Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer
File: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (raw, json)
Hash identifier: 6xKp24gU5DBAB1Kw+WWXfVQhj34i1+UyseAfrABT8A8=
Subject key identifier: 0E:4E:BC:43:1E:35:13:FC:3F:64:1D:B8:80:E2:B2:FE:1D:04:0A:30
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 355F012361CE9ABB456179E488BF2ECB7C463A68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 26 Jun 2024 04:43:22 +0000
Certificate not after: Wed 25 Jun 2025 04:48:22 +0000
Subordinate resources: IP: 2a11:5701:20::/44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 11:25:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:5f:01:23:61:ce:9a:bb:45:61:79:e4:88:bf:2e:cb:7c:46:3a:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: Jun 26 04:43:22 2024 GMT
Not After : Jun 25 04:48:22 2025 GMT
Subject: CN=0E4EBC431E3513FC3F641DB880E2B2FE1D040A30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fb:b5:ce:28:6e:e3:93:95:c8:17:2e:4c:2a:
15:82:4e:64:10:6c:ea:fe:45:b2:60:c8:d8:b0:97:
00:bf:53:af:15:40:22:c5:cf:f0:62:88:dc:9f:5e:
34:85:71:6a:ef:e0:bb:ea:11:75:71:04:dc:a7:9f:
98:bf:d4:c0:bb:78:d5:df:3e:91:6a:76:1a:a8:85:
22:f1:b4:6c:e5:d5:b1:62:30:91:5e:45:d9:20:71:
c8:19:91:2a:ff:a1:60:04:cb:30:4b:33:54:38:86:
cd:ce:eb:44:ad:4c:00:c7:81:d7:4d:65:ad:85:00:
65:d0:f2:24:0a:d1:b1:06:06:39:a9:4f:47:7b:9d:
04:15:10:cd:d6:cb:54:5d:29:ed:ec:20:bd:36:ee:
e4:43:05:4f:58:96:aa:a2:56:60:6b:7e:ab:9f:68:
05:de:79:c2:26:75:ea:5d:ce:55:e1:d4:3b:d9:48:
bd:33:02:4d:ad:b4:1a:e0:8e:ee:09:4a:b0:e2:75:
2b:ca:0f:ea:db:09:38:66:04:9d:13:24:bd:fc:74:
46:8d:85:0c:4f:1e:f8:4d:ed:93:77:b6:69:ac:cc:
63:2c:1e:ce:ac:7d:8a:9a:29:20:24:fb:be:eb:24:
c0:77:22:47:90:14:59:d7:08:bb:91:32:56:85:e1:
27:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
0E:4E:BC:43:1E:35:13:FC:3F:64:1D:B8:80:E2:B2:FE:1D:04:0A:30
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5701:20::/44
Signature Algorithm: sha256WithRSAEncryption
01:53:f5:0e:68:c4:cd:84:66:87:fd:fe:e2:3d:21:1b:ea:bc:
1c:c4:23:98:d2:fc:18:76:ae:55:18:cd:ec:81:b2:f8:0b:fb:
ee:ab:31:03:9b:0c:c4:f5:03:bf:0c:da:60:48:b5:12:a1:dd:
02:ac:6b:4a:ed:ab:b4:73:e4:66:26:30:a4:52:73:5f:07:b4:
38:bc:6e:09:4a:c1:5a:4d:45:6c:3a:2e:2e:0c:74:1b:ef:fe:
d3:b7:14:64:a2:4b:6e:84:d3:eb:e1:4e:1e:c0:28:30:39:03:
23:14:85:f0:54:5b:d8:59:77:88:fc:a6:13:5e:59:ba:29:e2:
93:9c:39:c6:98:49:e8:23:9d:ae:43:f8:34:fb:f8:e8:35:ee:
a1:bd:9d:31:6c:06:e2:2d:bc:1f:e7:08:7e:84:a6:2c:46:66:
a9:b7:f7:44:7f:0e:be:ff:1f:5d:0f:34:19:18:88:86:a8:7a:
17:9a:2f:ab:f9:84:b6:7c:07:99:9a:23:b9:e4:02:e7:c5:f9:
1e:84:1c:96:88:a8:a6:91:7e:29:d6:cd:58:c8:58:a3:ec:51:
86:9c:e7:c1:11:7d:cf:7b:48:56:9a:4f:5b:2f:b5:0b:4a:97:
c9:41:46:da:67:cf:25:e4:c8:da:a8:cf:f0:0a:34:c5:cb:a4:
74:fa:f0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:58 2025 by rpki-client