Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gnpb34rKoeYW9iE9HNy-GHv-BgU.cer
File: gnpb34rKoeYW9iE9HNy-GHv-BgU.cer (raw, json)
Hash identifier: JRDeHnpQnT9+ykU3cZFcUTExcaap02djMoiZrnNxG+g=
Subject key identifier: 82:7A:5B:DF:8A:CA:A1:E6:16:F6:21:3D:1C:DC:BE:18:7B:FE:06:05
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019C46B54AEF2255B2CB298DC08849DC16A5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/0/827A5BDF8ACAA1E616F6213D1CDCBE187BFE0605.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Tue 10 Feb 2026 08:40:12 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 204085
AS: 215760
IP: 2001:67c:5c0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:46:b5:4a:ef:22:55:b2:cb:29:8d:c0:88:49:dc:16:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 10 08:40:12 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=827a5bdf8acaa1e616f6213d1cdcbe187bfe0605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0f:f7:85:67:46:ea:1d:a8:10:14:8d:94:cf:
cf:e1:df:c4:a7:17:c4:4b:b1:54:5f:74:75:8a:79:
21:ce:b7:b3:61:6d:01:5a:bd:ff:7b:40:43:5f:69:
ca:a2:fb:e5:52:bf:7e:4f:13:01:8c:37:57:64:e4:
91:bf:8f:98:71:8f:ab:31:f0:8e:c7:20:58:fb:65:
99:d0:85:75:33:6f:3c:c2:2b:28:be:bd:3b:de:09:
25:12:7c:33:0a:e4:60:d0:3f:45:e1:11:81:e4:7f:
bd:0f:86:b5:64:ae:6c:0e:fe:2f:af:0f:7c:4e:a5:
9f:db:9b:26:f8:f7:29:70:b8:eb:6c:c6:6b:c4:86:
ea:da:44:ec:36:21:18:32:20:bd:be:9f:d6:ab:d8:
f4:5c:66:ef:35:fb:60:5a:ac:a6:51:22:e5:d4:e7:
e8:e3:03:28:0e:52:ca:ec:ab:04:1d:92:ed:67:37:
66:55:3f:cc:7d:ea:d7:cf:15:15:ba:a6:93:27:10:
e3:55:ed:da:03:da:62:90:87:18:da:af:c7:7c:29:
a8:35:c6:75:fc:74:9c:eb:7c:ca:6f:4c:c4:fa:62:
3e:25:5c:e4:0f:e8:3c:6a:b0:29:4b:58:eb:2c:65:
81:48:11:d4:d1:7d:a2:64:59:ee:21:2d:ac:45:15:
46:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7A:5B:DF:8A:CA:A1:E6:16:F6:21:3D:1C:DC:BE:18:7B:FE:06:05
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/0/827A5BDF8ACAA1E616F6213D1CDCBE187BFE0605.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:5c0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204085
215760
Signature Algorithm: sha256WithRSAEncryption
62:c3:a0:eb:02:c4:a4:21:f5:41:7d:35:8b:5d:c0:12:6b:23:
6e:ad:21:13:ec:b3:d2:38:10:2c:a2:33:ad:bf:42:a9:bd:ba:
f2:f0:86:93:73:1f:3e:71:eb:c2:a2:8a:b0:e7:77:9c:fe:16:
3a:0e:ea:3c:3a:e4:17:a1:60:e8:72:93:70:a2:cc:76:52:a5:
66:0f:94:75:b1:4d:21:0b:15:fe:ca:36:d9:7e:02:01:3d:5d:
1b:9c:75:75:ef:01:93:de:89:b1:af:66:97:2f:d1:2f:5c:d7:
ed:0e:a4:33:da:98:af:70:9d:0a:f8:dd:bc:0c:6a:8e:a4:21:
39:f1:03:a4:16:0d:8f:8b:4e:cf:f8:fe:62:c1:fc:66:85:8f:
d2:7e:27:e4:05:8d:df:9f:66:b3:8c:3a:d4:e7:18:a5:97:75:
33:31:fe:eb:5f:69:57:44:f5:9b:09:5c:bd:8a:8a:33:5e:8a:
aa:10:35:cb:c2:3a:ba:e9:e5:13:27:f0:b2:9b:61:1b:d2:4e:
53:32:8b:6b:66:61:a4:f3:69:e2:5a:95:4b:04:2f:b0:94:46:
1c:08:9a:5f:81:f8:f5:5b:ae:c8:90:27:d7:2c:05:66:89:2e:
89:bb:33:fa:2b:89:e5:67:01:6b:95:51:aa:88:91:1a:e5:86:
32:79:7a:e5
-----BEGIN CERTIFICATE-----
MIIFuDCCBKCgAwIBAgISAZxGtUrvIlWyyymNwIhJ3BalMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwMjEwMDg0MDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjdhNWJkZjhhY2FhMWU2MTZmNjIxM2QxY2RjYmUxODdiZmUwNjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtA/3hWdG6h2oEBSNlM/P4d/EpxfE
S7FUX3R1inkhzrezYW0BWr3/e0BDX2nKovvlUr9+TxMBjDdXZOSRv4+YcY+rMfCO
xyBY+2WZ0IV1M288wisovr073gklEnwzCuRg0D9F4RGB5H+9D4a1ZK5sDv4vrw98
TqWf25sm+PcpcLjrbMZrxIbq2kTsNiEYMiC9vp/Wq9j0XGbvNftgWqymUSLl1Ofo
4wMoDlLK7KsEHZLtZzdmVT/MferXzxUVuqaTJxDjVe3aA9pikIcY2q/HfCmoNcZ1
/HSc63zKb0zE+mI+JVzkD+g8arApS1jrLGWBSBHU0X2iZFnuIS2sRRVG5wIDAQAB
o4ICxDCCAsAwHQYDVR0OBBYEFIJ6W9+KyqHmFvYhPRzcvhh7/gYFMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy
c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y3ZDky
NTU4LTI1OGUtNGI0NC1hZDE2LThjMTAyMmM0NmQwMy8wLzCBiwYIKwYBBQUHMAqG
f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjdk
OTI1NTgtMjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2ZDAzLzAvODI3QTVCREY4QUNB
QTFFNjE2RjYyMTNEMUNEQ0JFMTg3QkZFMDYwNS5tZnQwPAYIKwYBBQUHMA2GMGh0
dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ
BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH
ACABBnwFwDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDHTUCAwNK0DANBgkqhkiG
9w0BAQsFAAOCAQEAYsOg6wLEpCH1QX01i13AEmsjbq0hE+yz0jgQLKIzrb9Cqb26
8vCGk3MfPnHrwqKKsOd3nP4WOg7qPDrkF6Fg6HKTcKLMdlKlZg+UdbFNIQsV/so2
2X4CAT1dG5x1de8Bk96Jsa9mly/RL1zX7Q6kM9qYr3CdCvjdvAxqjqQhOfEDpBYN
j4tOz/j+YsH8ZoWP0n4n5AWN359ms4w61OcYpZd1MzH+619pV0T1mwlcvYqKM16K
qhA1y8I6uunlEyfwspthG9JOUzKLa2ZhpPNp4lqVSwQvsJRGHAiaX4H49VuuyJAn
1ywFZokuibsz+iuJ5WcBa5VRqoiRGuWGMnl65Q==
-----END CERTIFICATE-----
Generated at Sun Mar 1 14:40:31 2026 by rpki-client