Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/76423146648CF6AC626CCD0654C5B50EBEA94787.cer
File: 76423146648CF6AC626CCD0654C5B50EBEA94787.cer (raw, json)
Hash identifier: irt/bFAF8rpekHJThR+fX2GBoeQqXsD4kz9hY0EUE+0=
Subject key identifier: 76:42:31:46:64:8C:F6:AC:62:6C:CD:06:54:C5:B5:0E:BE:A9:47:87
Authority key identifier: C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
Certificate issuer: /CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Certificate serial: 773BA0611283DB77466B56A655918D13B61FDB5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/76423146648CF6AC626CCD0654C5B50EBEA94787.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 23 Aug 2024 07:56:27 +0000
Certificate not after: Fri 22 Aug 2025 08:01:27 +0000
Subordinate resources: IP: 2a0f:85c1:361::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl
rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft
rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:3b:a0:61:12:83:db:77:46:6b:56:a6:55:91:8d:13:b6:1f:db:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ce7d8902405ba4598f84b6a41c27d722834b1c
Validity
Not Before: Aug 23 07:56:27 2024 GMT
Not After : Aug 22 08:01:27 2025 GMT
Subject: CN=76423146648CF6AC626CCD0654C5B50EBEA94787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:53:23:4c:00:48:00:dd:d0:0e:37:2c:d7:26:
06:8d:6c:9d:91:41:14:c2:fd:a4:af:1d:89:98:05:
af:c7:82:c3:db:5b:25:5f:c2:29:53:00:6b:cb:16:
76:43:dd:b4:9e:e3:2d:b6:d1:35:c2:ec:a7:db:de:
c6:14:c8:f5:ad:fa:e7:e0:c2:40:76:20:32:cc:c5:
f6:36:19:e8:54:06:66:c0:49:be:18:0a:dd:39:8b:
75:1d:75:9d:2f:dd:58:48:59:d9:1d:a9:82:62:ac:
fc:c3:ba:13:72:7a:9a:49:6b:f8:2e:36:ff:1a:e7:
17:d5:33:2b:78:0a:56:52:cc:8a:30:52:95:2f:ae:
e3:b4:c2:23:55:85:c0:6f:4f:04:4f:36:18:99:a4:
c8:63:1f:a2:15:03:0b:9b:ec:90:b3:2d:0e:79:1a:
de:38:95:fe:3e:59:e0:4f:05:91:fd:fb:4a:73:75:
24:07:13:3f:3b:96:78:fd:8a:03:c0:dc:cd:bf:ca:
7e:b6:d8:ca:b8:22:ce:5e:77:99:18:5c:d8:ff:10:
d5:ae:88:1e:00:48:10:e0:a8:ef:6b:f9:9d:21:e2:
49:c4:22:9e:cd:cc:7c:e4:60:0e:8c:f2:ed:7d:90:
fb:54:e4:85:5e:0e:c6:04:b0:5f:72:d4:aa:a7:fb:
e6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
76:42:31:46:64:8C:F6:AC:62:6C:CD:06:54:C5:B5:0E:BE:A9:47:87
X509v3 Authority Key Identifier:
keyid:C4:CE:7D:89:02:40:5B:A4:59:8F:84:B6:A4:1C:27:D7:22:83:4B:1C
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/570d55e9-040b-4eb0-9055-4b1e63a88a66/2/76423146648CF6AC626CCD0654C5B50EBEA94787.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:85c1:361::/48
Signature Algorithm: sha256WithRSAEncryption
1d:36:09:5a:17:08:59:bc:36:c9:b8:04:9e:a2:14:19:2c:16:
9a:3c:78:d2:ea:48:e7:2f:38:10:88:d4:8a:b1:42:0e:66:19:
35:d5:7b:bf:55:d1:61:d9:3f:cd:77:f3:f4:4e:21:12:b6:7e:
76:b6:38:7f:c8:37:78:df:bb:12:d1:8b:dd:16:ee:7a:09:25:
5a:fc:75:a4:54:09:bf:71:2b:28:7c:f7:1d:85:af:64:48:05:
cd:bf:1e:44:10:22:a0:b3:47:e9:d3:c2:c1:a2:71:14:5d:ad:
19:89:a8:7c:3e:3e:e8:73:11:ca:61:bc:a1:d9:d3:2c:97:ea:
e7:ed:10:0a:b2:d6:be:4a:59:42:f9:37:03:a3:da:50:c7:f8:
d8:14:61:f1:91:13:19:d8:77:36:6e:61:df:7f:2c:57:7d:12:
17:6c:94:91:d5:d5:e9:eb:29:4e:57:a7:40:2c:03:f8:5a:6a:
a2:36:0e:de:26:31:da:3a:ce:6d:21:fa:17:5e:a1:49:fb:a1:
76:d7:70:d3:ad:b5:f9:58:94:e9:b6:9b:0e:cc:99:cc:8f:c3:
b7:e0:43:4a:1d:8f:8e:7d:20:14:7f:07:a0:7b:93:aa:41:56:
de:be:dd:13:5f:e8:3c:30:1a:13:f5:03:38:c7:7c:f1:d3:9c:
55:c8:7d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org