Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
File: OwmORe9LtdGNvIbFoTX1fry-AF0.cer (raw, json)
Hash identifier: hMbWJM8Nxkc8Wk+0RlEwjp2kV0qtr/CCcjQKG4TCDe0=
Subject key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019BFEB37C5FC8EE80F83F9E279424F4E684
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 27 Jan 2026 09:05:34 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 15736
IP: 82.115.56.0/22
IP: 91.147.116.0 -- 91.147.127.255
IP: 212.116.224.0/19
IP: 2a02:7b60::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:fe:b3:7c:5f:c8:ee:80:f8:3f:9e:27:94:24:f4:e6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 27 09:05:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:c9:87:fb:84:13:4d:73:f2:c4:40:92:15:
ad:31:3b:8c:7f:b2:4e:ee:6a:cd:c6:57:11:25:77:
6c:e8:e2:13:5b:56:e9:7a:9b:44:29:37:df:09:74:
78:85:4b:60:8f:c2:84:e3:d1:b1:2c:82:12:a8:ca:
ef:46:0b:23:01:56:3c:ab:4d:c7:d1:90:0e:1b:52:
42:29:83:79:de:81:2b:c4:e5:21:87:e8:8b:81:df:
74:f0:a2:47:86:d5:06:e5:0f:af:ec:4b:b7:02:dc:
66:15:ee:df:ce:4f:74:b3:af:8e:4d:9c:dd:83:ae:
9a:8b:08:3b:68:d2:e0:62:f7:a8:d4:38:63:20:29:
d6:88:56:cb:7b:19:35:51:39:4f:63:e6:5d:9d:05:
d4:b9:36:6d:db:13:dd:cb:45:8e:1b:dc:6e:51:ce:
3a:68:a1:fb:f9:c1:53:aa:21:de:6f:8a:41:b9:b0:
69:88:75:40:88:fd:46:fc:df:0f:71:02:e5:12:0f:
2a:07:d8:21:a7:f6:d5:ee:19:52:3b:68:99:9d:39:
a1:4b:38:ae:32:5c:ce:98:2c:a0:16:c2:64:b8:a0:
2b:9a:15:ec:87:da:f9:db:df:7a:70:59:c8:0b:9d:
1f:e0:da:94:98:b5:61:e7:f8:fa:49:df:a5:03:26:
d3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.56.0/22
91.147.116.0-91.147.127.255
212.116.224.0/19
IPv6:
2a02:7b60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15736
Signature Algorithm: sha256WithRSAEncryption
43:00:7d:87:95:63:4c:6a:19:6a:d6:0f:ed:57:f4:86:18:e3:
24:d6:79:fe:5a:74:e2:11:b9:eb:04:ee:d8:45:b8:dc:32:f4:
14:12:76:c0:46:19:c5:3e:8e:60:52:48:2e:0f:1b:5b:67:44:
63:a9:d6:0b:9d:88:1b:c7:82:70:55:50:56:ba:1f:c6:ce:03:
a4:66:3e:d1:7b:a3:4b:a5:9c:e5:39:52:34:de:b1:78:92:f7:
a4:b0:7c:cd:36:23:b8:44:62:ec:8c:90:f9:d5:12:9c:b2:a8:
df:0a:1c:23:c1:d0:27:f8:35:2e:9d:b1:83:44:bf:06:64:3d:
2f:3c:b1:77:ff:da:83:bf:eb:34:87:52:87:fd:d2:09:22:d8:
40:15:4e:a5:dd:ae:a2:77:7f:ba:f8:66:5b:17:6d:91:9d:2b:
a4:b6:0e:2d:c5:fa:ce:7a:6e:91:f5:f3:7e:a9:e7:80:53:4e:
bb:01:0f:4b:72:ad:fd:a3:30:78:44:a7:f2:44:6b:7e:d0:af:
42:ab:13:8b:a8:c8:2d:be:d8:69:37:1e:55:5a:e6:2d:a6:8d:
f2:a4:d6:44:c9:bc:ec:bc:52:a3:bf:1b:22:ca:ce:34:84:e5:
f2:93:07:57:f8:d3:99:ef:a3:ad:59:be:9d:c3:ba:63:8d:48:
d5:72:bf:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:00:38 2026 by rpki-client