Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JA_Q0ziG2DnFzJAQOhhuE6NIrVA.cer
File: JA_Q0ziG2DnFzJAQOhhuE6NIrVA.cer (raw, json)
Hash identifier: /ieOyyGfB87OnTObGlCLNXQndL1LK7HQKKwOqKvo5PY=
Subject key identifier: 24:0F:D0:D3:38:86:D8:39:C5:CC:90:10:3A:18:6E:13:A3:48:AD:50
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019DF36BD523EEC0165D3035F3317F950290
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/JA_Q0ziG2DnFzJAQOhhuE6NIrVA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 04 May 2026 14:37:03 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 8553
IP: 81.95.52.0/23
IP: 195.10.226.0 -- 195.10.255.255
IP: 2a00:ce0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 14:48:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f3:6b:d5:23:ee:c0:16:5d:30:35:f3:31:7f:95:02:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 4 14:37:03 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=240fd0d33886d839c5cc90103a186e13a348ad50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:9c:c6:4a:86:cb:7d:47:c2:1e:9e:50:d2:
72:6f:ed:86:f0:0c:f6:b3:a3:a2:74:99:db:5f:c5:
fa:a4:94:c3:0e:30:90:0b:33:09:57:cb:05:45:c9:
d5:4d:03:e2:ab:ac:14:d3:b7:cb:d6:86:90:07:c2:
c1:06:82:fe:32:14:b7:99:77:d0:d3:dc:16:23:84:
5a:98:0d:e7:1d:c5:03:af:51:ca:af:e1:3c:7f:56:
b2:25:88:de:72:81:f1:58:23:68:d4:89:64:04:03:
ff:2f:fd:91:1f:fc:32:ab:69:79:32:62:5c:78:b1:
39:34:e7:26:37:fb:ba:c4:d7:20:9c:07:ab:58:7a:
cd:1b:a1:59:b8:6f:27:bc:8f:db:44:60:28:9c:e9:
f6:98:16:82:a4:0d:f5:ab:d2:a2:82:79:59:25:ba:
89:7e:0c:bc:9f:40:50:fb:b3:34:75:56:b2:4c:71:
98:1f:bf:42:10:26:56:ff:29:37:b5:a4:d9:c7:c7:
f4:97:e4:0a:4a:b3:ee:a1:7f:15:67:32:48:90:c2:
8d:28:ee:8e:50:b8:33:12:32:63:b9:9e:cb:7a:8f:
33:97:cb:c6:3b:e1:b7:6b:85:c7:d9:20:9d:cb:78:
e7:ce:38:d3:de:06:e3:5e:c6:96:e0:19:7d:50:a4:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0F:D0:D3:38:86:D8:39:C5:CC:90:10:3A:18:6E:13:A3:48:AD:50
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/JA_Q0ziG2DnFzJAQOhhuE6NIrVA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.52.0/23
195.10.226.0-195.10.255.255
IPv6:
2a00:ce0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8553
Signature Algorithm: sha256WithRSAEncryption
51:9d:aa:78:6d:1c:78:78:af:b0:41:29:4e:5e:0d:07:f8:f1:
35:fa:ed:f0:f9:09:19:9c:68:52:52:ad:7b:0a:fe:b6:a5:75:
ee:eb:a7:bb:ff:63:37:be:dc:ad:7a:54:70:31:d8:f5:5e:fb:
8b:4c:82:54:71:aa:dc:7f:fc:d6:e6:86:a2:56:8d:32:59:a4:
4a:63:a0:30:b7:1e:26:77:31:89:4a:85:0b:6a:53:6b:75:d2:
af:b7:d4:33:64:53:29:20:8b:c9:4a:43:56:90:8f:8e:52:8c:
cd:ab:ab:fa:fe:4f:8a:d3:58:78:46:99:4c:3f:8e:d2:51:59:
d7:4b:34:fd:60:b7:86:3e:af:9b:8c:2c:2a:32:67:26:13:69:
f2:c6:e0:4f:6d:4a:d4:66:04:d8:bd:8a:aa:72:06:1d:ef:bf:
22:7e:5f:23:b0:d5:f0:25:f2:06:be:d5:61:df:22:27:fe:ad:
c3:86:bf:70:61:04:5a:0e:1e:57:ba:74:68:8e:ce:dd:52:19:
df:f7:59:b3:44:22:2f:41:30:23:c9:64:f7:2d:a9:57:7b:db:
b8:2f:c3:94:4b:a4:c4:63:85:bd:bb:e0:61:10:29:70:f9:ee:
2f:ab:bc:28:13:97:ce:f6:e0:90:a6:43:3f:c6:2e:27:c1:5c:
dc:21:55:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:22:33 2026 by rpki-client