Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zm4aIgj6PxufPTj_8fjiw02RHzY.cer
File: zm4aIgj6PxufPTj_8fjiw02RHzY.cer (raw, json)
Hash identifier: jNWWk4z06AGyRvggW/wAcQ6F1T0P1fYWpJPxl1bg0ZY=
Subject key identifier: CE:6E:1A:22:08:FA:3F:1B:9F:3D:38:FF:F1:F8:E2:C3:4D:91:1F:36
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA2869D38825546C00403E0CA75059D1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/zm4aIgj6PxufPTj_8fjiw02RHzY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:31:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 193.43.100.0/24
IP: 193.43.110.0/24
IP: 193.43.126.0/24
IP: 193.43.136.0/24
IP: 2a0f:8240::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:69:d3:88:25:54:6c:00:40:3e:0c:a7:50:59:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:31:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce6e1a2208fa3f1b9f3d38fff1f8e2c34d911f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f7:16:d2:86:c1:19:c1:ad:97:22:8c:a4:40:
20:9f:5b:e9:31:6c:ae:6e:12:4f:65:ea:67:0a:07:
6f:41:f7:04:b8:ac:49:2e:ce:4e:60:d0:1f:fd:61:
ca:f3:53:16:79:4e:4d:9f:0e:0f:82:21:ff:76:b9:
bd:7a:40:0a:3d:74:f7:75:c0:22:0d:a8:1c:f2:10:
ac:f7:86:43:44:16:71:71:23:b8:fc:f6:ce:25:fa:
a2:e5:94:3d:8d:30:16:e5:8f:3e:cb:08:19:ee:cc:
c4:be:0c:12:f3:25:ed:b3:e8:d7:11:bc:a4:f7:75:
af:d7:e4:96:97:7e:bb:9a:2d:12:1b:3c:4d:5b:a8:
43:91:53:8a:78:dc:f6:3f:57:14:6b:70:ad:bd:ee:
c6:47:56:86:c9:8e:5a:10:ac:4f:62:3a:97:68:08:
95:de:ab:d4:e0:5b:56:2e:72:a8:7c:a6:b6:42:98:
c0:3f:0d:3e:2c:5b:90:53:5c:e7:d7:ef:7f:1d:e1:
ab:bb:fc:27:24:6e:9b:3a:36:0d:97:c3:e0:88:7c:
5f:2d:13:af:76:4c:7e:8a:ac:be:d4:2b:ff:d5:bd:
77:a1:34:87:fd:95:f6:c6:c0:4a:ea:7d:31:a0:77:
1a:e6:f5:06:50:86:af:8b:23:58:1c:d7:7f:aa:9f:
f6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6E:1A:22:08:FA:3F:1B:9F:3D:38:FF:F1:F8:E2:C3:4D:91:1F:36
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/zm4aIgj6PxufPTj_8fjiw02RHzY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.100.0/24
193.43.110.0/24
193.43.126.0/24
193.43.136.0/24
IPv6:
2a0f:8240::/29
Signature Algorithm: sha256WithRSAEncryption
29:74:59:66:94:e2:a4:c9:fa:e1:12:b0:77:60:aa:ee:0c:59:
ce:8f:d5:ac:16:3b:47:cd:4a:10:21:f3:f9:ae:f5:9d:73:59:
bf:a9:b3:d3:94:3a:0f:99:90:6a:89:bd:95:1b:0f:07:93:5d:
97:7e:30:c3:6c:07:96:49:a4:98:70:16:cf:e1:99:19:1f:11:
2f:19:24:82:ac:9e:14:94:82:bc:a3:6a:88:ae:d6:f0:57:18:
57:41:6d:6e:63:1d:50:2a:cf:60:a3:11:e2:ba:6a:3e:61:aa:
2b:20:45:39:2b:03:61:ad:69:c3:96:36:66:f4:80:18:ef:20:
ed:2d:21:1a:8d:c6:62:ec:d1:a3:35:5d:17:c9:03:ce:eb:0e:
71:ea:7b:fa:13:93:be:37:74:e9:27:ac:50:d5:cb:fd:20:4d:
48:48:bc:9e:16:8a:14:e0:98:b3:25:6e:21:95:f6:7e:eb:f1:
b5:bb:ac:fa:83:f2:71:2e:83:77:b2:ae:fd:3f:f0:88:cd:54:
fb:be:6e:f7:13:30:5c:75:dc:c8:4a:6e:60:9c:10:3b:87:3c:
e1:e5:ec:b2:ec:4b:dc:80:c8:da:12:d5:c5:32:9c:c5:2c:aa:
87:2a:e3:cf:02:5c:60:d4:38:89:47:b5:2b:43:25:8f:25:0c:
26:d9:5f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:44:12 2024 by rpki-client on console-ams.rpki-client.org