Certificate
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer
File: R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer (raw, json)
Hash identifier: fwCKuxtzzirqS8FvTIV+k7he6U4wthwt1LkI0CdYJKc=
Subject key identifier: 47:E9:55:53:55:C6:B0:07:AA:CD:5D:45:BF:41:E3:38:3E:99:16:41
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: 01A686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 02 Jul 2025 09:22:00 +0000
Certificate not after: Wed 01 Jul 2026 01:01:02 +0000
Subordinate resources: IP: 198.180.151.0/24
Validation: OK
Signature path: rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 07:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108166 (0x1a686)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Jul 2 09:22:00 2025 GMT
Not After : Jul 1 01:01:02 2026 GMT
Subject: CN=47E9555355C6B007AACD5D45BF41E3383E991641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0b:69:35:53:a5:05:99:c6:27:68:3a:b8:fd:
f0:c5:ff:98:aa:fd:7a:cb:db:95:80:5c:9a:bf:9e:
66:e2:21:cb:d9:f3:f1:a4:8d:d7:06:33:a5:54:b3:
41:11:f3:25:f3:66:3c:9c:5a:d8:40:39:96:89:04:
7a:5b:16:e1:da:36:30:a7:5d:fb:37:b1:34:28:5c:
b1:94:62:f9:00:4a:e1:46:a1:b1:8a:2c:47:84:47:
6b:a5:89:c3:3a:1d:0b:43:39:4d:b2:46:1c:a9:58:
21:df:63:60:7d:e0:87:15:7f:17:1d:61:28:d1:e5:
da:01:a0:51:28:83:a4:4b:1e:ff:24:4a:fe:39:d1:
5a:20:21:35:c0:31:56:f4:33:64:c7:5a:53:97:ca:
69:ab:36:8d:32:75:11:40:40:8d:29:91:8c:e1:e1:
00:af:56:59:eb:7c:8a:b9:4a:bf:c2:b8:91:7b:05:
50:bc:66:ac:d5:8d:6d:f3:62:90:8f:a5:e0:a6:32:
20:52:d3:10:8b:81:5e:d0:47:01:99:c3:32:ef:24:
15:5e:5b:f2:26:77:ba:35:8a:e2:c7:7f:f6:89:c1:
43:e0:15:8e:5e:23:b8:b6:e2:03:f7:2c:8d:a2:1f:
1b:f5:58:a8:c7:6f:96:b7:60:dc:f7:86:4a:a3:08:
46:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E9:55:53:55:C6:B0:07:AA:CD:5D:45:BF:41:E3:38:3E:99:16:41
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
198.180.151.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:86:7b:7a:8a:74:53:bb:5e:f4:dd:57:f7:47:aa:ed:ea:ff:
72:0c:2e:09:d6:fa:4a:80:fb:94:56:f2:b5:d5:fb:71:4b:27:
75:f4:a4:05:c9:5f:ae:06:93:50:f2:a5:19:50:76:a6:c2:37:
5c:f7:51:47:8a:9e:d4:b1:fa:8a:98:0b:a8:54:79:9c:2d:3e:
76:29:65:f1:0a:b9:14:96:4f:fc:73:18:67:83:79:0a:19:15:
88:53:a8:7f:f0:a9:2b:ad:b4:ee:c6:93:96:f2:d4:34:21:22:
91:f8:f0:ce:41:23:86:12:c4:2c:1f:ef:2d:f2:83:8d:15:9b:
d6:ef:1b:bf:53:0d:89:ab:98:c4:38:ee:30:64:59:f1:31:3a:
a6:f2:9f:0d:57:8d:59:d3:c4:a7:e2:6c:bd:c2:4d:14:1c:a3:
17:5b:c1:27:e0:b1:f0:65:36:45:66:1e:78:0c:77:e1:26:34:
48:16:52:1e:41:42:69:81:1c:03:9d:f5:f3:42:79:fb:50:ac:
21:29:56:83:3d:f0:47:da:94:29:9b:b1:3b:96:a9:b6:9c:8b:
61:32:14:bb:1d:49:d0:a1:82:3b:3a:8d:f0:1b:78:14:5a:1d:
8b:aa:5b:c5:49:c5:8d:40:77:c8:42:38:5b:49:dc:cb:31:d3:
47:ad:de:05
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIDAaaGMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDZk
NmZiZmE5NzUzZGI4ZDg0NjQzM2RiNTM1MWQ5YTllYzA3Yzk2YmQwHhcNMjUwNzAy
MDkyMjAwWhcNMjYwNzAxMDEwMTAyWjAzMTEwLwYDVQQDEyg0N0U5NTU1MzU1QzZC
MDA3QUFDRDVENDVCRjQxRTMzODNFOTkxNjQxMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA2AtpNVOlBZnGJ2g6uP3wxf+Yqv16y9uVgFyav55m4iHL2fPx
pI3XBjOlVLNBEfMl82Y8nFrYQDmWiQR6Wxbh2jYwp137N7E0KFyxlGL5AErhRqGx
iixHhEdrpYnDOh0LQzlNskYcqVgh32NgfeCHFX8XHWEo0eXaAaBRKIOkSx7/JEr+
OdFaICE1wDFW9DNkx1pTl8ppqzaNMnURQECNKZGM4eEAr1ZZ63yKuUq/wriRewVQ
vGas1Y1t82KQj6XgpjIgUtMQi4Fe0EcBmcMy7yQVXlvyJne6NYrix3/2icFD4BWO
XiO4tuID9yyNoh8b9Viox2+Wt2Dc94ZKowhGqQIDAQABo4ICmzCCApcwHQYDVR0O
BBYEFEfpVVNVxrAHqs1dRb9B4zg+mRZBMB8GA1UdIwQYMBaAFG1vv6l1PbjYRkM9
tTUdmp7AfJa9MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwUAYDVR0fBEkwRzBF
oEOgQYY/cnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9SR25ldC1PVS9iVy1fcVhVOXVO
aEdRejIxTlIyYW5zQjhscjAuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcw
AoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iVy1f
cVhVOXVOaEdRejIxTlIyYW5zQjhscjAuY2VyMA8GA1UdEwEB/wQFMAMBAf8wDgYD
VR0PAQH/BAQDAgEGMIIBPwYIKwYBBQUHAQsEggExMIIBLTBfBggrBgEFBQcwBYZT
cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdk
NTVmNy1lZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvNC8wgYsGCCsGAQUFBzAK
hn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Rl
N2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBlOC80LzQ3RTk1NTUzNTVD
NkIwMDdBQUNENUQ0NUJGNDFFMzM4M0U5OTE2NDEubWZ0MDwGCCsGAQUFBzANhjBo
dHRwczovL3JyZHAucGFhcy5ycGtpLnJpcGUubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADGtJcwDQYJKoZIhvcNAQELBQAD
ggEBAKuGe3qKdFO7XvTdV/dHqu3q/3IMLgnW+kqA+5RW8rXV+3FLJ3X0pAXJX64G
k1DypRlQdqbCN1z3UUeKntSx+oqYC6hUeZwtPnYpZfEKuRSWT/xzGGeDeQoZFYhT
qH/wqSuttO7Gk5by1DQhIpH48M5BI4YSxCwf7y3yg40Vm9bvG79TDYmrmMQ47jBk
WfExOqbynw1XjVnTxKfibL3CTRQcoxdbwSfgsfBlNkVmHngMd+EmNEgWUh5BQmmB
HAOd9fNCeftQrCEpVoM98EfalCmbsTuWqbaci2EyFLsdSdChgjs6jfAbeBRaHYuq
W8VJxY1Ad8hCOFtJ3Msx00et3gU=
-----END CERTIFICATE-----
Generated at Wed Jul 23 02:36:22 2025 by rpki-client