Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z6loMZ1yqYp1lAAzi3D9xniRLeY.cer
File: z6loMZ1yqYp1lAAzi3D9xniRLeY.cer (raw, json)
Hash identifier: hcbxG5QrB8hdWNC8KHdLoNmg/acyHv19nQh73+bxUVo=
Subject key identifier: CF:A9:68:31:9D:72:A9:8A:75:94:00:33:8B:70:FD:C6:78:91:2D:E6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B3EFC2F64221D2895ADED1E98CCC8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/z6loMZ1yqYp1lAAzi3D9xniRLeY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41887
IP: 62.204.64.0/19
IP: 94.228.128.0/20
IP: 178.22.80.0/21
IP: 185.63.164.0/22
IP: 195.144.2.0/24
IP: 2a00:d00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:3e:fc:2f:64:22:1d:28:95:ad:ed:1e:98:cc:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfa968319d72a98a759400338b70fdc678912de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:91:f7:7e:b0:85:18:80:cf:14:d4:f0:1f:f5:
9a:74:a2:5a:ef:b0:dd:c8:b8:c4:3c:21:17:ba:e8:
a2:8a:df:1c:81:8d:cf:b8:d6:eb:f4:1b:7e:ea:a0:
40:af:c3:07:1e:ea:b6:8c:6f:56:3f:25:3d:56:59:
db:9e:99:40:6a:90:a6:55:5b:40:e7:df:76:31:74:
1c:38:c2:4d:66:2d:b3:da:ed:e6:db:d8:ad:2e:82:
bc:cf:a1:06:7a:ce:4a:ca:52:16:cd:2d:84:82:73:
0c:04:3f:dd:16:de:40:9e:0e:bf:7d:29:cb:71:22:
11:de:98:67:78:d0:69:af:47:5f:65:d1:f6:6e:20:
f3:6f:6b:23:bb:89:8d:76:3d:b8:7e:b8:2c:5c:bb:
7d:e2:7e:66:05:14:14:96:9b:22:82:fe:f3:0d:57:
9e:0f:a9:23:b6:e9:10:c2:6e:1f:8a:f2:e5:6a:21:
f6:50:02:93:e5:c6:72:f3:6a:2f:e2:9a:03:a8:1a:
e3:5c:1f:0a:ca:28:50:75:e6:ad:ec:7f:c1:84:4f:
c5:e3:cd:67:77:8f:21:e1:17:83:72:40:c8:39:c8:
ee:fa:4a:e5:d0:ae:5d:98:ca:f9:8f:b9:6b:cf:05:
cc:ca:d2:12:af:f6:46:df:f7:c9:77:6e:63:1f:7e:
52:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A9:68:31:9D:72:A9:8A:75:94:00:33:8B:70:FD:C6:78:91:2D:E6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/dc616f-de9b-478e-8539-8ce51018e2e6/1/z6loMZ1yqYp1lAAzi3D9xniRLeY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.204.64.0/19
94.228.128.0/20
178.22.80.0/21
185.63.164.0/22
195.144.2.0/24
IPv6:
2a00:d00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41887
Signature Algorithm: sha256WithRSAEncryption
2c:e8:f6:58:d3:5f:ce:41:3b:c7:eb:8d:8b:7b:25:a5:0e:07:
dc:56:bb:c7:42:31:1a:c1:d5:1d:6e:b1:46:d0:74:69:04:fb:
e1:dc:47:8e:17:e3:a7:21:51:e1:be:0d:b1:f4:2c:4d:aa:a8:
a4:12:c1:17:03:0d:9e:95:13:2c:09:ca:c7:ed:db:46:67:e0:
19:3f:e2:5f:37:8c:2a:a0:57:bf:f9:dc:ef:ea:1a:a6:c1:1e:
6d:45:46:89:a0:53:81:31:66:e2:89:e6:e5:10:cf:59:b3:5a:
1f:09:f3:34:30:49:3b:46:5f:f7:36:53:e9:93:98:b1:b2:9e:
0f:bb:f5:d3:d2:1d:f2:b4:b2:20:09:ef:ee:f0:01:4f:fc:da:
5b:f6:32:96:f5:f6:bb:5f:e4:53:88:6d:36:37:a1:6e:db:72:
87:18:03:b7:33:85:5f:e2:b3:a7:03:b9:76:38:ea:d0:5c:52:
9a:83:d7:da:f6:e9:a4:8a:00:74:d6:30:c3:ec:77:1a:e9:0b:
91:25:5f:23:11:eb:0d:8b:00:f7:49:67:17:ed:5f:4b:4a:83:
b2:91:0c:bd:d2:fc:e6:d8:cd:06:06:c4:49:81:d6:1e:be:4e:
6c:1a:7f:c8:21:5b:5d:a5:af:07:f0:18:dd:4b:28:fb:c0:87:
75:5a:39:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:49:25 2024 by rpki-client on console-fra.rpki-client.org