Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2PkNpCoz_9kWTQwFsN5PZWKHB24.cer
File: 2PkNpCoz_9kWTQwFsN5PZWKHB24.cer (raw, json)
Hash identifier: Ka8xOLsRQAh1dVPQSJ4+9zXKOmrHX57imWG8VuNqi6M=
Subject key identifier: D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B78A2FBFE16BAED610C88C93FB278246B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Jan 2026 08:18:25 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 203256
IP: 185.130.228.0/22
IP: 2a06:dc00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:78:a2:fb:fe:16:ba:ed:61:0c:88:c9:3f:b2:78:24:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:18:25 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d8f90da42a33ffd9164d0c05b0de4f656287076e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ed:da:de:62:4c:92:10:ed:e3:67:ab:33:4a:
aa:8f:dc:40:3d:65:a6:ee:21:da:b4:ec:76:20:b8:
03:b6:c8:2c:ff:8b:84:e2:0b:5b:92:50:75:6a:5d:
d8:90:ce:55:38:5d:fb:62:e8:ac:40:fe:0b:7d:22:
bb:bf:18:45:74:dd:c7:14:b7:6e:21:13:5a:f6:6d:
33:fe:7d:4c:c3:5d:88:85:b9:ba:d5:d6:cf:c4:25:
94:23:77:3b:4b:74:fd:53:0f:01:1e:24:52:6c:e2:
b5:cf:2c:35:76:1e:69:ec:e3:a2:57:d8:73:3b:7c:
1b:e7:1a:6c:fa:d6:99:25:6a:1d:cd:24:3c:7c:e2:
8f:7d:d6:8c:ea:6c:a4:49:d5:e4:c2:57:f3:67:1d:
e7:8d:8a:b4:40:32:6e:07:fa:61:cd:d4:7f:ea:c5:
3e:d3:5d:dc:81:03:83:fa:4f:4f:57:c0:7f:4f:ad:
66:b9:83:22:c4:ad:c5:d4:ff:53:4b:2e:29:45:be:
b0:6c:27:e7:91:9d:ad:c5:44:34:1a:88:f9:87:13:
9d:b6:92:98:82:72:70:2f:9f:4c:2f:1c:f7:2f:16:
8e:c9:50:0d:6b:30:0e:bf:27:ff:29:8e:22:1a:b9:
bb:f2:31:c8:a2:10:b1:00:bd:c3:d0:bb:75:8a:d7:
37:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F9:0D:A4:2A:33:FF:D9:16:4D:0C:05:B0:DE:4F:65:62:87:07:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b73d31-7182-4aa8-b0f9-23b463b5ea77/1/2PkNpCoz_9kWTQwFsN5PZWKHB24.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.228.0/22
IPv6:
2a06:dc00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203256
Signature Algorithm: sha256WithRSAEncryption
9e:f0:57:e9:79:fb:40:68:76:a0:b3:73:f5:a9:e4:7f:a0:42:
e4:3a:76:dc:7d:f2:af:a0:ae:00:97:8f:12:9e:41:ad:e7:f7:
03:fa:11:3a:86:23:86:c0:26:30:bc:1f:13:a1:c8:f9:2b:9d:
ba:0b:ec:59:bd:21:eb:02:3e:49:1a:d8:06:b7:06:97:93:46:
3c:fc:19:1a:d8:94:8e:3e:b4:31:5d:d7:c9:2d:c6:d9:d8:68:
2a:02:dd:e0:6d:5a:2f:e4:67:dc:4a:47:e0:72:99:88:d5:10:
42:68:2e:4b:58:ca:a2:72:70:bc:f2:09:14:6d:d2:a4:74:c8:
fd:74:aa:93:47:19:ee:dc:66:ff:06:20:b5:28:d5:b2:b5:ee:
4b:66:af:fd:a0:77:dd:c8:59:cf:ba:97:c6:72:69:92:9d:f4:
39:f2:7b:cd:b3:e6:4f:43:8f:22:8d:4c:ee:6c:1c:5f:5a:c6:
26:bf:f7:3e:57:63:75:bf:95:05:99:82:eb:a0:f8:37:6c:73:
9a:bf:55:07:da:6f:3b:f6:93:fe:46:53:3d:0a:ea:cc:af:83:
11:ca:77:d6:d3:ee:77:43:0d:1b:db:bc:08:1f:cc:af:96:43:
54:68:f8:77:36:e1:87:3f:2f:6c:e6:1f:43:be:bf:da:99:3a:
28:c7:11:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:56:30 2026 by rpki-client