Certificate
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer
File: 970AD94C83244100A97F9186D53DADAB07995EE9.cer (raw, json)
Hash identifier: tT8J0v1aWoUgOSfJpPzNUPeQAxAQHkLRO0ee3mN1IAQ=
Subject key identifier: 97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9
Authority key identifier: 08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
Certificate issuer: /CN=0839a93dab544c296ffa143456844a8b2818b1d0
Certificate serial: 287B70010FECF27EB51DF9B596252E0FA387BB0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Mon 11 May 2026 21:49:21 +0000
Certificate not after: Mon 10 May 2027 21:54:21 +0000
Subordinate resources: IP: 2a11:f2c0:aca0::/44
IP: 2a11:f2c0:fff6::/48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:7b:70:01:0f:ec:f2:7e:b5:1d:f9:b5:96:25:2e:0f:a3:87:bb:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0839a93dab544c296ffa143456844a8b2818b1d0
Validity
Not Before: May 11 21:49:21 2026 GMT
Not After : May 10 21:54:21 2027 GMT
Subject: CN=970AD94C83244100A97F9186D53DADAB07995EE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:48:60:28:eb:ad:72:2f:2d:60:f6:5d:15:78:
7c:58:9d:05:16:f6:80:55:36:5c:4b:62:08:9f:8f:
36:5c:b8:97:ae:2e:3f:35:37:6f:9e:16:b8:4f:fa:
90:20:1c:0b:d7:91:01:21:c4:b0:ad:92:8a:12:0e:
3a:61:22:66:6f:1a:c8:0d:60:1a:93:88:83:7c:51:
fc:56:f4:d2:d3:36:38:b7:4b:44:0a:68:37:28:d8:
a7:b2:93:2d:dc:aa:6d:af:91:a7:b8:43:b0:43:53:
a5:ad:f8:36:37:2c:5a:0f:31:0c:e8:c6:3d:3c:7b:
78:c7:33:25:19:6e:7e:21:59:fc:30:5e:4d:fa:36:
ca:fb:ff:a8:c0:74:e3:5d:d4:52:01:4a:da:59:be:
dc:ef:78:c8:55:ac:b1:bc:51:ef:22:f0:ec:3d:13:
e3:45:60:50:d3:00:02:e1:c3:03:2a:a1:a9:93:d3:
ff:2d:bf:f9:86:03:a9:44:96:02:1d:06:38:4b:1f:
ec:aa:e0:6f:0f:56:07:bd:d8:ab:64:e0:7b:dc:92:
39:1f:54:f3:ed:76:4d:4e:dc:bf:bb:63:83:d6:f8:
5c:c8:3b:a3:8b:be:74:6a:55:ac:dc:a1:ad:44:33:
51:22:d7:98:9d:62:af:b9:38:70:1d:22:90:d8:30:
42:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9
X509v3 Authority Key Identifier:
keyid:08:39:A9:3D:AB:54:4C:29:6F:FA:14:34:56:84:4A:8B:28:18:B1:D0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f2c0:aca0::/44
2a11:f2c0:fff6::/48
Signature Algorithm: sha256WithRSAEncryption
1c:60:df:13:1a:ce:65:3f:fb:4e:91:25:62:e8:af:b3:af:fd:
95:97:81:23:c3:8a:57:fc:31:68:24:ab:f4:e6:f5:84:74:6c:
66:40:73:c9:bf:9a:25:9d:7d:2d:52:01:58:e3:c6:88:26:d6:
dc:ef:5a:12:ee:9f:06:7b:d3:63:86:98:09:1a:89:29:de:f0:
3c:16:d0:b2:b7:0c:3b:0c:e0:53:6c:19:88:a3:7c:4a:d3:68:
32:17:eb:a6:db:bb:3f:3f:0d:9e:48:db:52:ed:9d:5a:dc:ee:
76:d5:aa:8f:44:a0:6a:db:1a:be:2e:20:c5:cd:07:8a:5d:73:
37:0e:dc:12:c6:3f:54:0d:d6:02:38:e5:c3:3c:74:23:93:8b:
cc:35:01:9e:cb:35:25:f5:6a:49:ee:f7:a9:e5:5a:26:08:81:
ee:cb:68:da:a6:0d:79:53:88:3c:c2:8c:46:45:d7:45:18:9f:
ee:14:7c:98:58:60:21:ef:98:db:1e:a2:fa:d1:51:c8:78:3b:
64:e7:f0:aa:9c:99:2f:a3:f8:20:58:8f:ee:21:25:4d:e6:e8:
3f:1b:c8:1d:44:1d:0f:75:00:d0:c4:11:47:62:0c:a9:15:46:
0d:28:eb:03:ce:f2:67:94:8d:97:95:5a:75:70:f2:bd:87:d4:
be:54:d1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:49:58 2026 by rpki-client