Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HqjSNXR5WytcqwXuRLo0tdL6XmM.cer
File: HqjSNXR5WytcqwXuRLo0tdL6XmM.cer (raw, json)
Hash identifier: M6BhhZuahcJSDaz4m2xA1Oksg3QK7TDJQMEHoJHCrA4=
Subject key identifier: 1E:A8:D2:35:74:79:5B:2B:5C:AB:05:EE:44:BA:34:B5:D2:FA:5E:63
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0197EA5D491938FDC08FA9F6C215EC9F8797
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/0/1EA8D23574795B2B5CAB05EE44BA34B5D2FA5E63.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 08 Jul 2025 14:07:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 214369
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ea:5d:49:19:38:fd:c0:8f:a9:f6:c2:15:ec:9f:87:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 8 14:07:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ea8d23574795b2b5cab05ee44ba34b5d2fa5e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:75:bf:dc:2b:2f:df:ab:3d:db:05:02:f9:b8:
b3:10:c9:09:e2:ff:f2:4f:91:22:6c:ac:ea:78:c6:
cc:e8:0e:72:4e:ad:56:80:54:8e:48:19:1c:c1:76:
85:87:ef:09:10:0e:37:62:c6:3b:f5:15:84:73:08:
c3:ca:87:36:aa:7f:e4:fa:be:49:78:75:e9:74:ad:
7f:f3:d4:5e:53:34:73:be:f3:45:be:50:b3:8d:6e:
7c:9a:5d:19:21:36:38:74:67:11:df:24:f4:de:52:
df:f1:3e:ed:ab:75:84:c3:c7:be:22:a5:da:fa:2c:
f3:23:6f:d1:d7:e2:dc:db:ef:56:03:b4:d2:3c:0f:
cc:63:05:5a:00:56:e9:9c:29:3c:62:c3:ff:c6:a9:
f4:db:25:f2:d6:22:87:3f:2a:d6:19:73:36:84:22:
29:e9:7f:ce:18:79:f5:55:7a:50:81:ba:33:f9:16:
35:9b:bc:3d:c5:ec:aa:4e:c8:00:5d:f1:7a:0a:58:
0a:64:0d:39:0f:d5:dc:7a:1f:ad:d1:9e:a5:c3:b3:
60:38:73:60:07:f6:52:ca:80:a4:18:9e:13:0c:43:
cf:cf:05:82:45:ca:8d:41:64:28:cd:ff:fd:30:9b:
44:cc:c5:5d:38:e4:7b:d3:75:0e:bb:6e:75:b7:de:
7a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A8:D2:35:74:79:5B:2B:5C:AB:05:EE:44:BA:34:B5:D2:FA:5E:63
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/0/1EA8D23574795B2B5CAB05EE44BA34B5D2FA5E63.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
214369
Signature Algorithm: sha256WithRSAEncryption
1b:9d:a0:bf:be:02:33:95:66:03:03:a6:4d:a7:6f:1a:97:4e:
77:16:92:00:fb:68:e6:8c:33:5c:19:41:2b:61:83:69:2e:c8:
e2:46:06:89:25:ac:e1:9e:4d:84:e1:1e:5a:5c:de:eb:bf:f0:
9d:0d:96:ac:20:21:54:54:0a:0c:d6:e7:f2:9a:c6:78:52:be:
a9:f0:3b:4c:52:98:12:ca:ad:87:53:7c:4d:8f:1c:bb:61:13:
2a:8b:e4:bb:c2:0c:2d:21:61:63:e1:06:94:7e:a2:29:5b:15:
85:46:9b:5c:2c:3e:fe:11:f4:d1:11:71:7b:c4:d1:ce:6a:bf:
d2:51:23:a0:6a:43:6b:49:21:1f:06:b1:4d:96:a8:c0:02:ca:
75:c1:b2:9c:c8:f5:6f:bf:9d:b6:d6:34:2e:14:2d:16:09:8f:
ce:4c:5d:a2:a4:c6:86:08:60:1f:a5:5d:71:59:91:af:55:0b:
2e:b6:fa:de:f8:75:24:05:66:51:ea:82:3b:c2:7e:be:d4:3f:
0c:ea:25:eb:a2:de:1b:86:df:3f:8b:a4:b9:c3:5d:59:0c:64:
24:07:4d:95:c5:3a:04:de:c0:a3:f6:b7:39:a9:64:5d:9f:96:
93:83:e6:ce:08:b7:a9:39:d0:fe:44:8c:da:01:41:9c:4f:69:
ff:58:62:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:44 2025 by rpki-client