:29:6d:b4:
a5:54:4c:15:dc:5f:a8:69:4d:a5:f6:a0:65:81:c7:7b:76:40:
24:f8:06:23:5d:7a:92:2d:5b:32:72:d0:f7:01:b2:b0:b1:d0:
e2:c4:29:d2:62:81:13:85:94:8b:3a:fd:60:81:1e:65:b1:23:
78:37:5b:59:a6:22:1c:36:bc:9e:68:d0:f8:df:63:6a:44:2f:
d5:60:fb:e9:ec:81:e7:3d:a9:14:26:13:9c:76:f1:8d:6c:6e:
bc:87:66:6e:47:fb:ba:64:26:d6:ef:25:50:e6:dc:3c:48:5e:
5b:9e:2c:9e:16:55:e1:fc:eb:a8:ec:84:b9:73:a7:89:95:99:
aa:ef:44:9c:5e:7e:36:80:04:aa:cf:e5:15:69:8f:b5:66:9e:
b2:61:ac:ca:c6:63:3d:23:5d:f0:3d:38:47:f2:5c:82:2a:e0:
b2:34:f5:41:10:84:24:72:c3:ef:8c:33:f5:68:cf:82:44:f5:
dc:62:fb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:20:36 2024 by rpki-client on console-ams.rpki-client.org