Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/E-37kQ__5H1RrZ0PiDsbZJZp4TU.cer
File: E-37kQ__5H1RrZ0PiDsbZJZp4TU.cer (raw, json)
Hash identifier: OtPlGB1iATA5aPwtj282phjpV0pG1QPf2tEzawWzmlQ=
Subject key identifier: 13:ED:FB:91:0F:FF:E4:7D:51:AD:9D:0F:88:3B:1B:64:96:69:E1:35
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019B7D5B4EB8F9BE8E4A9FAA6ED900B7F49D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/E-37kQ__5H1RrZ0PiDsbZJZp4TU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 02 Jan 2026 06:18:14 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 211361
IP: 194.48.176.0/22
IP: 2a07:5d00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:5b:4e:b8:f9:be:8e:4a:9f:aa:6e:d9:00:b7:f4:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:18:14 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=13edfb910fffe47d51ad9d0f883b1b649669e135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:30:f5:e9:d7:eb:18:5d:97:db:16:d7:20:63:
b8:ae:9e:b8:46:59:9b:be:f6:fa:e8:4e:d2:56:41:
df:f4:3a:1d:25:57:15:ce:7f:8b:28:17:8b:5e:6d:
2f:ba:75:e2:76:f8:af:e9:96:71:cd:38:07:b2:d2:
42:fc:1e:b4:22:b0:f3:de:0b:6d:8e:86:8c:b2:b3:
bf:dc:55:3a:9e:87:f4:da:51:bb:98:7e:d3:7b:2a:
bb:76:36:5f:d9:3c:5b:85:75:53:1d:98:61:22:16:
1f:e4:05:88:f9:b7:aa:bd:d6:a8:2e:a3:f6:47:a8:
9f:5f:40:8e:63:69:a4:ae:d2:e5:5a:6a:1e:6e:f3:
e5:98:2c:d0:22:bd:8e:31:ee:e4:e4:11:17:52:fd:
db:68:fc:e2:d3:72:4e:d4:9d:ba:6a:86:43:ba:2d:
99:55:79:45:7d:57:e4:a0:4d:99:f0:da:50:15:c9:
58:ba:72:23:ca:73:28:3b:0c:80:b1:84:ae:7c:5b:
80:ab:9f:c5:e2:80:b9:2c:c3:91:25:c8:6d:51:dd:
3d:45:86:31:f4:34:cb:26:2f:14:ee:7a:ba:02:6d:
2d:94:1c:3f:53:c3:4c:9e:48:81:1a:3f:f6:4c:ef:
e1:91:f1:f9:a2:75:19:7d:d8:8d:5f:72:1b:54:37:
e0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:ED:FB:91:0F:FF:E4:7D:51:AD:9D:0F:88:3B:1B:64:96:69:E1:35
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/E-37kQ__5H1RrZ0PiDsbZJZp4TU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.176.0/22
IPv6:
2a07:5d00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211361
Signature Algorithm: sha256WithRSAEncryption
4f:bb:3e:7c:57:3c:8e:34:d5:b9:d0:a7:78:d0:66:5e:37:56:
e1:b0:3b:97:80:ff:11:6d:8c:64:8e:26:7f:70:ac:da:27:d3:
3a:37:54:00:5f:4d:65:7e:1d:e2:30:07:b4:d6:77:c0:62:e0:
cf:65:58:9e:af:a3:67:bf:b0:88:d5:5d:e9:0f:70:c1:00:00:
e0:db:9f:e7:c6:68:0d:75:e6:bd:33:4e:6f:a4:e7:16:f9:00:
d3:17:8d:23:02:2f:38:37:e6:b0:de:76:c7:f2:fd:60:37:ed:
4c:00:74:e9:63:bf:d4:5d:a8:ba:db:d4:87:94:22:43:c8:f1:
96:c0:ae:1a:41:99:8d:3c:68:77:fa:25:bb:1a:a7:43:54:42:
f3:e4:62:4a:53:aa:0d:57:f5:f2:7c:18:fe:5f:5b:11:3b:e1:
69:e7:fe:16:8a:15:18:49:a3:9e:c7:83:1b:bd:79:d5:f0:88:
21:cc:8a:68:c0:75:af:d5:12:5a:9d:08:c4:df:80:5a:c1:97:
6b:87:fd:f3:b2:f0:5f:a9:74:87:ed:5f:ae:79:31:9a:58:95:
72:b2:b2:52:1b:30:1e:6e:46:8c:fa:5b:f6:bf:ce:80:f8:2a:
86:21:41:68:ec:85:6d:d1:30:83:a4:e0:29:8c:e6:ee:09:cb:
b4:49:3a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 03:45:27 2026 by rpki-client