Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer
File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer (raw, json)
Hash identifier: sJALFxLih6S6zJlGQxIbZH4aWv7tC3G0RE50cfHaqfE=
Subject key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DA83301A73E388568FD0EC725148C2201
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 14 Feb 2024 15:18:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 42425
AS: 48577
IP: 2.59.4.0/22
IP: 94.125.232.0/21
IP: 178.255.184.0/21
IP: 185.28.80.0/22
IP: 2a00:1088::/32
IP: 2a09:ecc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a8:33:01:a7:3e:38:85:68:fd:0e:c7:25:14:8c:22:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 14 15:18:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cddd902a1271270027e4577778ea35883b4515f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:02:a2:60:72:5f:b6:37:29:f6:a7:dc:7c:e1:
e4:cf:44:36:df:37:38:6b:a4:20:d0:82:26:63:94:
2a:63:cb:e2:44:d5:e5:9d:3f:f9:83:b1:3b:58:6a:
5a:6f:4f:b5:68:90:30:7f:12:8f:e8:13:39:90:2f:
a6:52:7d:53:30:00:52:e8:49:6e:f2:43:98:c7:64:
02:d8:11:b7:e0:35:0c:aa:fe:31:f1:c0:1d:ba:9c:
83:02:9d:12:cf:19:79:97:8d:7b:37:6d:9d:2c:31:
73:e5:ea:53:fe:5a:d6:ad:76:c6:6d:83:44:e1:18:
b3:4e:30:03:96:96:8c:78:85:37:f8:8b:f9:7a:c8:
d4:8b:fa:98:4c:61:5d:5f:88:f3:8a:9b:0d:4b:7f:
45:08:50:52:f9:b6:82:ac:bc:84:12:92:28:60:45:
ff:5f:9f:50:da:ee:54:36:4f:e5:f5:0c:6d:fa:04:
10:bd:c7:bf:e9:80:08:89:09:48:cd:81:a5:9b:25:
20:bc:83:6c:2b:85:d3:d5:0e:c9:b1:16:04:a0:0e:
fc:03:74:0b:20:fe:17:71:95:88:7e:b3:1d:99:21:
22:ca:e9:eb:74:5b:ec:13:5e:ad:56:7f:f1:7d:98:
07:61:7b:cc:dc:da:b6:29:58:bb:fb:7c:99:fa:02:
e7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.4.0/22
94.125.232.0/21
178.255.184.0/21
185.28.80.0/22
IPv6:
2a00:1088::/32
2a09:ecc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42425
48577
Signature Algorithm: sha256WithRSAEncryption
ab:65:c9:6a:6d:f6:15:f1:dc:71:c4:b6:ff:e3:b2:cb:63:9e:
1d:c0:c2:9c:f2:14:03:d5:3a:ca:7c:6a:8e:7b:1b:59:78:28:
c2:8f:f9:7f:73:29:62:25:bf:56:30:d6:75:ba:1d:3e:86:7b:
bd:77:06:9e:86:8f:36:ba:a7:33:ec:1e:62:82:ef:e9:b1:e9:
50:a2:66:0d:d3:da:dc:bf:54:8e:87:98:5d:ed:e1:5c:1d:43:
4a:69:e0:62:f5:5d:98:cf:01:c7:a3:0e:d6:bf:3c:7e:7a:60:
14:40:4c:3c:df:aa:55:cb:07:0f:6e:06:85:4e:5a:22:74:93:
de:b6:6a:e5:b3:57:c9:6d:c8:8b:82:2f:a0:fe:13:58:7c:e1:
f0:4d:29:23:c4:bf:70:13:18:de:92:19:c5:91:20:1e:36:92:
84:56:7d:2b:c3:a6:4a:0a:c8:79:d4:f9:09:43:12:5d:9f:bb:
21:80:6d:64:2e:79:9f:d3:a2:c8:73:fd:90:3a:cb:5f:6d:75:
38:15:cc:6a:12:96:85:6c:08:c8:17:d4:f1:35:a5:81:a5:ff:
3c:83:e8:07:7a:01:1b:a3:d9:b4:4b:6c:66:90:98:8a:6e:1b:
cb:ee:e4:89:2f:ae:da:23:09:e7:dd:f0:0c:11:94:1b:51:77:
10:16:a1:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:20:56 2024 by rpki-client on console-ams.rpki-client.org