Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer
File: E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer (raw, json)
Hash identifier: WYyhfu0sSF0hGDnf12dsuyRFd6z3DxSbm2K/Eom8jvI=
Subject key identifier: E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 2BB4D543E23E7DEE7A635E1705DB9C7A069C6B53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 17 Jul 2025 17:02:58 +0000
Certificate not after: Thu 16 Jul 2026 17:07:58 +0000
Subordinate resources: IP: 2a14:7581:3900::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:b4:d5:43:e2:3e:7d:ee:7a:63:5e:17:05:db:9c:7a:06:9c:6b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jul 17 17:02:58 2025 GMT
Not After : Jul 16 17:07:58 2026 GMT
Subject: CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fb:ac:db:5c:44:20:23:9e:58:80:69:d4:eb:
2e:2e:3f:f5:76:69:9b:ff:89:f5:ff:4b:4a:a9:9c:
4e:bb:46:cd:af:cf:d0:8c:7b:96:00:1e:72:93:25:
22:80:a3:71:c0:35:40:44:42:90:a5:7e:20:5f:50:
8b:4d:31:d6:59:94:37:cd:7e:a6:11:83:65:22:df:
e0:8c:9f:33:df:08:c5:5b:40:2a:8f:65:39:46:0d:
e5:1a:bb:16:60:cf:a8:c9:11:3e:f2:2f:19:4f:2c:
33:53:a4:67:13:9e:bd:fc:a4:21:70:06:1b:28:d8:
65:d2:c9:95:3e:91:48:e6:c6:2d:75:fb:b3:3c:0b:
d3:d4:2b:a9:db:2d:a8:c8:ca:19:41:db:6d:72:18:
be:66:4a:2e:4e:b3:7a:24:79:6d:d8:bc:e1:45:77:
09:70:c4:1a:a8:f1:b2:5d:a4:4a:58:db:e4:d4:b1:
eb:46:4c:20:5d:fc:a9:3a:f1:20:d8:72:e8:44:36:
32:f0:a7:f5:f0:64:2b:53:6d:c0:82:3d:e0:a7:a5:
aa:cc:2b:d0:fb:2a:c4:98:98:78:7b:73:0f:e1:a0:
e5:c3:6c:c7:dd:87:2b:3d:72:64:54:ca:d3:46:0c:
3e:ea:f1:83:ca:41:37:c2:c8:3c:e0:98:84:47:d0:
f4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:3900::/40
Signature Algorithm: sha256WithRSAEncryption
95:ef:b5:bb:24:d4:a8:c3:0c:70:69:29:9d:d6:5d:03:4f:80:
60:5f:d5:e7:fc:72:1c:5c:44:1c:20:58:82:d4:b7:10:1e:83:
5f:24:25:5b:61:2b:49:d5:c9:b5:71:2f:de:b0:68:93:ec:94:
0d:95:af:21:69:47:7a:20:a4:e1:0e:6e:ce:dd:40:25:f4:95:
f1:74:d7:18:09:68:9d:a2:1d:7e:cb:52:ad:e1:de:c1:77:87:
48:fb:72:12:e4:2f:4c:88:96:93:14:8d:03:f7:66:9a:6f:bc:
b4:39:9d:32:7c:01:08:4b:fb:38:df:fb:b7:57:f0:98:12:3a:
71:86:d7:36:08:ca:b7:0d:eb:93:80:d1:d1:95:3a:8c:7c:d0:
20:2c:37:c1:20:09:a9:0f:1c:ac:60:f1:97:a3:4b:b9:e0:2a:
b5:27:bb:25:ec:c7:ad:ee:71:f2:45:c9:ce:ad:46:9b:46:4d:
b1:9a:94:f3:51:d9:ef:d2:29:6d:31:95:d7:08:51:29:64:e6:
19:e6:9c:f5:33:e7:a2:86:30:82:4b:b2:d6:31:c3:d6:1d:d3:
66:06:81:e9:5e:8e:19:59:7e:22:2d:97:8b:cb:dd:8d:ab:1e:
71:7b:60:48:6a:aa:c3:05:f8:42:10:5f:e2:9f:9e:1f:69:3b:
e6:21:31:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:12:30 2025 by rpki-client