Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
File: 8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer (raw, json)
Hash identifier: 5KXcvGZ8vcLcI/0X9oA5ETtm+Uen6WOY2KKxXQy2fm4=
Subject key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 7D90F64CE73E4CF5AEFADF75B46D2BB539CA33E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Sat 23 Mar 2024 01:33:55 +0000
Certificate not after: Sat 22 Mar 2025 01:38:55 +0000
Subordinate resources: IP: 2a14:7581:4000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:90:f6:4c:e7:3e:4c:f5:ae:fa:df:75:b4:6d:2b:b5:39:ca:33:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 23 01:33:55 2024 GMT
Not After : Mar 22 01:38:55 2025 GMT
Subject: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2b:8c:a6:0b:53:f3:e3:6f:5b:4d:7f:83:43:
31:17:81:1b:08:9c:7f:cf:5c:5b:00:98:8d:ab:37:
c1:ae:b0:56:29:c2:87:53:4a:27:83:00:d3:fa:62:
9d:4a:b8:21:67:49:b3:4d:8a:dd:4f:86:49:5c:63:
b3:ff:d7:a3:27:53:63:97:37:b2:27:9f:1b:9d:71:
5d:98:42:e8:e7:83:a0:28:95:92:76:99:29:be:45:
c1:32:e6:60:e9:7e:1a:3a:06:e5:0d:34:be:bd:24:
c9:3d:bf:0d:d8:dc:bb:06:d7:91:f0:ec:88:72:8a:
78:46:e4:8d:6c:b5:68:1f:f0:b1:95:dd:93:1e:78:
a3:b9:ef:0e:0b:b1:d5:9c:25:a3:4c:ad:e6:6d:21:
d1:e1:83:41:48:a4:af:dc:d3:cf:04:fc:71:7d:d1:
13:0c:bd:24:65:7b:08:2d:65:5d:2d:ab:fb:90:96:
78:65:9f:79:3c:42:6d:d7:5c:ff:08:0a:b1:b7:33:
74:b2:4f:4b:09:e7:be:7b:d8:73:61:c4:28:26:3b:
ff:e6:51:16:cc:52:e2:f8:86:e3:de:f2:ba:c1:35:
e5:42:60:4e:d6:76:5e:63:64:4b:26:5c:54:5a:3b:
52:d4:62:c3:c5:71:ca:3c:a3:eb:71:6c:c3:82:47:
5c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:4000::/36
Signature Algorithm: sha256WithRSAEncryption
15:4c:c6:ad:46:94:b5:cd:38:20:20:c3:fb:30:b7:ca:20:6a:
03:9d:3e:88:59:f9:5f:9d:14:03:75:7f:70:72:b2:f6:4c:7d:
ac:7b:1a:ca:bd:d3:78:89:22:df:1d:c2:b7:1b:a1:9b:cd:38:
cd:d7:a2:3a:f4:5b:c7:0f:2c:12:40:ad:1d:d6:f6:4d:13:2b:
d5:e0:bd:af:46:a6:6d:b9:79:ef:37:35:24:78:67:ba:dc:05:
54:aa:64:ae:c0:47:98:16:1c:65:d7:63:de:d6:e0:4b:2a:ae:
70:f8:f2:5b:bb:aa:d9:61:8d:b8:7f:25:e3:1a:92:c5:dd:93:
f9:6c:e3:ae:0b:ac:88:11:b4:b9:94:88:50:39:3d:81:3d:a1:
03:ec:47:e0:26:ae:2c:61:8e:e9:81:dd:ad:4d:f1:4d:71:2c:
29:60:15:c2:bf:0a:a3:91:d5:e5:95:dd:f3:5c:71:ce:33:b4:
f8:93:76:fb:c3:ea:83:22:cc:33:0c:3a:89:53:63:d2:9e:25:
84:23:36:68:6b:89:3b:1e:7b:28:7f:49:81:43:89:e2:8d:a7:
9c:72:2c:b0:b1:93:fe:58:11:2a:54:b0:5d:0a:49:4d:ea:4e:
14:db:4b:e1:8b:5d:61:c2:ac:4a:2f:2a:a9:0d:2f:8a:f5:ea:
ad:9e:4f:24
-----BEGIN CERTIFICATE-----
MIIF2TCCBMGgAwIBAgIUfZD2TOc+TPWu+t91tG0rtTnKM+cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNDAzMjMwMTMzNTVaFw0yNTAzMjIwMTM4NTVaMDMxMTAvBgNV
BAMTKDhFMDdEMzFDNjQ1MkY3QTZCMjRFNjNDRERDNDkwRTEyRTBBRkIzOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5K4ymC1Pz429bTX+DQzEXgRsI
nH/PXFsAmI2rN8GusFYpwodTSieDANP6Yp1KuCFnSbNNit1PhklcY7P/16MnU2OX
N7InnxudcV2YQujng6AolZJ2mSm+RcEy5mDpfho6BuUNNL69JMk9vw3Y3LsG15Hw
7IhyinhG5I1stWgf8LGV3ZMeeKO57w4LsdWcJaNMreZtIdHhg0FIpK/c088E/HF9
0RMMvSRlewgtZV0tq/uQlnhln3k8Qm3XXP8ICrG3M3SyT0sJ57572HNhxCgmO//m
URbMUuL4huPe8rrBNeVCYE7Wdl5jZEsmXFRaO1LUYsPFcco8o+txbMOCR1w7AgMB
AAGjggLjMIIC3zAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSOB9McZFL3prJO
Y83cSQ4S4K+zjDAfBgNVHSMEGDAWgBSoPUhlLzst909r+bqoqcF0zP03cjAOBgNV
HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BODNENDg2NTJGM0IyREY3NEY2QkY5QkFB
OEE5QzE3NENDRkQzNzcyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKG
SHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUQxSVpT
ODdMZmRQYV9tNnFLbkJkTXo5TjNJLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0w
XwYIKwYBBQUHMAWGU3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4NzU1LzQv
MIGLBggrBgEFBQcwCoZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUv
NC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0REQzQ5MEUxMkUwQUZCMzhDLm1mdDA8
BggrBgEFBQcwDYYwaHR0cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3Rp
ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH
AQcBAf8EEjAQMA4EAgACMAgDBgQqFHWBQDANBgkqhkiG9w0BAQsFAAOCAQEAFUzG
rUaUtc04ICDD+zC3yiBqA50+iFn5X50UA3V/cHKy9kx9rHsayr3TeIki3x3Ctxuh
m804zdeiOvRbxw8sEkCtHdb2TRMr1eC9r0ambbl57zc1JHhnutwFVKpkrsBHmBYc
Zddj3tbgSyqucPjyW7uq2WGNuH8l4xqSxd2T+WzjrgusiBG0uZSIUDk9gT2hA+xH
4CauLGGO6YHdrU3xTXEsKWAVwr8Ko5HV5ZXd81xxzjO0+JN2+8PqgyLMMww6iVNj
0p4lhCM2aGuJOx57KH9JgUOJ4o2nnHIssLGT/lgRKlSwXQpJTepOFNtL4YtdYcKs
Si8qqQ0vivXqrZ5PJA==
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org