$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.cer File: B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.cer (raw, json) Hash identifier: ogfttOSa4whzOFxylfy/eKxgDzgvygVhqfF/a7nONtw= Subject key identifier: B3:DB:14:53:17:13:D5:39:0D:FD:AD:1D:3B:DC:A5:BB:07:9F:53:DA Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4595C89A07BC5CD851F26BAD521A3E9561CA5A0C Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Sun 04 Aug 2024 18:08:18 +0000 Certificate not after: Sun 03 Aug 2025 18:13:18 +0000 Subordinate resources: IP: 2a07:54c1:c500::/40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:95:c8:9a:07:bc:5c:d8:51:f2:6b:ad:52:1a:3e:95:61:ca:5a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 4 18:08:18 2024 GMT Not After : Aug 3 18:13:18 2025 GMT Subject: CN=B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:2c:1e:c7:1a:9f:dc:99:e6:5c:6f:56:1e:86: f1:98:49:39:c5:99:e5:e5:a7:17:13:da:5e:49:41: 29:46:a3:84:3b:8d:a9:3b:c3:eb:09:2e:78:d6:84: 46:6c:40:58:77:9f:31:0b:c7:c9:e0:b6:1e:34:db: 6c:7d:0e:a8:a1:c5:b1:52:42:25:2f:5f:5f:d5:22: 6b:7b:51:e9:bc:21:42:7a:2a:02:2f:c6:96:c3:a5: bd:0e:9e:60:8a:d8:e9:cc:e8:08:19:e2:94:6a:90: ea:f3:c8:bb:c4:e9:22:94:44:91:b0:28:3d:a7:d8: cc:cf:aa:10:a6:2f:0a:37:d0:a6:81:1b:43:cd:b6: 9c:59:5e:63:18:21:76:9a:8f:1b:b3:b0:d9:a3:06: a7:83:f6:ac:10:60:55:cc:05:03:77:30:f7:fb:81: 31:9f:66:eb:d7:17:f1:e9:a6:27:36:06:1e:20:e2: e4:3e:94:5f:93:b6:9f:6f:c6:18:7b:bd:90:b8:46: ec:5d:d7:0f:f8:05:9d:78:7c:1f:40:9c:e1:67:0d: 72:3d:5c:ec:60:8e:25:49:7a:c4:13:56:7c:c2:1a: 2b:ae:61:32:d3:d1:31:6d:cc:f5:e1:c3:76:08:46: ee:4e:b4:87:c5:cf:17:da:0e:b6:a1:3a:cc:99:da: 54:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B3:DB:14:53:17:13:D5:39:0D:FD:AD:1D:3B:DC:A5:BB:07:9F:53:DA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/B3DB14531713D5390DFDAD1D3BDCA5BB079F53DA.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c500::/40 Signature Algorithm: sha256WithRSAEncryption 9e:6c:37:ae:e1:94:cb:55:8a:55:a7:d5:ed:3f:b5:b9:2d:f2: fd:f6:75:68:ec:d3:ae:34:68:46:e7:a2:30:60:a3:15:b0:e3: 31:7a:e2:ca:eb:9d:37:75:ea:0c:53:e9:46:46:9a:ef:57:2e: a4:d5:c0:bd:9f:3c:0d:dc:46:9e:58:f1:e5:d2:a4:18:b4:f6: 3e:71:48:c8:08:bf:40:18:7a:d3:2a:05:d7:81:80:9c:e3:6f: c8:00:4d:f3:a0:c1:ae:ed:19:a2:32:14:09:ef:62:82:f3:23: ca:fd:72:0b:32:8b:57:b8:1e:bb:32:e0:b7:d8:4c:6d:30:62: 0c:75:e3:35:0d:d3:82:46:d4:dc:4b:f0:a6:ed:d3:a8:58:3a: 78:27:0f:cb:b6:92:1d:78:07:cf:92:43:0a:af:0a:3b:3f:1d: 61:e8:0d:cc:60:e3:8b:a3:77:84:ee:62:21:14:bb:08:33:a4: 25:bd:d8:4e:59:e9:3d:1f:5d:ee:ae:bf:df:51:8a:9e:4d:7d: 60:89:f8:b1:66:71:d7:42:3c:ce:ee:ad:5f:71:5f:06:2c:76: b6:14:75:75:34:f0:91:c1:3a:e5:82:29:8b:27:68:22:30:4d: 95:b6:2f:d5:ef:d3:d8:f8:c7:32:7b:e0:5f:06:c9:e6:41:1e: 7d:e1:14:f8 -----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgIURZXImge8XNhR8mutUho+lWHKWgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MDQxODA4MThaFw0yNTA4MDMxODEzMThaMDMxMTAvBgNV BAMTKEIzREIxNDUzMTcxM0Q1MzkwREZEQUQxRDNCRENBNUJCMDc5RjUzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXLB7HGp/cmeZcb1YehvGYSTnF meXlpxcT2l5JQSlGo4Q7jak7w+sJLnjWhEZsQFh3nzELx8ngth4022x9DqihxbFS QiUvX1/VImt7Uem8IUJ6KgIvxpbDpb0OnmCK2OnM6AgZ4pRqkOrzyLvE6SKURJGw KD2n2MzPqhCmLwo30KaBG0PNtpxZXmMYIXaajxuzsNmjBqeD9qwQYFXMBQN3MPf7 gTGfZuvXF/Hppic2Bh4g4uQ+lF+Ttp9vxhh7vZC4Ruxd1w/4BZ14fB9AnOFnDXI9 XOxgjiVJesQTVnzCGiuuYTLT0TFtzPXhw3YIRu5OtIfFzxfaDrahOsyZ2lQLAgMB AAGjggMTMIIDDzAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSz2xRTFxPVOQ39 rR073KW7B59T2jAfBgNVHSMEGDAWgBRB9lfPNWTyM7l39ArKXkvRDh4vjjAOBgNV HQ8BAf8EBAMCAQYwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC80MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFD QTVFNEJEMTBFMUUyRjhFLmNybDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUF BzAChnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhh ZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi80MUY2NTdDRjM1NjRGMjMzQjk3 N0Y0MEFDQTVFNEJEMTBFMUUyRjhFLmNlcjCCAT8GCCsGAQUFBwELBIIBMTCCAS0w XwYIKwYBBQUHMAWGU3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3Jl cG9zaXRvcnkvN2Y1ZDJhMWItY2FjYy00ZTIyLThhZjItOWYyMGE5MzI5YmNiLzIv MIGLBggrBgEFBQcwCoZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQv cmVwb3NpdG9yeS83ZjVkMmExYi1jYWNjLTRlMjItOGFmMi05ZjIwYTkzMjliY2Iv Mi9CM0RCMTQ1MzE3MTNENTM5MERGREFEMUQzQkRDQTVCQjA3OUY1M0RBLm1mdDA8 BggrBgEFBQcwDYYwaHR0cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3Rp ZmljYXRpb24ueG1sMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqB1TBxTANBgkqhkiG9w0BAQsFAAOCAQEAnmw3 ruGUy1WKVafV7T+1uS3y/fZ1aOzTrjRoRueiMGCjFbDjMXriyuudN3XqDFPpRkaa 71cupNXAvZ88DdxGnljx5dKkGLT2PnFIyAi/QBh60yoF14GAnONvyABN86DBru0Z ojIUCe9igvMjyv1yCzKLV7geuzLgt9hMbTBiDHXjNQ3TgkbU3Evwpu3TqFg6eCcP y7aSHXgHz5JDCq8KOz8dYegNzGDji6N3hO5iIRS7CDOkJb3YTlnpPR9d7q6/31GK nk19YIn4sWZx10I8zu6tX3FfBix2thR1dTTwkcE65YIpiydoIjBNlbYv1e/T2PjH MnvgXwbJ5kEefeEU+A== -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org