Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IbnyqCas92elDlmynsH_CSz9PBw.cer
File: IbnyqCas92elDlmynsH_CSz9PBw.cer (raw, json)
Hash identifier: DceQRz6jwnLU4nNqCohcGoGCtQb9s5hq6Cvw5Wrkzxo=
Subject key identifier: 21:B9:F2:A8:26:AC:F7:67:A5:0E:59:B2:9E:C1:FF:09:2C:FD:3C:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0198C278E1B08F96C25893E4D41BF91C33ED
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/d70f78-082e-4ec2-8100-7cdcb50ed0e4/1/IbnyqCas92elDlmynsH_CSz9PBw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/d70f78-082e-4ec2-8100-7cdcb50ed0e4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 19 Aug 2025 13:15:58 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206215
IP: 167.150.22.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c2:78:e1:b0:8f:96:c2:58:93:e4:d4:1b:f9:1c:33:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 19 13:15:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=21b9f2a826acf767a50e59b29ec1ff092cfd3c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:00:d1:83:0b:5a:a2:d6:42:d1:36:25:fe:da:
ce:f5:82:6d:7f:75:fe:de:59:8d:df:01:ca:57:89:
54:9a:94:05:ea:69:04:3b:b0:6f:12:3a:1f:10:e1:
fe:9b:39:99:9d:0d:e3:5f:bb:91:75:53:7c:26:6e:
c4:18:33:db:14:ed:a2:12:95:17:ec:c1:5d:48:8e:
42:05:5f:4c:9b:1a:7e:e9:b2:04:24:05:8e:d1:15:
ce:49:a1:8e:da:f9:eb:55:d3:ef:74:01:21:40:8b:
4f:9c:f1:76:3a:46:49:ff:70:49:46:4c:fc:8e:90:
f1:a9:1f:9c:83:54:09:8b:d1:08:3c:9b:60:49:09:
91:5a:1a:40:bf:f0:68:9b:67:0d:b6:0b:0f:93:54:
f9:6f:e1:7a:2d:8f:45:2e:74:62:7c:da:83:53:ca:
0f:77:99:b3:0e:cc:0f:a6:e9:5c:92:3b:69:da:19:
43:83:fd:0e:c4:5a:77:cb:ad:56:60:40:72:02:15:
0b:84:9b:33:5a:6a:0b:6a:11:61:83:5f:04:a4:56:
d5:32:85:2a:2f:7a:32:fb:04:2f:9d:ea:4a:54:fc:
35:cf:d7:66:a8:6b:e7:60:9f:6f:7d:99:72:22:9f:
76:db:e2:d0:ff:a4:cd:86:4d:e7:da:23:0c:c0:ad:
54:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B9:F2:A8:26:AC:F7:67:A5:0E:59:B2:9E:C1:FF:09:2C:FD:3C:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d70f78-082e-4ec2-8100-7cdcb50ed0e4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d70f78-082e-4ec2-8100-7cdcb50ed0e4/1/IbnyqCas92elDlmynsH_CSz9PBw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.150.22.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206215
Signature Algorithm: sha256WithRSAEncryption
9d:6f:06:44:b4:f6:67:b4:bb:6d:10:16:3c:55:b6:33:fa:d9:
e4:27:c5:e8:f1:4d:20:53:14:34:ca:51:2f:a7:de:80:ce:e7:
cb:bd:01:7f:36:75:8c:c4:6a:bf:f6:29:94:59:e8:53:b7:2b:
2c:95:8a:a8:4d:78:c9:48:9d:5d:3b:11:7b:c3:a9:c0:e7:c2:
a3:5e:b9:08:dc:11:4c:4c:0c:fd:45:c2:de:69:34:7b:de:2b:
0a:8a:fc:f9:4f:c9:15:57:ca:64:f4:52:8d:9c:36:96:9b:ef:
a8:83:78:14:30:06:ca:e3:16:d1:22:6d:2b:12:35:48:5a:21:
11:02:85:04:e7:2f:39:9c:35:23:fe:cc:18:43:e9:5e:21:b5:
65:e4:73:7f:d8:79:d2:ae:30:1e:28:1b:37:d8:95:98:2a:91:
8b:60:15:57:fe:21:6d:ba:3c:6c:a2:9f:6f:ee:7f:f5:f9:1c:
e2:e7:82:a3:6d:94:a4:8a:c1:a6:8e:63:57:0c:8f:27:10:5c:
4e:f9:cc:7d:c5:4f:b6:df:ab:6c:fa:69:6d:10:eb:59:ce:58:
86:49:82:2e:6c:af:a2:12:e6:5f:eb:e2:20:78:a3:85:f2:1c:
f9:ae:6e:3a:1a:ae:84:7b:b9:c6:b6:8e:fa:c3:a2:8d:19:50:
c9:ee:09:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:12:15 2025 by rpki-client