Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z2sdziLtzI0bE3M48rfikFxKixI.cer
File: z2sdziLtzI0bE3M48rfikFxKixI.cer (raw, json)
Hash identifier: si2Az5mAspawNtGyN8J5OE/zKMaI9sBgw7TLim9zLWY=
Subject key identifier: CF:6B:1D:CE:22:ED:CC:8D:1B:13:73:38:F2:B7:E2:90:5C:4A:8B:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427480824ADC6E3FC54229553C6325712
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/z2sdziLtzI0bE3M48rfikFxKixI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:50:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 42591
AS: 57900
IP: 193.27.7.0/24
IP: 195.34.68.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:08:24:ad:c6:e3:fc:54:22:95:53:c6:32:57:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf6b1dce22edcc8d1b137338f2b7e2905c4a8b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:93:6f:5b:03:f7:ee:59:ed:34:6f:06:87:ed:
35:fe:0e:06:54:9d:43:ee:8f:93:eb:f5:f8:39:fb:
54:ea:78:03:fd:48:2d:98:7b:8f:a9:d1:e3:f1:bb:
9b:8e:0f:23:af:90:95:eb:eb:0f:ac:64:0f:e4:2d:
dd:27:fa:ef:7a:63:91:ee:cb:55:fa:e3:a8:35:31:
f5:48:6c:4f:63:8d:43:b9:73:9b:c5:5d:8f:6c:be:
93:73:93:38:9b:e7:e1:72:7d:cc:39:24:95:98:d3:
5d:64:c6:58:00:d4:70:31:b3:76:91:36:e2:9f:a0:
12:11:41:d1:2a:a0:26:fb:c5:ab:88:c5:2d:a5:2b:
c7:aa:31:0f:4b:24:1a:3d:a1:93:dd:5b:de:66:32:
13:7d:5e:79:d2:24:47:5e:91:6f:a5:6c:bc:57:13:
33:d6:b8:b9:6f:a8:9c:ea:1d:0a:70:19:f1:b9:61:
6a:04:2f:13:1c:a7:c4:f6:16:29:c5:5f:d9:10:96:
56:cd:c0:8c:03:d3:a3:f7:3e:f1:14:c0:3f:8a:9d:
cb:94:19:8a:71:83:e6:38:72:82:97:d4:b0:20:c9:
63:96:65:70:3d:7d:5f:6c:9d:a4:91:95:00:97:83:
05:ee:1a:b1:5e:b7:61:66:90:26:8f:da:6d:8c:05:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6B:1D:CE:22:ED:CC:8D:1B:13:73:38:F2:B7:E2:90:5C:4A:8B:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/z2sdziLtzI0bE3M48rfikFxKixI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.7.0/24
195.34.68.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42591
57900
Signature Algorithm: sha256WithRSAEncryption
33:0f:61:f0:fe:f8:75:b0:83:5b:b5:5e:58:9e:3e:16:17:ff:
f2:ce:ae:ee:df:19:ad:47:50:50:63:e2:66:da:a8:f3:ff:f7:
67:c5:6d:fa:1c:23:a8:87:42:8d:41:7d:5c:bc:81:9b:68:69:
60:b4:7e:c9:37:dd:1c:0c:26:5f:fb:e4:47:dc:c5:22:d3:84:
77:03:94:3f:b5:1d:9c:78:c1:7c:7e:83:46:eb:de:18:d5:40:
0f:1d:3c:30:79:39:c6:19:3d:79:4f:0c:7c:27:e6:3d:d0:48:
f2:70:87:51:29:50:bc:65:56:c5:05:02:7c:f0:d4:13:2d:10:
df:bf:15:ac:9a:f5:2b:32:43:35:af:64:4e:f4:43:69:55:ec:
61:e4:f6:14:4f:30:0d:e4:47:c9:68:55:79:5e:ad:eb:eb:ef:
e0:7a:f8:a1:90:b3:4f:10:ac:12:cb:91:0b:81:57:6b:ca:96:
c6:5d:0a:3e:18:c4:3d:fb:da:33:18:15:85:0f:75:09:f0:89:
ed:85:74:d1:a3:28:24:20:8d:d5:91:23:b1:61:ed:6e:1b:18:
8a:58:94:21:61:be:14:e8:42:da:d8:1d:c8:1f:9d:8c:d9:74:
25:27:50:d1:94:86:24:1a:ee:ce:10:ee:5a:d1:67:3f:9f:63:
a9:0f:00:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:48:16 2025 by rpki-client