Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UuvM2QyKD8Eempj4VmboGDte-mw.cer
File: UuvM2QyKD8Eempj4VmboGDte-mw.cer (raw, json)
Hash identifier: OqMD3dNPuptbWE8DAzhZ/XpTvShYCocsszwWvIFEYFE=
Subject key identifier: 52:EB:CC:D9:0C:8A:0F:C1:1E:9A:98:F8:56:66:E8:18:3B:5E:FA:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01992DEC3F5FE9B60D32A705CE51121EBDD9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/UuvM2QyKD8Eempj4VmboGDte-mw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 09 Sep 2025 10:01:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 196777
IP: 37.143.132.0/22
IP: 91.214.84.0/22
IP: 176.126.60.0/22
IP: 178.213.184.0/21
IP: 194.60.254.0/23
IP: 195.191.12.0/23
IP: 2a10:a380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 01:22:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:ec:3f:5f:e9:b6:0d:32:a7:05:ce:51:12:1e:bd:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 9 10:01:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52ebccd90c8a0fc11e9a98f85666e8183b5efa6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:8b:59:08:57:b1:23:a2:86:d2:e4:21:4b:
d8:0a:af:b3:fa:a2:c5:6c:c1:c7:ee:8e:f5:6d:e1:
5e:73:6a:82:c8:4d:0b:b2:d4:28:fa:4b:09:37:e6:
dd:9d:b1:c4:4b:a1:42:a9:7d:61:bc:b6:1f:91:94:
18:1e:48:e5:b0:6f:90:c8:e3:87:fd:d8:2e:b4:6e:
76:b4:f3:82:89:9b:1e:17:4d:5a:40:b7:52:c4:22:
0e:2a:05:ad:9a:99:79:11:75:10:89:30:4d:e7:99:
fe:40:f3:55:44:de:07:f5:c4:54:ea:5c:e7:4a:d9:
d0:fe:6a:a5:17:d4:08:a4:62:07:b1:20:dc:e7:11:
0b:99:9b:0e:a1:46:13:d8:00:6b:27:c3:fa:f9:7a:
62:10:5e:5f:3b:47:4a:cc:5c:e4:0d:5b:d7:60:09:
5c:bd:c4:66:e9:21:9c:f3:09:40:e5:3a:8c:2f:ad:
9d:2b:4a:e0:e1:c4:55:95:b6:17:7d:91:94:6f:fc:
f5:c8:e7:89:1d:76:3f:e9:ee:4b:b5:d7:6a:c1:fc:
e5:81:5a:a3:f2:be:28:80:97:d3:63:5f:9d:aa:fc:
fc:fe:0c:17:8a:9e:a9:2f:8f:4c:d1:1d:21:61:7b:
b9:ea:38:a7:7c:9f:e4:06:c4:c3:e8:36:52:d4:39:
42:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EB:CC:D9:0C:8A:0F:C1:1E:9A:98:F8:56:66:E8:18:3B:5E:FA:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1cc85a-af77-45ed-b6cb-d97c8b56ae25/1/UuvM2QyKD8Eempj4VmboGDte-mw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.132.0/22
91.214.84.0/22
176.126.60.0/22
178.213.184.0/21
194.60.254.0/23
195.191.12.0/23
IPv6:
2a10:a380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
196777
Signature Algorithm: sha256WithRSAEncryption
1b:01:9e:8b:f4:8d:4a:0b:06:d4:9f:78:8a:31:55:45:0a:68:
38:64:c0:c2:53:7b:19:f7:05:81:7e:16:65:db:78:1f:74:37:
ce:cb:dd:6f:76:82:59:7a:c7:52:25:4a:93:88:18:41:b2:99:
13:cc:d4:b2:21:df:2b:bf:05:6d:b5:d3:9a:93:24:50:de:1d:
be:86:24:ca:7a:0a:e4:0c:81:74:4c:32:97:66:ef:b9:b1:5c:
cd:d7:87:a9:53:a9:33:d7:24:00:9c:7b:e0:a5:fa:1c:24:09:
a8:a4:ab:18:80:33:39:d4:f4:ae:a8:62:f1:4b:dd:ba:3f:85:
b4:ea:54:7a:a5:2d:bf:ba:9c:33:fa:85:ee:d9:9f:20:68:e7:
14:90:ca:15:83:1e:67:2e:49:7a:0c:9c:2e:97:55:ed:ce:df:
98:93:7c:e7:67:ab:21:a6:6e:24:e2:99:52:98:41:e5:fd:5b:
e1:f9:61:a9:b1:a3:dd:46:27:30:8e:73:53:37:0e:04:b7:51:
96:a0:7f:7e:10:c6:49:45:47:8d:f8:f7:73:57:9c:03:c6:4b:
3b:51:c7:d2:d6:5a:d4:66:80:e5:ec:9a:ab:42:58:74:9d:d0:
fb:44:e9:4a:f6:de:0b:90:5b:73:66:e8:07:39:a7:d7:9e:17:
a4:5a:88:7f
-----BEGIN CERTIFICATE-----
MIIFwTCCBKmgAwIBAgISAZkt7D9f6bYNMqcFzlESHr3ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwOTA5MTAwMTIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmViY2NkOTBjOGEwZmMxMWU5YTk4Zjg1NjY2ZTgxODNiNWVmYTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkGLWQhXsSOihtLkIUvYCq+z+qLF
bMHH7o71beFec2qCyE0LstQo+ksJN+bdnbHES6FCqX1hvLYfkZQYHkjlsG+QyOOH
/dgutG52tPOCiZseF01aQLdSxCIOKgWtmpl5EXUQiTBN55n+QPNVRN4H9cRU6lzn
StnQ/mqlF9QIpGIHsSDc5xELmZsOoUYT2ABrJ8P6+XpiEF5fO0dKzFzkDVvXYAlc
vcRm6SGc8wlA5TqML62dK0rg4cRVlbYXfZGUb/z1yOeJHXY/6e5LtddqwfzlgVqj
8r4ogJfTY1+dqvz8/gwXip6pL49M0R0hYXu56jinfJ/kBsTD6DZS1DlChwIDAQAB
o4ICzTCCAskwHQYDVR0OBBYEFFLrzNkMig/BHpqY+FZm6Bg7XvpsMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdhLzFjYzg1
YS1hZjc3LTQ1ZWQtYjZjYi1kOTdjOGI1NmFlMjUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2EvMWNjODVh
LWFmNzctNDVlZC1iNmNiLWQ5N2M4YjU2YWUyNS8xL1V1dk0yUXlLRDhFZW1wajRW
bWJvR0R0ZS1tdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEwGCCsGAQUF
BwEHAQH/BD0wOzAqBAIAATAkAwQCJY+EAwQCW9ZUAwQCsH48AwQDstW4AwQBwjz+
AwQBw78MMA0EAgACMAcDBQMqEKOAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMA
qTANBgkqhkiG9w0BAQsFAAOCAQEAGwGei/SNSgsG1J94ijFVRQpoOGTAwlN7GfcF
gX4WZdt4H3Q3zsvdb3aCWXrHUiVKk4gYQbKZE8zUsiHfK78FbbXTmpMkUN4dvoYk
ynoK5AyBdEwyl2bvubFczdeHqVOpM9ckAJx74KX6HCQJqKSrGIAzOdT0rqhi8Uvd
uj+FtOpUeqUtv7qcM/qF7tmfIGjnFJDKFYMeZy5JegycLpdV7c7fmJN852erIaZu
JOKZUphB5f1b4flhqbGj3UYnMI5zUzcOBLdRlqB/fhDGSUVHjfj3c1ecA8ZLO1HH
0tZa1GaA5eyaq0JYdJ3Q+0TpSvbeC5Bbc2boBzmn154XpFqIfw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 10:29:06 2025 by rpki-client