Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z2sdziLtzI0bE3M48rfikFxKixI.cer
File: z2sdziLtzI0bE3M48rfikFxKixI.cer (raw, json)
Hash identifier: fKooCrLeTOO/Z6iDqgYKKoqRGrot7HebTob79/tHqAo=
Subject key identifier: CF:6B:1D:CE:22:ED:CC:8D:1B:13:73:38:F2:B7:E2:90:5C:4A:8B:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC348F3AD362EAFDA876B5021590A6D7E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/z2sdziLtzI0bE3M48rfikFxKixI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:47 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42591
AS: 57900
IP: 193.27.7.0/24
IP: 195.34.68.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f3:ad:36:2e:af:da:87:6b:50:21:59:0a:6d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf6b1dce22edcc8d1b137338f2b7e2905c4a8b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:93:6f:5b:03:f7:ee:59:ed:34:6f:06:87:ed:
35:fe:0e:06:54:9d:43:ee:8f:93:eb:f5:f8:39:fb:
54:ea:78:03:fd:48:2d:98:7b:8f:a9:d1:e3:f1:bb:
9b:8e:0f:23:af:90:95:eb:eb:0f:ac:64:0f:e4:2d:
dd:27:fa:ef:7a:63:91:ee:cb:55:fa:e3:a8:35:31:
f5:48:6c:4f:63:8d:43:b9:73:9b:c5:5d:8f:6c:be:
93:73:93:38:9b:e7:e1:72:7d:cc:39:24:95:98:d3:
5d:64:c6:58:00:d4:70:31:b3:76:91:36:e2:9f:a0:
12:11:41:d1:2a:a0:26:fb:c5:ab:88:c5:2d:a5:2b:
c7:aa:31:0f:4b:24:1a:3d:a1:93:dd:5b:de:66:32:
13:7d:5e:79:d2:24:47:5e:91:6f:a5:6c:bc:57:13:
33:d6:b8:b9:6f:a8:9c:ea:1d:0a:70:19:f1:b9:61:
6a:04:2f:13:1c:a7:c4:f6:16:29:c5:5f:d9:10:96:
56:cd:c0:8c:03:d3:a3:f7:3e:f1:14:c0:3f:8a:9d:
cb:94:19:8a:71:83:e6:38:72:82:97:d4:b0:20:c9:
63:96:65:70:3d:7d:5f:6c:9d:a4:91:95:00:97:83:
05:ee:1a:b1:5e:b7:61:66:90:26:8f:da:6d:8c:05:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6B:1D:CE:22:ED:CC:8D:1B:13:73:38:F2:B7:E2:90:5C:4A:8B:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/3d96f0-4981-4894-882c-6a99c46879ce/1/z2sdziLtzI0bE3M48rfikFxKixI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.7.0/24
195.34.68.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42591
57900
Signature Algorithm: sha256WithRSAEncryption
a0:38:fb:0e:6b:68:0e:d3:ab:3f:94:63:95:51:c7:21:27:a0:
33:79:9f:c1:70:3a:64:9d:c2:4b:a4:08:e9:06:e6:f4:b2:c8:
e3:99:d3:86:32:7a:50:1a:7a:30:73:dc:48:e0:45:d9:c9:fb:
e1:6e:41:39:22:95:f3:a2:15:88:6e:83:97:9b:bf:64:03:b5:
6b:a2:2e:f7:3b:f9:e1:5b:76:96:3f:cf:10:09:92:76:a5:9f:
81:74:71:ce:69:1c:5a:6b:06:49:90:79:d3:84:c9:69:77:61:
54:8c:3b:e4:b6:d7:a4:36:8e:69:7d:b1:e8:28:06:d0:aa:a7:
e9:5c:42:2e:27:bc:ef:ec:76:2c:f6:0c:5a:f8:80:0e:cd:da:
0f:05:5a:1d:24:2c:87:0f:5e:8c:3a:9e:f9:df:7a:1f:e4:30:
97:f3:b4:7d:14:17:76:74:6f:c9:bf:e3:a3:fc:a4:b5:ca:31:
50:01:e8:6f:56:a2:ba:68:d2:e9:05:e5:02:ee:4a:96:35:27:
14:b0:7f:70:f2:23:b3:6c:b5:0f:83:d2:ca:7e:e2:49:95:5f:
99:63:4d:b9:de:4f:53:f4:5e:dd:f5:15:6c:84:66:5c:63:70:
b1:9b:61:7b:34:29:d0:df:94:38:8e:2d:99:35:05:c3:23:0c:
55:95:3f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 12:08:46 2024 by rpki-client on console-ams.rpki-client.org