Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/31586760843F668A816117EA02F6F30FE8F9C359.cer
File: 31586760843F668A816117EA02F6F30FE8F9C359.cer (raw, json)
Hash identifier: Obn68bEuGPTmw1LGG1u+CDF5SF5YjMLrXvpGmzKjeG0=
Subject key identifier: 31:58:67:60:84:3F:66:8A:81:61:17:EA:02:F6:F3:0F:E8:F9:C3:59
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 01A8348DEBD8D534FB93D67E18DF54AB6332644F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/31586760843F668A816117EA02F6F30FE8F9C359.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Sun 07 Jul 2024 17:56:09 +0000
Certificate not after: Sun 06 Jul 2025 18:01:09 +0000
Subordinate resources: IP: 2a11:f2c0:ff80::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Sep 2024 10:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:a8:34:8d:eb:d8:d5:34:fb:93:d6:7e:18:df:54:ab:63:32:64:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: Jul 7 17:56:09 2024 GMT
Not After : Jul 6 18:01:09 2025 GMT
Subject: CN=31586760843F668A816117EA02F6F30FE8F9C359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:2a:2a:2f:2c:14:6b:6b:87:2c:06:4d:c9:
20:ef:00:22:86:2d:3f:53:b2:d2:36:4a:88:09:d2:
d6:28:17:df:4c:85:a3:88:bf:21:b9:ae:07:45:6c:
25:1e:24:71:95:7c:72:7f:aa:a7:3e:c5:ce:7c:15:
06:bb:92:13:23:6b:b0:35:7f:38:fe:86:2f:50:ff:
46:7d:c6:2e:a3:67:f4:5e:04:f7:59:cf:57:17:2e:
00:b7:d5:04:43:95:9e:ff:c9:a2:60:f8:e4:ee:48:
1d:cc:fc:cf:51:2e:f4:7c:73:6b:d1:e0:db:c8:00:
b7:8f:bf:55:82:de:fe:8f:27:10:72:40:49:d5:21:
06:cb:f7:1d:19:ca:d8:3c:df:6c:f5:4d:83:cf:01:
91:9a:62:41:d2:2f:0d:a4:c6:37:5c:29:a1:8d:7d:
c1:9e:df:1d:0f:34:fb:a4:c2:dd:6c:33:f2:3e:17:
37:8d:fa:9d:aa:f8:cd:b7:2c:89:dd:ed:33:a4:c6:
99:d6:fa:cb:3e:da:60:c2:57:e8:4f:a8:17:e4:38:
30:19:39:27:f7:2b:e7:47:cf:66:2c:e3:bc:28:ab:
3d:85:46:54:64:28:d4:0b:86:64:d9:37:ca:53:4a:
fa:10:46:e5:81:b4:31:3a:d3:77:f9:18:63:0b:b3:
b4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
31:58:67:60:84:3F:66:8A:81:61:17:EA:02:F6:F3:0F:E8:F9:C3:59
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_67c5d4ad433e4cfc9086ea1f33f2d276/0/31586760843F668A816117EA02F6F30FE8F9C359.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ff80::/48
Signature Algorithm: sha256WithRSAEncryption
4b:f2:3d:0b:f4:98:a8:a3:68:9e:de:07:2b:c3:c6:f8:6d:dc:
f0:a0:5c:96:29:f1:ef:43:64:33:96:0f:ff:54:1d:b1:16:3f:
8f:ce:8f:9d:b1:4d:c2:25:1e:6d:34:59:f3:61:00:04:35:47:
3d:36:f4:3a:da:24:80:37:59:e1:e4:a1:54:74:8b:de:a4:b9:
c6:34:04:2b:da:fa:42:cc:fe:81:04:09:f6:9d:94:57:be:96:
23:e3:95:aa:da:02:92:89:d7:5a:fb:cf:9c:1d:42:bb:52:1c:
6e:3a:07:b6:8e:c3:d2:c8:05:e3:bb:74:4e:54:f3:cb:dd:f4:
61:d8:72:e1:da:7a:85:35:2a:15:55:fe:75:fd:7c:f1:6a:27:
c8:f5:46:31:4d:09:10:3f:89:8b:5c:6f:71:15:86:ac:97:c8:
77:7d:2c:27:40:5c:81:d7:dc:78:5a:9f:ff:2b:05:5c:5f:f5:
28:46:bb:58:79:77:57:4d:da:4a:a3:65:8e:46:b1:8c:0b:76:
ee:0e:a6:cc:9c:5b:27:51:35:d6:cd:d2:0f:51:fd:11:31:cc:
c7:b3:25:25:20:0a:9f:a6:1c:a2:31:7c:c6:a6:48:48:ad:6c:
05:7a:f6:f1:aa:8b:a3:44:1e:7e:13:1f:83:26:6b:e0:9a:38:
1a:50:ce:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 14:48:54 2024 by rpki-client on console-ams.rpki-client.org