Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer
File: jTUmuzG54wxJBF9DaMYC7pi-wBo.cer (raw, json)
Hash identifier: osf8FbNkRcRwy0sQumgiez6skHSqG6WkzhN8MwqEppQ=
Subject key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B76EB01AB7FE787747A9C7FBC8B3D5ACB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Jan 2026 00:17:51 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 207277
IP: 176.119.146.0/24
IP: 2a14:2780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:76:eb:01:ab:7f:e7:87:74:7a:9c:7f:bc:8b:3d:5a:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:17:51 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:f8:6b:c0:c2:cd:9b:47:e0:0b:f9:09:c1:
79:fa:5d:d8:dd:51:9a:8d:63:89:de:c3:5d:c1:34:
be:5e:78:c5:b2:56:54:e3:2d:b7:d1:9c:28:4f:3e:
27:4f:b9:0f:08:f1:01:b5:a6:4c:54:01:17:e1:3b:
f1:8c:b9:51:c5:16:c1:92:50:50:07:fc:fe:05:7e:
71:da:86:bd:a8:0f:39:d0:1c:f4:05:74:0a:52:58:
dd:9b:ac:2e:50:3b:bf:20:36:c5:0c:7b:1d:4a:96:
34:b8:97:40:81:5a:97:b5:94:10:50:2e:d4:27:fc:
b5:04:fb:77:38:9c:82:9b:41:36:73:7f:2e:ff:f4:
96:ca:19:be:77:cc:81:da:77:0f:63:3d:2b:ec:64:
36:88:74:fa:54:0f:d3:8b:53:28:cc:16:c6:2a:b6:
6f:b5:cf:39:bd:57:c7:6f:2e:ed:51:ba:c7:a1:bc:
81:cf:3f:d2:e6:9f:a7:5f:57:4b:c2:30:ce:6d:60:
5a:83:a5:8c:36:a6:23:39:50:c5:21:0d:11:d2:e7:
11:38:03:92:86:51:2f:0c:c3:df:df:9c:ee:58:f5:
1b:a6:c1:5d:e7:46:2d:e3:f3:0a:0a:f0:fb:59:7d:
a6:d8:78:07:93:9f:6f:4d:77:b0:1d:3a:f6:26:c0:
0a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.119.146.0/24
IPv6:
2a14:2780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207277
Signature Algorithm: sha256WithRSAEncryption
70:f6:ee:b1:4a:03:c0:af:03:37:71:59:e6:6c:5d:3d:8a:0d:
f4:b4:65:c0:d5:20:6b:48:ba:21:81:75:f5:a1:29:4e:09:d9:
8f:9d:01:1e:27:bb:0f:f3:12:aa:06:9f:15:cf:4b:01:69:35:
6d:72:b3:f3:f3:f3:a6:7d:0a:9c:6f:76:65:8a:99:64:92:73:
c4:34:b7:e4:5b:a7:b9:7e:d9:04:31:aa:37:17:4e:6e:d8:8a:
88:af:f1:16:9c:b5:ce:47:56:e8:bb:44:27:0a:a2:ec:96:37:
77:b9:60:9e:3e:8d:00:aa:a1:c3:37:ba:4b:09:62:c2:7b:95:
52:04:18:7c:1a:a3:4b:45:4c:24:8c:12:7a:6b:04:c4:8e:be:
b0:69:8e:f8:5e:be:60:58:fa:1c:bc:35:ef:ad:6c:73:49:b4:
c5:83:97:ba:f1:cb:e4:74:6b:5c:be:ff:f3:dc:77:d8:a0:97:
cc:f7:26:6e:cd:56:9e:01:5c:89:16:da:24:a5:01:32:5e:9d:
b4:99:0d:e6:c1:45:7e:89:b9:e2:63:03:f6:75:eb:03:35:e7:
c3:69:23:55:a0:65:46:fb:12:cb:27:66:eb:2a:02:e3:4b:ba:
52:5d:19:5d:5f:2d:30:16:3b:b1:e2:72:2f:c7:3d:a6:02:07:
64:6d:82:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:31:53 2026 by rpki-client