Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/16821FD22FFB74E3D7FAC3AA03BE6D00145B9A3E.cer
File: 16821FD22FFB74E3D7FAC3AA03BE6D00145B9A3E.cer (raw, json)
Hash identifier: YnMNzm+YIzJLBrLBtgOY2rTJKXweYyOLR4yLRkFOdzY=
Subject key identifier: 16:82:1F:D2:2F:FB:74:E3:D7:FA:C3:AA:03:BE:6D:00:14:5B:9A:3E
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 511FF799BB4D0F1A7D46E5DA8456550C4F586553
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_9f297e7e1f534033aaf93ce1e3b46ffc/0/16821FD22FFB74E3D7FAC3AA03BE6D00145B9A3E.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_9f297e7e1f534033aaf93ce1e3b46ffc/0/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Sun 07 Jul 2024 17:52:03 +0000
Certificate not after: Sun 06 Jul 2025 17:57:03 +0000
Subordinate resources: IP: 2a11:f2c0:b100::/40
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 10:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:1f:f7:99:bb:4d:0f:1a:7d:46:e5:da:84:56:55:0c:4f:58:65:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: Jul 7 17:52:03 2024 GMT
Not After : Jul 6 17:57:03 2025 GMT
Subject: CN=16821FD22FFB74E3D7FAC3AA03BE6D00145B9A3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:db:c5:1f:75:75:06:d2:82:e6:66:15:e3:
7e:3f:cf:c5:86:58:cf:8b:82:2b:02:2a:3c:f9:54:
35:eb:ef:40:89:e9:cb:ce:c0:0a:66:05:2f:ee:34:
9a:df:7c:6e:cd:f7:29:ad:20:28:17:59:65:3a:af:
84:40:6b:21:02:dc:3d:3e:9e:f5:61:86:f4:5d:74:
c6:b8:c9:d6:72:e3:c4:96:75:0e:67:7e:8c:b8:5f:
5f:db:3c:51:06:8e:97:90:b1:2e:37:ea:c8:1a:89:
71:78:ef:4f:c3:b4:5a:5d:20:70:2e:28:55:0e:fd:
db:12:be:ea:dd:75:ca:bd:e3:c5:ed:67:b2:3b:98:
51:9c:3a:c0:b6:5c:df:75:bb:da:a0:f6:cb:87:4e:
ff:a4:b0:bb:39:17:b1:e1:a2:66:c5:7c:fd:87:75:
b4:6e:dd:87:e1:62:c3:3d:a1:77:f1:18:0f:e2:84:
52:9f:67:8e:55:8d:7b:32:44:68:8d:49:ed:71:06:
2f:c5:ea:05:8a:4f:63:f7:f8:8e:62:74:a3:e0:01:
10:92:d0:d6:53:b7:8d:20:c9:69:b6:4c:17:f1:70:
fd:25:5a:4e:60:f2:4c:e1:48:e8:8f:6a:7a:0e:1c:
0d:ba:08:bf:e2:46:e2:92:11:1f:06:ca:ba:1f:3e:
25:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
16:82:1F:D2:2F:FB:74:E3:D7:FA:C3:AA:03:BE:6D:00:14:5B:9A:3E
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9f297e7e1f534033aaf93ce1e3b46ffc/0/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9f297e7e1f534033aaf93ce1e3b46ffc/0/16821FD22FFB74E3D7FAC3AA03BE6D00145B9A3E.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:b100::/40
Signature Algorithm: sha256WithRSAEncryption
6a:8f:af:54:fa:f6:bd:d9:5d:77:4e:c4:f6:58:7d:20:4b:95:
be:d9:2e:c4:20:6d:2d:88:97:88:56:f7:aa:e7:8e:01:db:c6:
ff:32:c3:1b:c1:a9:5c:0e:d6:5e:8a:ca:e7:78:f4:66:1a:86:
63:08:2e:15:cb:6a:81:74:a4:cd:3a:0b:29:7e:d1:ac:1d:04:
b4:65:f1:00:a1:02:84:ba:d3:6f:ac:7a:1a:64:00:f5:50:94:
a0:dc:65:10:d3:d2:10:8b:8c:14:2c:fa:c9:40:f2:e8:d7:4d:
fb:d8:ce:07:99:74:a4:84:ca:bf:ec:9e:15:00:2b:58:84:53:
31:d6:22:a0:a5:74:89:2e:5b:2b:32:cf:08:4e:5e:81:9d:2f:
f2:ac:2f:6a:95:ab:b8:2d:a6:9c:58:bc:fa:a0:a6:96:c8:15:
b5:8f:cc:48:09:d6:06:ef:8c:d6:b8:ff:f0:8f:5d:c8:53:c4:
f6:93:a1:1c:90:fa:80:51:bf:63:8c:56:84:fd:fb:1b:fc:2a:
c4:af:bb:83:50:e3:56:93:34:ce:e0:7e:3c:2d:11:75:62:84:
66:1d:de:90:81:9b:a4:b3:ac:64:40:02:44:e4:f9:d7:e9:6d:
d5:fb:a1:64:72:7d:cc:ab:96:9a:cc:9d:49:7b:37:22:7d:4b:
e4:15:e3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 14:48:54 2024 by rpki-client on console-ams.rpki-client.org