Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Bwd5aai2pVxGGt3hBsAGSGomNZ8.cer
File: Bwd5aai2pVxGGt3hBsAGSGomNZ8.cer (raw, json)
Hash identifier: M8oNUxvGhnLA4U39wQGxqYVuFDyPjsY3Oc0L+32amwY=
Subject key identifier: 07:07:79:69:A8:B6:A5:5C:46:1A:DD:E1:06:C0:06:48:6A:26:35:9F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0197F8CB7985593E0EBC02FCB3DFB69129D8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/Bwd5aai2pVxGGt3hBsAGSGomNZ8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 11 Jul 2025 09:22:53 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 215679
IP: 164.138.206.0/24
IP: 185.219.112.0/22
IP: 2a14:7780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:f8:cb:79:85:59:3e:0e:bc:02:fc:b3:df:b6:91:29:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 11 09:22:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07077969a8b6a55c461adde106c006486a26359f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:18:b0:52:13:41:5c:d7:84:41:a1:aa:ec:73:
8b:ab:c2:8d:26:3d:79:93:a1:fb:e7:64:e4:1e:69:
8a:05:0c:99:0f:4a:ab:17:dd:a2:e6:50:14:5a:49:
cb:f4:ec:8e:ec:32:f2:86:38:97:6f:d0:12:9d:56:
9d:86:b3:3f:10:e6:a0:70:71:0d:ad:51:af:5e:da:
68:e1:3b:7a:1c:55:0f:93:6a:3d:3e:b8:fd:d0:64:
2c:80:2e:47:dd:f1:eb:f7:ce:01:98:db:d1:78:57:
6b:b3:12:2f:84:1f:2d:ea:d9:b9:1a:07:8d:46:fa:
53:c2:ba:76:87:1d:cc:89:f5:ab:0d:d1:62:3c:a4:
9b:51:e2:df:1e:af:66:e5:43:e4:4d:7d:9b:8e:ef:
a6:1e:67:e1:0b:48:8d:09:90:42:9e:88:09:6d:c7:
00:80:97:bb:de:26:b0:e1:2f:3e:a6:51:b5:26:0a:
35:88:6f:ca:eb:a5:70:9f:dc:85:d7:31:31:32:0c:
fb:70:27:cb:29:23:64:7e:88:7b:2e:ac:cd:88:0c:
3f:0a:90:b6:fb:14:f4:fe:dd:1b:b1:05:a1:a1:8f:
ba:19:92:b0:70:10:d7:70:50:4a:14:c9:68:c8:09:
81:ad:3f:1d:21:2f:aa:bc:8e:4a:75:f0:87:07:b5:
af:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:07:79:69:A8:B6:A5:5C:46:1A:DD:E1:06:C0:06:48:6A:26:35:9F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/232047-b2e8-4fba-bdd5-c3fec45ed056/1/Bwd5aai2pVxGGt3hBsAGSGomNZ8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.138.206.0/24
185.219.112.0/22
IPv6:
2a14:7780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215679
Signature Algorithm: sha256WithRSAEncryption
23:1e:12:40:18:2f:49:8b:83:cc:61:c6:a7:64:45:04:bc:5e:
8b:5b:d2:3e:14:1b:65:a1:53:83:98:5e:48:5e:a3:f8:e2:62:
14:f3:25:f2:e8:85:0b:94:12:96:02:b8:a7:d8:62:95:df:26:
90:53:84:b2:08:a8:5f:65:3f:a6:f7:b8:fd:13:e2:f3:ef:26:
89:6e:73:16:a6:50:7b:fb:c5:da:10:d1:0e:3d:46:09:08:25:
a9:d8:1c:79:6c:16:39:2d:b8:e6:0c:81:fa:d9:c9:f5:18:b3:
71:e0:3f:b9:7f:20:47:b4:54:c2:73:6c:dd:8c:f7:17:d9:9a:
d4:c9:93:48:12:e8:b0:a1:0c:26:f0:30:15:87:4f:aa:14:b9:
84:ef:f8:ed:78:85:97:55:e0:8d:e5:23:8d:a6:e0:70:17:fc:
18:4b:61:6c:5a:b7:e9:41:0a:92:45:47:62:e4:da:2b:b9:35:
38:6b:c9:cd:49:68:7a:bf:e1:0a:d2:f4:7b:e7:7e:6b:2b:10:
ac:c6:b9:6e:f2:ff:07:83:cb:2e:55:68:86:ff:ff:f8:03:5d:
39:a6:78:6b:1a:c7:bb:a3:77:d8:44:1d:a1:b7:ef:68:50:62:
a7:cc:b1:06:9e:aa:5f:98:8e:c5:5f:09:a3:df:a0:5c:76:28:
b5:24:0f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:24:33 2025 by rpki-client