Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.cer
File: 4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.cer (raw, json)
Hash identifier: pfIKjfLs+F4mer4DrRZ8t5sDFOAIURcWw5aJveWc3HI=
Subject key identifier: 40:50:A1:7B:AE:1C:5F:37:63:D4:5A:38:DC:FE:AC:E0:FE:22:2B:D6
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 18B3E65543A9ACF3DF38204CCC4136AAE8CB7961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 22 Nov 2024 00:06:44 +0000
Certificate not after: Fri 21 Nov 2025 00:11:44 +0000
Subordinate resources: IP: 2a14:7581:9f20::/44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:b3:e6:55:43:a9:ac:f3:df:38:20:4c:cc:41:36:aa:e8:cb:79:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Nov 22 00:06:44 2024 GMT
Not After : Nov 21 00:11:44 2025 GMT
Subject: CN=4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5f:5d:58:c4:8f:70:86:47:61:eb:d1:6d:2c:
4e:31:2d:6e:b2:7e:18:b0:52:1c:29:50:6b:fb:e1:
b1:5f:da:06:12:8f:cd:e4:fb:0d:e3:2c:f4:9c:b8:
20:fb:8e:13:8c:5b:af:d4:22:31:65:b3:4b:23:16:
dc:ad:e8:46:e4:fa:04:cf:2d:97:28:12:88:5e:4f:
fe:30:5b:29:42:cb:03:84:8f:8b:79:d0:ab:dc:05:
68:3f:a0:62:ea:8a:4d:40:cb:02:47:32:c0:0a:69:
96:4f:0c:0c:a1:b0:19:23:b5:23:6f:10:2e:b3:a8:
13:0e:30:8a:bb:0d:8c:44:f4:e1:97:73:d6:c4:fd:
d0:44:cf:01:73:ff:b6:ca:f1:a2:b0:1a:f4:82:ae:
41:25:74:8d:54:03:e5:1e:12:d2:e7:dc:a8:01:65:
d2:4a:e6:39:e8:36:d5:97:47:29:32:00:7a:ff:e6:
b2:f0:8a:7f:1c:02:ce:f0:36:20:02:4a:40:34:e0:
c9:ee:48:d2:13:f1:99:89:e1:ea:37:56:95:12:a8:
c8:03:ff:7b:2d:74:d0:e1:98:dd:d2:e3:af:60:08:
a0:dc:b2:df:7e:2a:ed:1a:f5:0a:c8:f7:f0:17:2e:
4f:68:6c:6f:ee:db:29:31:5b:1d:59:4d:a5:07:eb:
7c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
40:50:A1:7B:AE:1C:5F:37:63:D4:5A:38:DC:FE:AC:E0:FE:22:2B:D6
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:9f20::/44
Signature Algorithm: sha256WithRSAEncryption
47:9f:f5:fe:3b:56:3e:4c:a2:69:4a:c9:2e:5d:3f:9e:43:20:
28:5e:eb:de:09:53:dc:0c:1d:5e:07:bc:8a:9c:ab:71:b8:b0:
1a:f1:25:ca:ed:24:c2:57:a2:54:70:e8:ab:ab:85:27:ea:17:
7b:63:26:56:d8:2b:97:46:f9:1a:f5:10:a9:09:c4:21:3b:b1:
14:82:22:63:29:87:fd:c5:8c:89:a7:3c:5b:c7:39:12:48:ca:
bd:f0:af:3c:d7:83:63:b3:95:eb:29:87:10:0a:94:e0:85:be:
16:88:d4:b9:39:19:4d:4a:3a:1e:35:fa:b7:5d:4e:00:07:78:
21:8c:0a:27:02:c6:83:cd:43:b0:5d:af:6d:a8:ff:36:4d:f2:
db:5e:2b:9c:f4:09:d9:1c:97:b0:a0:14:a5:dd:91:39:bb:49:
28:f2:e8:87:f0:5d:26:3a:f5:fc:a1:68:59:f5:a9:d2:65:1b:
44:87:e1:64:02:d3:93:6d:cd:52:da:2f:36:d9:55:9f:96:e6:
43:6e:c3:7d:a7:67:5a:51:a0:ab:95:ac:12:fc:51:78:7f:06:
dd:b6:a6:44:e4:75:9d:4e:fc:36:8f:6d:02:bd:0d:0a:a6:ad:
0f:10:42:e8:02:3b:db:15:0a:e6:24:b9:03:b0:0a:bb:53:a5:
d6:fe:e4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:44:50 2024 by rpki-client on console-fra.rpki-client.org