Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0HNWUFJtK79SUNl5fknbHZ8cwn8.cer
File: 0HNWUFJtK79SUNl5fknbHZ8cwn8.cer (raw, json)
Hash identifier: E9QKUuZzadqeqDR0DATIqyQK+f0HKzvVP8H9LSr3VWk=
Subject key identifier: D0:73:56:50:52:6D:2B:BF:52:50:D9:79:7E:49:DB:1D:9F:1C:C2:7F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019E01C9D92C6AF4E420F18593A44B4C128F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 07 May 2026 09:34:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 203014
IP: 62.220.108.0/24
IP: 164.40.233.0/24
IP: 2a14:da00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:01:c9:d9:2c:6a:f4:e4:20:f1:85:93:a4:4b:4c:12:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 7 09:34:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=d0735650526d2bbf5250d9797e49db1d9f1cc27f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:fe:79:3e:86:a0:fd:07:37:d5:fb:8b:14:03:
58:9c:58:17:b8:a8:ab:14:d6:f3:1d:2a:96:7a:7d:
e3:71:00:61:46:6e:02:e8:2a:87:91:f1:18:2f:ff:
90:17:27:7e:d7:2b:ac:1f:19:bf:11:59:d0:cf:b5:
a6:5d:15:20:46:9d:02:97:a7:ca:b8:d1:33:af:e4:
c7:4e:2b:d2:f3:c5:1f:3d:49:45:85:96:53:87:17:
fb:72:87:6b:b4:ad:1a:9e:f5:ab:de:73:28:95:a4:
1c:77:1e:32:d3:5a:24:04:29:bf:5d:d2:5a:1a:59:
cc:86:95:1e:79:64:72:f1:f7:e9:9f:9e:2b:fe:e1:
a3:f2:73:0c:b7:3b:55:0e:99:99:33:0c:92:a5:83:
e8:19:51:aa:70:10:df:20:b1:63:0d:e1:15:d9:43:
4a:5b:fd:01:99:c8:8a:6b:ff:47:b3:11:f3:5c:0c:
45:a7:39:79:6c:fb:de:4c:78:d1:15:fd:63:6e:76:
f0:f4:47:b1:b8:d5:45:3e:ce:1c:d9:fb:b7:3e:a9:
aa:27:a3:7f:91:76:71:60:f9:ae:ca:47:87:ab:55:
f7:27:16:74:49:41:6c:51:ab:da:94:dd:13:e6:d9:
cb:b1:3d:f6:64:25:7c:d0:8f:bb:29:d3:21:64:b0:
f3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:73:56:50:52:6D:2B:BF:52:50:D9:79:7E:49:DB:1D:9F:1C:C2:7F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b49500-0b74-4c45-a882-0c84fd757990/1/0HNWUFJtK79SUNl5fknbHZ8cwn8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.220.108.0/24
164.40.233.0/24
IPv6:
2a14:da00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203014
Signature Algorithm: sha256WithRSAEncryption
b1:5d:d3:67:9b:b3:ef:a0:8d:fc:81:de:40:4b:f9:e5:74:72:
73:a2:a3:22:2d:85:eb:bb:97:eb:45:1a:e5:1d:f2:3c:62:ae:
6f:b8:7e:9a:26:cb:d1:0f:74:96:62:cf:c3:91:88:9d:8a:fc:
43:ca:f8:78:14:08:28:1e:b7:1a:07:10:f8:9b:1e:d7:13:3d:
fb:3e:59:9a:ec:5b:b5:bd:1c:84:62:a9:aa:81:be:a6:14:2a:
25:76:d5:b0:ee:28:33:43:ff:75:c2:ac:e2:f9:03:55:7d:fa:
9f:29:69:7a:14:5d:87:aa:7f:e0:4e:19:d4:09:9e:de:f0:9f:
49:83:c7:10:4f:23:72:a5:66:63:8b:97:46:d2:49:cb:f3:b5:
f4:ca:ef:de:6c:17:a5:32:6b:0c:b3:46:c3:ce:bf:2a:3a:db:
62:53:14:d9:fa:35:8d:b3:16:91:e6:8e:3f:e8:5c:9b:5f:fa:
f9:53:47:39:57:7f:0d:a6:39:90:c2:4b:95:bb:f9:67:36:d1:
8a:44:61:a1:8d:80:52:ec:68:c2:39:14:db:69:4b:ba:52:78:
b2:76:45:49:e5:a1:c7:be:46:6e:a1:6e:21:4f:84:c5:8f:2d:
6f:b0:2b:96:b2:99:b8:fb:e1:79:8b:e1:c6:0f:d9:02:40:63:
70:55:4e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:11:53 2026 by rpki-client