Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/984218D72412FC74C811343E999889105497A2C6.cer
File: 984218D72412FC74C811343E999889105497A2C6.cer (raw, json)
Hash identifier: NKa28eQ4LaGhAzU4j5gmd+uUVzSEmKUm9/MKZoZuLfE=
Subject key identifier: 98:42:18:D7:24:12:FC:74:C8:11:34:3E:99:98:89:10:54:97:A2:C6
Authority key identifier: 5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
Certificate issuer: /CN=5ae4437029659539f54f900b35e43be06a94b37b
Certificate serial: 5A4742A5F1CF7DC91C8F23494C55BAC4AFDE07E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/68208bd6-4617-47af-8764-9108face418a/1/984218D72412FC74C811343E999889105497A2C6.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/68208bd6-4617-47af-8764-9108face418a/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 14 Jun 2024 01:58:31 +0000
Certificate not after: Fri 13 Jun 2025 02:03:31 +0000
Subordinate resources: IP: 2a0f:85c1:331::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.mft
rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Jun 2024 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:47:42:a5:f1:cf:7d:c9:1c:8f:23:49:4c:55:ba:c4:af:de:07:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae4437029659539f54f900b35e43be06a94b37b
Validity
Not Before: Jun 14 01:58:31 2024 GMT
Not After : Jun 13 02:03:31 2025 GMT
Subject: CN=984218D72412FC74C811343E999889105497A2C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8a:d1:ee:37:5a:66:40:09:7a:8f:43:51:32:
48:7f:03:3c:49:10:df:09:eb:06:ce:84:7e:81:30:
4f:35:22:6b:ee:1d:dd:e2:86:0a:3e:0d:f3:56:6f:
b6:d1:c9:a3:03:d7:30:ff:38:79:b7:ba:c8:6e:ac:
35:fe:a9:81:cf:a0:48:7e:8f:ca:01:e5:9a:4a:9c:
2c:47:90:a2:97:b1:cf:66:53:0d:bd:15:51:5a:53:
00:2f:6e:c2:63:ae:50:ab:42:89:f9:7f:2b:2d:e0:
6f:18:79:e2:54:61:5d:d4:3e:db:d1:76:44:fe:64:
3f:ec:21:fd:31:af:0f:10:f0:5d:67:42:2a:72:2c:
e0:45:11:1f:a6:3a:df:b2:43:3c:d6:4a:f4:25:64:
1c:4a:cf:37:b0:50:02:c4:e9:f0:42:f4:bc:24:4a:
c9:1d:81:80:54:01:e2:a0:38:56:54:6c:4e:1b:8c:
b1:23:f1:66:d5:de:d4:be:b7:2f:b5:3c:5e:07:60:
b2:0c:33:ae:13:f1:f7:11:a0:b4:cb:68:64:48:0d:
e5:8d:e4:14:07:07:f0:af:33:c3:e1:97:29:9e:a1:
db:a3:ae:d0:7e:26:a6:df:17:63:72:64:61:a7:47:
fc:a8:20:11:24:e6:c2:73:e1:86:03:1c:79:ec:c6:
5a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
98:42:18:D7:24:12:FC:74:C8:11:34:3E:99:98:89:10:54:97:A2:C6
X509v3 Authority Key Identifier:
keyid:5A:E4:43:70:29:65:95:39:F5:4F:90:0B:35:E4:3B:E0:6A:94:B3:7B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/68208bd6-4617-47af-8764-9108face418a/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/68208bd6-4617-47af-8764-9108face418a/1/984218D72412FC74C811343E999889105497A2C6.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:331::/48
Signature Algorithm: sha256WithRSAEncryption
54:1a:af:3a:e1:cb:97:df:ca:77:9b:cc:cb:a6:79:3f:50:b8:
b2:f7:6d:48:af:24:3c:d0:57:05:07:9d:5f:31:a1:45:cf:7e:
46:6f:88:8f:33:5e:8f:87:9b:71:22:b3:af:e5:ec:80:35:42:
ff:06:53:9b:d5:42:97:37:32:27:97:da:f0:7a:e8:d2:71:83:
dd:ea:5d:e7:92:4e:d4:92:52:af:91:53:99:7a:8e:a7:39:e2:
46:7b:b8:c4:b8:f2:fb:fd:c5:89:dd:f6:13:ca:9f:d7:91:40:
63:f1:8f:9a:9e:d5:3c:44:31:9c:25:28:cf:b8:20:68:7b:fb:
fb:68:1e:66:ca:f8:ab:ee:d2:70:ff:4c:2f:f8:c3:23:5a:9c:
5d:03:c3:f0:97:85:2e:5c:bb:58:d6:f6:85:9b:57:d8:c8:f2:
86:55:bd:24:61:64:f8:1f:4c:a9:37:89:02:2d:bc:9d:7e:05:
e0:0c:02:91:68:a5:eb:38:43:6a:5c:76:24:8e:ca:f5:3b:c2:
bf:ee:1e:50:ea:1c:54:a2:cb:fa:d6:80:62:a6:cb:dc:7d:e0:
69:d1:97:b6:8b:06:fd:64:01:fe:73:ef:0a:f1:65:19:06:f1:
f2:88:3a:26:84:32:a2:2b:43:34:4b:01:5c:cb:be:19:01:ff:
89:3e:64:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 04:50:57 2024 by rpki-client on console-ams.rpki-client.org