Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/34DEF610B33BA719BA344A660C4BDA8333112372.cer
File: 34DEF610B33BA719BA344A660C4BDA8333112372.cer (raw, json)
Hash identifier: 2zvfQD6OuXeBea7YDehDZGQENui+K29ybvU5fAK9Q8k=
Subject key identifier: 34:DE:F6:10:B3:3B:A7:19:BA:34:4A:66:0C:4B:DA:83:33:11:23:72
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 2A606484B6896278ECFE1A78C6DA91DE547045DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 25 Mar 2026 15:12:12 +0000
Certificate not after: Wed 24 Mar 2027 15:17:12 +0000
Subordinate resources: IP: 2a14:7581:3700::/40
IP: 2a14:7581:9f10::/44
IP: 2a14:7583:4000::/36
IP: 2a14:7584:1000::/36
IP: 2a14:7586:7000::/36
IP: 2a14:7586:9000:: -- 2a14:7586:afff:ffff:ffff:ffff:ffff:ffff
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:60:64:84:b6:89:62:78:ec:fe:1a:78:c6:da:91:de:54:70:45:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 25 15:12:12 2026 GMT
Not After : Mar 24 15:17:12 2027 GMT
Subject: CN=34DEF610B33BA719BA344A660C4BDA8333112372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fa:8b:8c:cd:0d:f3:cd:f6:d8:42:c2:20:ec:
2c:8b:56:26:71:cc:de:c0:37:b0:59:64:dd:56:a7:
92:b7:a4:4f:f9:d5:9e:bc:86:24:88:fc:be:50:24:
c9:f7:60:21:12:02:2d:f6:af:2c:44:75:9b:c8:56:
a7:a5:2d:70:68:e8:a0:c9:0f:9e:6a:99:3a:98:7c:
c7:fb:6a:3c:a6:62:4c:e1:57:14:0b:fe:80:bd:55:
98:af:80:1b:a2:63:30:64:74:c7:cf:c5:98:95:bf:
59:fb:a1:00:f7:bd:9d:57:66:cd:84:8b:bb:e3:2c:
cb:9e:06:27:f0:bc:3b:15:d0:78:90:de:39:b5:4e:
7e:b0:ff:3c:19:15:46:4a:5d:b0:d1:29:c4:ed:11:
4b:a7:3b:ba:8e:7a:05:78:72:aa:27:29:de:48:f5:
f4:81:4d:c5:30:af:d4:c2:4a:1b:c3:3a:0b:2d:03:
51:b8:da:ef:04:82:e7:36:2f:2b:75:8e:06:f4:01:
13:45:e5:da:19:1a:da:e3:f6:b3:41:5c:75:f5:3c:
27:c9:d7:73:ca:ab:f1:52:9a:2b:e2:f2:a0:38:2b:
e0:a4:eb:59:2c:ea:5f:e9:a2:42:c7:76:58:61:c1:
1d:a7:aa:05:b7:67:ae:bd:c9:a7:82:17:80:90:2a:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
34:DE:F6:10:B3:3B:A7:19:BA:34:4A:66:0C:4B:DA:83:33:11:23:72
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:3700::/40
2a14:7581:9f10::/44
2a14:7583:4000::/36
2a14:7584:1000::/36
2a14:7586:7000::/36
2a14:7586:9000::-2a14:7586:afff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6a:75:ba:39:6d:54:b9:b4:7d:ac:26:be:1f:80:d6:03:e9:18:
e6:2e:43:0b:d1:b0:38:80:73:31:54:5b:a7:af:20:3e:3b:43:
8d:6d:22:93:52:e0:96:4d:08:93:1c:9d:49:c9:cf:f9:0a:94:
0e:10:16:ef:1b:f7:af:cd:ad:39:cf:b3:05:93:c8:9c:49:34:
8b:33:d6:52:e3:63:37:39:7b:a4:eb:8e:de:35:bf:4b:75:df:
7a:1d:e3:1b:c5:2d:1d:e0:3a:39:4b:10:3d:a8:4a:e7:74:73:
3a:93:54:6e:04:97:99:1a:32:10:7b:3a:9e:44:36:31:58:4a:
9b:60:49:5d:9e:2d:c9:15:89:1c:76:7e:0a:dc:9c:dd:36:d1:
dd:1f:7a:51:5d:24:01:1e:52:3e:87:63:2c:67:87:b6:a1:2d:
6e:88:b4:29:66:d2:09:07:53:cc:1e:36:90:50:ae:b0:cd:75:
52:ea:0e:5c:8a:0f:3b:a5:e2:b8:72:be:92:87:31:d4:ab:e0:
e5:f2:12:b2:8f:6a:81:e6:10:10:9e:c2:c0:03:d2:da:99:4e:
9e:f9:e2:ac:85:60:4b:72:89:83:9d:54:82:79:dd:74:8c:20:
49:84:fd:e1:9a:38:4a:6f:8a:d1:56:40:2f:cc:55:00:03:8b:
60:e5:a9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:23:57 2026 by rpki-client