Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer
File: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (raw, json)
Hash identifier: F4tALzc2U4SfhUnTrNJjY9pHpMEKrxNyX/275/9IoQI=
Subject key identifier: 0E:4E:BC:43:1E:35:13:FC:3F:64:1D:B8:80:E2:B2:FE:1D:04:0A:30
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 2BD5AF7C3549FBFA5417090EA03CDF12050AD9EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 25 Jul 2023 15:36:01 +0000
Certificate not after: Tue 23 Jul 2024 15:41:01 +0000
Subordinate resources: IP: 2a11:5701:20::/44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:d5:af:7c:35:49:fb:fa:54:17:09:0e:a0:3c:df:12:05:0a:d9:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jul 25 15:36:01 2023 GMT
Not After : Jul 23 15:41:01 2024 GMT
Subject: CN=0E4EBC431E3513FC3F641DB880E2B2FE1D040A30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fb:b5:ce:28:6e:e3:93:95:c8:17:2e:4c:2a:
15:82:4e:64:10:6c:ea:fe:45:b2:60:c8:d8:b0:97:
00:bf:53:af:15:40:22:c5:cf:f0:62:88:dc:9f:5e:
34:85:71:6a:ef:e0:bb:ea:11:75:71:04:dc:a7:9f:
98:bf:d4:c0:bb:78:d5:df:3e:91:6a:76:1a:a8:85:
22:f1:b4:6c:e5:d5:b1:62:30:91:5e:45:d9:20:71:
c8:19:91:2a:ff:a1:60:04:cb:30:4b:33:54:38:86:
cd:ce:eb:44:ad:4c:00:c7:81:d7:4d:65:ad:85:00:
65:d0:f2:24:0a:d1:b1:06:06:39:a9:4f:47:7b:9d:
04:15:10:cd:d6:cb:54:5d:29:ed:ec:20:bd:36:ee:
e4:43:05:4f:58:96:aa:a2:56:60:6b:7e:ab:9f:68:
05:de:79:c2:26:75:ea:5d:ce:55:e1:d4:3b:d9:48:
bd:33:02:4d:ad:b4:1a:e0:8e:ee:09:4a:b0:e2:75:
2b:ca:0f:ea:db:09:38:66:04:9d:13:24:bd:fc:74:
46:8d:85:0c:4f:1e:f8:4d:ed:93:77:b6:69:ac:cc:
63:2c:1e:ce:ac:7d:8a:9a:29:20:24:fb:be:eb:24:
c0:77:22:47:90:14:59:d7:08:bb:91:32:56:85:e1:
27:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
0E:4E:BC:43:1E:35:13:FC:3F:64:1D:B8:80:E2:B2:FE:1D:04:0A:30
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5701:20::/44
Signature Algorithm: sha256WithRSAEncryption
86:e7:06:7c:38:59:83:b0:ae:d7:67:bc:ab:07:01:a8:de:f0:
96:b8:97:69:67:5b:b8:b0:57:1a:2e:6a:ca:9d:c5:ea:22:46:
64:84:66:13:a4:66:6a:42:d5:3d:bd:d3:81:0d:f1:58:a9:03:
6f:5b:b0:9e:37:1e:cd:42:39:88:c7:88:58:45:46:e5:fc:74:
84:06:e6:79:20:bd:2f:03:a4:fe:5d:9a:dd:85:e8:5d:b5:1a:
c3:79:be:4e:e2:36:6c:f7:f7:79:ac:d8:70:65:7c:67:dc:8f:
61:e6:a8:da:ed:3b:39:72:a3:55:91:16:cf:c7:a3:87:89:33:
d1:8a:e4:be:50:e0:26:82:27:7a:18:1f:fb:2b:8c:96:51:e6:
89:2d:c8:63:3f:ce:9b:c2:7d:4a:f5:4a:c3:54:95:7d:b0:9e:
20:e1:e1:a0:7a:5b:69:6e:13:5d:4b:36:54:f2:57:96:30:1f:
41:6b:65:c8:38:a8:a9:59:a1:f1:3b:94:69:7f:76:99:12:69:
51:4e:cc:cf:03:4d:1c:ac:ba:08:a4:71:ba:39:cf:69:db:ef:
4f:f6:6d:f5:58:c5:3f:05:af:0d:43:c9:9a:81:f5:1b:d0:f4:
f2:95:e6:48:19:b8:60:32:6a:96:da:4b:4e:e4:07:bb:18:45:
7d:e0:c0:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 08:54:24 2024 by rpki-client on console-fra.rpki-client.org