Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0vcAvspCZT5kq0NaLwpPPZpQFLA.cer
File: 0vcAvspCZT5kq0NaLwpPPZpQFLA.cer (raw, json)
Hash identifier: orASjJXXyFx7U9Yqm3BDte5FS+XdxcqT1DNS3GVQ2Vc=
Subject key identifier: D2:F7:00:BE:CA:42:65:3E:64:AB:43:5A:2F:0A:4F:3D:9A:50:14:B0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B79ECFBE2225B973E14E782076BCF7A31
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/0vcAvspCZT5kq0NaLwpPPZpQFLA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Jan 2026 14:18:52 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 208004
IP: 45.86.236.0/22
IP: 91.237.34.0/23
IP: 176.111.192.0 -- 176.111.205.255
IP: 185.195.208.0/22
IP: 193.57.98.0/23
IP: 193.57.142.0/23
IP: 2a0e:ea80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:79:ec:fb:e2:22:5b:97:3e:14:e7:82:07:6b:cf:7a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:18:52 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d2f700beca42653e64ab435a2f0a4f3d9a5014b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:18:9f:af:b9:23:6a:bd:0f:cf:6e:50:cb:
a6:8f:56:97:f8:0d:87:c8:72:af:e4:4c:fd:99:b7:
02:bd:b8:65:d1:f8:07:26:6f:d9:7a:0a:72:3d:8c:
ad:6b:95:d4:67:f1:80:ce:23:8f:fe:1a:65:cd:0b:
0c:cb:d3:da:cd:32:21:12:76:e9:46:4d:26:a2:95:
ee:90:cc:62:4b:c0:30:a7:1a:b8:d1:ab:7e:da:80:
ae:7f:8f:94:e7:e1:92:5e:43:05:38:4e:2a:10:2b:
04:19:96:c5:31:9c:b9:0a:d4:5c:34:de:be:4e:4e:
46:66:58:ab:bd:82:9c:93:0e:f4:ac:3e:e9:1f:af:
a7:63:d6:d2:a5:4b:48:c6:9d:fe:b9:45:25:2a:d3:
51:76:16:19:81:b8:37:85:4c:79:12:88:4f:f2:43:
aa:d1:a1:a3:6f:dc:3d:ed:56:da:d8:8d:49:a9:59:
ae:87:ba:1c:77:95:85:2a:43:69:a2:b2:f3:aa:fc:
f6:cf:97:22:2c:c0:e3:40:93:0d:28:0c:1d:99:12:
90:bc:a8:a6:f4:3e:91:6a:ce:56:1f:10:b4:21:76:
53:f7:f6:20:bd:b7:0d:08:10:76:e9:a6:e6:06:8f:
ba:b5:20:e4:75:ab:11:33:e1:a6:06:a7:41:3c:0b:
47:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F7:00:BE:CA:42:65:3E:64:AB:43:5A:2F:0A:4F:3D:9A:50:14:B0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/07512a-12c8-4895-b32f-75c7ba1c073f/1/0vcAvspCZT5kq0NaLwpPPZpQFLA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.236.0/22
91.237.34.0/23
176.111.192.0-176.111.205.255
185.195.208.0/22
193.57.98.0/23
193.57.142.0/23
IPv6:
2a0e:ea80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208004
Signature Algorithm: sha256WithRSAEncryption
37:a3:90:0c:2f:1e:ce:80:bf:86:81:25:7f:ae:53:e2:d1:6e:
d0:c9:35:1e:c6:b3:34:5d:cf:42:1b:a2:ce:73:27:92:e3:4a:
42:07:b9:0b:f0:ac:3f:33:9d:86:b7:61:98:d7:97:71:0a:9f:
1a:48:9f:dd:a3:c8:72:70:5f:0b:d2:0d:85:64:f1:ec:12:ac:
bd:82:5a:1d:0b:fa:e1:e2:14:b2:81:ac:82:70:d2:32:46:8e:
64:c5:da:5f:a8:8f:8b:60:91:ad:a8:62:4a:02:3f:76:ef:5c:
64:63:ce:55:55:b6:1a:2c:92:d6:83:55:31:c6:97:20:71:96:
2b:99:00:bc:7e:f4:fd:1e:5e:4a:ac:63:d8:ca:5d:df:67:c7:
ac:0f:ac:c2:a1:62:05:a8:e4:5c:86:e0:04:d9:e1:26:1f:f7:
05:84:30:86:57:b3:95:85:1d:02:21:56:64:32:ba:57:70:70:
77:d9:d9:36:4c:52:5b:87:b8:40:aa:d2:0e:54:e3:e3:91:c7:
27:f0:c5:c7:08:13:74:14:87:21:b6:db:90:ca:50:78:66:b4:
34:91:bc:68:04:bc:b5:fe:80:b3:dd:c8:6d:07:50:38:51:e8:
7f:e0:d5:d4:9b:b7:0a:87:b6:12:e6:61:ae:84:64:5d:00:6a:
78:6d:6a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:26:57 2026 by rpki-client