Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AC2082F41576F66D1AA264309E33E738246AC454.cer
File: AC2082F41576F66D1AA264309E33E738246AC454.cer (raw, json)
Hash identifier: EBXIA2HyQDftncurC/Ns4emAMmzsEr4g3lfxrp8jyZk=
Subject key identifier: AC:20:82:F4:15:76:F6:6D:1A:A2:64:30:9E:33:E7:38:24:6A:C4:54
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 52290A7F2BFEE67EA4FFC3A93C9355ADBE4E51F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 12 Jun 2025 16:33:14 +0000
Certificate not after: Thu 11 Jun 2026 16:38:14 +0000
Subordinate resources: IP: 2a14:7584:4000::/36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:41:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:29:0a:7f:2b:fe:e6:7e:a4:ff:c3:a9:3c:93:55:ad:be:4e:51:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jun 12 16:33:14 2025 GMT
Not After : Jun 11 16:38:14 2026 GMT
Subject: CN=AC2082F41576F66D1AA264309E33E738246AC454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0b:ca:9a:ca:13:d5:2a:f5:14:cd:e9:36:90:
00:8e:2d:fc:83:4f:98:e1:7c:1c:f1:ac:b4:9f:4f:
b8:47:57:14:97:d6:00:c8:f4:eb:03:96:46:a2:21:
96:66:ab:87:90:a9:be:bd:70:e5:2f:be:a6:4d:82:
ae:65:7d:b3:7c:7c:66:16:4c:a5:ba:c3:f6:04:e7:
11:f7:68:fd:d3:e3:08:85:8e:79:01:6c:19:45:c9:
89:ca:c3:bc:9c:b6:d7:7a:89:a9:27:1c:be:79:72:
f3:14:bf:97:7a:79:d0:05:c8:63:ea:dc:73:02:7b:
dd:d7:8d:1a:0c:e6:81:77:d3:22:6d:45:a9:78:8b:
5a:be:bf:82:0a:33:6f:6a:48:05:8f:eb:4a:12:2a:
11:f7:f7:c2:9f:83:31:e3:4c:5f:0b:7b:17:2f:f1:
60:c0:34:20:f6:a3:91:8f:d8:05:90:1f:be:6f:1b:
43:ba:f4:7a:01:e3:62:14:c4:8a:f3:70:51:50:6f:
6e:2f:f9:41:c3:51:3c:55:ee:7f:d6:15:b2:ef:05:
8b:66:00:92:29:2f:84:fa:da:67:3e:00:1a:e1:9f:
2d:a8:11:a2:e2:6e:28:28:f3:4f:f6:af:72:dd:a5:
db:b8:ed:51:77:65:7d:33:2b:63:b9:fb:d6:24:17:
c2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AC:20:82:F4:15:76:F6:6D:1A:A2:64:30:9E:33:E7:38:24:6A:C4:54
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/2/AC2082F41576F66D1AA264309E33E738246AC454.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7584:4000::/36
Signature Algorithm: sha256WithRSAEncryption
72:73:4b:18:3a:51:26:05:16:f0:cf:24:9e:6a:d8:cb:81:5b:
c2:3a:03:55:64:c7:eb:40:23:b2:69:b4:0b:04:30:cd:d8:1d:
38:92:78:d1:d9:a1:1c:83:a6:26:5b:4d:76:47:90:df:d5:5e:
1b:17:ba:ab:c4:ae:4a:4a:21:ff:30:e9:02:86:91:11:00:69:
9e:9c:4a:49:36:d4:b0:d8:ea:32:7f:0b:aa:9b:68:0f:22:2a:
d7:16:d3:8c:21:b8:90:08:93:65:a7:06:3f:02:0d:b0:7e:08:
40:4c:33:dc:0c:13:5c:ec:b5:60:bb:28:d6:63:00:da:a9:46:
39:38:2c:6b:e0:dd:a0:53:95:c4:82:01:bc:45:2e:22:c8:76:
7b:e8:29:b2:c1:70:09:c5:5a:1e:01:94:08:10:6f:83:cc:9d:
aa:1c:0d:8a:65:ab:d3:54:d7:7f:67:75:09:50:48:e3:fe:bc:
a6:60:3b:2e:3c:5b:c4:8d:a9:70:56:e0:1d:cc:d0:b5:02:e0:
91:ee:95:9d:fc:67:d6:fc:0c:a1:2e:ae:7a:5b:c7:cc:56:ba:
ab:dc:b7:74:7c:ab:d8:4a:b4:14:ce:9c:91:e4:0c:11:ee:c6:
0a:a3:17:07:dc:be:aa:c3:c9:43:d3:75:a2:dc:d4:39:c7:40:
52:c5:1d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:43:32 2025 by rpki-client