Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer
File: 8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer (raw, json)
Hash identifier: bka0LJk5bojnaun22jkoGD7uN/i9aOLknjfb6kw8ZEg=
Subject key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 232FC07EF4927D8E07F6ECB7D87266C8CF5912C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 11 Mar 2026 21:56:03 +0000
Certificate not after: Wed 10 Mar 2027 22:01:03 +0000
Subordinate resources: IP: 2a14:7581:4000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 04:28:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:2f:c0:7e:f4:92:7d:8e:07:f6:ec:b7:d8:72:66:c8:cf:59:12:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 11 21:56:03 2026 GMT
Not After : Mar 10 22:01:03 2027 GMT
Subject: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2b:8c:a6:0b:53:f3:e3:6f:5b:4d:7f:83:43:
31:17:81:1b:08:9c:7f:cf:5c:5b:00:98:8d:ab:37:
c1:ae:b0:56:29:c2:87:53:4a:27:83:00:d3:fa:62:
9d:4a:b8:21:67:49:b3:4d:8a:dd:4f:86:49:5c:63:
b3:ff:d7:a3:27:53:63:97:37:b2:27:9f:1b:9d:71:
5d:98:42:e8:e7:83:a0:28:95:92:76:99:29:be:45:
c1:32:e6:60:e9:7e:1a:3a:06:e5:0d:34:be:bd:24:
c9:3d:bf:0d:d8:dc:bb:06:d7:91:f0:ec:88:72:8a:
78:46:e4:8d:6c:b5:68:1f:f0:b1:95:dd:93:1e:78:
a3:b9:ef:0e:0b:b1:d5:9c:25:a3:4c:ad:e6:6d:21:
d1:e1:83:41:48:a4:af:dc:d3:cf:04:fc:71:7d:d1:
13:0c:bd:24:65:7b:08:2d:65:5d:2d:ab:fb:90:96:
78:65:9f:79:3c:42:6d:d7:5c:ff:08:0a:b1:b7:33:
74:b2:4f:4b:09:e7:be:7b:d8:73:61:c4:28:26:3b:
ff:e6:51:16:cc:52:e2:f8:86:e3:de:f2:ba:c1:35:
e5:42:60:4e:d6:76:5e:63:64:4b:26:5c:54:5a:3b:
52:d4:62:c3:c5:71:ca:3c:a3:eb:71:6c:c3:82:47:
5c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:4000::/36
Signature Algorithm: sha256WithRSAEncryption
62:fe:71:3c:6b:f6:66:18:f8:e7:80:cb:d4:94:98:04:e9:54:
87:48:7a:c9:79:1b:20:1c:76:45:2b:ed:c6:0f:82:84:3a:ec:
5d:6f:6f:48:2b:4d:a4:2f:0b:d5:c8:8c:62:0d:77:95:7b:d0:
30:25:e6:ba:eb:31:e5:fa:04:33:61:6d:31:e2:d6:88:06:f4:
fa:07:dc:32:6e:5d:fe:2f:0e:a6:28:8b:77:1e:39:5b:8a:be:
04:f1:c9:0c:3a:f0:a9:1a:20:7a:e9:d7:db:bb:c1:d5:0d:00:
22:c7:e0:70:7a:b1:ef:5d:7c:b6:4e:99:ac:cd:e1:81:b1:5f:
37:5f:9a:b7:dd:52:1b:62:61:83:04:e4:98:91:68:ef:a5:10:
7b:13:48:82:f6:69:fd:23:2c:f2:3a:28:5b:68:04:99:5c:95:
56:03:74:50:bf:eb:71:f0:f1:84:54:6b:e1:b4:f1:5d:59:53:
21:76:2a:3a:3d:c6:5c:40:52:3b:76:16:d3:a4:6c:d6:f9:1e:
56:2f:79:e5:07:57:68:b7:4b:9c:81:3b:f7:7e:82:50:2a:f3:
ce:83:a6:5f:b8:82:a2:73:95:ad:2d:8f:9b:f1:3c:00:51:36:
97:8b:03:a8:51:8b:a9:6c:ee:03:a5:a3:c5:f8:c2:5e:ba:4c:
b3:59:d0:ca
-----BEGIN CERTIFICATE-----
MIIF2TCCBMGgAwIBAgIUIy/AfvSSfY4H9uy32HJmyM9ZEsQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNjAzMTEyMTU2MDNaFw0yNzAzMTAyMjAxMDNaMDMxMTAvBgNV
BAMTKDhFMDdEMzFDNjQ1MkY3QTZCMjRFNjNDRERDNDkwRTEyRTBBRkIzOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5K4ymC1Pz429bTX+DQzEXgRsI
nH/PXFsAmI2rN8GusFYpwodTSieDANP6Yp1KuCFnSbNNit1PhklcY7P/16MnU2OX
N7InnxudcV2YQujng6AolZJ2mSm+RcEy5mDpfho6BuUNNL69JMk9vw3Y3LsG15Hw
7IhyinhG5I1stWgf8LGV3ZMeeKO57w4LsdWcJaNMreZtIdHhg0FIpK/c088E/HF9
0RMMvSRlewgtZV0tq/uQlnhln3k8Qm3XXP8ICrG3M3SyT0sJ57572HNhxCgmO//m
URbMUuL4huPe8rrBNeVCYE7Wdl5jZEsmXFRaO1LUYsPFcco8o+txbMOCR1w7AgMB
AAGjggLjMIIC3zAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSOB9McZFL3prJO
Y83cSQ4S4K+zjDAfBgNVHSMEGDAWgBSoPUhlLzst909r+bqoqcF0zP03cjAOBgNV
HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu
Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy
OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BODNENDg2NTJGM0IyREY3NEY2QkY5QkFB
OEE5QzE3NENDRkQzNzcyLmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKG
SHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUQxSVpT
ODdMZmRQYV9tNnFLbkJkTXo5TjNJLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0w
XwYIKwYBBQUHMAWGU3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3Jl
cG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4NzU1LzQv
MIGLBggrBgEFBQcwCoZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv
cmVwb3NpdG9yeS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUv
NC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0REQzQ5MEUxMkUwQUZCMzhDLm1mdDA8
BggrBgEFBQcwDYYwaHR0cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3Rp
ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH
AQcBAf8EEjAQMA4EAgACMAgDBgQqFHWBQDANBgkqhkiG9w0BAQsFAAOCAQEAYv5x
PGv2Zhj454DL1JSYBOlUh0h6yXkbIBx2RSvtxg+ChDrsXW9vSCtNpC8L1ciMYg13
lXvQMCXmuusx5foEM2FtMeLWiAb0+gfcMm5d/i8OpiiLdx45W4q+BPHJDDrwqRog
eunX27vB1Q0AIsfgcHqx7118tk6ZrM3hgbFfN1+at91SG2JhgwTkmJFo76UQexNI
gvZp/SMs8jooW2gEmVyVVgN0UL/rcfDxhFRr4bTxXVlTIXYqOj3GXEBSO3YW06Rs
1vkeVi955QdXaLdLnIE7936CUCrzzoOmX7iConOVrS2Pm/E8AFE2l4sDqFGLqWzu
A6WjxfjCXrpMs1nQyg==
-----END CERTIFICATE-----
Generated at Thu Mar 12 18:21:04 2026 by rpki-client