Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zWJru3tp7sn2eQsDcFVFuJL6Loo.cer
File: zWJru3tp7sn2eQsDcFVFuJL6Loo.cer (raw, json)
Hash identifier: HipiG4YcQB+xjjdOyrtoOErTENDjLKDK3zmptXl7JeE=
Subject key identifier: CD:62:6B:BB:7B:69:EE:C9:F6:79:0B:03:70:55:45:B8:92:FA:2E:8A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B4817ED84E2D99F7D7C2BC3866299
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/19/2b37df-8ffe-41e5-ac07-c0f89ad36bca/1/zWJru3tp7sn2eQsDcFVFuJL6Loo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/19/2b37df-8ffe-41e5-ac07-c0f89ad36bca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48500
IP: 37.99.224.0/19
IP: 94.230.64.0/21
IP: 109.104.224.0/21
IP: 134.90.224.0/19
IP: 185.46.100.0/22
IP: 217.196.128.0/20
IP: 2a00:46c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:48:17:ed:84:e2:d9:9f:7d:7c:2b:c3:86:62:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd626bbb7b69eec9f6790b03705545b892fa2e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:47:78:f6:02:54:23:b9:f7:16:db:55:3b:34:
cd:84:ad:83:f3:48:b6:b1:43:b7:a6:1d:21:07:9f:
40:7a:92:04:9c:8e:f6:e4:e1:ef:8c:91:d9:e4:7a:
06:43:76:c3:87:4d:60:c5:26:2e:b7:5e:cd:c2:97:
5b:1b:06:c5:9c:09:7b:e6:62:02:86:55:11:d1:73:
24:68:9b:dc:ad:61:b3:ee:57:24:78:dd:41:1f:c4:
de:7a:7d:4c:cd:11:7f:4c:b8:02:ad:eb:44:19:d7:
c3:f6:9a:63:3d:db:2d:d1:5d:aa:8e:47:d6:46:99:
61:5a:63:69:f8:59:d9:8c:19:12:4f:ef:cb:50:a1:
50:a8:32:b3:4f:8a:72:a0:dd:63:e7:3c:39:94:78:
31:55:be:9d:93:fc:a9:b4:8e:6f:74:5c:89:2b:b2:
d0:3e:1f:54:ef:81:99:6c:69:ab:30:38:df:1c:bf:
21:ea:95:77:6f:4f:62:bf:2b:95:ce:6d:c0:f8:20:
61:e3:2c:6f:89:52:99:26:51:41:8e:60:c0:0e:a6:
97:ed:c9:a0:06:63:a3:32:94:75:79:28:0e:e0:7a:
ac:8f:c7:6b:d7:24:0e:69:ae:da:78:98:18:69:ae:
65:0b:c7:8c:4b:3a:fb:e8:28:b4:20:75:f1:d2:78:
27:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:62:6B:BB:7B:69:EE:C9:F6:79:0B:03:70:55:45:B8:92:FA:2E:8A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2b37df-8ffe-41e5-ac07-c0f89ad36bca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2b37df-8ffe-41e5-ac07-c0f89ad36bca/1/zWJru3tp7sn2eQsDcFVFuJL6Loo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.99.224.0/19
94.230.64.0/21
109.104.224.0/21
134.90.224.0/19
185.46.100.0/22
217.196.128.0/20
IPv6:
2a00:46c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48500
Signature Algorithm: sha256WithRSAEncryption
86:98:f7:e8:92:e0:17:32:66:c8:da:e8:7c:56:ce:ef:ab:97:
3f:6e:86:f1:43:c7:1b:46:d9:10:43:84:c3:28:95:58:fd:cb:
bd:4e:57:77:0b:d7:1b:db:f3:f7:05:24:4e:4f:b7:7f:5d:90:
0b:45:25:2c:32:22:ba:28:4a:b0:cf:61:c8:c6:16:da:04:3a:
0a:75:e1:16:73:1b:8e:8c:ee:0b:48:5e:99:fa:f4:f6:f4:89:
4d:3c:8c:ab:90:f7:0d:21:e8:eb:88:5c:bb:c8:aa:7b:97:f4:
78:76:11:d2:28:cd:5d:17:27:91:ef:d0:fc:7f:de:e5:35:1d:
b1:90:e8:a0:40:03:b4:e5:56:71:60:54:53:19:40:d3:21:2e:
0d:4c:33:1e:47:44:d1:e9:dc:12:04:90:ce:9b:74:08:ec:c0:
59:ea:5d:ad:73:6f:b7:d4:80:c2:93:60:be:f8:88:6f:94:b0:
fc:69:df:ab:c1:07:cc:ac:2e:5a:37:b1:6a:eb:49:23:57:b2:
a7:d3:75:68:11:d1:11:ea:91:88:4a:0d:4a:71:81:f2:5c:d3:
cb:22:60:3c:9b:13:56:06:c3:3d:b9:ff:a6:31:8a:79:90:43:
71:9b:eb:89:2b:6c:81:c0:3c:5f:43:45:02:08:c5:e9:18:80:
2c:b9:0b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:49:30 2024 by rpki-client on console-fra.rpki-client.org