Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/E2E43EA1DD5C14A6A6BB1547F84650E519114735.cer
File: E2E43EA1DD5C14A6A6BB1547F84650E519114735.cer (raw, json)
Hash identifier: IA1rGBWCtpPsRNt7cNimwfxrMpdpSeLkbuvcCHy2vws=
Subject key identifier: E2:E4:3E:A1:DD:5C:14:A6:A6:BB:15:47:F8:46:50:E5:19:11:47:35
Authority key identifier: 25:82:7D:84:05:6B:84:44:CC:2A:78:42:75:90:35:35:4B:84:16:BC
Certificate issuer: /CN=25827d84056b8444cc2a7842759035354b8416bc
Certificate serial: 0D86FF0801210E294B39AD63C7B9BDF733CDF4FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYJ9hAVrhETMKnhCdZA1NUuEFrw.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/630f44fd-45f1-42b6-91f2-26183aa048cf/0/E2E43EA1DD5C14A6A6BB1547F84650E519114735.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/630f44fd-45f1-42b6-91f2-26183aa048cf/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 20 May 2024 07:34:57 +0000
Certificate not after: Mon 19 May 2025 07:39:57 +0000
Subordinate resources: IP: 2a14:14c1:200::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/25827D84056B8444CC2A7842759035354B8416BC.crl
rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/25827D84056B8444CC2A7842759035354B8416BC.mft
rsync://rpki.ripe.net/repository/DEFAULT/JYJ9hAVrhETMKnhCdZA1NUuEFrw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:86:ff:08:01:21:0e:29:4b:39:ad:63:c7:b9:bd:f7:33:cd:f4:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25827d84056b8444cc2a7842759035354b8416bc
Validity
Not Before: May 20 07:34:57 2024 GMT
Not After : May 19 07:39:57 2025 GMT
Subject: CN=E2E43EA1DD5C14A6A6BB1547F84650E519114735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:1f:75:4c:59:1a:36:fe:79:2f:15:a6:02:
26:73:63:c6:d3:3a:79:a5:70:95:ba:96:9e:c9:26:
a5:ca:ef:fb:13:31:b0:fb:9d:70:79:bd:e1:75:7a:
c1:47:cc:53:37:c5:56:5c:df:6b:d5:7b:e9:e2:07:
15:a7:50:82:56:a7:7e:92:4d:5f:2e:03:fc:36:99:
b9:59:ce:8f:99:c2:d7:55:d7:b9:b3:17:08:6f:62:
69:7c:ff:8d:46:53:69:fd:45:5d:fa:b6:05:2a:28:
2c:31:fb:63:6d:37:7e:43:37:15:31:0c:d2:eb:ce:
09:52:6a:d4:66:10:47:a8:0d:55:97:a5:50:dd:3a:
dc:8a:d7:c3:9e:d9:a0:c8:bd:2d:08:0e:6f:d5:63:
c5:94:ed:56:ac:f7:d6:0b:7c:28:0f:e1:bd:35:57:
3b:c3:ef:33:93:06:7a:63:29:fc:36:bb:7c:77:fc:
af:92:88:b5:1a:f7:b0:4a:60:78:06:3a:42:b1:7e:
b5:fc:fb:98:bb:c7:da:d2:f5:28:c0:07:6f:93:be:
52:b0:ea:c4:ec:c8:cd:d9:5f:1c:55:4c:ca:4d:68:
12:6a:a2:11:3f:f0:06:85:59:06:95:24:8b:4a:11:
a4:a7:9b:48:5e:92:0d:e5:d8:fb:9e:bf:4f:88:7b:
46:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
E2:E4:3E:A1:DD:5C:14:A6:A6:BB:15:47:F8:46:50:E5:19:11:47:35
X509v3 Authority Key Identifier:
keyid:25:82:7D:84:05:6B:84:44:CC:2A:78:42:75:90:35:35:4B:84:16:BC
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/25827D84056B8444CC2A7842759035354B8416BC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYJ9hAVrhETMKnhCdZA1NUuEFrw.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/630f44fd-45f1-42b6-91f2-26183aa048cf/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/630f44fd-45f1-42b6-91f2-26183aa048cf/0/E2E43EA1DD5C14A6A6BB1547F84650E519114735.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:14c1:200::/40
Signature Algorithm: sha256WithRSAEncryption
bf:7c:cf:23:30:cd:86:4e:f8:ef:03:aa:f0:0c:d5:a2:75:28:
81:4b:ea:fd:5b:51:91:74:5e:75:fc:43:dd:50:e6:57:45:da:
80:d2:23:d8:41:a0:ca:08:8b:d9:16:69:ed:be:31:cf:e2:87:
02:5f:17:bb:83:78:a4:57:5d:1f:15:9c:5d:a1:aa:8b:ce:12:
a2:ec:91:6a:18:14:cc:1a:01:c3:77:0e:af:ef:b1:c5:14:6f:
52:2d:14:21:fd:e7:6b:09:28:7c:68:1a:6a:f0:a9:08:90:e9:
f3:fa:fb:e0:14:da:f9:7a:28:18:9a:10:7a:04:6b:12:41:66:
c5:0b:bc:9e:a5:bc:93:65:6a:85:94:d3:db:95:e2:b8:5e:28:
0a:ca:43:a7:24:c4:1d:48:e1:87:81:23:bc:d4:70:7a:0c:8a:
a7:78:1a:c8:a3:e6:21:f0:ac:62:42:d6:b9:7e:95:6f:a4:3c:
e6:c4:02:a5:25:ec:4d:37:53:00:0c:f7:9c:91:bb:d8:c6:f2:
66:3e:ed:1e:2f:29:6f:55:b1:5c:5d:50:8c:04:4c:67:f0:4f:
e4:ef:cd:1b:7c:be:53:9a:34:35:87:8f:e5:58:55:b7:ea:75:
b8:9f:62:dd:b4:91:4d:78:ff:f1:b9:17:80:e5:dd:84:43:2a:
08:f5:d2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:01:30 2024 by rpki-client on console-fra.rpki-client.org