Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer
File: AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer (raw, json)
Hash identifier: VoqVjPrUSoMo2Kvy3V2BAFcQSdOPdhtGOqVm0tXur80=
Subject key identifier: AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 339EBC1E9D1FC5B3BFEBF370019B4D0920563F6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Sun 07 Jul 2024 17:58:38 +0000
Certificate not after: Sun 06 Jul 2025 18:03:38 +0000
Subordinate resources: IP: 2a11:f2c0:ffcc::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:9e:bc:1e:9d:1f:c5:b3:bf:eb:f3:70:01:9b:4d:09:20:56:3f:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: Jul 7 17:58:38 2024 GMT
Not After : Jul 6 18:03:38 2025 GMT
Subject: CN=AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:3f:da:e2:9c:df:fa:60:3f:44:05:44:eb:
bc:3c:80:c0:15:89:3a:88:b7:e8:d5:ef:3e:1d:f5:
29:42:04:4a:ea:08:b8:be:7e:fe:b1:64:15:3d:94:
18:aa:e5:8b:ae:23:13:bc:87:f3:2a:52:13:ae:4d:
bf:5c:63:38:ef:cc:73:55:37:b4:ca:60:71:58:e5:
dd:3b:fa:ed:b8:40:40:56:3b:7c:2f:0e:e7:36:1f:
1f:1a:7d:87:80:27:38:55:ee:69:47:77:ca:4a:5e:
2c:38:ae:aa:94:31:a6:1c:36:30:fc:83:c0:11:12:
0c:13:98:98:46:0c:75:6b:06:cd:ed:77:8e:ac:a7:
b7:f3:b5:5b:cd:bf:c1:fc:15:5a:42:44:f4:59:09:
3d:67:7b:ad:99:7d:d4:48:bb:a9:ac:23:16:97:07:
5d:34:27:0d:7c:67:0e:b7:d3:48:53:05:77:9f:ac:
95:c3:2d:fe:0e:cc:ad:81:2b:b7:76:33:4a:5f:6c:
98:7c:e7:e5:c1:be:f5:dd:5e:83:fd:fe:14:a8:97:
73:cf:60:4a:4a:2b:ae:e0:4c:66:96:4e:f6:ba:05:
e8:42:ec:96:79:58:ce:ac:2f:b6:cc:50:ce:97:a5:
7b:5a:22:8e:a8:2c:e0:53:ee:bf:29:4f:68:aa:05:
38:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffcc::/48
Signature Algorithm: sha256WithRSAEncryption
23:5c:d6:94:9a:34:99:4d:85:c5:23:34:a5:42:00:8c:a9:ec:
9e:36:7e:a5:ae:8f:44:f2:64:25:55:9c:c1:99:0c:c2:f2:a0:
ed:22:d8:2c:21:26:9b:b9:99:ea:d3:2a:38:18:e6:cc:f0:4e:
c6:c7:50:1a:72:58:e1:8e:2a:7f:20:5d:e8:2d:cb:8a:92:4b:
93:1a:73:cd:e3:09:9e:35:bc:fd:d4:a7:0a:88:09:7c:79:79:
7c:24:01:dc:e7:a6:fa:d0:70:f1:f2:36:c7:7b:ff:65:39:0f:
5a:29:c1:31:39:98:e4:fc:98:37:2f:41:db:bb:1e:6d:4e:7a:
a1:7d:f9:ae:8f:e2:9f:15:4f:af:28:b8:8f:74:d2:e9:2b:9f:
2a:10:7d:d6:19:9a:7c:96:d9:ec:3f:6b:c6:c7:13:fb:d9:32:
4b:ef:b3:8b:20:e3:b9:4b:2b:5c:d5:fe:60:b7:1f:f8:4e:a2:
c5:50:97:6f:5b:cf:05:43:c3:60:69:83:77:26:ff:30:e3:be:
6f:09:53:b5:96:0f:da:64:c4:bb:a0:13:c1:c2:ef:34:3e:5c:
3a:be:b4:5d:8b:6f:dd:10:5b:eb:73:46:73:c1:6a:03:6b:1f:
85:8e:4f:51:5d:28:8f:96:b8:ac:11:7a:9a:85:e8:4c:0d:45:
0f:e9:7a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 18:05:40 2024 by rpki-client on console-ams.rpki-client.org