Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51hbXNR32QB1zbYxCfVyeXZsKXY.cer
File: 51hbXNR32QB1zbYxCfVyeXZsKXY.cer (raw, json)
Hash identifier: GEbpgIvsSdowrxZyZ6EEeNYONrj6myKYMOQxyn89s0k=
Subject key identifier: E7:58:5B:5C:D4:77:D9:00:75:CD:B6:31:09:F5:72:79:76:6C:29:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019A5EECC0360D05E6665E91C5D18E9295D6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/1/E7585B5CD477D90075CDB63109F57279766C2976.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 07 Nov 2025 15:26:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 52112
IP: 194.153.158.0/26
IP: 2001:7f8:89::/48
IP: 2a09:2500::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 00:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5e:ec:c0:36:0d:05:e6:66:5e:91:c5:d1:8e:92:95:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 7 15:26:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7585b5cd477d90075cdb63109f57279766c2976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:09:2c:06:ac:be:4e:70:f8:ea:28:84:df:52:
b5:cb:27:88:96:ac:eb:48:96:a3:5a:38:25:13:3d:
78:52:1e:63:14:0f:2e:74:ae:a8:87:c9:1f:c5:0a:
8a:9a:29:73:19:6e:40:00:5e:77:7c:cf:a4:e8:6c:
df:25:bd:b4:66:ac:f2:73:9c:48:9c:df:c5:4d:7a:
c2:5d:e3:52:49:4d:80:36:35:c0:5b:ca:a0:00:68:
8e:55:1d:86:f4:00:29:f2:c6:57:03:78:44:e5:d9:
76:e6:1a:a1:bd:ee:c4:86:01:61:07:da:7f:1f:fc:
41:55:15:03:cf:bc:b3:c1:f2:aa:78:2f:51:a6:7b:
b8:d7:40:88:6e:a6:fb:f2:1c:4e:bd:26:95:5d:34:
80:56:3a:dd:00:c2:f2:1a:c1:e5:61:e1:ae:7d:53:
19:d6:2a:c3:c6:df:e9:48:3d:f7:c3:79:b4:f4:b0:
4d:29:52:52:78:b3:bf:3d:18:1a:fe:ec:61:ad:88:
fd:61:22:86:95:c1:c7:0a:f6:ed:49:e5:13:7e:d9:
a1:31:5a:c4:67:ac:85:58:f1:ee:4a:91:2c:e4:25:
c4:9b:6f:2d:ea:59:36:e0:1d:60:58:4f:4f:0f:98:
6b:1f:93:96:40:bd:87:90:7d:15:35:74:a1:11:63:
aa:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:58:5B:5C:D4:77:D9:00:75:CD:B6:31:09:F5:72:79:76:6C:29:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/1/E7585B5CD477D90075CDB63109F57279766C2976.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.158.0/26
IPv6:
2001:7f8:89::/48
2a09:2500::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
52112
Signature Algorithm: sha256WithRSAEncryption
62:da:4e:d1:2b:0e:8c:dd:72:9d:b6:67:12:f2:47:cb:1e:69:
54:d1:de:07:7c:9a:b7:d5:dc:de:d2:ce:2d:13:c2:e9:e2:86:
76:10:80:1d:37:b5:e0:3b:99:6e:43:85:26:42:a6:ad:8a:58:
df:2e:7e:de:24:8d:ac:56:3b:35:d0:6c:eb:24:11:f4:2a:a5:
a4:a4:8a:fb:52:4e:a5:7b:4e:e1:06:9b:af:7d:db:d6:b5:eb:
a9:52:1f:89:5c:6e:7f:14:95:ac:51:11:cc:85:73:ec:01:9b:
90:36:31:a5:e2:0a:d5:00:98:59:3f:4d:39:44:e2:dc:e1:1a:
ba:f9:5d:f1:11:25:fe:d3:da:ec:e4:af:cf:3f:c2:46:15:e4:
d8:96:b9:c5:1e:b0:37:ae:80:7a:77:8b:82:90:05:34:d7:84:
99:2f:18:2d:61:b2:54:66:9e:c9:c6:93:87:1d:c7:bf:c6:fb:
de:71:0b:96:35:e2:3c:6a:86:e3:e4:2e:c5:49:7f:54:03:c3:
ee:f8:f5:01:44:f6:12:16:54:8b:62:2d:aa:a4:25:d7:c3:5c:
c2:61:90:0a:7c:0b:ae:f7:fb:ea:a8:9b:43:e7:48:7d:fe:ab:
18:3d:82:33:ab:19:df:86:f0:f5:c3:34:71:13:a2:b7:6b:90:
a3:81:c6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 10:03:32 2025 by rpki-client