Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/849A6D8BFAC2BC81C0BB3ADB0F1BFC68BBBE063F.cer
File: 849A6D8BFAC2BC81C0BB3ADB0F1BFC68BBBE063F.cer (raw, json)
Hash identifier: l2bTRC1KiYIeWBpMyLIwmT0W8VLMCyAoDZ5O0FriVcU=
Subject key identifier: 84:9A:6D:8B:FA:C2:BC:81:C0:BB:3A:DB:0F:1B:FC:68:BB:BE:06:3F
Authority key identifier: 3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
Certificate issuer: /CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Certificate serial: 2E8AC4C3A4CBC5DC5589A7E01A0E1684F0015696
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/2/849A6D8BFAC2BC81C0BB3ADB0F1BFC68BBBE063F.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 01 Oct 2024 11:31:52 +0000
Certificate not after: Tue 30 Sep 2025 11:36:52 +0000
Subordinate resources: IP: 2a14:6f45:b00b::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Nov 2024 18:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:8a:c4:c3:a4:cb:c5:dc:55:89:a7:e0:1a:0e:16:84:f0:01:56:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eeebb946a8d21d4083c93dc09cee557bb2ac32e
Validity
Not Before: Oct 1 11:31:52 2024 GMT
Not After : Sep 30 11:36:52 2025 GMT
Subject: CN=849A6D8BFAC2BC81C0BB3ADB0F1BFC68BBBE063F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:03:cb:83:4f:9a:79:83:b3:32:42:dd:1c:00:
46:82:d1:95:59:aa:59:e1:a7:23:97:68:46:3a:7e:
82:dc:ed:31:c8:86:d2:14:fd:83:15:a5:79:ed:15:
6c:cb:37:57:3e:21:5a:43:fd:1d:3b:b2:f2:a7:81:
4b:cb:73:f9:99:da:92:b6:7b:bf:d7:87:8b:ce:d3:
db:ba:78:50:58:bf:7e:9e:67:89:fc:cb:06:81:8d:
73:e6:48:89:9b:c5:ae:87:59:dd:3a:70:34:4f:08:
27:61:1e:c9:fa:79:d8:ff:60:9d:cc:3d:7a:35:a0:
0d:9f:4a:5f:a3:8d:49:92:b2:15:23:c3:a1:ae:42:
17:22:d2:7a:b4:66:66:2c:ea:65:2a:4e:b7:41:e1:
25:7a:6e:d6:bd:ee:8e:e7:a5:54:eb:c7:57:f6:b5:
df:df:fa:cf:6f:f6:9d:df:82:53:92:64:4f:87:3c:
13:b5:6a:66:84:46:d3:1d:60:8f:09:00:a3:d2:5e:
51:86:0d:17:1e:a0:d7:a0:b6:07:1d:29:f8:27:8e:
9d:1d:71:c0:e0:40:f2:79:cd:8d:ea:c1:cb:3b:f8:
e7:8c:04:d7:1c:96:02:ed:7f:1a:46:79:8c:70:71:
76:dd:4d:c3:21:86:19:1d:20:de:25:d7:17:73:1c:
92:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
84:9A:6D:8B:FA:C2:BC:81:C0:BB:3A:DB:0F:1B:FC:68:BB:BE:06:3F
X509v3 Authority Key Identifier:
keyid:3E:EE:BB:94:6A:8D:21:D4:08:3C:93:DC:09:CE:E5:57:BB:2A:C3:2E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/6ff7a989-ecdf-43d6-86e1-f6c3935b9b3d/4/3EEEBB946A8D21D4083C93DC09CEE557BB2AC32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pu67lGqNIdQIPJPcCc7lV7sqwy4.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/2/849A6D8BFAC2BC81C0BB3ADB0F1BFC68BBBE063F.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6f45:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
8e:aa:2b:c3:80:d4:c8:be:0b:d3:91:ae:f1:9a:31:11:5f:73:
6c:da:8e:b3:a4:ac:8a:29:17:ed:49:10:9a:ad:82:74:af:49:
13:6d:86:b3:d8:65:b9:b5:2f:86:69:6f:6d:7b:64:20:db:af:
54:28:c7:3d:b0:4c:fa:ab:10:2a:bf:ce:56:0a:13:62:58:c0:
8f:6a:2b:c5:f4:8b:b6:12:36:45:d7:a6:bf:e4:b2:1a:f7:62:
51:03:1d:3e:6b:a6:5b:ac:08:be:91:5a:99:8f:c2:1f:18:2c:
a4:b7:a7:20:90:f0:01:f8:39:d8:3d:08:7d:70:8a:2c:84:5c:
31:5a:1b:5b:88:95:92:41:7e:73:72:60:13:07:8e:d2:e3:7d:
f6:02:dc:7b:cf:76:47:81:1c:4d:ee:6e:08:bd:16:46:47:e9:
88:c3:b7:95:16:db:03:b1:93:74:29:dc:9a:c4:fa:29:7b:db:
81:67:ac:fb:3c:15:89:13:16:54:12:49:55:ee:f2:27:73:34:
56:c9:8f:62:d4:16:76:71:eb:2f:dd:d0:3f:77:30:3e:9a:0b:
87:25:28:15:00:fa:45:8c:16:13:b7:7a:db:39:5e:65:72:b1:
e6:83:8d:19:86:bf:46:02:35:3e:b9:89:9d:9d:7e:5a:c3:fd:
45:16:cc:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 01:58:32 2024 by rpki-client on console-ams.rpki-client.org