Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zhxb6lldiQ8hMHwbM2UZ-w7cCJw.cer
File: zhxb6lldiQ8hMHwbM2UZ-w7cCJw.cer (raw, json)
Hash identifier: wSVQsydYjLpVr9YyBsgjp27QhZXOH8y9t30yrKpl//A=
Subject key identifier: CE:1C:5B:EA:59:5D:89:0F:21:30:7C:1B:33:65:19:FB:0E:DC:08:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC725A2F15DCB068C92C59B692A865012
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b2/92256d-b875-4762-b743-05b15f5ee8c3/1/zhxb6lldiQ8hMHwbM2UZ-w7cCJw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b2/92256d-b875-4762-b743-05b15f5ee8c3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:29:41 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49605
IP: 31.13.136.0/21
IP: 185.8.148.0/22
IP: 185.87.240.0/22
IP: 217.112.96.0/20
IP: 2a02:e50::/32
IP: 2a05:c6c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:a2:f1:5d:cb:06:8c:92:c5:9b:69:2a:86:50:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce1c5bea595d890f21307c1b336519fb0edc089c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c1:40:09:f3:7f:3d:b4:16:03:b8:78:80:94:
5c:d8:e0:40:9a:7f:94:29:c5:98:b0:11:77:61:97:
64:3b:8f:ea:f7:64:28:2b:13:85:82:f6:f2:76:39:
66:e0:0b:e0:42:71:f0:fc:95:6b:4a:a1:59:7c:3c:
f7:2d:0d:22:67:c2:e4:26:89:9c:6e:c1:26:ce:b5:
1f:fd:8b:eb:7c:30:fd:99:11:35:8f:fd:f5:1b:9f:
3d:cd:f4:32:07:4e:ae:af:18:fb:6e:a4:f1:39:e4:
4c:76:0f:b9:41:3a:52:26:6a:a4:84:a0:03:d4:a3:
80:a4:1e:c1:9b:24:a5:8b:59:09:28:ca:8f:8b:10:
13:02:01:b5:4b:32:0d:6d:62:ec:c0:1c:64:31:9e:
28:ae:9b:da:cd:24:f8:5c:f0:b8:da:46:06:9e:cf:
30:bb:cf:7f:f6:10:b1:f5:54:ee:19:a5:c9:1c:dc:
48:5d:b0:ca:01:5c:cb:a8:09:f9:d4:1e:1c:45:a5:
e5:50:fe:b0:7e:0c:e6:a7:61:48:55:1c:53:9f:f0:
8b:d1:f1:76:be:7d:43:ec:84:89:09:68:8d:de:df:
03:d8:dc:e1:7e:15:be:8a:81:6d:fb:d0:31:ec:61:
2c:45:8f:21:74:2a:b0:ee:34:0f:b8:66:56:cf:fe:
c0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:1C:5B:EA:59:5D:89:0F:21:30:7C:1B:33:65:19:FB:0E:DC:08:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/92256d-b875-4762-b743-05b15f5ee8c3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/92256d-b875-4762-b743-05b15f5ee8c3/1/zhxb6lldiQ8hMHwbM2UZ-w7cCJw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.136.0/21
185.8.148.0/22
185.87.240.0/22
217.112.96.0/20
IPv6:
2a02:e50::/32
2a05:c6c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49605
Signature Algorithm: sha256WithRSAEncryption
14:30:07:02:5e:73:d4:9e:02:2c:b0:32:94:aa:3f:61:d2:56:
9a:61:87:ec:7d:4f:59:01:2b:c6:3e:82:a6:3b:0d:b5:5b:98:
d5:cd:f1:c7:ed:69:94:37:eb:15:dc:36:83:fc:0b:94:89:57:
0b:96:2a:2d:ef:c2:ba:be:64:43:46:db:27:e1:a3:0d:8f:12:
09:16:60:2c:dc:68:d5:7d:3f:80:45:cf:b3:d6:2f:99:30:8a:
dc:a6:f7:24:c9:24:92:ef:54:d0:3e:7a:78:da:9d:5b:d8:22:
41:8b:8d:67:ac:fa:e3:d8:88:9f:f1:a1:a9:35:1f:eb:41:6e:
bd:5c:e8:8c:84:3c:f3:86:d6:71:fa:7f:da:26:73:05:a9:50:
2f:15:c6:ce:2c:c7:6b:3c:69:d0:12:41:ff:92:15:0e:e3:2b:
a7:30:ac:98:2c:9d:e0:73:df:f4:0e:5c:96:ec:86:b1:66:a4:
47:c2:42:90:90:b9:05:91:94:4e:d5:d0:d1:71:e4:2d:25:be:
21:32:09:e4:9a:fa:bf:2c:5a:e0:63:43:1b:9c:35:b7:ca:82:
f6:47:d5:38:05:f0:37:68:88:4e:42:25:8f:48:41:79:7a:bb:
0f:75:f2:83:4e:e5:72:4b:24:a4:50:5d:50:68:32:da:88:8e:
f2:fd:7b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:58 2024 by rpki-client on console-fra.rpki-client.org