Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6qALChNMw-WcO-1fBukOl6zGkiY.cer
File: 6qALChNMw-WcO-1fBukOl6zGkiY.cer (raw, json)
Hash identifier: P6G8CkBiL52pbw+R6zr350u7RjJyJJX6toibA0Oyb5E=
Subject key identifier: EA:A0:0B:0A:13:4C:C3:E5:9C:3B:ED:5F:06:E9:0E:97:AC:C6:92:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019DD5C20CE7B6C41F0AE5F374F854AC703F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/81be14-ffba-42e0-ae93-22aaf540eb5e/1/6qALChNMw-WcO-1fBukOl6zGkiY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/81be14-ffba-42e0-ae93-22aaf540eb5e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 28 Apr 2026 20:22:37 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 42290
IP: 185.202.20.0/22
IP: 2a0a:57c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d5:c2:0c:e7:b6:c4:1f:0a:e5:f3:74:f8:54:ac:70:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 28 20:22:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=eaa00b0a134cc3e59c3bed5f06e90e97acc69226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:42:bb:e3:a4:0d:b6:f1:63:72:06:b5:7d:3b:
73:68:af:31:f6:d3:35:67:47:24:e8:50:b2:6a:84:
75:14:06:fe:f7:ac:fa:6a:a3:ab:14:f5:ac:4d:02:
c3:27:f8:83:2d:68:18:50:a0:f9:ee:c1:6f:27:85:
e9:d6:a5:3b:1c:cb:bb:fb:d5:54:fe:e6:a3:a0:37:
e5:26:e7:0a:ad:b9:35:87:bb:73:2d:4e:80:f7:92:
9f:32:ef:77:3b:e6:c1:e7:af:a2:3d:56:58:a9:34:
58:8f:fc:ac:c8:b4:3c:0d:15:9f:af:6f:3d:36:71:
ea:c9:ac:31:42:7b:8a:7d:bf:2c:8d:9b:c0:14:85:
c8:e0:1f:30:0f:a8:4b:1f:8a:51:5d:47:43:11:e2:
52:f4:ab:cb:31:02:34:86:65:69:3c:df:6b:4c:03:
af:f2:a2:90:cf:3a:8b:1d:df:cb:48:95:e1:ff:fb:
77:11:5f:97:11:78:a1:e4:29:40:4a:ce:02:29:00:
e2:11:2a:52:02:5a:f6:a7:df:a0:7e:49:cd:6c:95:
38:6d:bb:0c:67:a9:68:07:d1:4c:2c:75:27:98:1f:
e2:be:7c:f0:25:1b:c5:06:57:35:a6:2a:00:b7:28:
56:de:24:68:00:87:12:f1:ca:d0:42:14:70:51:77:
e9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A0:0B:0A:13:4C:C3:E5:9C:3B:ED:5F:06:E9:0E:97:AC:C6:92:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/81be14-ffba-42e0-ae93-22aaf540eb5e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/81be14-ffba-42e0-ae93-22aaf540eb5e/1/6qALChNMw-WcO-1fBukOl6zGkiY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.20.0/22
IPv6:
2a0a:57c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42290
Signature Algorithm: sha256WithRSAEncryption
6c:ca:ba:2c:3c:31:00:e2:6e:19:09:f5:b2:ae:29:fb:cd:f5:
ee:b4:be:6a:be:71:d6:67:8f:76:e4:e3:43:81:68:e5:cf:4a:
71:dd:b4:ad:8d:b2:92:fd:51:a6:5a:70:da:1e:58:a9:ea:01:
5a:77:76:42:f1:11:18:d9:a1:44:53:21:47:c3:63:b5:d9:b1:
1f:cb:a2:fc:eb:64:21:5b:72:96:7e:9e:78:77:bc:3f:9e:79:
40:e5:63:9f:5f:e0:79:1e:cd:e0:6b:d0:01:5e:a3:3b:50:c4:
49:62:6f:b0:16:89:e3:9f:f0:48:89:d6:75:30:35:c2:d9:fd:
e8:9d:8f:c8:51:4c:c4:d5:e6:23:18:87:75:91:a7:09:62:57:
84:b8:f7:84:37:25:84:db:fa:c7:20:49:27:63:4c:a1:00:60:
a1:49:0b:be:90:43:82:2b:9b:f2:bb:18:b8:82:74:21:1c:87:
bc:ae:d0:11:63:11:50:5d:ff:e9:5a:c1:10:6f:05:d9:4e:81:
a8:cc:0a:fa:8f:9f:97:12:1c:00:75:4e:5d:bf:a8:23:dc:71:
5d:02:94:34:76:df:ce:a9:a5:f6:83:eb:36:84:6a:f8:af:2b:
a9:8a:14:77:d7:6d:83:cb:66:2b:ae:14:e2:3b:ac:3c:7e:81:
e8:4a:80:30
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZ3VwgzntsQfCuXzdPhUrHA/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjYwNDI4MjAyMjM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWEwMGIwYTEzNGNjM2U1OWMzYmVkNWYwNmU5MGU5N2FjYzY5MjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0K746QNtvFjcga1fTtzaK8x9tM1
Z0ck6FCyaoR1FAb+96z6aqOrFPWsTQLDJ/iDLWgYUKD57sFvJ4Xp1qU7HMu7+9VU
/uajoDflJucKrbk1h7tzLU6A95KfMu93O+bB56+iPVZYqTRYj/ysyLQ8DRWfr289
NnHqyawxQnuKfb8sjZvAFIXI4B8wD6hLH4pRXUdDEeJS9KvLMQI0hmVpPN9rTAOv
8qKQzzqLHd/LSJXh//t3EV+XEXih5ClASs4CKQDiESpSAlr2p9+gfknNbJU4bbsM
Z6loB9FMLHUnmB/ivnzwJRvFBlc1pioAtyhW3iRoAIcS8crQQhRwUXfp9wIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFOqgCwoTTMPlnDvtXwbpDpesxpImMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZhLzgxYmUx
NC1mZmJhLTQyZTAtYWU5My0yMmFhZjU0MGViNWUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEvODFiZTE0
LWZmYmEtNDJlMC1hZTkzLTIyYWFmNTQwZWI1ZS8xLzZxQUxDaE5Ndy1XY08tMWZC
dWtPbDZ6R2tpWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCucoUMA0EAgACMAcDBQMqClfAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwClMjANBgkqhkiG9w0BAQsFAAOCAQEAbMq6LDwxAOJu
GQn1sq4p+8317rS+ar5x1mePduTjQ4Fo5c9Kcd20rY2ykv1Rplpw2h5YqeoBWnd2
QvERGNmhRFMhR8NjtdmxH8ui/OtkIVtyln6eeHe8P555QOVjn1/geR7N4GvQAV6j
O1DESWJvsBaJ45/wSInWdTA1wtn96J2PyFFMxNXmIxiHdZGnCWJXhLj3hDclhNv6
xyBJJ2NMoQBgoUkLvpBDgiub8rsYuIJ0IRyHvK7QEWMRUF3/6VrBEG8F2U6BqMwK
+o+flxIcAHVOXb+oI9xxXQKUNHbfzqml9oPrNoRq+K8rqYoUd9dtg8tmK64U4jus
PH6B6EqAMA==
-----END CERTIFICATE-----
Generated at Thu Apr 30 12:39:27 2026 by rpki-client