Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ziLdGXJbalnnnw_zl4mlZY5KX90.cer
File: ziLdGXJbalnnnw_zl4mlZY5KX90.cer (raw, json)
Hash identifier: GL2DV+PJ69wPphlxcaRwuABZuyw+/enq/8RlCsqvH+g=
Subject key identifier: CE:22:DD:19:72:5B:6A:59:E7:9F:0F:F3:97:89:A5:65:8E:4A:5F:DD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8714FF8DC281B6D1ABC2D01DD5B77FC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/ziLdGXJbalnnnw_zl4mlZY5KX90.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:31:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56395
IP: 185.215.120.0/22
IP: 2a0b:a940::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:4f:f8:dc:28:1b:6d:1a:bc:2d:01:dd:5b:77:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:31:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce22dd19725b6a59e79f0ff39789a5658e4a5fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:95:88:93:27:68:dd:25:7d:b2:eb:8c:03:ae:
2c:ac:cc:72:c5:a5:c8:b1:60:b8:2e:68:31:30:0d:
df:70:8f:bd:bd:0b:3d:06:b0:4f:0b:bd:3a:96:62:
c2:d8:58:02:43:a1:e7:ef:f8:c4:da:10:20:58:71:
3c:4e:69:fd:8e:ff:ba:4d:77:19:8e:c5:c7:c2:3b:
b0:bd:93:4b:6f:bf:6c:ef:ab:c8:ea:2e:c3:31:8f:
2e:e1:b8:41:59:5a:b9:ec:b9:b6:b4:c5:f4:fd:28:
0b:74:b5:d8:57:63:a4:0c:e3:3f:4f:fb:69:a5:33:
60:e7:b8:a5:97:b0:6c:e7:92:21:60:5b:3a:d0:e6:
b7:5d:58:32:0d:9f:fb:30:2b:3a:b7:2a:0b:28:22:
7f:65:29:1f:df:24:79:88:a5:b7:53:71:bc:fb:ed:
db:99:61:de:6d:a5:03:7f:dc:b1:c8:d3:27:af:f8:
fb:57:a4:3d:8f:09:d8:0d:df:68:b1:f6:51:ee:3a:
17:75:64:27:40:11:b0:e6:f3:ae:4c:3a:79:26:97:
82:d0:87:68:6e:40:21:47:73:4b:c4:12:57:fc:f2:
89:c1:7b:48:cf:29:d1:54:85:4c:96:a6:26:35:1b:
c2:b5:e2:9f:aa:31:61:f6:6e:1a:29:d7:5b:68:48:
c2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:22:DD:19:72:5B:6A:59:E7:9F:0F:F3:97:89:A5:65:8E:4A:5F:DD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/c75f12-97a4-4d9e-9978-b1822755f712/1/ziLdGXJbalnnnw_zl4mlZY5KX90.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.120.0/22
IPv6:
2a0b:a940::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56395
Signature Algorithm: sha256WithRSAEncryption
aa:b5:7e:20:d6:b7:a3:e4:0a:4f:11:58:88:cc:20:12:09:88:
b9:08:31:7d:a7:a8:31:94:b5:56:42:ce:1e:81:47:32:9e:ab:
4a:72:4f:d2:8d:54:82:6e:77:0c:0f:08:89:17:57:13:45:6d:
60:20:9b:b4:1f:93:53:4c:6d:bc:49:af:1a:a3:7b:67:d9:87:
27:a3:52:6a:44:38:72:3d:4c:60:6a:40:83:2d:f4:a3:bb:49:
17:cc:d6:07:bf:a7:61:6f:d8:a4:b1:3d:41:63:9f:7e:77:dc:
c1:3c:32:cd:81:2e:84:0f:88:03:c4:cd:45:03:99:9a:d3:3a:
88:5a:1f:80:b9:d3:d5:39:1b:be:6a:8e:3a:6f:ac:8e:86:ae:
bd:b7:16:1a:8d:ca:c6:93:0d:00:3d:e0:81:e3:5c:75:eb:3d:
cc:67:26:c5:59:1a:fe:fa:ef:04:6d:4f:d1:9f:23:0c:8d:39:
34:58:58:20:52:47:a2:56:6e:cf:df:bb:84:ba:9e:e7:6d:cb:
cf:1c:c5:48:f0:4c:58:18:07:c8:cd:c7:8f:a7:ac:14:9c:46:
b3:12:18:5a:7f:7d:e4:53:56:f2:17:c2:a6:6d:f1:60:8e:1e:
a7:36:46:3f:96:7e:52:2c:15:7a:cf:91:fb:f0:0d:74:ad:6b:
6b:ec:a6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:23:58 2024 by rpki-client on console-fra.rpki-client.org