Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/CDC014669D381152AFB94B76936268BFF73E7D50.cer
File: CDC014669D381152AFB94B76936268BFF73E7D50.cer (raw, json)
Hash identifier: gNoXb7iDKg1R/T7hXGKNkB6W8czzPY4NsYWUpnUzV18=
Subject key identifier: CD:C0:14:66:9D:38:11:52:AF:B9:4B:76:93:62:68:BF:F7:3E:7D:50
Authority key identifier: E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
Certificate issuer: /CN=e96d85996e9354d1005e44c781d38adcf1082873
Certificate serial: 666D02E21F1E256CD8B9D9BCE7F2ECA28A072039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Mon 28 Oct 2024 18:06:00 +0000
Certificate not after: Mon 27 Oct 2025 18:11:00 +0000
Subordinate resources: IP: 2a11:29c0:9000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft
rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:6d:02:e2:1f:1e:25:6c:d8:b9:d9:bc:e7:f2:ec:a2:8a:07:20:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d85996e9354d1005e44c781d38adcf1082873
Validity
Not Before: Oct 28 18:06:00 2024 GMT
Not After : Oct 27 18:11:00 2025 GMT
Subject: CN=CDC014669D381152AFB94B76936268BFF73E7D50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:37:67:c2:99:6e:d8:64:38:82:f3:dd:f8:00:
b9:4e:5d:99:15:2c:ce:a5:ae:8f:89:03:45:39:16:
5c:c6:80:1c:78:20:a0:15:bf:2b:8a:41:59:05:44:
8d:bd:1c:46:b4:34:2f:72:5c:3e:3e:65:f7:7c:46:
aa:ac:a6:3e:26:3e:0f:18:45:e1:54:ba:58:c8:a5:
a7:3a:c8:95:9f:6b:fd:3a:87:a0:e1:fe:aa:6e:db:
d4:8a:c7:26:1e:66:09:43:10:11:a3:a3:55:66:b4:
1a:ce:43:1a:16:c1:7b:80:a1:4f:e5:26:73:64:a6:
bf:ce:9b:33:9b:1f:07:73:88:dd:9b:69:1d:2b:6e:
d3:b6:1a:41:15:1f:dd:aa:08:7d:81:b1:32:2a:7f:
fd:48:6e:b0:d6:c4:a4:85:2e:8a:73:81:1b:27:3e:
44:8c:98:d8:8c:5c:5a:52:80:2a:9f:78:b6:37:09:
c7:ea:59:a7:28:5b:fd:75:51:94:c1:f4:dc:d3:90:
e0:ae:31:31:11:a6:18:6f:c2:7f:a9:00:0d:f8:0d:
d1:16:35:95:7f:1e:0e:7f:0f:1d:ba:98:af:31:14:
01:38:07:52:3b:58:87:a8:19:db:32:f7:e3:7b:9f:
d6:c2:2c:20:2d:bc:bb:4b:a2:fd:12:65:a8:e6:78:
af:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
CD:C0:14:66:9D:38:11:52:AF:B9:4B:76:93:62:68:BF:F7:3E:7D:50
X509v3 Authority Key Identifier:
keyid:E9:6D:85:99:6E:93:54:D1:00:5E:44:C7:81:D3:8A:DC:F1:08:28:73
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:29c0:9000::/36
Signature Algorithm: sha256WithRSAEncryption
3f:78:c2:21:35:79:93:19:35:e0:69:36:0a:a3:bc:f0:59:5c:
5f:05:a1:4a:9d:4e:12:05:5d:65:1c:cd:bf:d5:bf:b1:85:3d:
8b:77:50:a8:7b:f0:f7:15:6a:bc:40:58:dc:c4:a3:f3:6a:61:
49:59:12:8d:54:aa:cb:e6:01:26:1a:28:d2:0f:f7:0a:e3:0c:
6c:2f:95:5c:73:21:91:c7:28:27:7d:f1:1a:5e:8c:0c:e8:d7:
3e:ab:e4:1c:c0:2b:a2:f0:42:30:ad:e0:52:56:c2:6b:28:71:
48:bd:6c:2d:92:96:51:5d:8d:8c:6e:8b:5e:95:50:06:0a:a0:
1a:26:10:3d:b3:ec:4c:82:37:bd:81:e5:17:a9:cd:03:d8:96:
77:30:8a:3e:dd:b3:dd:bc:5d:4a:33:0d:ee:90:f6:be:ce:0d:
e5:bb:b1:2e:c1:7d:4b:c1:29:96:14:11:be:d8:2c:a0:05:b9:
42:90:93:0a:fe:c8:d4:c8:5f:b1:1b:ab:51:5b:a7:4b:b8:e9:
b5:6b:11:b1:d6:16:f8:f8:d7:49:e8:27:5b:79:d5:a5:f1:e4:
0a:55:76:4d:f0:35:d6:e1:50:c6:60:e8:25:24:89:87:f5:a6:
53:ec:36:fb:68:11:99:a4:57:c5:3d:71:22:52:49:8d:47:a3:
d8:d4:ab:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:20 2024 by rpki-client on console-ams.rpki-client.org