Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer
File: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (raw, json)
Hash identifier: Pc4F216M/oD/fxZDUk8HLynWg8D1IQ0ANHs5N2ZC0VQ=
Subject key identifier: 0E:4E:BC:43:1E:35:13:FC:3F:64:1D:B8:80:E2:B2:FE:1D:04:0A:30
Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8
Certificate serial: 59CEAD286D92299443F0D06D62C2946B917EE618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 28 May 2025 16:08:12 +0000
Certificate not after: Wed 27 May 2026 16:13:12 +0000
Subordinate resources: IP: 2a11:5701:20::/44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:ce:ad:28:6d:92:29:94:43:f0:d0:6d:62:c2:94:6b:91:7e:e6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8
Validity
Not Before: May 28 16:08:12 2025 GMT
Not After : May 27 16:13:12 2026 GMT
Subject: CN=0E4EBC431E3513FC3F641DB880E2B2FE1D040A30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fb:b5:ce:28:6e:e3:93:95:c8:17:2e:4c:2a:
15:82:4e:64:10:6c:ea:fe:45:b2:60:c8:d8:b0:97:
00:bf:53:af:15:40:22:c5:cf:f0:62:88:dc:9f:5e:
34:85:71:6a:ef:e0:bb:ea:11:75:71:04:dc:a7:9f:
98:bf:d4:c0:bb:78:d5:df:3e:91:6a:76:1a:a8:85:
22:f1:b4:6c:e5:d5:b1:62:30:91:5e:45:d9:20:71:
c8:19:91:2a:ff:a1:60:04:cb:30:4b:33:54:38:86:
cd:ce:eb:44:ad:4c:00:c7:81:d7:4d:65:ad:85:00:
65:d0:f2:24:0a:d1:b1:06:06:39:a9:4f:47:7b:9d:
04:15:10:cd:d6:cb:54:5d:29:ed:ec:20:bd:36:ee:
e4:43:05:4f:58:96:aa:a2:56:60:6b:7e:ab:9f:68:
05:de:79:c2:26:75:ea:5d:ce:55:e1:d4:3b:d9:48:
bd:33:02:4d:ad:b4:1a:e0:8e:ee:09:4a:b0:e2:75:
2b:ca:0f:ea:db:09:38:66:04:9d:13:24:bd:fc:74:
46:8d:85:0c:4f:1e:f8:4d:ed:93:77:b6:69:ac:cc:
63:2c:1e:ce:ac:7d:8a:9a:29:20:24:fb:be:eb:24:
c0:77:22:47:90:14:59:d7:08:bb:91:32:56:85:e1:
27:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
0E:4E:BC:43:1E:35:13:FC:3F:64:1D:B8:80:E2:B2:FE:1D:04:0A:30
X509v3 Authority Key Identifier:
keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/1/0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:5701:20::/44
Signature Algorithm: sha256WithRSAEncryption
0c:64:94:90:d0:c7:b1:22:93:87:e4:2d:a9:76:cc:dd:f1:54:
fd:73:c0:01:fe:89:1e:3b:4c:f9:c9:86:ab:65:25:04:62:16:
b7:d6:0b:b5:2c:ca:5f:cb:d0:c8:4b:09:ad:5b:11:7e:d5:1c:
83:15:52:eb:d2:dc:ac:4a:31:2f:a9:89:66:eb:57:64:f8:ac:
ca:c9:1c:6b:9c:51:86:21:6a:d9:bf:42:88:6c:40:59:79:34:
50:63:02:5c:97:c1:d7:68:19:f8:97:49:18:81:bb:7b:ca:d7:
c7:05:66:dc:94:f7:b4:f4:cb:a5:05:a7:5e:ba:39:3c:32:d7:
94:28:37:b7:7b:10:69:ad:bc:3d:38:9c:76:3d:95:ee:77:a5:
0b:0b:a4:b6:af:8f:ae:05:56:35:6a:7c:8a:94:17:de:13:2d:
6d:d1:4c:63:de:c6:80:49:62:33:d0:da:b6:54:d2:10:1f:24:
95:ff:05:f3:6c:43:d5:f8:76:b4:fd:49:2d:1f:d3:2f:c8:85:
10:8e:d5:1a:5a:dc:2c:96:f5:4b:02:db:2c:00:6d:b1:f1:a5:
f4:1d:af:f5:94:02:cc:f1:d8:43:84:7d:40:0b:4a:7c:fc:3a:
2c:59:39:b6:ba:08:bb:3f:48:41:64:c6:32:cd:a4:7d:b4:59:
05:bc:25:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:13:22 2025 by rpki-client