Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/znys-nNc7q_dKiFMCe5yRpQlJQ4.cer
File: znys-nNc7q_dKiFMCe5yRpQlJQ4.cer (raw, json)
Hash identifier: OknFGak+MNIQfLv8Rv6roYfX5MeBahvmVvTIBQZPXJM=
Subject key identifier: CE:7C:AC:FA:73:5C:EE:AF:DD:2A:21:4C:09:EE:72:46:94:25:25:0E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424456C232BC4773BA3BB6002D982C506
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/znys-nNc7q_dKiFMCe5yRpQlJQ4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201089
IP: 193.58.117.0/24
IP: 2a13:4940::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:6c:23:2b:c4:77:3b:a3:bb:60:02:d9:82:c5:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce7cacfa735ceeafdd2a214c09ee72469425250e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:18:a4:50:83:40:02:b9:7f:03:bc:85:3e:df:
b4:23:39:fb:0c:c7:12:b4:29:25:02:23:2d:81:de:
4b:ac:d2:73:4d:8d:4c:5d:df:44:e4:7e:27:3a:24:
77:1f:b1:8d:d6:68:f7:20:98:33:58:af:e0:f0:d4:
7a:3d:b0:ed:b8:df:1c:1e:4d:c5:f9:f0:43:81:bd:
b3:3f:3a:1e:e8:8a:99:64:01:62:d9:86:5b:6c:3d:
b8:45:f1:f7:00:f2:c5:18:26:be:59:38:75:58:e1:
86:ee:6a:67:e3:8f:d1:b8:cb:6f:18:35:67:ed:b4:
f1:49:c6:e2:36:f1:c5:29:ae:ae:46:6c:c8:9e:48:
ea:db:ee:58:80:68:3f:66:01:48:8a:83:fb:ca:63:
eb:b6:00:53:40:fa:53:b5:e3:bb:8a:6e:c4:f5:cb:
ea:0c:c7:d7:f5:68:e7:29:ca:02:e2:e3:1c:4b:cf:
ea:ab:58:c4:67:43:bd:f1:92:5e:b4:06:bc:af:55:
c4:37:3c:b2:11:c2:92:e7:6a:63:69:e4:f4:b3:87:
92:30:8c:2e:1c:3f:12:4c:67:d3:51:4b:5f:c9:51:
5a:2b:9e:44:fb:af:f5:01:a0:c2:a3:f3:a7:d5:2c:
9e:29:0b:0f:8f:be:4d:54:96:c5:31:a8:4a:46:2a:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7C:AC:FA:73:5C:EE:AF:DD:2A:21:4C:09:EE:72:46:94:25:25:0E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a636ed-d20f-4802-9286-b84eda2e846a/1/znys-nNc7q_dKiFMCe5yRpQlJQ4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.117.0/24
IPv6:
2a13:4940::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201089
Signature Algorithm: sha256WithRSAEncryption
ab:be:ab:3e:63:ae:26:c9:56:ef:1e:2d:41:a3:c5:0e:83:56:
7d:70:22:fc:07:3b:d6:57:38:88:75:44:d0:34:c0:54:31:5d:
c9:c9:97:75:78:1d:fd:00:a7:db:a2:c5:99:5d:db:7c:b7:3e:
06:e4:be:82:17:0c:b2:8f:40:d7:83:23:bf:7a:8d:2a:4b:43:
3f:38:af:ce:54:64:30:53:d8:91:46:78:15:ab:eb:6b:3a:2c:
7c:94:2c:2c:33:b1:53:b8:47:21:6f:98:59:d3:42:57:85:8c:
f4:0b:42:4b:44:42:b4:eb:5f:98:fb:f1:7f:f3:a4:28:46:3f:
23:f7:5d:43:23:bb:94:e2:66:17:df:1a:51:b2:40:e5:b3:9f:
0f:8d:28:01:4d:d4:88:40:51:9e:f3:d2:57:60:5d:b7:2a:a0:
0f:d0:9e:df:73:1d:09:e1:15:b9:fe:c8:ab:86:c0:1b:7c:54:
96:db:6a:c2:de:79:7f:7e:63:74:7e:e1:31:f6:8d:c1:bf:09:
b2:d2:c7:24:13:9b:8e:0c:9e:b0:0a:e3:a7:33:82:d5:24:d2:
43:7d:ff:19:c1:30:58:7b:93:3d:d6:e1:94:34:0c:25:a2:0c:
da:af:b3:c1:ea:66:96:29:be:a9:e2:18:e6:d3:f5:84:b1:fc:
47:dc:35:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:42:39 2025 by rpki-client