Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0wJwbz3eK7EuK6kRqb4FyNSXjIY.cer
File: 0wJwbz3eK7EuK6kRqb4FyNSXjIY.cer (raw, json)
Hash identifier: kJF6syD/5DPRSMhKfMqhl1FCX6I2rN4Ok7z5CWkA3FM=
Subject key identifier: D3:02:70:6F:3D:DE:2B:B1:2E:2B:A9:11:A9:BE:05:C8:D4:97:8C:86
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0198890C94912E62248E5E8C19491482CE39
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/0wJwbz3eK7EuK6kRqb4FyNSXjIY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 08 Aug 2025 09:39:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205695
IP: 89.40.29.0/24
IP: 185.46.238.0/24
IP: 2a14:65c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:0c:94:91:2e:62:24:8e:5e:8c:19:49:14:82:ce:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 8 09:39:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d302706f3dde2bb12e2ba911a9be05c8d4978c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:dd:d5:93:67:0f:3e:7f:39:f2:93:d6:0e:
59:94:ab:3e:ca:d2:39:12:32:1c:e6:64:7d:56:fb:
bb:09:76:46:00:5c:0c:64:36:f1:93:b1:78:ea:ee:
b3:45:3e:1d:97:58:67:ac:bd:fb:07:d8:ac:67:19:
43:0a:a6:16:50:5c:30:cc:84:0e:e0:ea:0f:0c:88:
44:d1:da:cb:5e:fb:9a:60:95:a9:5d:50:c6:1b:2e:
ed:d1:9b:65:21:11:40:db:35:3e:19:19:cc:f9:e3:
ee:13:9d:1a:7c:a0:ef:8d:e6:dc:fa:f7:ce:bf:b1:
70:01:22:dc:9d:61:0a:6b:d4:57:11:50:18:26:63:
41:d9:c1:47:0f:b4:7b:19:cf:8a:58:e7:bb:d2:9f:
50:74:96:3a:70:e6:08:2a:97:54:07:45:78:8f:11:
83:f8:fe:b7:d0:02:e5:a0:a2:c0:63:1c:3c:c8:2f:
39:ab:62:36:b0:5e:1a:26:09:3f:d2:97:27:14:4b:
c1:12:a8:c8:7a:d1:1f:c2:74:96:71:0c:40:27:ea:
f2:48:13:d1:91:98:2d:c6:16:94:2e:5a:b6:36:2f:
c8:06:ad:65:65:3a:62:90:da:96:2f:38:ad:11:1e:
ae:4d:03:94:c7:b9:d6:a4:17:78:df:38:2e:7b:42:
30:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:02:70:6F:3D:DE:2B:B1:2E:2B:A9:11:A9:BE:05:C8:D4:97:8C:86
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/0wJwbz3eK7EuK6kRqb4FyNSXjIY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.29.0/24
185.46.238.0/24
IPv6:
2a14:65c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205695
Signature Algorithm: sha256WithRSAEncryption
19:57:d9:0c:6e:fd:f2:ad:60:90:e2:14:8a:a1:e8:f3:0b:73:
a9:bd:f2:8d:c8:8f:26:dd:71:da:61:bc:b7:b6:e5:22:55:1b:
41:54:ee:d5:0f:69:58:73:66:10:c8:33:c9:25:8c:09:25:0f:
aa:e5:6a:90:0c:93:47:52:f3:b1:5e:ef:c8:3c:93:fa:b4:13:
de:cf:1b:4a:4b:2a:6b:28:44:b3:ab:fd:cb:e9:f9:3e:3c:af:
43:2a:ba:0b:cd:45:7d:2e:9a:51:57:1f:4b:c8:30:11:fa:3a:
78:90:e2:67:40:36:c1:88:16:a7:b4:39:61:f7:51:52:05:a8:
18:70:c3:76:b7:47:cd:46:84:6d:01:8b:ce:39:b9:d4:47:ef:
3a:63:39:b1:0d:a4:73:8b:fc:da:ea:e8:3f:e9:5c:38:77:a5:
9d:b7:51:ac:2e:c7:01:06:15:52:50:ca:21:a5:55:43:ef:04:
83:3d:e4:bf:4c:fb:13:97:b5:d8:ec:fe:05:73:22:3a:a8:03:
83:ca:72:32:b2:5e:71:78:ac:ef:ba:66:7d:d1:68:04:25:19:
53:3a:0c:09:21:7e:54:7b:40:2f:ab:2c:1d:5a:cc:f9:e4:01:
51:ef:9f:c2:3b:f5:20:02:bf:52:5c:ec:f0:e0:38:84:9c:72:
63:86:97:fc
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZiJDJSRLmIkjl6MGUkUgs45MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwODA4MDkzOTE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzAyNzA2ZjNkZGUyYmIxMmUyYmE5MTFhOWJlMDVjOGQ0OTc4Yzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGzd1ZNnDz5/OfKT1g5ZlKs+ytI5
EjIc5mR9Vvu7CXZGAFwMZDbxk7F46u6zRT4dl1hnrL37B9isZxlDCqYWUFwwzIQO
4OoPDIhE0drLXvuaYJWpXVDGGy7t0ZtlIRFA2zU+GRnM+ePuE50afKDvjebc+vfO
v7FwASLcnWEKa9RXEVAYJmNB2cFHD7R7Gc+KWOe70p9QdJY6cOYIKpdUB0V4jxGD
+P630ALloKLAYxw8yC85q2I2sF4aJgk/0pcnFEvBEqjIetEfwnSWcQxAJ+rySBPR
kZgtxhaULlq2Ni/IBq1lZTpikNqWLzitER6uTQOUx7nWpBd43zgue0IwZwIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFNMCcG893iuxLiupEam+BcjUl4yGMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzVmY2Fl
YS0yZjE0LTRkNGQtYjU1ZC1jOGQ4NDk4NWJiZDkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvNWZjYWVh
LTJmMTQtNGQ0ZC1iNTVkLWM4ZDg0OTg1YmJkOS8xLzB3SndiejNlSzdFdUs2a1Jx
YjRGeU5TWGpJWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQAWSgdAwQAuS7uMA0EAgACMAcDBQMqFGXAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMjfzANBgkqhkiG9w0BAQsFAAOCAQEAGVfZ
DG798q1gkOIUiqHo8wtzqb3yjciPJt1x2mG8t7blIlUbQVTu1Q9pWHNmEMgzySWM
CSUPquVqkAyTR1LzsV7vyDyT+rQT3s8bSksqayhEs6v9y+n5PjyvQyq6C81FfS6a
UVcfS8gwEfo6eJDiZ0A2wYgWp7Q5YfdRUgWoGHDDdrdHzUaEbQGLzjm51EfvOmM5
sQ2kc4v82uroP+lcOHelnbdRrC7HAQYVUlDKIaVVQ+8Egz3kv0z7E5e12Oz+BXMi
OqgDg8pyMrJecXis77pmfdFoBCUZUzoMCSF+VHtAL6ssHVrM+eQBUe+fwjv1IAK/
Ulzs8OA4hJxyY4aX/A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 07:02:38 2025 by rpki-client