Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
File: OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer (raw, json)
Hash identifier: +HafNPxSPq1AC5nsBq3JbtFBqHDsqzNSlujOXeyYQ5Q=
Subject key identifier: 3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019C8B08C2A7A4D55640F13CA2B6F3BB50D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 23 Feb 2026 15:05:33 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 215958
IP: 185.241.40.0/22
IP: 209.33.128.0/18
IP: 2a14:4900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:8b:08:c2:a7:a4:d5:56:40:f1:3c:a2:b6:f3:bb:50:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 23 15:05:33 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:44:a5:08:d2:8a:ef:1f:a4:06:2e:db:0a:7c:
47:5a:b8:5c:44:c1:a6:d6:2c:b0:08:59:85:f9:59:
e6:5a:79:b0:47:25:7b:a3:f4:d3:93:c9:85:19:8b:
fb:fe:1d:ae:33:53:60:54:a0:87:a9:77:bf:77:8c:
1a:1d:0e:91:a6:cd:a2:aa:dc:d0:36:a0:76:26:a6:
46:8b:52:4a:e3:21:3f:c9:09:fa:47:0a:37:4c:22:
9b:b6:66:cc:fd:33:48:fa:5b:e6:71:28:da:d0:2e:
49:e3:ce:2e:c1:17:c8:00:1e:3a:48:11:93:b7:e4:
c8:10:d8:cd:00:28:81:8e:11:51:fe:f5:5e:08:b2:
c6:38:7d:df:ae:49:ef:1e:4c:f1:a3:a1:ed:ea:34:
7a:0f:a1:6c:08:85:d8:4a:96:df:9f:ef:ad:a5:44:
de:6a:57:38:73:6e:21:10:f1:73:37:bf:8b:c0:a0:
e2:f7:eb:75:92:f5:93:ac:9b:a1:1d:62:16:1b:48:
87:c5:eb:fe:2e:5e:29:53:c8:b1:e6:5a:b6:fb:36:
62:ad:63:d6:28:05:00:fb:db:69:4c:52:64:ec:d3:
7c:7d:f0:fa:86:ca:7d:f9:b6:7f:b3:48:ca:f3:9c:
d8:2a:09:17:25:4e:09:8e:41:13:f1:c0:9e:6e:66:
ff:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.40.0/22
209.33.128.0/18
IPv6:
2a14:4900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215958
Signature Algorithm: sha256WithRSAEncryption
53:43:f0:13:be:28:20:71:25:07:5a:04:a9:bb:b1:a6:f1:c0:
b1:48:8f:e0:a6:49:88:f6:8e:70:7b:9d:a4:fe:38:aa:1e:6e:
e5:d5:35:d8:28:31:ec:db:01:09:d7:90:72:d4:88:58:51:53:
f0:c8:26:07:55:52:ac:48:aa:3f:f6:84:75:49:10:bb:57:d4:
ed:32:53:09:7b:12:cd:c7:ef:41:33:c2:d8:c7:71:47:54:80:
81:18:d9:f4:9b:44:ee:38:c2:18:54:60:09:57:6f:49:82:24:
24:b7:c1:2f:54:04:99:4c:d8:08:86:a7:72:20:f3:4c:a7:c0:
77:24:6d:f5:fb:7a:0d:f7:ac:a9:e3:a7:27:fd:33:18:9d:d6:
89:ad:0a:63:d8:a2:ad:fb:a3:e5:3e:7b:7d:57:08:c0:21:37:
b8:8e:07:c0:34:d1:dc:d8:e7:ea:82:09:88:07:f4:81:04:02:
ae:c4:11:07:f2:00:93:ad:93:6a:fa:3f:81:b7:0a:c3:0f:f1:
2d:0b:00:df:8a:52:ea:0d:fe:d5:54:9d:61:40:0b:c3:5b:bd:
1e:68:cd:02:07:60:28:11:8b:72:53:17:dd:74:e4:63:6f:8f:
d1:08:4e:87:3a:1b:f2:60:39:16:ff:c1:04:10:3b:0a:74:1a:
59:cd:14:99
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZyLCMKnpNVWQPE8orbzu1DXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwMjIzMTUwNTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjBiZjE4ZDZiYmRiMzNkYTgyZmU2MWEyODYyNGJhNzJlMjM1MDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA70SlCNKK7x+kBi7bCnxHWrhcRMGm
1iywCFmF+VnmWnmwRyV7o/TTk8mFGYv7/h2uM1NgVKCHqXe/d4waHQ6Rps2iqtzQ
NqB2JqZGi1JK4yE/yQn6Rwo3TCKbtmbM/TNI+lvmcSja0C5J484uwRfIAB46SBGT
t+TIENjNACiBjhFR/vVeCLLGOH3frknvHkzxo6Ht6jR6D6FsCIXYSpbfn++tpUTe
alc4c24hEPFzN7+LwKDi9+t1kvWTrJuhHWIWG0iHxev+Ll4pU8ix5lq2+zZirWPW
KAUA+9tpTFJk7NN8ffD6hsp9+bZ/s0jK85zYKgkXJU4JjkET8cCebmb/PQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFDsL8Y1rvbM9qC/mGihiS6cuI1BAMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc5LzVkZGVl
OS1jMWM0LTRiNTctYjZiOC1kNDk5MTZiNWYyYjQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzkvNWRkZWU5
LWMxYzQtNGI1Ny1iNmI4LWQ0OTkxNmI1ZjJiNC8xL093dnhqV3U5c3oyb0wtWWFL
R0pMcHk0alVFQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCufEoAwQG0SGAMA0EAgACMAcDBQMqFEkAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwNLljANBgkqhkiG9w0BAQsFAAOCAQEAU0Pw
E74oIHElB1oEqbuxpvHAsUiP4KZJiPaOcHudpP44qh5u5dU12Cgx7NsBCdeQctSI
WFFT8MgmB1VSrEiqP/aEdUkQu1fU7TJTCXsSzcfvQTPC2MdxR1SAgRjZ9JtE7jjC
GFRgCVdvSYIkJLfBL1QEmUzYCIanciDzTKfAdyRt9ft6DfesqeOnJ/0zGJ3Wia0K
Y9iirfuj5T57fVcIwCE3uI4HwDTR3Njn6oIJiAf0gQQCrsQRB/IAk62Tavo/gbcK
ww/xLQsA34pS6g3+1VSdYUALw1u9HmjNAgdgKBGLclMX3XTkY2+P0QhOhzob8mA5
Fv/BBBA7CnQaWc0UmQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:02:49 2026 by rpki-client