Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
File: IPdQab1W78UXA4PtMcrSJGT98DA.cer (raw, json)
Hash identifier: eyxSmQiXpNi0LJOI4XFOA7Ss6kZvuqJYlcplk9SfJn8=
Subject key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7D5BBCD1E1E5F229B377035CFD243BB9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 06:18:42 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 33965
AS: 50255
IP: 83.144.192.0/18
IP: 185.79.252.0/22
IP: 195.162.166.0/24
IP: 2a02:e70::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:5b:bc:d1:e1:e5:f2:29:b3:77:03:5c:fd:24:3b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:18:42 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=20f75069bd56efc5170383ed31cad22464fdf030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:a3:af:9c:36:13:ba:bc:44:5c:76:6c:05:
40:c7:4c:e6:4d:a6:3a:ad:fc:c2:ff:bb:f6:6e:7e:
e7:1f:b7:ac:42:61:0c:47:6c:94:c3:d7:c1:70:a1:
62:fb:7d:7f:09:93:ad:ab:f4:c6:56:a4:14:26:41:
d2:52:01:b8:25:ca:81:aa:27:5a:8f:36:55:02:68:
d8:75:a9:84:5c:fd:27:f7:0f:15:08:20:0c:26:67:
c0:48:59:87:ad:2b:9c:6d:c6:44:e2:5b:10:c7:3e:
9f:22:5f:55:23:ec:bb:86:be:fe:13:04:79:b4:79:
bf:9c:35:19:b3:17:c0:28:a1:a1:c5:96:9b:46:9b:
ec:14:40:d3:0d:a3:b1:77:eb:34:ac:bf:0b:f6:25:
e3:70:51:1a:7f:27:09:dc:80:27:07:46:ee:d0:22:
14:62:2a:4f:5b:5a:3a:c0:4a:a8:5a:20:c7:40:26:
50:e4:7b:6a:41:a6:14:27:3e:09:de:54:60:8c:28:
5a:77:4f:a9:d6:05:2a:50:34:fe:60:38:6b:ea:6b:
81:57:a7:18:7c:3f:45:9b:b2:6c:7a:f9:8f:90:a0:
82:c0:39:71:fe:9b:27:e7:a7:f4:bc:b6:ba:16:c4:
51:32:84:80:7d:31:bb:ba:04:8e:96:31:e3:9e:9b:
9a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.144.192.0/18
185.79.252.0/22
195.162.166.0/24
IPv6:
2a02:e70::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33965
50255
Signature Algorithm: sha256WithRSAEncryption
5d:f0:17:5e:e1:bf:cc:68:d9:41:85:a2:15:dd:68:76:50:44:
65:47:3f:46:2c:9f:49:df:1f:96:da:15:09:5e:5e:68:1e:34:
d7:9b:da:31:64:b3:9f:6f:ce:7c:7b:72:f1:1b:e8:dd:40:fc:
a6:6a:bb:45:d8:a8:1b:e9:4e:09:c2:cf:c4:c7:73:ee:16:b8:
2d:61:31:fa:0b:35:2f:7e:1e:b5:84:b1:a2:98:a8:0c:36:3b:
1f:b2:11:7b:31:a0:ec:ad:e3:64:56:8e:8b:4d:c7:23:05:73:
a1:13:44:a7:07:50:b0:69:9a:a6:7c:27:9f:75:6d:c3:6c:82:
33:ee:c7:94:62:06:fe:16:8b:15:95:33:39:d3:9c:3f:7e:c6:
95:ec:f8:c2:cf:e9:3a:6e:af:2b:0c:0f:fa:e1:55:b1:2b:d1:
5d:9f:40:32:95:bc:ee:2b:2c:e5:4a:16:34:00:fb:3a:ef:59:
63:87:e8:cf:fc:40:fc:63:44:d1:77:33:ce:6f:9b:e0:4b:c2:
88:02:7f:1a:de:23:3a:96:f2:29:ee:c9:44:15:e0:47:e0:03:
c9:64:62:a6:a1:df:28:b9:8f:bc:b9:9b:51:d9:36:66:07:40:
a1:fa:ec:2c:88:fc:82:0d:0f:91:2d:91:a0:82:b9:a4:82:46:
2f:f7:30:33
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgISAZt9W7zR4eXyKbN3A1z9JDu5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwMTAyMDYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGY3NTA2OWJkNTZlZmM1MTcwMzgzZWQzMWNhZDIyNDY0ZmRmMDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgmjr5w2E7q8RFx2bAVAx0zmTaY6
rfzC/7v2bn7nH7esQmEMR2yUw9fBcKFi+31/CZOtq/TGVqQUJkHSUgG4JcqBqida
jzZVAmjYdamEXP0n9w8VCCAMJmfASFmHrSucbcZE4lsQxz6fIl9VI+y7hr7+EwR5
tHm/nDUZsxfAKKGhxZabRpvsFEDTDaOxd+s0rL8L9iXjcFEafycJ3IAnB0bu0CIU
YipPW1o6wEqoWiDHQCZQ5HtqQaYUJz4J3lRgjChad0+p1gUqUDT+YDhr6muBV6cY
fD9Fm7JsevmPkKCCwDlx/psn56f0vLa6FsRRMoSAfTG7ugSOljHjnpuawQIDAQAB
o4ICwDCCArwwHQYDVR0OBBYEFCD3UGm9Vu/FFwOD7THK0iRk/fAwMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E0Lzk1Y2Q3
MC01MGNkLTQ2YmQtOGUwNi1iOTcwNWQ3ZDM1NzkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQvOTVjZDcw
LTUwY2QtNDZiZC04ZTA2LWI5NzA1ZDdkMzU3OS8xL0lQZFFhYjFXNzhVWEE0UHRN
Y3JTSkdUOThEQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQGU5DAAwQCuU/8AwQAw6KmMA0EAgACMAcDBQAq
Ag5wMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwCErQIDAMRPMA0GCSqGSIb3DQEB
CwUAA4IBAQBd8Bde4b/MaNlBhaIV3Wh2UERlRz9GLJ9J3x+W2hUJXl5oHjTXm9ox
ZLOfb858e3LxG+jdQPymartF2Kgb6U4Jws/Ex3PuFrgtYTH6CzUvfh61hLGimKgM
NjsfshF7MaDsreNkVo6LTccjBXOhE0SnB1CwaZqmfCefdW3DbIIz7seUYgb+FosV
lTM505w/fsaV7PjCz+k6bq8rDA/64VWxK9Fdn0AylbzuKyzlShY0APs671ljh+jP
/ED8Y0TRdzPOb5vgS8KIAn8a3iM6lvIp7slEFeBH4APJZGKmod8ouY+8uZtR2TZm
B0Ch+uwsiPyCDQ+RLZGggrmkgkYv9zAz
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:35:42 2026 by rpki-client