Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zzaFkhY6Sa04_60dQZp3UrMz2nc.cer
File: zzaFkhY6Sa04_60dQZp3UrMz2nc.cer (raw, json)
Hash identifier: iMLy81GuSMxYWZUJwC+l4PYEmAQJXgBPUai6Gdthjik=
Subject key identifier: CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC493040163212812B1C45E58792A96AB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/zzaFkhY6Sa04_60dQZp3UrMz2nc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56717
IP: 91.227.7.0/24
IP: 2001:67c:2c04::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:04:01:63:21:28:12:b1:c4:5e:58:79:2a:96:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf368592163a49ad38ffad1d419a7752b333da77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:bc:f5:06:40:81:8d:ff:72:ac:90:18:38:
94:9e:22:50:c5:bc:f8:ed:0f:5f:c0:85:b1:30:be:
e3:b9:dc:1a:a2:f6:c4:e5:47:62:f4:68:9a:be:55:
e1:c6:bd:4d:4e:a2:31:28:b7:ff:ef:ca:9a:6c:26:
2e:c0:59:73:b2:04:30:eb:66:46:4b:88:53:6d:5e:
28:56:cc:e4:43:c6:92:31:61:05:75:70:fa:4a:bf:
5f:f2:6e:ad:fc:b9:95:b3:29:22:b1:2e:0b:ba:93:
12:75:50:ab:cf:05:5c:64:02:7c:12:9c:49:96:aa:
5c:12:04:b4:a7:87:21:c9:36:0a:47:46:61:50:3e:
7e:9b:a4:85:9b:58:07:13:7e:3d:77:9c:9a:df:22:
85:58:f8:36:a0:e8:f5:2e:49:5e:aa:38:b7:05:74:
31:17:a8:9b:e1:bb:73:45:97:a8:27:8d:72:86:3b:
f1:6c:29:4b:3c:46:77:19:2f:22:d0:20:78:80:cf:
63:01:3d:48:8c:5c:07:23:86:eb:2d:35:65:e1:ab:
84:f0:16:54:5e:28:a3:b1:d2:b0:fd:24:54:95:27:
66:83:d2:22:eb:cf:c2:ee:4d:bb:19:d6:0c:91:ea:
1a:1a:fa:00:f4:e7:1e:fe:80:5c:fa:ad:7b:a8:7d:
89:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/zzaFkhY6Sa04_60dQZp3UrMz2nc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.7.0/24
IPv6:
2001:67c:2c04::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56717
Signature Algorithm: sha256WithRSAEncryption
38:9d:1e:3d:82:85:f6:86:32:8a:de:ce:9b:9f:c7:f5:3b:d7:
50:54:70:31:fe:da:e5:a1:f1:68:ae:18:03:a3:7d:91:3c:34:
d2:dd:16:f0:26:d8:c5:1a:b0:06:e7:42:eb:98:16:58:3f:11:
04:9a:c2:1a:f1:4b:b8:b6:66:f8:ae:17:f2:8f:67:81:7c:df:
56:1e:b9:0c:47:5c:72:97:22:d5:d0:28:5e:ae:e4:f9:87:ac:
e5:75:ae:2a:12:94:84:6c:0a:1f:8c:7d:ef:95:3f:39:a7:81:
5d:69:bc:f5:e2:f5:a7:05:19:90:f0:a2:0d:80:1f:59:f3:e2:
cc:79:c6:7c:c8:20:b3:4b:84:d5:15:33:d7:b4:bc:73:b4:95:
ef:b3:39:60:10:0e:ca:26:a8:1a:c4:87:f6:36:c7:da:15:be:
53:97:ba:20:2f:d1:f5:16:d5:20:5e:08:1e:d3:c6:71:49:43:
43:86:1c:fb:10:e2:d8:7c:59:39:b3:91:10:39:03:94:fe:2d:
a1:9f:bc:19:27:db:e9:da:79:59:8f:09:bb:31:7d:dd:1c:b3:
6e:ad:49:ca:8d:d3:0c:7e:ce:ab:2d:fd:38:0c:93:10:44:be:
3d:47:45:db:19:55:c6:d1:b1:35:ef:34:53:6b:ab:22:a1:a9:
00:1e:a2:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 11:08:45 2024 by rpki-client on console-fra.rpki-client.org