Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3t6RoPsfTdF5ANBttuiDNveLXAU.cer
File: 3t6RoPsfTdF5ANBttuiDNveLXAU.cer (raw, json)
Hash identifier: n3qZLz93sTP+kOIJR+3R8GEuLDxklH6DjWDfk0S7egE=
Subject key identifier: DE:DE:91:A0:FB:1F:4D:D1:79:00:D0:6D:B6:E8:83:36:F7:8B:5C:05
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01990ECBA943FAABA4735E2960D4C4895951
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/3t6RoPsfTdF5ANBttuiDNveLXAU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 03 Sep 2025 08:57:32 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210544
IP: 91.212.125.0/24
IP: 192.124.252.0/24
IP: 193.28.64.0/21
IP: 2a12:6900::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:0e:cb:a9:43:fa:ab:a4:73:5e:29:60:d4:c4:89:59:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Sep 3 08:57:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dede91a0fb1f4dd17900d06db6e88336f78b5c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2d:2c:00:56:5c:3f:3e:f3:fa:f9:45:ac:9a:
a0:89:a1:69:c6:d5:8b:0b:ed:2f:8a:bd:cd:9b:bc:
67:c1:ae:50:b3:19:5e:24:f4:ef:43:34:7e:34:84:
bb:f1:59:9e:5b:c1:86:d6:1e:51:5f:9b:79:a9:4a:
71:9f:7a:33:e1:84:b0:76:73:76:c1:56:0e:8f:b1:
db:d1:4e:93:42:1f:cb:95:38:a7:2f:3d:a4:fa:2a:
06:73:08:d3:f7:19:d4:6c:2d:2b:32:a5:a5:dc:c0:
86:34:0a:76:a0:2b:25:36:79:c0:44:79:09:ac:dd:
f5:a6:05:ec:fd:08:38:ff:24:e5:1d:b8:60:7f:ff:
37:88:18:1c:c5:91:a2:bc:76:22:12:5f:28:81:45:
c0:ef:1d:b4:33:ca:75:38:f9:90:5d:16:77:b6:d7:
d4:bb:49:26:a9:34:0f:8a:c7:03:3a:86:d7:a1:38:
01:2f:be:0a:28:33:b9:fa:29:bc:b1:33:23:31:ec:
a2:e4:ae:99:38:df:45:0a:a8:d0:11:d2:ff:51:64:
8d:f7:2c:f0:94:72:81:1d:58:9e:ea:f9:5b:8c:bb:
a8:b9:d1:5d:3b:e7:49:46:77:c8:c4:cd:94:b7:34:
ae:a2:57:b1:01:b3:c4:30:3f:d4:8a:43:a8:d1:2e:
88:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DE:91:A0:FB:1F:4D:D1:79:00:D0:6D:B6:E8:83:36:F7:8B:5C:05
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/2321d6-bd6c-4b2a-af83-21a700c7119f/1/3t6RoPsfTdF5ANBttuiDNveLXAU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.125.0/24
192.124.252.0/24
193.28.64.0/21
IPv6:
2a12:6900::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210544
Signature Algorithm: sha256WithRSAEncryption
59:87:0b:90:55:2e:68:a6:7c:9a:ce:23:ba:fe:b6:cc:86:13:
a1:52:fa:4e:8b:87:80:b2:43:72:86:b7:58:53:f4:15:8b:1e:
32:16:f7:ca:d7:d4:ed:33:bf:6f:b2:4d:91:ca:e9:f9:aa:2a:
77:10:7b:8b:81:3f:30:04:b6:5f:7b:93:27:59:a4:68:6e:5d:
5e:96:e4:ce:a8:96:56:b9:7d:c9:10:6f:f5:17:c8:67:bd:7b:
5e:06:2d:7d:92:ee:0e:16:57:a7:40:c7:01:04:f3:1e:97:1d:
56:15:23:1d:dd:e2:4a:ff:dc:98:b7:b6:b3:69:7a:da:94:7d:
86:79:fe:fa:98:7c:cc:08:48:f6:52:19:5e:ef:36:e3:89:1c:
57:91:ee:af:da:eb:3a:d6:93:26:3b:bd:4f:c5:e1:b8:ae:09:
01:93:3d:b2:90:81:1e:22:d2:ab:83:11:4e:9e:d0:14:b2:3f:
6a:f6:cb:ff:87:41:88:42:6a:5d:1b:d0:12:d9:1a:1e:fb:ac:
98:48:6d:b3:a5:5c:ea:e6:32:c6:2d:91:ad:98:bd:e4:b0:7c:
82:da:6c:0b:58:8d:2d:3c:4d:71:a6:aa:6f:74:8f:6d:54:f0:
89:a6:f8:32:ef:11:3f:76:6b:c1:e1:24:0c:26:25:0c:9a:e3:
a8:a5:ef:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 07:50:24 2025 by rpki-client