Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97nZe5f9TLrO2oHEQG50rW1TkyY.cer
File: 97nZe5f9TLrO2oHEQG50rW1TkyY.cer (raw, json)
Hash identifier: G+/IGw0MXeGun29mHCdMdal0ZrVaPv1izB6ENBXlcfo=
Subject key identifier: F7:B9:D9:7B:97:FD:4C:BA:CE:DA:81:C4:40:6E:74:AD:6D:53:93:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01987A9CC747BB96DC0E6FC506AC52E7FE25
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6c/469d47-01e2-4fcb-a68c-a30d82bd6219/1/97nZe5f9TLrO2oHEQG50rW1TkyY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6c/469d47-01e2-4fcb-a68c-a30d82bd6219/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 05 Aug 2025 14:22:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 214707
IP: 109.224.208.0/21
IP: 205.209.64.0/19
IP: 2a14:6540::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:9c:c7:47:bb:96:dc:0e:6f:c5:06:ac:52:e7:fe:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 5 14:22:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f7b9d97b97fd4cbaceda81c4406e74ad6d539326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0e:8e:9e:f3:e0:2e:67:d2:d6:ee:c8:e1:56:
36:e3:25:49:3d:e2:99:30:13:0e:ea:8b:63:57:1b:
4c:a8:4d:5c:fe:fc:0b:4b:1b:45:da:1a:24:c0:6d:
a3:1b:70:e1:75:7c:83:43:f2:ec:ea:f2:71:e9:be:
82:0d:a2:23:10:82:a0:b5:b9:85:84:68:dd:4f:7e:
06:f6:5d:11:ef:85:27:d9:b9:ae:10:e2:56:c2:77:
c3:27:34:e9:11:1d:fd:90:76:5c:f9:dd:97:49:b3:
72:05:66:51:81:0d:20:e0:ec:75:57:66:da:d5:1a:
44:c8:e2:ac:50:13:81:13:92:5a:8c:e3:6b:92:76:
95:07:9a:9b:c9:e8:3b:05:d4:7e:08:e4:a2:02:6b:
8d:66:e9:45:68:b0:37:fb:95:48:bb:1d:7d:35:f1:
a0:82:c7:fc:ea:94:b8:f0:c7:60:45:3b:95:a0:98:
82:ab:85:e9:0c:f8:38:39:3e:9e:c6:80:11:84:fe:
3d:35:32:46:bc:09:55:f4:1d:1d:5c:f3:00:ca:da:
ae:6e:df:6c:52:bc:34:4f:0a:dc:78:61:c3:f1:f2:
66:4b:16:83:c8:b1:d5:f3:cf:fa:c1:47:4e:d2:11:
d5:1d:53:98:b9:ed:3f:d6:da:ff:9d:02:b5:8e:f9:
15:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B9:D9:7B:97:FD:4C:BA:CE:DA:81:C4:40:6E:74:AD:6D:53:93:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/469d47-01e2-4fcb-a68c-a30d82bd6219/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/469d47-01e2-4fcb-a68c-a30d82bd6219/1/97nZe5f9TLrO2oHEQG50rW1TkyY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.224.208.0/21
205.209.64.0/19
IPv6:
2a14:6540::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214707
Signature Algorithm: sha256WithRSAEncryption
93:53:33:d7:b0:95:a5:e0:33:77:72:8c:ff:03:aa:5a:73:52:
cc:db:9a:48:f0:9d:c4:a7:56:c7:99:78:04:91:2f:4b:48:8e:
89:06:c9:70:60:a7:1c:0a:bc:8f:c0:1a:bb:45:a6:ca:95:25:
f6:56:3e:bb:ea:9b:e5:78:d4:53:a9:ad:93:83:f0:6b:24:76:
54:1b:50:2d:7e:03:9f:2d:02:45:97:b7:17:61:0e:a8:f2:bb:
b6:2d:68:07:2f:07:30:49:4c:15:7f:f9:5c:be:04:1f:79:bf:
a8:8c:03:03:77:dd:23:e4:d3:74:1c:f7:2b:d9:e9:16:ab:e4:
f1:0f:e0:50:dc:1d:3a:46:66:0a:1e:8d:02:03:6f:de:24:19:
9a:9a:73:b2:1e:2a:8a:af:66:7d:68:06:04:eb:94:05:f6:a0:
96:a2:cb:5c:1d:72:db:46:da:87:3d:5f:f2:d4:f1:48:0f:73:
b3:f8:b8:64:bc:70:f5:d3:ac:8d:b5:d2:0b:20:c9:eb:58:b6:
bb:44:14:0a:6d:be:ef:5e:8d:df:fb:db:2a:8e:41:16:fd:dc:
bd:f5:3b:b2:08:ed:d3:3e:df:81:52:50:a0:77:88:d4:55:9e:
33:f7:af:a4:b8:79:a2:d5:0e:51:5c:3d:8d:3b:ad:d8:c2:3c:
f7:75:64:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 21:10:47 2025 by rpki-client