Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jO8UbYXAmqWWh_1jFbEyccHCkq0.cer
File: jO8UbYXAmqWWh_1jFbEyccHCkq0.cer (raw, json)
Hash identifier: QK7T68C4j1yHWlXMSoIAybGxfoaMqzhlXpFeWG9CI94=
Subject key identifier: 8C:EF:14:6D:85:C0:9A:A5:96:87:FD:63:15:B1:32:71:C1:C2:92:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019E16102909F404F3C9B89CF352744B255B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/a3d2ee-174c-48c3-bd26-7fa9d94024f0/1/jO8UbYXAmqWWh_1jFbEyccHCkq0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/a3d2ee-174c-48c3-bd26-7fa9d94024f0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 11 May 2026 08:03:38 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 199124
AS: 205809
IP: 66.203.124.0/22
IP: 69.30.89.0/24
IP: 91.218.78.0/23
IP: 94.24.36.0/23
IP: 162.208.16.0/24
IP: 185.206.24.0/22
IP: 2a09:a380::/29
IP: 2a0b:e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:16:10:29:09:f4:04:f3:c9:b8:9c:f3:52:74:4b:25:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 11 08:03:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=8cef146d85c09aa59687fd6315b13271c1c292ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f7:22:ce:e4:b6:38:dd:57:30:a4:a5:9c:16:
b6:9a:ed:03:f0:ac:cd:80:ac:fe:02:af:d3:08:b5:
cd:5b:62:83:69:4f:8f:3d:c2:ed:69:d3:13:3f:71:
93:9d:52:f3:d3:a3:61:b7:ba:75:75:47:2b:d1:22:
b4:ec:c3:51:07:d8:7e:2b:b0:e1:16:3e:ef:4b:04:
43:cf:53:29:f1:85:43:74:1c:df:cd:5c:f2:44:11:
30:0e:46:72:6f:f1:9e:c2:7f:a8:ef:9a:e0:b8:2d:
ec:99:5b:2d:ff:f8:86:b9:28:1b:12:c1:ba:f1:80:
1c:dc:9d:e6:38:7f:3c:0b:0b:e6:89:d1:8b:0f:3f:
89:44:dc:39:fb:dc:ce:30:a0:11:7e:12:3c:a5:5b:
4a:17:aa:c9:62:ee:3a:55:ce:dc:6f:76:54:fb:5e:
2a:8a:6d:15:e1:c9:25:b4:59:c4:ee:c9:81:d7:4d:
f2:df:89:27:c7:45:4e:a3:b0:cb:96:d9:a2:ab:9d:
ba:7c:7c:a8:ac:62:08:ca:8d:18:d1:ad:42:cf:fe:
9f:49:4f:cc:c6:cd:5b:57:e1:79:e6:e2:65:c9:50:
98:24:df:22:26:2b:1b:59:a5:f7:30:2d:6f:2b:8b:
f8:2c:0b:58:62:f4:1c:79:e5:a0:77:02:55:0b:ae:
b9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EF:14:6D:85:C0:9A:A5:96:87:FD:63:15:B1:32:71:C1:C2:92:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a3d2ee-174c-48c3-bd26-7fa9d94024f0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a3d2ee-174c-48c3-bd26-7fa9d94024f0/1/jO8UbYXAmqWWh_1jFbEyccHCkq0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.203.124.0/22
69.30.89.0/24
91.218.78.0/23
94.24.36.0/23
162.208.16.0/24
185.206.24.0/22
IPv6:
2a09:a380::/29
2a0b:e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199124
205809
Signature Algorithm: sha256WithRSAEncryption
41:0e:34:1d:6e:2f:30:15:f3:65:06:38:3d:b0:c2:f4:e9:ec:
b7:b6:51:0c:4b:39:ed:66:e7:2d:c2:c5:a7:63:c5:b1:c7:c8:
a9:1f:18:4d:1f:2c:0e:b7:1f:a1:b8:81:13:8a:3b:da:75:c5:
c9:db:e4:84:57:f6:24:ff:6a:84:25:0b:b4:49:b7:64:a0:52:
25:c1:d4:80:38:3a:32:48:f3:a7:3b:08:27:6c:5e:17:23:08:
00:e3:d8:44:64:a3:5b:ec:5b:9e:46:2e:32:66:f2:0a:9f:e2:
81:29:b3:4c:06:96:4b:d4:57:eb:6d:24:a7:13:36:72:34:91:
9f:4f:6e:4d:79:63:35:10:3d:2d:1f:b2:ca:58:37:82:bd:63:
4e:58:b0:5c:cd:25:e6:bc:80:71:e8:04:9a:26:7b:f2:dd:68:
cc:37:77:bc:73:c4:92:e8:4d:20:a4:9d:81:a6:21:47:7f:41:
65:8c:8a:76:13:a4:01:cb:65:73:ee:1b:a5:87:a9:24:db:aa:
c0:ee:9e:48:97:c8:4c:91:2d:da:e6:bd:8c:18:d7:39:ea:08:
bc:31:e4:30:3a:e2:9f:23:fc:4a:b7:75:ef:da:65:cb:e0:2b:
2e:29:aa:e3:5f:39:67:8d:41:80:7f:43:87:4f:b8:d2:0d:cb:
2a:bd:29:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:20:44 2026 by rpki-client