Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer
File: 1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer (raw, json)
Hash identifier: 4AKE57AAX9qvjgURrux+KkJeOReg49AL4A+/FGygfMI=
Subject key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 79C254285DFE1D329FD5CAB3CF8DEAEED2FDF677
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 28 Mar 2024 18:25:31 +0000
Certificate not after: Thu 27 Mar 2025 18:30:31 +0000
Subordinate resources: IP: 2a14:1ec7:f000::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 07:03:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:c2:54:28:5d:fe:1d:32:9f:d5:ca:b3:cf:8d:ea:ee:d2:fd:f6:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Mar 28 18:25:31 2024 GMT
Not After : Mar 27 18:30:31 2025 GMT
Subject: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:55:6f:c3:21:e5:c4:fb:40:30:a5:db:18:
c2:08:a5:ce:4a:91:2c:a5:44:3f:19:be:34:7b:14:
1f:2d:67:fa:f7:db:f6:67:f6:8a:73:b6:49:70:72:
48:e9:5e:d6:23:43:af:13:5c:c8:fe:9a:d9:cf:52:
83:dd:c2:d6:59:bf:c4:73:45:b2:a2:95:52:1a:aa:
a7:fb:46:ed:80:66:37:41:19:b1:b1:ef:05:11:a7:
b2:44:6b:a5:45:e6:b6:a8:a4:c4:13:12:9a:b0:ee:
a8:47:8c:5b:3d:5d:a4:8a:38:20:30:ed:18:2c:ff:
4e:18:6d:6e:55:0d:b9:a5:c8:2d:70:8d:19:b7:25:
42:84:45:29:f5:1c:51:36:d2:a7:7d:a3:82:e5:28:
0e:67:a9:7b:2c:da:01:94:e4:e3:c2:6c:60:ca:06:
5a:5e:02:b9:8a:48:62:00:33:d2:0c:8c:3f:32:b2:
1c:6a:91:55:43:8a:98:4e:ad:87:c1:93:18:2b:69:
18:c6:3e:e0:97:ae:fb:1f:6f:a3:94:6d:32:6d:48:
10:5d:ea:8d:ba:73:56:0d:e0:c1:6a:aa:dc:c8:5c:
ca:a3:54:10:98:f0:3b:e2:e0:2f:80:61:a0:f1:fe:
dd:c0:1c:8b:63:80:af:56:28:18:b0:15:d9:1f:62:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:f000::/40
Signature Algorithm: sha256WithRSAEncryption
2e:92:e8:37:32:30:73:a5:18:34:51:bd:6e:67:ea:c2:66:da:
a2:80:11:74:a7:f3:63:b6:c4:ca:55:02:6c:e4:f0:88:47:0b:
99:c2:ba:ed:3d:60:15:ef:e1:03:67:c1:9b:04:c4:e0:12:99:
f9:42:29:de:7d:50:ef:0b:e2:03:3a:94:c7:ad:d4:1e:11:7c:
5a:99:9f:93:cc:b5:b0:f2:6c:5d:f0:13:d4:88:2c:da:14:6c:
e1:22:69:12:a8:18:a0:bd:d4:f1:1f:5e:71:e2:90:a6:9b:f5:
55:e7:8d:ab:9c:50:51:fc:46:c4:b4:2c:5b:3d:e5:74:31:b8:
3d:69:96:50:8b:9d:97:f7:17:0f:15:fc:05:26:e0:01:9b:83:
1f:c8:eb:ea:6c:39:a5:ca:04:a7:d4:7f:c8:61:ef:d0:7e:91:
62:4d:36:c9:3c:e5:11:86:12:6f:74:95:fa:b3:2a:84:9c:7e:
8a:14:59:03:87:b2:ee:65:e8:cf:bd:fa:c8:f6:2c:71:76:44:
71:f9:01:28:4f:24:87:89:3e:93:79:2d:1a:da:2c:e3:04:43:
7b:3e:15:d8:c9:3e:c8:8a:77:ca:06:49:9e:ea:5f:54:ec:16:
d9:0d:b1:75:8d:36:47:c3:79:a6:e3:af:47:ac:f2:dd:fe:40:
d0:f7:82:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:28 2025 by rpki-client