Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.cer
File: zKqIcsKz-XTJUWjSFL_Vfw-ekRk.cer (raw, json)
Hash identifier: wyEK24zUAiZFCF9p7yJ0/jqR+XYIgPdDp+TJL6OA8+U=
Subject key identifier: CC:AA:88:72:C2:B3:F9:74:C9:51:68:D2:14:BF:D5:7F:0F:9E:91:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D2054652170D66330432D93FD8FB06039
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 19 Jan 2024 06:06:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 216163
IP: 31.24.254.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:20:54:65:21:70:d6:63:30:43:2d:93:fd:8f:b0:60:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 19 06:06:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccaa8872c2b3f974c95168d214bfd57f0f9e9119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d2:06:0c:6a:a3:36:63:54:d9:a5:93:41:0f:
73:ac:aa:d0:13:55:f2:14:ea:6f:31:a8:6c:c8:7c:
59:3e:e1:dc:e7:33:ec:d2:8f:d4:15:d1:f1:2b:97:
cf:18:56:fb:35:41:17:6d:a2:32:05:4e:5c:58:5a:
dc:a2:f2:96:63:61:df:ff:f3:39:32:3a:62:72:ec:
81:5a:eb:73:67:14:cb:da:9b:0f:59:20:cc:9a:4e:
06:eb:b4:29:d4:db:ec:10:f9:6d:59:e7:57:77:ed:
ed:24:75:6a:68:ea:44:9c:92:72:8d:fa:8a:c3:31:
95:2f:ce:f2:14:e6:3d:64:48:94:a5:93:15:20:dc:
5e:cc:ec:b9:e8:02:3c:7d:08:8d:9e:c0:27:94:af:
2d:2a:f1:99:83:97:d7:1e:1c:74:5f:e2:25:23:c8:
ab:40:21:c0:1b:26:d4:5c:1e:dd:92:55:b7:58:a9:
21:b7:60:3d:c0:bf:21:f2:64:e8:24:5c:df:b0:e4:
97:e7:cd:5a:4a:6f:25:6b:ee:4d:cb:dd:09:c3:0c:
15:02:79:f7:cc:6e:35:4c:8d:e9:c4:d7:c7:81:b3:
1b:94:3b:3a:40:04:d1:e9:a9:15:2d:db:de:e1:91:
fe:82:80:47:3d:b9:e4:bf:0b:c4:c4:2d:6f:d0:f7:
4d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AA:88:72:C2:B3:F9:74:C9:51:68:D2:14:BF:D5:7F:0F:9E:91:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.254.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216163
Signature Algorithm: sha256WithRSAEncryption
62:56:96:a3:6f:e5:45:c3:5a:9c:80:cf:d8:01:7f:95:31:d4:
27:44:cb:1d:03:06:c8:59:ae:e3:cc:bb:4a:69:b1:ec:06:08:
fc:21:d8:b3:4b:7c:6b:40:f1:f8:33:05:9d:2f:c8:05:33:3a:
07:22:3b:fd:66:15:fc:0d:f3:10:3a:1f:a0:e3:fa:ea:81:22:
af:9e:90:4b:54:3c:93:cf:13:98:af:e1:2e:1a:d8:b3:ba:ea:
9e:f7:9c:79:9c:fc:2b:f7:30:ba:4f:82:25:99:77:6b:44:cd:
04:61:41:8d:5e:77:0a:cd:5b:3e:70:19:51:34:6b:00:a1:e5:
30:f3:94:b6:c9:fb:41:67:31:99:46:8b:2c:c7:12:80:2b:09:
5c:84:21:e2:c9:c3:cb:05:4f:8f:ad:94:56:56:67:7e:20:de:
bf:fd:19:bf:0d:63:b3:25:7a:45:d7:c4:3a:d3:4e:14:cd:eb:
9f:d1:10:1d:3c:21:20:ce:a8:80:74:c9:e0:a8:82:a4:2d:ed:
25:d0:6c:7e:e1:a8:9b:92:56:41:53:e6:b4:af:fa:b7:ec:26:
24:da:e9:3e:51:68:04:e3:14:79:f9:12:e4:33:ec:1f:f5:08:
fa:c6:65:e0:39:66:57:6f:b8:a9:0a:a5:aa:b2:d3:7a:32:46:
85:7f:21:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:52:05 2024 by rpki-client on console-fra.rpki-client.org