Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/34DEF610B33BA719BA344A660C4BDA8333112372.cer
File: 34DEF610B33BA719BA344A660C4BDA8333112372.cer (raw, json)
Hash identifier: BKYWamwxp/Gk+vuBPP+hOvLvnVD6AI275hsQV3Lp1YU=
Subject key identifier: 34:DE:F6:10:B3:3B:A7:19:BA:34:4A:66:0C:4B:DA:83:33:11:23:72
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 79AC0BCAED94881C46AB11F875D7294A7626E7ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 06 Mar 2026 15:39:37 +0000
Certificate not after: Fri 05 Mar 2027 15:44:37 +0000
Subordinate resources: IP: 2a14:7581:3700::/40
IP: 2a14:7581:9f10::/44
IP: 2a14:7583:4000::/36
IP: 2a14:7584:1000::/36
IP: 2a14:7586:7000::/36
IP: 2a14:7586:9000:: -- 2a14:7586:afff:ffff:ffff:ffff:ffff:ffff
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:ac:0b:ca:ed:94:88:1c:46:ab:11:f8:75:d7:29:4a:76:26:e7:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 6 15:39:37 2026 GMT
Not After : Mar 5 15:44:37 2027 GMT
Subject: CN=34DEF610B33BA719BA344A660C4BDA8333112372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:8b:8c:cd:0d:f3:cd:f6:d8:42:c2:20:ec:
2c:8b:56:26:71:cc:de:c0:37:b0:59:64:dd:56:a7:
92:b7:a4:4f:f9:d5:9e:bc:86:24:88:fc:be:50:24:
c9:f7:60:21:12:02:2d:f6:af:2c:44:75:9b:c8:56:
a7:a5:2d:70:68:e8:a0:c9:0f:9e:6a:99:3a:98:7c:
c7:fb:6a:3c:a6:62:4c:e1:57:14:0b:fe:80:bd:55:
98:af:80:1b:a2:63:30:64:74:c7:cf:c5:98:95:bf:
59:fb:a1:00:f7:bd:9d:57:66:cd:84:8b:bb:e3:2c:
cb:9e:06:27:f0:bc:3b:15:d0:78:90:de:39:b5:4e:
7e:b0:ff:3c:19:15:46:4a:5d:b0:d1:29:c4:ed:11:
4b:a7:3b:ba:8e:7a:05:78:72:aa:27:29:de:48:f5:
f4:81:4d:c5:30:af:d4:c2:4a:1b:c3:3a:0b:2d:03:
51:b8:da:ef:04:82:e7:36:2f:2b:75:8e:06:f4:01:
13:45:e5:da:19:1a:da:e3:f6:b3:41:5c:75:f5:3c:
27:c9:d7:73:ca:ab:f1:52:9a:2b:e2:f2:a0:38:2b:
e0:a4:eb:59:2c:ea:5f:e9:a2:42:c7:76:58:61:c1:
1d:a7:aa:05:b7:67:ae:bd:c9:a7:82:17:80:90:2a:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
34:DE:F6:10:B3:3B:A7:19:BA:34:4A:66:0C:4B:DA:83:33:11:23:72
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:3700::/40
2a14:7581:9f10::/44
2a14:7583:4000::/36
2a14:7584:1000::/36
2a14:7586:7000::/36
2a14:7586:9000::-2a14:7586:afff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
93:4d:02:6e:ff:a2:d6:84:24:f0:2e:48:e0:42:a9:07:3d:12:
64:27:e6:1c:c4:e0:a7:ee:ca:f0:2d:8b:aa:24:1f:b2:7e:e5:
a8:64:e8:6a:fb:fd:f1:81:74:b4:31:c1:aa:d1:fa:eb:e2:10:
7f:2e:6b:1d:68:2a:5b:51:a2:44:a9:38:39:50:dc:e7:b7:5c:
52:0c:f5:ae:56:a6:43:2f:a8:b4:c3:ca:80:39:62:51:1f:3a:
92:2c:7c:d0:94:8b:77:39:8a:6a:87:f6:e7:42:0c:77:cd:09:
5e:32:a5:d9:8a:96:fc:0f:34:e2:b9:2a:74:7e:46:af:85:14:
7a:08:97:bf:0c:8e:0a:35:89:5f:5d:08:53:11:a2:5d:e6:7a:
1e:cf:31:0f:91:7b:c2:22:3a:88:1c:02:e5:2c:aa:01:58:f6:
5c:c4:9b:a7:5e:b4:2e:75:ba:92:df:42:ec:e1:9a:b9:5a:6e:
da:4b:9d:3f:24:91:d9:e3:91:bb:c5:8c:5b:80:8e:64:1e:1a:
a8:53:2d:38:6e:eb:1f:df:ef:6b:5d:a5:d5:79:1b:56:ff:ac:
9f:8a:75:f5:54:2e:61:9b:f9:33:63:cc:c7:06:eb:ba:80:e4:
eb:dc:f6:84:6b:c9:84:ca:e3:5e:ff:17:db:ef:2e:c2:44:fe:
da:d0:3e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 14:36:58 2026 by rpki-client