Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer
File: 702B79B445330AC21D237308277A4472598CE771.cer (raw, json)
Hash identifier: +herYNJcuOO3Lg2PEq7tPrwYgjPFIKTp+YSbuhSjrzo=
Subject key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 3A3580275C4A7C246FA595AB8FAE6FDBC9B463DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 04 Sep 2025 13:44:32 +0000
Certificate not after: Thu 03 Sep 2026 13:49:32 +0000
Subordinate resources: IP: 2a14:7580:fffa::/48
IP: 2a14:7583:f700::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 13:22:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:35:80:27:5c:4a:7c:24:6f:a5:95:ab:8f:ae:6f:db:c9:b4:63:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Sep 4 13:44:32 2025 GMT
Not After : Sep 3 13:49:32 2026 GMT
Subject: CN=702B79B445330AC21D237308277A4472598CE771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d2:12:8e:e1:33:28:c9:81:6d:31:3e:dd:d7:
0c:f9:a4:23:69:b3:16:34:ac:e5:b1:a9:26:62:2c:
8f:77:b4:a7:c4:75:9c:6f:94:cc:be:99:a7:72:6e:
6c:22:46:42:35:06:05:a3:d6:3f:0f:9e:8d:f4:aa:
0e:dc:2e:ef:62:ab:43:89:d5:a2:07:fe:f9:fd:65:
d8:e2:e0:ae:79:ff:22:6e:47:3e:83:43:4a:ea:f1:
8e:a7:99:2a:83:6e:f5:3a:c2:d0:6d:73:2e:09:66:
44:cc:ce:d7:c2:62:8e:a5:c6:a9:b2:08:09:cf:15:
a9:45:87:48:81:57:38:c1:38:8d:99:29:e5:ed:10:
2e:bb:56:d3:d4:5a:b3:97:9f:b0:5f:75:f1:c2:dd:
d3:02:46:7b:f7:83:a7:9a:dc:14:8d:74:f9:71:a5:
45:a2:9b:9e:27:43:04:c4:1c:d8:21:2a:ad:38:82:
b8:a3:bd:6b:0e:21:3e:f6:b9:3f:20:e9:07:77:c1:
50:ee:04:19:62:ec:8d:90:14:f1:f6:fd:41:d7:cd:
dd:a3:4e:0a:20:5c:c9:bf:44:fb:6f:3d:73:41:3b:
ca:17:1e:63:86:b3:0e:f9:8d:3e:fa:ac:ea:f8:b2:
6b:c5:70:97:a6:85:cb:03:84:5e:28:08:6b:a4:40:
b1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:fffa::/48
2a14:7583:f700::/40
Signature Algorithm: sha256WithRSAEncryption
0c:ec:77:87:3f:ad:70:d7:7b:2d:4a:5e:e1:48:f3:cb:3f:07:
7c:31:4f:b0:55:65:ef:35:99:0c:b0:ae:a7:1d:5f:0c:01:98:
c1:27:fa:56:e9:92:14:24:80:36:35:93:32:db:b6:e5:ff:3f:
03:63:35:cc:a2:d5:45:02:e9:8a:0d:8e:3e:2e:06:7e:5a:a7:
fd:5c:a4:57:87:ef:fb:d7:f0:c8:99:0e:23:56:4d:85:db:0e:
16:7c:fe:09:cb:a3:e2:cf:f9:3e:ce:55:42:cd:f5:64:2f:f0:
01:bd:e6:4f:9b:2f:0b:3a:f3:a8:d3:7b:9f:0e:5d:68:6e:ca:
cc:c4:24:54:58:11:91:b7:c3:30:25:cb:cb:ce:e0:6b:76:7a:
58:d3:bb:3f:4d:b0:d6:ec:29:14:5e:78:35:af:9a:a9:42:04:
52:29:62:05:4a:26:5d:62:1f:c6:80:e6:37:29:0d:5e:30:fb:
95:92:18:ec:da:bd:89:51:99:df:a9:c6:51:e5:6b:44:99:75:
86:3a:ce:14:9a:97:17:f6:97:d8:2a:18:73:57:3e:d0:11:49:
db:79:4f:ed:fd:b3:13:d4:69:7b:41:68:9b:be:4c:ac:43:3a:
3a:a0:91:d0:97:01:15:5c:ba:e6:b8:96:69:36:3e:54:3f:bb:
7c:a9:93:17
-----BEGIN CERTIFICATE-----
MIIF4jCCBMqgAwIBAgIUOjWAJ1xKfCRvpZWrj65v28m0Y90wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNTA5MDQxMzQ0MzJaFw0yNjA5MDMxMzQ5MzJaMDMxMTAvBgNV
BAMTKDcwMkI3OUI0NDUzMzBBQzIxRDIzNzMwODI3N0E0NDcyNTk4Q0U3NzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW0hKO4TMoyYFtMT7d1wz5pCNp
sxY0rOWxqSZiLI93tKfEdZxvlMy+madybmwiRkI1BgWj1j8Pno30qg7cLu9iq0OJ
1aIH/vn9Zdji4K55/yJuRz6DQ0rq8Y6nmSqDbvU6wtBtcy4JZkTMztfCYo6lxqmy
CAnPFalFh0iBVzjBOI2ZKeXtEC67VtPUWrOXn7BfdfHC3dMCRnv3g6ea3BSNdPlx
pUWim54nQwTEHNghKq04grijvWsOIT72uT8g6Qd3wVDuBBli7I2QFPH2/UHXzd2j
TgogXMm/RPtvPXNBO8oXHmOGsw75jT76rOr4smvFcJemhcsDhF4oCGukQLFpAgMB
AAGjggLsMIIC6DAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRwK3m0RTMKwh0j
cwgnekRyWYzncTAfBgNVHSMEGDAWgBSoPUhlLzst909r+bqoqcF0zP03cjAOBgNV
HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BODNENDg2NTJGM0IyREY3NEY2QkY5QkFB
OEE5QzE3NENDRkQzNzcyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKG
SHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUQxSVpT
ODdMZmRQYV9tNnFLbkJkTXo5TjNJLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0w
XwYIKwYBBQUHMAWGU3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3NzkyLzEv
MIGLBggrBgEFBQcwCoZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIv
MS83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgyNzdBNDQ3MjU5OENFNzcxLm1mdDA8
BggrBgEFBQcwDYYwaHR0cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3Rp
ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUH
AQcBAf8EGzAZMBcEAgACMBEDBwAqFHWA//oDBgAqFHWD9zANBgkqhkiG9w0BAQsF
AAOCAQEADOx3hz+tcNd7LUpe4Ujzyz8HfDFPsFVl7zWZDLCupx1fDAGYwSf6VumS
FCSANjWTMtu25f8/A2M1zKLVRQLpig2OPi4Gflqn/VykV4fv+9fwyJkOI1ZNhdsO
Fnz+Ccuj4s/5Ps5VQs31ZC/wAb3mT5svCzrzqNN7nw5daG7KzMQkVFgRkbfDMCXL
y87ga3Z6WNO7P02w1uwpFF54Na+aqUIEUiliBUomXWIfxoDmNykNXjD7lZIY7Nq9
iVGZ36nGUeVrRJl1hjrOFJqXF/aX2CoYc1c+0BFJ23lP7f2zE9Rpe0Fom75MrEM6
OqCR0JcBFVy65riWaTY+VD+7fKmTFw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 02:23:39 2025 by rpki-client