$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/DD6503836A2A3384674C6B0501E95B0AA2A381C9.cer File: DD6503836A2A3384674C6B0501E95B0AA2A381C9.cer (raw, json) Hash identifier: wI097G0Xu2Z0p62i/jyffjWrDU/oJUh7KcspM5bxyg0= Subject key identifier: DD:65:03:83:6A:2A:33:84:67:4C:6B:05:01:E9:5B:0A:A2:A3:81:C9 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 33AC7F5E34918D00C3F2B7304F8A484C0655BB82 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/3/DD6503836A2A3384674C6B0501E95B0AA2A381C9.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/3/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Mon 26 Aug 2024 13:31:14 +0000 Certificate not after: Mon 25 Aug 2025 13:36:14 +0000 Subordinate resources: IP: 2a0b:4e07:cb4::/46 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ac:7f:5e:34:91:8d:00:c3:f2:b7:30:4f:8a:48:4c:06:55:bb:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 26 13:31:14 2024 GMT Not After : Aug 25 13:36:14 2025 GMT Subject: CN=DD6503836A2A3384674C6B0501E95B0AA2A381C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9e:5b:1c:19:0e:71:49:93:57:ce:7a:10:fc: ea:d9:4d:e2:8c:a6:d3:c8:b7:db:a5:fa:c1:d1:d0: d5:a7:be:1b:4d:be:11:fa:bf:ec:a9:ac:78:44:7f: 43:a1:c0:20:21:e4:57:d5:94:6f:25:7d:82:50:b1: 8b:7f:cb:a5:f6:dc:8b:f2:71:b6:fb:e4:37:17:83: 2d:45:ad:4d:ea:3c:c0:22:96:4a:4f:cc:5a:ad:51: 0f:f3:08:8c:21:ea:4d:3b:dc:67:8f:ac:8e:14:45: 42:5c:54:f2:24:dc:0e:f1:57:0c:38:bc:14:38:8d: ab:ee:cc:e0:22:93:c0:bc:30:be:4f:4d:e8:1e:e5: 4b:cc:b6:29:7a:43:0d:d5:5f:f3:e2:37:a1:03:ec: 64:f1:05:43:e1:8e:36:64:01:93:0a:1e:22:5a:df: e9:42:ea:6c:71:0e:13:ca:3b:d9:0f:2c:ba:cc:ff: 88:e0:df:7c:f0:bb:e7:3d:d7:57:30:ad:44:eb:7f: 52:c0:2a:7d:92:17:99:06:97:47:00:fd:f6:02:93: 8c:0b:ad:a5:dc:e3:e4:94:42:31:d4:68:24:8e:27: 40:94:9f:31:6f:29:4d:fa:df:c7:36:cf:a0:bd:b6: 83:0e:1b:78:88:53:1f:66:c6:da:f7:b5:9a:54:f0: cf:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DD:65:03:83:6A:2A:33:84:67:4C:6B:05:01:E9:5B:0A:A2:A3:81:C9 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/3/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/d88b854e-092c-4d79-ac06-af380b08d12b/3/DD6503836A2A3384674C6B0501E95B0AA2A381C9.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:cb4::/46 Signature Algorithm: sha256WithRSAEncryption 76:08:d1:af:0b:53:50:41:56:0f:ba:ee:c7:0e:1f:33:ee:0a: 62:96:fe:7e:1e:18:1d:f0:57:00:3e:86:00:e8:06:60:de:72: 94:79:18:48:0e:e9:81:82:c1:d0:e8:43:8f:6c:90:6e:7e:e2: f0:0b:f6:34:f5:32:78:db:c8:71:cd:87:4d:24:a9:e6:ea:a7: d7:77:e9:c0:3e:e5:60:6d:a8:d8:38:c5:89:a8:5c:0f:9a:6c: 8d:0a:44:08:65:90:13:2c:a5:2e:aa:68:ad:56:66:a0:70:7b: 82:1d:46:40:9f:9b:c9:e8:66:bc:87:44:8c:35:14:0b:92:67: 5f:8d:83:9a:ae:f3:0a:c0:27:ed:a7:71:63:1c:12:61:dc:a9: 67:9f:8a:ed:1e:9b:96:3c:dd:2b:3f:cd:43:7a:bb:bb:e0:b4: 54:17:75:19:4f:ac:c4:ed:bb:3b:f2:d0:15:9c:7a:4d:37:58: dc:99:48:60:94:dd:ab:1e:b3:b7:77:3d:89:49:d7:c8:4a:8d: c2:fc:75:58:5c:e7:65:8f:4b:b2:6e:d0:6a:13:e8:69:89:52: cc:cb:bd:25:3c:c3:15:c6:39:96:2b:d5:3e:d0:57:76:e9:49: 71:31:0e:3a:37:12:18:9d:e6:0a:58:a7:5a:e1:3b:14:5e:6c: a1:a6:ea:27 -----BEGIN CERTIFICATE----- MIIGFTCCBP2gAwIBAgIUM6x/XjSRjQDD8rcwT4pITAZVu4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MjYxMzMxMTRaFw0yNTA4MjUxMzM2MTRaMDMxMTAvBgNV BAMTKERENjUwMzgzNkEyQTMzODQ2NzRDNkIwNTAxRTk1QjBBQTJBMzgxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZnlscGQ5xSZNXznoQ/OrZTeKM ptPIt9ul+sHR0NWnvhtNvhH6v+yprHhEf0OhwCAh5FfVlG8lfYJQsYt/y6X23Ivy cbb75DcXgy1FrU3qPMAilkpPzFqtUQ/zCIwh6k073GePrI4URUJcVPIk3A7xVww4 vBQ4javuzOAik8C8ML5PTege5UvMtil6Qw3VX/PiN6ED7GTxBUPhjjZkAZMKHiJa 3+lC6mxxDhPKO9kPLLrM/4jg33zwu+c911cwrUTrf1LAKn2SF5kGl0cA/fYCk4wL raXc4+SUQjHUaCSOJ0CUnzFvKU3638c2z6C9toMOG3iIUx9mxtr3tZpU8M9JAgMB AAGjggMfMIIDGzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTdZQODaiozhGdM awUB6VsKoqOByTAfBgNVHSMEGDAWgBTRggdGarCn19HvPHzQLoC+1YNAvDAOBgNV HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wYzcwNDAxYy03ZjQxLTRh NmItOTQzNC1jYzgwZGNhMDkzZTYvMi9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNybDCBngYIKwYBBQUHAQEEgZEwgY4wgYsGCCsGAQUF BzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4MTViYi8wL0QxODIwNzQ2 NkFCMEE3RDdEMUVGM0M3Q0QwMkU4MEJFRDU4MzQwQkMuY2VyMIIBPwYIKwYBBQUH AQsEggExMIIBLTBfBggrBgEFBQcwBYZTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2ku cmlwZS5uZXQvcmVwb3NpdG9yeS9kODhiODU0ZS0wOTJjLTRkNzktYWMwNi1hZjM4 MGIwOGQxMmIvMy8wgYsGCCsGAQUFBzAKhn9yc3luYzovL3JzeW5jLnBhYXMucnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Q4OGI4NTRlLTA5MmMtNGQ3OS1hYzA2LWFm MzgwYjA4ZDEyYi8zL0RENjUwMzgzNkEyQTMzODQ2NzRDNkIwNTAxRTk1QjBBQTJB MzgxQzkubWZ0MDwGCCsGAQUFBzANhjBodHRwczovL3JyZHAucGFhcy5ycGtpLnJp cGUubmV0L25vdGlmaWNhdGlvbi54bWwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO AjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioLTgcMtDANBgkqhkiG9w0B AQsFAAOCAQEAdgjRrwtTUEFWD7ruxw4fM+4KYpb+fh4YHfBXAD6GAOgGYN5ylHkY SA7pgYLB0OhDj2yQbn7i8Av2NPUyeNvIcc2HTSSp5uqn13fpwD7lYG2o2DjFiahc D5psjQpECGWQEyylLqporVZmoHB7gh1GQJ+byehmvIdEjDUUC5JnX42Dmq7zCsAn 7adxYxwSYdypZ5+K7R6bljzdKz/NQ3q7u+C0VBd1GU+sxO27O/LQFZx6TTdY3JlI YJTdqx6zt3c9iUnXyEqNwvx1WFznZY9Lsm7QahPoaYlSzMu9JTzDFcY5livVPtBX dulJcTEOOjcSGJ3mClinWuE7FF5soabqJw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org