Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/CDC014669D381152AFB94B76936268BFF73E7D50.cer
File: CDC014669D381152AFB94B76936268BFF73E7D50.cer (raw, json)
Hash identifier: QBlH+7/qpI2vgpJEoxm8amDtRZXwRN+Ze3Bv0ZQh9Ws=
Subject key identifier: CD:C0:14:66:9D:38:11:52:AF:B9:4B:76:93:62:68:BF:F7:3E:7D:50
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 17B293D67D7E0DED6C8791BA4239CF31E9E7730D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Sun 26 Nov 2023 11:00:17 +0000
Certificate not after: Sun 24 Nov 2024 11:05:17 +0000
Subordinate resources: IP: 2a11:29c0:9000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 May 2024 14:16:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:b2:93:d6:7d:7e:0d:ed:6c:87:91:ba:42:39:cf:31:e9:e7:73:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Nov 26 11:00:17 2023 GMT
Not After : Nov 24 11:05:17 2024 GMT
Subject: CN=CDC014669D381152AFB94B76936268BFF73E7D50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:37:67:c2:99:6e:d8:64:38:82:f3:dd:f8:00:
b9:4e:5d:99:15:2c:ce:a5:ae:8f:89:03:45:39:16:
5c:c6:80:1c:78:20:a0:15:bf:2b:8a:41:59:05:44:
8d:bd:1c:46:b4:34:2f:72:5c:3e:3e:65:f7:7c:46:
aa:ac:a6:3e:26:3e:0f:18:45:e1:54:ba:58:c8:a5:
a7:3a:c8:95:9f:6b:fd:3a:87:a0:e1:fe:aa:6e:db:
d4:8a:c7:26:1e:66:09:43:10:11:a3:a3:55:66:b4:
1a:ce:43:1a:16:c1:7b:80:a1:4f:e5:26:73:64:a6:
bf:ce:9b:33:9b:1f:07:73:88:dd:9b:69:1d:2b:6e:
d3:b6:1a:41:15:1f:dd:aa:08:7d:81:b1:32:2a:7f:
fd:48:6e:b0:d6:c4:a4:85:2e:8a:73:81:1b:27:3e:
44:8c:98:d8:8c:5c:5a:52:80:2a:9f:78:b6:37:09:
c7:ea:59:a7:28:5b:fd:75:51:94:c1:f4:dc:d3:90:
e0:ae:31:31:11:a6:18:6f:c2:7f:a9:00:0d:f8:0d:
d1:16:35:95:7f:1e:0e:7f:0f:1d:ba:98:af:31:14:
01:38:07:52:3b:58:87:a8:19:db:32:f7:e3:7b:9f:
d6:c2:2c:20:2d:bc:bb:4b:a2:fd:12:65:a8:e6:78:
af:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
CD:C0:14:66:9D:38:11:52:AF:B9:4B:76:93:62:68:BF:F7:3E:7D:50
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:9000::/36
Signature Algorithm: sha256WithRSAEncryption
93:6d:0d:13:11:f7:f7:2f:72:a8:62:77:b7:cf:c0:83:d5:37:
27:f3:1c:8b:cb:f5:3c:2a:e6:9a:ea:ae:9a:b3:99:22:3c:c2:
49:e5:2d:1f:44:b5:4f:1c:14:e0:54:26:01:01:9e:64:89:4e:
fa:e8:62:d3:96:a4:97:23:82:8b:10:50:16:70:49:ff:35:f3:
a3:ee:71:1a:67:91:f3:bd:2c:12:b5:e5:65:43:3c:d5:a5:30:
da:03:cf:55:cf:c3:60:f5:61:67:d4:01:2e:5c:37:3a:0b:f9:
51:22:47:ed:a7:6c:40:12:93:b9:9d:78:d7:78:b8:d3:5d:fa:
39:0f:86:c7:73:14:57:4d:59:b5:42:04:a7:48:8c:f6:e6:9f:
26:74:ec:a8:8b:1d:40:6f:5a:db:13:70:1f:ac:c4:15:93:79:
31:88:46:92:ce:cb:26:ca:9c:5e:db:b4:57:c7:10:09:b5:fa:
e2:26:32:a9:8c:0d:a2:bd:96:71:a7:75:8f:3b:dc:19:d3:a0:
a5:2c:ea:c9:38:f7:93:9c:33:a3:63:71:7d:46:47:e4:9c:c0:
7f:54:d7:27:6c:24:13:20:16:5c:f3:99:22:6c:70:b8:9b:4c:
95:20:3f:95:36:3a:2e:2a:df:ec:b5:c2:cd:59:01:6e:a8:48:
50:69:b6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 17:02:36 2024 by rpki-client on console-ams.rpki-client.org