Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer
File: 41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer (raw, json)
Hash identifier: v3S3XqnwkB9idEN4MswJKJ3rEMZ3pdHLryzI0TAlOF0=
Subject key identifier: 41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 29180D3CDC6BD2721F49673B09868A323F0749FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 21 Nov 2024 17:13:01 +0000
Certificate not after: Thu 20 Nov 2025 17:18:01 +0000
Subordinate resources: IP: 2a14:7580:b000::/36
IP: 2a14:7585::/32
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:18:0d:3c:dc:6b:d2:72:1f:49:67:3b:09:86:8a:32:3f:07:49:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Nov 21 17:13:01 2024 GMT
Not After : Nov 20 17:18:01 2025 GMT
Subject: CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:96:6c:51:e9:30:df:75:c3:c3:a1:2e:3b:d2:
ea:d1:56:82:bc:41:77:24:5b:ee:40:51:93:a8:ce:
58:8e:09:bf:84:0f:70:ec:80:a5:58:29:8e:fc:85:
ec:80:91:1e:6a:3c:d8:2e:4c:8e:ee:0d:55:cf:6d:
8f:af:5f:4e:7f:36:92:ef:f4:9a:c5:8a:19:4b:b0:
3c:fa:c1:3a:fe:b5:fa:ff:ff:ac:b7:5a:6a:5e:5a:
c2:85:7c:24:a3:ec:03:30:ff:ca:6f:b5:81:97:8f:
e2:d2:69:ae:ea:27:75:b5:2b:56:46:4a:d4:da:fc:
73:0e:c6:2f:0e:15:24:9b:58:21:8c:d3:15:a2:0f:
52:e6:e0:f6:49:09:f2:94:ce:c6:b0:3c:19:4b:24:
b5:5f:a9:00:08:db:7e:2a:ed:36:e1:e7:98:0a:fc:
a2:48:9f:88:93:10:c2:52:16:a7:33:07:85:bc:b6:
1a:c8:e9:26:73:d4:bc:cd:f5:39:a5:03:e3:5d:b6:
70:d9:52:50:67:74:86:a9:9c:ed:c1:94:f7:4a:79:
2c:f6:97:ed:3a:56:06:09:dc:fc:b0:61:09:58:64:
38:5c:04:9d:5b:d9:05:23:4c:75:7c:e6:10:a0:05:
00:5d:d5:81:4b:8e:97:a0:d6:fa:dc:31:c1:e3:af:
9e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:b000::/36
2a14:7585::/32
Signature Algorithm: sha256WithRSAEncryption
86:dd:82:3a:d5:fb:99:62:ef:2d:d0:79:24:ae:64:25:9b:1e:
80:b7:a4:db:2f:d5:02:91:09:b0:18:0b:76:8a:00:ec:d6:ec:
67:82:7b:86:ca:c7:61:39:24:ce:9a:ac:d8:dc:ab:07:ba:c6:
fd:b2:d3:dd:8e:7a:94:4e:61:95:25:e5:84:3d:10:40:8c:8a:
24:5d:25:b0:32:d3:52:4a:a3:27:3b:60:c7:9a:76:59:d6:b5:
33:10:d3:02:a5:b7:fe:8b:8d:32:e2:10:2a:2a:d0:0e:b2:d7:
8e:11:3f:01:45:f2:54:3d:63:b8:3a:bc:3d:b9:c5:38:0a:5d:
7c:ab:9e:b9:52:26:84:b9:7c:89:e2:e4:ae:84:80:60:45:51:
de:66:08:e2:02:29:26:3f:50:08:f6:ac:39:5a:4b:d7:17:6f:
3a:48:ae:9a:09:29:57:d1:af:72:7c:c8:11:46:a9:06:43:98:
55:4b:c9:70:f0:da:87:b7:e7:44:db:28:90:f9:43:e5:26:02:
27:e1:50:82:32:57:e3:36:57:97:04:eb:d2:fa:bc:75:f7:ae:
ae:f0:49:d4:86:a2:3c:c4:e7:f1:a2:94:6a:6c:56:c9:59:87:
65:c2:75:f9:0b:b7:35:14:3d:48:9a:d5:48:99:e5:85:ac:0a:
ae:31:48:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org