Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9JUCyXSCsoUChSyX75vToKKl6fA.cer
File: 9JUCyXSCsoUChSyX75vToKKl6fA.cer (raw, json)
Hash identifier: uHjkkPzTEXcuy2bw94aJ0Ns3wrX7WALHQYg4+fBW29M=
Subject key identifier: F4:95:02:C9:74:82:B2:85:02:85:2C:97:EF:9B:D3:A0:A2:A5:E9:F0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7C80B8B18A72DCB6959A0C4CB77800E9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6f/1f86d3-087d-4d69-b8e7-73b0c74e9b64/1/9JUCyXSCsoUChSyX75vToKKl6fA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6f/1f86d3-087d-4d69-b8e7-73b0c74e9b64/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 02:19:29 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 208310
IP: 94.137.128.0/20
IP: 185.204.248.0/22
IP: 193.223.248.0/22
IP: 2a0a:ffc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7c:80:b8:b1:8a:72:dc:b6:95:9a:0c:4c:b7:78:00:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:19:29 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=f49502c97482b28502852c97ef9bd3a0a2a5e9f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:45:14:79:c0:f0:76:90:ba:7b:09:0d:e8:6f:
7d:b1:76:89:29:39:dc:5e:5b:89:3c:21:a8:64:0d:
10:30:bb:b0:d6:ca:9f:1c:ee:b5:5c:0e:eb:45:af:
26:e3:3c:02:11:d7:4a:d9:53:71:99:52:ff:e0:0e:
43:db:7c:9a:d4:a2:48:68:c2:03:c8:84:6c:4d:8c:
b4:e5:43:6f:53:f1:b1:e6:f9:c1:6d:b5:80:10:92:
dd:9d:86:2a:68:b4:ab:a4:5c:29:75:82:5a:9d:a8:
c1:1a:e0:d9:49:d6:e4:ec:73:2c:6a:e8:74:a1:95:
2f:7f:66:df:f2:40:c9:19:6b:e8:7c:c3:07:82:f4:
a4:8e:47:62:7d:1a:b8:ad:2e:89:7e:7f:05:0b:94:
ad:b9:48:2e:55:e7:21:86:24:63:ef:b4:50:16:40:
fe:9f:8a:76:a2:11:2a:4a:2e:1b:85:d4:51:79:19:
eb:1c:1d:66:55:48:c5:af:db:1b:62:d2:9d:92:3e:
72:bb:26:af:6f:d2:26:82:e5:16:91:2b:44:92:e1:
84:15:97:fc:94:46:0f:7b:ab:82:5d:d3:89:9d:ad:
72:c7:f2:9b:10:ec:4e:54:5b:47:93:e8:b3:0a:ef:
d3:df:2d:5a:b5:c2:9a:75:4d:52:4e:6b:45:5c:5f:
99:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:95:02:C9:74:82:B2:85:02:85:2C:97:EF:9B:D3:A0:A2:A5:E9:F0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/1f86d3-087d-4d69-b8e7-73b0c74e9b64/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/1f86d3-087d-4d69-b8e7-73b0c74e9b64/1/9JUCyXSCsoUChSyX75vToKKl6fA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.128.0/20
185.204.248.0/22
193.223.248.0/22
IPv6:
2a0a:ffc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208310
Signature Algorithm: sha256WithRSAEncryption
6d:cc:3a:03:93:77:d9:5c:e3:13:45:6c:ff:af:d2:e1:87:5a:
ad:01:86:cf:fd:49:cb:d1:e7:46:b7:b9:3e:1f:98:f5:48:d2:
1a:8a:bf:dd:69:05:bb:52:49:45:0c:ac:70:e2:52:be:df:2b:
57:ef:98:8c:08:ba:36:e0:a8:b3:96:31:2e:4a:fe:29:54:94:
b3:8b:ba:e7:79:f6:a3:dd:88:9c:f5:a4:7d:d9:a0:b2:f6:dc:
8a:6d:d2:10:31:7a:89:e2:42:23:b3:64:5a:d9:64:dd:a8:85:
15:ff:0d:81:57:c1:14:03:f1:ba:8a:8c:f1:88:10:0f:0a:7f:
cf:d7:08:38:5c:c4:74:43:8f:a3:e7:28:16:f6:ee:9f:7a:db:
b1:72:b1:1f:29:96:61:c9:aa:c4:94:e8:3d:ff:18:b9:a3:d0:
d4:b7:6a:f5:c7:96:1d:e3:3c:35:36:cd:47:00:55:2d:84:1e:
71:73:87:78:57:11:d9:1b:90:07:59:fb:3f:9e:7c:22:f4:23:
ad:51:94:8b:72:04:db:d6:64:74:19:fb:00:3b:41:f3:c6:c3:
57:1a:f2:6a:00:ec:e3:74:ac:56:69:c1:40:ec:6f:16:4b:1e:
83:76:36:e0:bf:fa:53:e7:ae:c9:59:c1:aa:4f:c8:02:87:86:
e6:1e:6f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:55:34 2026 by rpki-client