Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VqAi3rCSj10aCl-wDpbK1MfZEdg.cer
File: VqAi3rCSj10aCl-wDpbK1MfZEdg.cer (raw, json)
Hash identifier: mkh1fK/eY0101sN13ElBJkyTNTB3PPNWfRfOe5vwkMI=
Subject key identifier: 56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7C114D7C2264E09564736A2C9F45B250
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 00:17:47 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 48374
AS: 206079
IP: 185.141.144.0/22
IP: 185.168.180.0/22
IP: 2a07:2500::/29
IP: 2a10:abc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7c:11:4d:7c:22:64:e0:95:64:73:6a:2c:9f:45:b2:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:17:47 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=56a022deb0928f5d1a0a5fb00e96cad4c7d911d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0b:6d:ed:b4:a7:a6:ef:ff:fe:b0:2d:f5:59:
c1:fb:05:32:92:54:92:fc:41:f5:d6:6f:9e:7b:ce:
bb:5e:aa:2e:85:c4:b7:2e:b9:d3:3f:20:3f:70:bf:
a8:3c:13:ac:4b:07:65:50:4c:31:bc:8a:dc:0d:f0:
66:af:f6:ef:9d:cb:9f:4a:d2:20:e3:73:8f:43:48:
b3:57:a7:df:9f:74:21:11:e6:b2:5e:f0:a3:df:57:
db:4c:01:48:c1:76:2f:22:70:df:c4:92:a5:2b:cc:
82:e1:d4:d6:d8:9f:9f:f0:29:8c:17:a0:92:c0:1f:
d1:01:a8:f9:8c:16:20:66:b6:bb:6b:32:e6:82:95:
b0:62:cc:82:f9:52:f1:8e:65:61:5d:68:87:90:23:
f3:67:d5:9e:fe:93:2b:ef:e7:be:f6:7b:9b:f0:18:
2d:ce:4b:be:aa:ed:d6:e4:2c:19:cf:5b:d5:8b:9f:
8c:ca:02:35:14:03:fc:96:eb:0a:72:46:64:47:d2:
63:82:56:4d:ff:00:3e:b9:5a:20:a0:81:30:be:b9:
66:a1:2f:77:95:9d:40:b7:19:10:ce:b2:fc:8c:84:
ba:99:7b:ac:74:3c:df:2c:c4:36:45:20:32:d6:b5:
1e:4d:97:5a:09:91:6e:7e:8f:ab:b3:6d:78:2f:5e:
f2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A0:22:DE:B0:92:8F:5D:1A:0A:5F:B0:0E:96:CA:D4:C7:D9:11:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7bb207-f471-4b67-8cb7-e15a6c3e4ea6/1/VqAi3rCSj10aCl-wDpbK1MfZEdg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.144.0/22
185.168.180.0/22
IPv6:
2a07:2500::/29
2a10:abc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48374
206079
Signature Algorithm: sha256WithRSAEncryption
a2:2a:aa:ed:7b:76:03:ff:54:7d:4f:5a:02:11:08:b1:b7:33:
24:e0:be:90:28:1e:4d:b8:c2:af:1b:e2:d6:e3:24:a3:6b:51:
b0:21:a5:b5:b0:21:90:4e:d5:1b:72:8b:3e:49:46:bf:8d:22:
4b:67:11:ff:8e:38:64:3c:74:a6:36:87:fc:ea:cc:82:86:f9:
a7:4e:02:b8:9d:3e:9d:78:45:23:3c:23:90:d5:69:d4:0f:2c:
f7:af:4a:05:d4:39:2d:e4:97:a7:15:b8:60:31:e3:10:96:75:
73:ec:09:a1:2d:79:c9:ab:76:0d:52:a7:21:ae:86:f5:c9:66:
54:12:6c:a5:7d:bf:ed:ee:27:75:41:b1:15:06:ad:55:35:2d:
7f:c1:e2:8a:2d:2a:b6:b7:3a:46:47:bc:7f:c3:ad:5c:d2:ef:
30:c1:37:a7:66:0e:ff:b1:51:4a:e9:74:0f:3b:b6:74:cd:85:
b9:f4:bc:d3:62:e9:d6:8a:8e:89:63:35:f5:75:01:aa:5d:76:
a7:bd:18:03:8f:5a:d5:95:4a:09:98:e6:6f:ec:83:dc:11:d3:
de:98:1e:58:a9:b3:c6:77:01:67:01:f1:c0:9b:a9:bb:d5:6c:
77:cd:42:c8:af:ed:db:fd:5e:33:f3:4e:1a:70:b7:24:7f:16:
41:48:8e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:53:56 2026 by rpki-client