Certificate
$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/XUJQ4tgdREjYop786R0p_wdeyeI.cer
File: XUJQ4tgdREjYop786R0p_wdeyeI.cer (raw, json)
Hash identifier: 6CDHVFEB61WPyl8mj8ft8AAOWQ8MdJcdCjtOBW5NDk0=
Subject key identifier: 5D:42:50:E2:D8:1D:44:48:D8:A2:9E:FC:E9:1D:29:FF:07:5E:C9:E2
Authority key identifier: CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
Certificate issuer: /CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Certificate serial: 027924
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
BGPsec ECDSA public key: MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEgFcjQ/g//LAQerAH2Mpp+GucoDAGBbhIqD33wNPsXxnAGb+mtZ7XQrVO9DQ6UlAShtig5+QfEKpTtFgiqfiAFQ==
Router key not before: Mon 15 Jun 2026 08:09:45 +0000
Router key not after: Tue 15 Jun 2027 08:09:44 +0000
Subordinate resources: AS: 15562
Validation: OK
Signature path: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 06:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162084 (0x27924)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caa805dbac364749b9b115590ab6ef0f970cdbd8
Validity
Not Before: Jun 15 08:09:45 2026 GMT
Not After : Jun 15 08:09:44 2027 GMT
Subject: CN=ROUTER-00003cca, serialNumber=00000001
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:80:57:23:43:f8:3f:fc:b0:10:7a:b0:07:d8:ca:
69:f8:6b:9c:a0:30:06:05:b8:48:a8:3d:f7:c0:d3:
ec:5f:19:c0:19:bf:a6:b5:9e:d7:42:b5:4e:f4:34:
3a:52:50:12:86:d8:a0:e7:e4:1f:10:aa:53:b4:58:
22:a9:f8:80:15
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:42:50:E2:D8:1D:44:48:D8:A2:9E:FC:E9:1D:29:FF:07:5E:C9:E2
X509v3 Authority Key Identifier:
keyid:CA:A8:05:DB:AC:36:47:49:B9:B1:15:59:0A:B6:EF:0F:97:0C:DB:D8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer
X509v3 Key Usage: critical
Digital Signature
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15562
X509v3 Extended Key Usage:
BGPsec Router
Signature Algorithm: sha256WithRSAEncryption
5f:7d:2d:0b:e7:32:96:24:3b:fe:ee:d0:f9:16:6c:b0:e0:12:
d3:05:88:64:dc:ac:f9:c7:1a:1d:e4:75:80:dd:58:0a:86:88:
d6:75:c2:77:fa:55:83:d7:a7:ea:a2:37:ee:39:57:73:09:69:
f7:eb:e4:cb:aa:e8:4e:b3:bb:d1:1e:56:dc:f6:27:1a:1e:90:
35:26:a9:e7:88:a6:e5:1f:3e:ff:0b:ef:01:82:02:0b:d0:f7:
8e:ec:93:c8:ac:ba:a7:63:65:f1:57:ab:f2:9c:13:cb:7f:dd:
97:87:b2:a0:58:49:06:d3:b5:77:b8:41:6d:40:99:2e:05:e5:
12:1b:c3:36:b4:d8:c8:cf:6f:44:79:53:c5:1b:84:28:5d:a3:
b8:6b:c7:9e:75:eb:ca:2c:ff:0e:9f:53:48:09:53:0f:22:c4:
0a:40:f5:9e:1c:03:e0:13:78:09:8a:c1:ff:06:d8:2c:6a:cb:
31:08:a5:e9:11:88:b7:1b:06:ee:02:67:43:36:e0:2b:e3:92:
25:ec:2b:ec:fa:ae:b3:ed:56:f5:1d:12:1e:51:10:74:4d:00:
80:23:8d:4b:ad:75:b0:ce:24:ac:de:18:32:f0:f5:68:b9:5b:
e0:35:bf:da:f1:b3:d4:45:f8:aa:b4:54:82:2c:1f:ac:1e:7d:
4c:7f:e5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 18 02:16:23 2026 by rpki-client