Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FxnQvARM2qI0GAnQAPD8Th3ts0U.cer
File: FxnQvARM2qI0GAnQAPD8Th3ts0U.cer (raw, json)
Hash identifier: lR2tFS56unnSCNyiG53s3ONpUj6UXU8gUa5BAXWYoX0=
Subject key identifier: 17:19:D0:BC:04:4C:DA:A2:34:18:09:D0:00:F0:FC:4E:1D:ED:B3:45
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B77C74A8029D03AAEC31BE4AC601B95D8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/FxnQvARM2qI0GAnQAPD8Th3ts0U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Jan 2026 04:18:28 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 208562
IP: 2001:678:ad8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:77:c7:4a:80:29:d0:3a:ae:c3:1b:e4:ac:60:1b:95:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:18:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1719d0bc044cdaa2341809d000f0fc4e1dedb345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:de:42:27:df:66:5e:f5:dc:a3:eb:4e:bc:
f3:6b:06:ba:aa:16:4d:a5:43:0e:4f:0a:f1:52:38:
38:a1:1b:57:d6:a0:68:19:e5:6c:f1:27:ec:da:d5:
e9:bc:43:1e:b8:b0:1e:78:5e:58:30:02:83:59:dd:
bd:14:08:eb:5c:ac:c9:1d:e3:e8:09:37:b4:48:08:
0f:e7:da:df:27:77:70:e2:ab:01:5d:02:ba:34:fa:
2a:1e:27:47:cb:d7:7b:12:f1:e5:90:c1:7a:e9:07:
09:0b:3d:d6:51:a5:a9:e4:b6:17:0a:3c:b8:d2:09:
67:f9:d9:46:4f:54:82:f2:a6:7e:2e:92:6a:ff:b3:
e8:3b:c6:e9:12:aa:cb:fd:fa:c4:0f:26:b5:0b:dd:
79:03:d5:38:4d:df:30:c2:36:19:4a:b5:81:55:ce:
ea:9f:b6:b7:6a:78:1f:c0:74:34:d6:31:08:6d:87:
6e:8a:6e:5e:58:2b:9d:25:d1:b8:84:34:ef:43:ae:
17:63:0e:a8:37:11:d3:55:1a:37:2a:f2:eb:6e:10:
2e:5f:c5:09:50:4e:01:b4:b8:76:9d:b5:8b:3a:2c:
8e:c0:87:ac:3c:6e:68:b0:fe:cb:3b:28:ca:c0:8f:
89:7b:57:d8:e6:f1:35:00:bc:66:5e:40:f9:c4:82:
bc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:19:D0:BC:04:4C:DA:A2:34:18:09:D0:00:F0:FC:4E:1D:ED:B3:45
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c03eae-39ae-4002-b66e-04ac0a5e8143/1/FxnQvARM2qI0GAnQAPD8Th3ts0U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ad8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208562
Signature Algorithm: sha256WithRSAEncryption
56:99:8e:10:99:8d:a2:73:a1:81:b2:f5:45:e5:e3:9c:77:f6:
76:17:e3:8a:fd:ba:d4:5d:09:53:6b:04:bb:a1:16:ff:ae:dc:
91:06:91:ec:24:e5:f8:4c:7e:44:56:90:9d:44:21:c7:63:eb:
62:49:a9:bd:f4:a9:ab:71:bd:7d:01:f4:01:76:e0:52:dd:77:
f9:d3:6b:ec:5d:d0:1e:8c:cd:25:b9:1a:e8:70:b5:fa:13:00:
54:57:de:72:cf:e5:a8:fa:2e:32:96:ea:0c:4e:27:28:bb:8d:
09:22:a8:82:c1:bb:f3:16:75:a7:26:42:cd:d5:33:ec:00:b3:
69:26:7a:96:6f:b5:a3:ba:29:c8:98:97:9a:b1:00:b2:b7:05:
c2:90:df:59:53:4c:cf:7a:1b:30:6e:02:22:31:6a:7e:bd:cc:
ad:25:20:26:c3:e7:c3:30:d1:9d:6d:73:89:bb:00:c7:d3:25:
bc:e8:c1:cd:c9:ac:54:cf:b6:e9:6f:48:d7:7d:e5:f7:be:8e:
09:b1:d8:9d:49:11:e2:b5:93:74:8f:c1:57:24:09:b6:e5:f5:
9d:0f:d2:04:e9:ff:12:1b:ab:4f:d5:3c:01:be:90:c7:b8:06:
58:d1:4a:cb:46:f3:be:38:f1:02:50:eb:60:5c:55:a7:39:a5:
51:67:ef:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:18:29 2026 by rpki-client