Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer
File: 1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer (raw, json)
Hash identifier: BF/TWOjb2Ii4r0osOdYS/rUG+zOQPpS2tAXbzEo5Wzo=
Subject key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
Authority key identifier: 31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
Certificate issuer: /CN=3134ee987e08d8b5583feef621a03150c4f35434
Certificate serial: 0C440533E02AE9EFF154929B771C03F47E4149E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 28 Feb 2025 19:16:25 +0000
Certificate not after: Fri 27 Feb 2026 19:21:25 +0000
Subordinate resources: IP: 2a14:1ec7:f000::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:34:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:44:05:33:e0:2a:e9:ef:f1:54:92:9b:77:1c:03:f4:7e:41:49:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3134ee987e08d8b5583feef621a03150c4f35434
Validity
Not Before: Feb 28 19:16:25 2025 GMT
Not After : Feb 27 19:21:25 2026 GMT
Subject: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:55:6f:c3:21:e5:c4:fb:40:30:a5:db:18:
c2:08:a5:ce:4a:91:2c:a5:44:3f:19:be:34:7b:14:
1f:2d:67:fa:f7:db:f6:67:f6:8a:73:b6:49:70:72:
48:e9:5e:d6:23:43:af:13:5c:c8:fe:9a:d9:cf:52:
83:dd:c2:d6:59:bf:c4:73:45:b2:a2:95:52:1a:aa:
a7:fb:46:ed:80:66:37:41:19:b1:b1:ef:05:11:a7:
b2:44:6b:a5:45:e6:b6:a8:a4:c4:13:12:9a:b0:ee:
a8:47:8c:5b:3d:5d:a4:8a:38:20:30:ed:18:2c:ff:
4e:18:6d:6e:55:0d:b9:a5:c8:2d:70:8d:19:b7:25:
42:84:45:29:f5:1c:51:36:d2:a7:7d:a3:82:e5:28:
0e:67:a9:7b:2c:da:01:94:e4:e3:c2:6c:60:ca:06:
5a:5e:02:b9:8a:48:62:00:33:d2:0c:8c:3f:32:b2:
1c:6a:91:55:43:8a:98:4e:ad:87:c1:93:18:2b:69:
18:c6:3e:e0:97:ae:fb:1f:6f:a3:94:6d:32:6d:48:
10:5d:ea:8d:ba:73:56:0d:e0:c1:6a:aa:dc:c8:5c:
ca:a3:54:10:98:f0:3b:e2:e0:2f:80:61:a0:f1:fe:
dd:c0:1c:8b:63:80:af:56:28:18:b0:15:d9:1f:62:
70:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71
X509v3 Authority Key Identifier:
keyid:31:34:EE:98:7E:08:D8:B5:58:3F:EE:F6:21:A0:31:50:C4:F3:54:34
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1ec7:f000::/40
Signature Algorithm: sha256WithRSAEncryption
6b:ce:73:23:b1:ce:e9:cd:3a:1f:0b:aa:0f:d4:82:e4:e9:76:
e6:1d:e0:da:eb:d5:5d:95:12:19:58:9d:7b:45:f0:93:ca:39:
08:e7:06:be:c8:29:ab:6e:66:0b:b6:96:99:15:01:34:ad:34:
8b:7c:26:a1:94:e7:00:9b:5d:f6:77:99:5c:d4:57:30:ed:c8:
28:23:38:39:67:5d:74:f6:6d:85:bc:1e:f0:9d:5a:16:5d:ec:
a2:25:81:38:4f:14:f2:6c:6f:29:2b:76:e6:c9:22:ce:ee:97:
51:c7:9a:c5:17:a3:20:d5:11:cc:03:ed:53:7c:20:7f:f4:69:
05:a7:30:e6:ea:a3:78:46:a6:02:cd:18:33:93:62:ef:ee:6d:
ae:c5:41:b6:90:48:56:88:13:fd:a0:ca:ee:8a:6c:dc:17:ce:
d7:ea:ba:bb:f9:46:9e:70:b4:ce:98:45:de:47:10:a6:fc:0a:
0b:a8:1b:9e:ed:c5:f1:ea:c1:14:d5:66:ca:b6:ec:42:07:c6:
1b:cf:68:a6:b6:8d:81:8d:72:09:15:fd:e8:31:d3:4c:7f:7e:
3e:09:15:17:62:22:68:41:11:7d:2b:33:b5:2d:d4:9d:e9:4d:
32:2d:c0:be:19:87:0f:d4:96:60:13:9e:bd:ef:8e:32:20:8c:
d8:60:5a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 23:17:09 2025 by rpki-client