Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/znys-nNc7q_dKiFMCe5yRpQlJQ4.cer
File: znys-nNc7q_dKiFMCe5yRpQlJQ4.cer (raw, json)
Hash identifier: kUovRnqsXDC++CjuuWRW63Ti5S0LDD+dzwsryvx0qhE=
Subject key identifier: CE:7C:AC:FA:73:5C:EE:AF:DD:2A:21:4C:09:EE:72:46:94:25:25:0E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018D0CBC95A762017E3A9186B3FDA3B25FB7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/znys-nNc7q_dKiFMCe5yRpQlJQ4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 15 Jan 2024 10:48:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201089
IP: 193.58.117.0/24
IP: 2a13:4940::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:bc:95:a7:62:01:7e:3a:91:86:b3:fd:a3:b2:5f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 15 10:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce7cacfa735ceeafdd2a214c09ee72469425250e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:18:a4:50:83:40:02:b9:7f:03:bc:85:3e:df:
b4:23:39:fb:0c:c7:12:b4:29:25:02:23:2d:81:de:
4b:ac:d2:73:4d:8d:4c:5d:df:44:e4:7e:27:3a:24:
77:1f:b1:8d:d6:68:f7:20:98:33:58:af:e0:f0:d4:
7a:3d:b0:ed:b8:df:1c:1e:4d:c5:f9:f0:43:81:bd:
b3:3f:3a:1e:e8:8a:99:64:01:62:d9:86:5b:6c:3d:
b8:45:f1:f7:00:f2:c5:18:26:be:59:38:75:58:e1:
86:ee:6a:67:e3:8f:d1:b8:cb:6f:18:35:67:ed:b4:
f1:49:c6:e2:36:f1:c5:29:ae:ae:46:6c:c8:9e:48:
ea:db:ee:58:80:68:3f:66:01:48:8a:83:fb:ca:63:
eb:b6:00:53:40:fa:53:b5:e3:bb:8a:6e:c4:f5:cb:
ea:0c:c7:d7:f5:68:e7:29:ca:02:e2:e3:1c:4b:cf:
ea:ab:58:c4:67:43:bd:f1:92:5e:b4:06:bc:af:55:
c4:37:3c:b2:11:c2:92:e7:6a:63:69:e4:f4:b3:87:
92:30:8c:2e:1c:3f:12:4c:67:d3:51:4b:5f:c9:51:
5a:2b:9e:44:fb:af:f5:01:a0:c2:a3:f3:a7:d5:2c:
9e:29:0b:0f:8f:be:4d:54:96:c5:31:a8:4a:46:2a:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7C:AC:FA:73:5C:EE:AF:DD:2A:21:4C:09:EE:72:46:94:25:25:0E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/znys-nNc7q_dKiFMCe5yRpQlJQ4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.117.0/24
IPv6:
2a13:4940::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201089
Signature Algorithm: sha256WithRSAEncryption
2b:ec:6f:df:7d:71:1e:ff:19:9b:be:f5:6c:7f:8d:08:1f:be:
00:4e:f5:d9:32:37:4e:d3:39:99:fc:a6:1f:97:9d:04:86:da:
cd:cd:2e:82:9b:3e:94:0b:09:64:e0:97:11:b7:8f:19:00:68:
6d:bf:97:42:0f:3c:d1:bb:5d:18:0f:17:e6:49:82:37:b5:d5:
ea:49:2f:1a:68:b0:71:54:6d:bd:7a:34:4c:91:85:22:4a:c2:
5c:dd:c3:a3:a0:39:c4:3b:29:fc:c1:d1:e2:ac:43:6f:83:44:
c7:6b:3f:75:a3:4a:d1:af:01:6f:dc:04:c6:c3:68:52:eb:1c:
41:f4:9e:6d:1d:09:69:0b:d8:0f:8d:97:1b:ae:2d:8c:0c:64:
dc:93:e9:48:e8:b6:69:76:7f:be:4a:af:41:76:2a:22:a1:d7:
58:c3:9d:e9:91:36:06:93:49:72:fb:b6:98:f8:99:44:a1:de:
36:a7:70:9f:43:2c:6e:6d:19:a8:0c:ff:b4:7f:de:d6:44:3b:
58:17:cc:f5:42:99:b3:c5:6b:fe:80:50:98:c2:37:b5:69:c4:
40:b1:2d:6d:b6:24:72:ef:f2:1c:de:0f:ba:38:ee:df:38:e3:
54:ae:e0:f0:76:c5:cf:40:d4:13:fc:c4:e7:2b:ce:68:a6:8e:
ea:0b:c7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:32:34 2024 by rpki-client on console-ams.rpki-client.org