Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer
File: 0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer (raw, json)
Hash identifier: 8skJYRRdQpYuZgTn+Ft0P9wAT+e8ZAYiupbTBSuUDNw=
Subject key identifier: 08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 5BDEB50E238C8501AFD37AC9408EA5A5A8519E9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 03 Sep 2025 02:55:01 +0000
Certificate not after: Wed 02 Sep 2026 03:00:01 +0000
Subordinate resources: IP: 2a14:7581:8000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 13:22:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:de:b5:0e:23:8c:85:01:af:d3:7a:c9:40:8e:a5:a5:a8:51:9e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 3 02:55:01 2025 GMT
Not After : Sep 2 03:00:01 2026 GMT
Subject: CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ca:3d:c3:50:7d:eb:1f:54:ae:18:c6:ed:08:
66:92:88:24:c2:c7:a7:b7:38:04:71:37:ab:62:9e:
8f:f6:4c:c3:34:4c:7e:25:1b:b0:68:42:91:ba:23:
65:ac:2a:50:36:fa:11:83:ca:9a:5c:0e:09:a0:98:
76:96:d6:5b:0a:47:2e:db:4d:bc:56:8a:f4:4d:53:
98:f0:10:c4:51:92:8d:f2:39:81:30:d7:62:69:0b:
b4:fa:bd:a3:ff:e4:cf:7c:82:f8:5b:3c:d6:f2:a8:
a2:21:25:93:ce:ae:53:fb:77:00:7a:c8:3c:65:a0:
5a:24:9f:9c:89:02:47:e4:bc:60:f6:41:96:db:d9:
ec:5f:58:43:e9:85:b9:4f:36:c7:c9:1d:47:e1:e0:
f1:5e:db:75:bf:ba:91:17:54:cb:3b:b4:3e:72:d7:
20:5a:66:61:4f:3e:15:59:69:18:f5:09:25:61:99:
f4:f0:4a:6b:20:19:42:94:df:a0:c5:9f:ff:97:26:
fc:04:6f:e5:88:aa:49:57:7e:83:ae:92:de:3e:d6:
b0:6e:a4:d0:bd:6e:8b:d1:8c:6c:42:75:47:e9:a9:
46:32:6a:dc:2b:4c:b2:f2:20:ca:b8:b0:06:d0:42:
a5:af:74:b0:a2:02:39:3b:b7:9d:8e:04:9c:26:7e:
35:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:8000::/36
Signature Algorithm: sha256WithRSAEncryption
2a:fb:3f:7d:79:2e:2e:82:5d:60:18:bc:0a:ce:c3:27:ec:73:
95:85:b9:3d:af:b7:af:b3:9b:fe:02:05:39:de:0b:e8:70:41:
23:2f:13:6e:00:db:c4:3e:0f:a4:c9:ed:3a:c8:7a:dc:bf:dc:
e2:9d:25:a8:3b:e5:2c:5e:d2:22:5c:85:ed:8d:a1:c4:e1:b0:
ec:24:6f:2c:bf:c5:fa:66:87:35:3e:1d:2d:33:57:be:82:e2:
49:2e:01:ff:b7:fc:59:d1:f9:57:5f:d3:6b:7e:e6:66:b8:de:
39:cb:a2:cb:44:ca:aa:40:4c:8e:3f:a6:ec:1b:c1:c2:93:1f:
b8:b0:6f:f0:b3:4d:d8:2a:7b:9f:34:1d:7c:89:1f:ea:f9:d5:
22:c2:16:41:d8:30:57:32:d4:14:1c:39:70:30:8f:dc:f7:e0:
d1:b8:35:df:9f:2c:91:bf:7a:d1:12:e9:d5:cf:f7:a4:20:4a:
fd:f7:a6:7b:ee:ef:b8:dc:ce:30:62:9a:47:d7:4e:49:2f:5e:
3f:ea:e6:3d:a4:61:15:89:06:31:a4:39:5d:f1:76:fb:0a:72:
f9:9e:53:f7:08:2e:ba:76:4a:e6:7a:0b:e7:67:ab:cd:28:0f:
47:8e:40:ec:36:ca:e5:9c:95:9e:de:97:9b:de:61:e6:74:95:
44:82:7d:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 02:23:41 2025 by rpki-client