Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer
File: AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.cer (raw, json)
Hash identifier: e/9HYgp/mohWVL/xi7PmXFlHj2B3IcMqES1nyxAUKjo=
Subject key identifier: AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 10CC6D63FEBCEB92FAA3D5A29BAAAB547087635F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Mon 09 Jun 2025 02:32:18 +0000
Certificate not after: Mon 08 Jun 2026 02:37:18 +0000
Subordinate resources: IP: 2a11:f2c0:ffcc::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 22:41:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:cc:6d:63:fe:bc:eb:92:fa:a3:d5:a2:9b:aa:ab:54:70:87:63:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: Jun 9 02:32:18 2025 GMT
Not After : Jun 8 02:37:18 2026 GMT
Subject: CN=AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:3f:da:e2:9c:df:fa:60:3f:44:05:44:eb:
bc:3c:80:c0:15:89:3a:88:b7:e8:d5:ef:3e:1d:f5:
29:42:04:4a:ea:08:b8:be:7e:fe:b1:64:15:3d:94:
18:aa:e5:8b:ae:23:13:bc:87:f3:2a:52:13:ae:4d:
bf:5c:63:38:ef:cc:73:55:37:b4:ca:60:71:58:e5:
dd:3b:fa:ed:b8:40:40:56:3b:7c:2f:0e:e7:36:1f:
1f:1a:7d:87:80:27:38:55:ee:69:47:77:ca:4a:5e:
2c:38:ae:aa:94:31:a6:1c:36:30:fc:83:c0:11:12:
0c:13:98:98:46:0c:75:6b:06:cd:ed:77:8e:ac:a7:
b7:f3:b5:5b:cd:bf:c1:fc:15:5a:42:44:f4:59:09:
3d:67:7b:ad:99:7d:d4:48:bb:a9:ac:23:16:97:07:
5d:34:27:0d:7c:67:0e:b7:d3:48:53:05:77:9f:ac:
95:c3:2d:fe:0e:cc:ad:81:2b:b7:76:33:4a:5f:6c:
98:7c:e7:e5:c1:be:f5:dd:5e:83:fd:fe:14:a8:97:
73:cf:60:4a:4a:2b:ae:e0:4c:66:96:4e:f6:ba:05:
e8:42:ec:96:79:58:ce:ac:2f:b6:cc:50:ce:97:a5:
7b:5a:22:8e:a8:2c:e0:53:ee:bf:29:4f:68:aa:05:
38:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AF:5A:EE:5A:C3:83:5D:AD:FF:52:DC:E6:BE:76:F9:83:2B:C3:D4:39
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a8405eb53de446a994d21f3c27ea3f98/0/AF5AEE5AC3835DADFF52DCE6BE76F9832BC3D439.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:ffcc::/48
Signature Algorithm: sha256WithRSAEncryption
39:9d:a5:20:c0:13:a1:1f:25:2e:be:25:42:71:02:9c:4c:08:
88:f7:ee:c4:27:e1:95:db:69:a7:a8:24:97:94:c0:a0:75:9c:
aa:c6:e7:3e:71:b0:39:68:55:e1:96:4e:62:1c:b7:71:b3:ab:
c4:92:45:18:3a:d9:27:34:5e:07:df:47:13:3e:ce:54:59:25:
c5:90:84:d9:65:2b:1c:5d:e2:87:dc:cb:2f:6a:7f:bb:b5:7f:
65:39:46:6a:6d:cb:bd:a3:6d:fc:84:df:af:2a:80:ab:55:03:
02:85:d0:80:f5:8c:40:d0:59:88:81:5b:49:00:ba:a4:cb:da:
7b:ee:a3:e3:dd:0f:6c:45:1f:d0:3b:fe:5c:3d:43:bb:83:3a:
99:4e:15:c6:d1:eb:04:05:75:50:d9:01:42:a4:27:56:b7:19:
c6:47:fc:be:2f:cb:59:81:bf:5c:a8:14:f4:56:5a:16:28:01:
cd:35:45:0d:25:d7:01:34:ef:7e:55:54:38:cc:ff:ec:b0:ec:
49:9a:b9:5a:2f:2e:2b:28:14:f9:ad:c5:15:71:92:2a:17:da:
ce:e4:65:19:ab:9a:ff:18:b5:26:e8:0e:ea:5a:56:0f:ff:12:
eb:13:ba:3b:56:da:3d:c6:79:01:f4:87:eb:8d:50:8b:55:ba:
1c:cf:70:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:01:21 2025 by rpki-client