Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z33FpPcC09ydVuo1ue4gLsVJZH4.cer
File: z33FpPcC09ydVuo1ue4gLsVJZH4.cer (raw, json)
Hash identifier: iB818bZkGPjNNqyuInTBIpzCAChZsSo1XuLSgyFHrZc=
Subject key identifier: CF:7D:C5:A4:F7:02:D3:DC:9D:56:EA:35:B9:EE:20:2E:C5:49:64:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D96D7A37E86F2C528BF721E9EBE407C38
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.pudu.be/repo/pudu/1/CF7DC5A4F702D3DC9D56EA35B9EE202EC549647E.mft
caRepository: rsync://rpki.pudu.be/repo/pudu/1/
Notify URL: https://rpki.pudu.be/rrdp/notification.xml
Certificate not before: Sun 11 Feb 2024 06:25:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56762
IP: 2001:67c:81c::/48
IP: 2001:67c:b88::/48
IP: 2001:67c:b8c::/48
IP: 2001:67c:b90::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:96:d7:a3:7e:86:f2:c5:28:bf:72:1e:9e:be:40:7c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 11 06:25:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf7dc5a4f702d3dc9d56ea35b9ee202ec549647e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b7:1d:16:b8:f2:a6:11:c1:f0:a1:64:8a:5b:
c5:96:d6:bb:69:97:37:97:16:92:4a:15:7f:0f:31:
bd:8e:e6:cc:d9:45:cd:9a:69:72:7b:4c:01:f3:de:
a3:80:c1:01:25:1d:f0:38:2a:4a:10:3d:35:e6:82:
0a:69:eb:c6:cb:8d:d9:b5:d9:1b:d9:53:4a:04:cd:
e1:8d:16:d9:be:07:50:bc:49:fb:3f:e6:06:c0:5b:
0c:e6:4e:80:4a:2f:c3:12:c0:8e:10:f5:06:06:59:
d3:73:1c:18:ee:27:72:59:ff:0e:67:37:3c:a7:ff:
2a:c4:9e:64:19:2a:43:b0:06:9d:ac:01:e4:26:07:
0b:b6:c1:9c:d2:e9:b6:2e:59:b5:41:79:74:1d:05:
72:f5:86:74:2d:80:e5:76:ec:b9:cc:da:ed:61:21:
f5:25:14:ac:df:25:18:5f:69:27:25:1c:30:0b:90:
59:ae:95:32:85:56:83:29:30:4c:76:1f:87:41:ed:
f4:36:27:20:a4:ad:8c:e8:eb:71:c5:99:7a:d5:df:
c2:4a:2c:99:8e:a4:71:8b:8b:cd:0a:c0:60:59:3c:
c9:88:79:6e:90:44:f1:fa:d9:79:a0:46:6f:aa:a5:
02:da:cc:e0:20:92:26:bd:e8:f1:25:53:82:61:47:
05:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7D:C5:A4:F7:02:D3:DC:9D:56:EA:35:B9:EE:20:2E:C5:49:64:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.pudu.be/repo/pudu/1/
RPKI Manifest - URI:rsync://rpki.pudu.be/repo/pudu/1/CF7DC5A4F702D3DC9D56EA35B9EE202EC549647E.mft
RPKI Notify - URI:https://rpki.pudu.be/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:81c::/48
2001:67c:b88::/48
2001:67c:b8c::/48
2001:67c:b90::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56762
Signature Algorithm: sha256WithRSAEncryption
0c:d3:ad:b9:f1:61:89:ea:50:8e:fa:a5:12:6e:6c:10:9b:0d:
de:c5:7a:61:40:fe:8d:17:b0:77:f6:9d:33:bd:01:14:d6:9e:
c4:90:0f:26:26:e3:9e:2b:ce:b3:9b:f8:6b:54:5a:0f:1d:fd:
3f:a7:61:15:a6:86:59:be:c5:49:30:14:c6:7e:19:46:07:32:
b3:c9:a7:00:ee:87:a1:ec:fa:88:db:fe:d3:67:06:be:23:20:
4f:18:9a:04:51:2e:6c:e8:d3:35:50:5b:ca:90:f9:5d:81:ac:
82:74:1a:75:e7:80:e9:04:9f:ea:d8:44:e8:47:9b:46:27:2a:
82:81:c3:d2:54:79:1b:43:05:80:68:1e:0d:86:d0:0c:63:28:
de:4b:33:b4:31:92:cd:17:9d:a8:cb:9b:40:e8:56:a6:b0:93:
c6:2f:0a:00:1a:93:e2:38:31:54:09:eb:e6:63:29:c4:95:20:
46:36:7c:67:86:2d:b3:81:d6:4f:85:77:44:ee:ee:74:45:e5:
72:7d:8e:b6:94:fd:ea:ed:61:bc:f7:d7:d3:d6:58:d3:dd:5d:
73:3c:93:c1:9b:b1:bb:59:00:04:e5:8a:3b:f5:c3:d5:a5:1c:
e2:54:0d:3f:04:04:16:5e:15:75:65:ce:2a:67:83:c1:80:df:
54:ba:a9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:20:37 2024 by rpki-client on console-ams.rpki-client.org