Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
File: tATMDgOOsOaX7G565J0ChhRuDBo.cer (raw, json)
Hash identifier: 4pCuTE/BNyO22BoxPtJ82E+GJDltbtONS28T2q+avVA=
Subject key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019E15E6FA8154F0E095303E8C9966735299
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 11 May 2026 07:18:39 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 58026
IP: 74.122.24.0/22
IP: 103.124.182.0/23
IP: 103.250.172.0/22
IP: 104.167.17.0 -- 104.167.18.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:15:e6:fa:81:54:f0:e0:95:30:3e:8c:99:66:73:52:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 11 07:18:39 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:3e:99:09:8a:81:e7:e8:7e:14:21:ca:0c:
6b:9b:85:eb:7c:b0:f2:b6:e7:d8:7a:4a:12:1c:b2:
d6:38:a3:66:a2:20:0e:a2:f0:5c:dc:68:b4:56:35:
01:4d:8d:db:d0:64:2c:23:06:5e:d7:fe:72:45:a6:
ca:d9:1b:00:6e:03:cc:1f:1b:7d:c5:92:cb:3f:c8:
f1:5a:19:c5:5d:e9:86:48:01:f1:4c:1d:a4:16:6f:
bc:64:19:34:25:5f:ed:23:92:72:b5:79:7e:a2:16:
4f:4d:19:70:15:77:9b:84:a2:20:d5:f9:33:e0:63:
85:e6:33:47:86:d3:1d:e8:84:69:e0:a1:71:cd:9a:
3f:85:94:f7:56:c1:fb:6a:a5:12:cb:2a:f9:36:39:
31:3f:d8:7b:b6:bb:3c:2a:9a:b2:29:97:93:74:9c:
92:30:f0:65:5c:32:5a:b4:b9:f4:e1:3a:35:91:03:
d6:f8:05:d0:0e:dc:19:94:8d:04:69:c8:77:82:f6:
d7:dc:2b:b3:11:65:a8:e1:82:e8:42:ce:bb:01:3a:
93:57:3b:c6:67:ab:6a:a1:71:34:ce:a3:62:72:31:
60:ac:82:43:d6:fc:5d:57:44:d4:09:aa:af:3c:35:
d7:c2:75:f6:f0:b5:4d:ac:7e:3f:1b:7d:04:88:fb:
67:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.122.24.0/22
103.124.182.0/23
103.250.172.0/22
104.167.17.0-104.167.18.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58026
Signature Algorithm: sha256WithRSAEncryption
25:1e:25:10:8b:fd:a5:a7:6c:e1:6d:16:dc:78:29:b5:05:d6:
12:86:bb:87:f3:75:29:7b:bf:9f:8d:5e:c5:9d:84:4d:d2:ce:
70:20:7d:ac:8f:b5:44:16:68:60:d2:65:29:78:e3:11:f9:5b:
75:f2:fb:6f:9d:c9:1e:40:a1:56:7b:5d:84:5f:5f:20:3a:b9:
66:6d:70:f1:4e:66:57:83:99:fb:22:99:e7:d6:56:ee:2c:0c:
e7:17:ef:7d:e3:66:17:d9:bd:e2:29:fa:84:6a:8e:38:76:72:
39:8c:2b:1c:84:20:4f:a9:4d:f5:ca:32:a6:69:67:50:05:c9:
ed:43:83:2b:ad:9f:88:88:bf:1b:56:f2:f7:c1:41:6c:55:9a:
e7:57:01:07:5f:cd:de:00:d5:a2:0e:67:9d:09:51:bc:ca:b3:
89:43:12:a0:c3:4e:41:4b:6f:1d:1e:c0:b2:98:3d:eb:30:0e:
e4:56:d1:a9:ca:ed:07:40:41:e0:66:32:cb:c7:12:b5:0b:d5:
54:01:87:69:6c:e4:74:4b:80:33:bb:bc:d2:19:cb:40:f0:b8:
6c:a4:ce:9a:6f:8c:41:1d:61:c1:88:ff:75:79:e7:d7:ae:c4:
a6:bb:d8:2a:e5:d8:c8:c1:3e:d9:eb:81:e6:ff:20:55:20:4b:
67:b4:41:5e
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAZ4V5vqBVPDglTA+jJlmc1KZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwNTExMDcxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDA0Y2MwZTAzOGViMGU2OTdlYzZlN2FlNDlkMDI4NjE0NmUwYzFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbk+mQmKgefofhQhygxrm4XrfLDy
tufYekoSHLLWOKNmoiAOovBc3Gi0VjUBTY3b0GQsIwZe1/5yRabK2RsAbgPMHxt9
xZLLP8jxWhnFXemGSAHxTB2kFm+8ZBk0JV/tI5JytXl+ohZPTRlwFXebhKIg1fkz
4GOF5jNHhtMd6IRp4KFxzZo/hZT3VsH7aqUSyyr5NjkxP9h7trs8KpqyKZeTdJyS
MPBlXDJatLn04To1kQPW+AXQDtwZlI0Each3gvbX3CuzEWWo4YLoQs67ATqTVzvG
Z6tqoXE0zqNicjFgrIJD1vxdV0TUCaqvPDXXwnX28LVNrH4/G30EiPtnHwIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFLQEzA4DjrDml+xueuSdAoYUbgwaMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg4L2FiZTE2
Yi05MmNjLTQ4ZTMtYjViOS04NmEyZjA2N2I0ZTgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgvYWJlMTZi
LTkyY2MtNDhlMy1iNWI5LTg2YTJmMDY3YjRlOC8xL3RBVE1EZ09Pc09hWDdHNTY1
SjBDaGhSdURCby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF
BwEHAQH/BCowKDAmBAIAATAgAwQCSnoYAwQBZ3y2AwQCZ/qsMAwDBABopxEDBABo
pxIwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAOKqMA0GCSqGSIb3DQEBCwUAA4IB
AQAlHiUQi/2lp2zhbRbceCm1BdYShruH83Upe7+fjV7FnYRN0s5wIH2sj7VEFmhg
0mUpeOMR+Vt18vtvnckeQKFWe12EX18gOrlmbXDxTmZXg5n7Ipnn1lbuLAznF+99
42YX2b3iKfqEao44dnI5jCschCBPqU31yjKmaWdQBcntQ4MrrZ+IiL8bVvL3wUFs
VZrnVwEHX83eANWiDmedCVG8yrOJQxKgw05BS28dHsCymD3rMA7kVtGpyu0HQEHg
ZjLLxxK1C9VUAYdpbOR0S4Azu7zSGctA8LhspM6ab4xBHWHBiP91eefXrsSmu9gq
5djIwT7Z64Hm/yBVIEtntEFe
-----END CERTIFICATE-----
Generated at Wed May 13 01:06:16 2026 by rpki-client