Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sUqqmwhIZPRLrhi6B2smBndU-2I.cer
File: sUqqmwhIZPRLrhi6B2smBndU-2I.cer (raw, json)
Hash identifier: IRvxh/koun3awAf2bIxDx5NlXDvjCDFzURHgCMtP7bo=
Subject key identifier: B1:4A:AA:9B:08:48:64:F4:4B:AE:18:BA:07:6B:26:06:77:54:FB:62
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7DC9D58A04BEE1F0B865F4699162C402
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/sUqqmwhIZPRLrhi6B2smBndU-2I.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 08:18:58 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 51985
IP: 5.39.232.0/21
IP: 46.17.80.0/21
IP: 185.26.248.0/22
IP: 2a02:6780::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:c9:d5:8a:04:be:e1:f0:b8:65:f4:69:91:62:c4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:18:58 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b14aaa9b084864f44bae18ba076b26067754fb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:db:ff:2e:22:10:17:81:c1:c0:9e:60:d8:9c:
48:95:7e:9a:10:b0:6a:99:8a:6b:70:c8:1a:ca:46:
4e:c9:75:f7:a4:f2:e8:62:aa:52:a5:79:40:6e:0b:
d8:76:62:1f:3c:9f:94:00:5a:41:2c:db:bf:5d:1c:
d3:6d:bd:73:c8:de:6c:9e:fa:00:eb:de:dc:b5:bb:
06:75:bf:b3:02:f8:d7:64:9d:47:08:66:2a:20:25:
da:ec:92:da:44:ed:94:d4:59:b5:52:f6:a4:e1:1f:
14:c1:56:84:2b:17:42:7b:10:b8:e2:5f:65:4b:41:
49:4e:5a:d5:0e:77:ad:f9:d7:21:9a:b0:a4:b0:b0:
dc:f5:4f:c9:52:0f:d6:fb:b0:f7:eb:4e:6b:9a:98:
26:56:40:b5:d9:f6:43:91:b1:e7:f4:66:5f:41:4c:
8a:07:ee:ea:93:e2:bd:77:dc:d2:97:f4:b3:50:e6:
7b:d0:e1:b6:f1:73:4b:7e:d4:34:f6:f9:f8:f6:cc:
ae:b7:75:18:71:2e:c7:83:a0:eb:4b:d1:d4:15:0a:
f2:22:75:5e:48:98:9f:bb:ba:b2:77:03:df:12:0d:
eb:57:c1:7c:5c:cf:f2:49:8d:9b:3d:c1:53:b0:97:
4a:66:3c:cc:4c:2c:25:15:71:a3:39:e3:05:ba:0d:
3e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4A:AA:9B:08:48:64:F4:4B:AE:18:BA:07:6B:26:06:77:54:FB:62
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/227afa-ddec-4644-982a-58faa27e5549/1/sUqqmwhIZPRLrhi6B2smBndU-2I.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.232.0/21
46.17.80.0/21
185.26.248.0/22
IPv6:
2a02:6780::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51985
Signature Algorithm: sha256WithRSAEncryption
02:2a:7d:71:20:f4:88:98:99:17:05:5e:63:2e:a7:74:cd:d2:
a1:8b:ae:5f:e2:99:f7:97:4b:fe:53:2c:f7:a3:a9:cd:63:31:
fa:73:5b:ae:7e:8b:d2:d6:68:02:3c:81:67:f4:1f:aa:55:49:
c8:d8:7f:23:2f:dd:dc:5d:52:d8:2b:e6:7a:a1:2d:e8:46:d6:
97:98:1b:c4:96:61:41:1b:df:c2:70:c4:2f:be:ca:d0:b9:72:
d6:ba:61:64:82:1f:94:60:2d:8b:e1:b0:de:99:c1:78:96:b1:
30:73:b3:35:e3:ee:a0:f3:85:57:2c:ab:34:41:94:04:9d:3d:
fe:fa:b8:4a:d1:cd:51:8a:64:f4:ce:9d:14:8a:f2:04:93:e4:
82:18:f5:53:d7:7f:b1:5e:aa:0d:65:1d:93:34:2a:46:66:a7:
07:26:31:28:43:55:7b:c0:d8:58:4a:5a:db:71:0d:09:19:a0:
67:09:d3:f2:08:a8:b7:3f:56:7b:0c:c0:be:6b:fe:1d:af:5e:
7b:41:33:cd:08:cd:e3:07:9d:2b:70:96:cb:9a:ca:75:f0:8f:
12:b9:a4:26:95:02:f3:b6:28:c1:9b:d5:3f:1c:48:fc:09:b7:
ab:92:ec:b2:1c:d8:82:b7:54:b6:f8:fb:b7:ad:8c:0f:b1:d0:
79:75:a0:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:55:49 2026 by rpki-client