Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iyrza5wHnaCRgn2j0HycilI2y1Q.cer
File: Iyrza5wHnaCRgn2j0HycilI2y1Q.cer (raw, json)
Hash identifier: L9flsgwBQIIfUkuq4F95mo3BUFRe0/JsgjxFECJsub8=
Subject key identifier: 23:2A:F3:6B:9C:07:9D:A0:91:82:7D:A3:D0:7C:9C:8A:52:36:CB:54
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0198DFD0C68B5A28712C4F2854FA32A37C2E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/Iyrza5wHnaCRgn2j0HycilI2y1Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 25 Aug 2025 06:00:58 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200984
IP: 185.89.180.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:df:d0:c6:8b:5a:28:71:2c:4f:28:54:fa:32:a3:7c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 25 06:00:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=232af36b9c079da091827da3d07c9c8a5236cb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1b:5b:a7:c0:9b:e9:ad:41:03:e2:8e:32:c7:
5d:75:3b:f5:63:78:3e:28:7f:d8:28:42:31:79:2b:
dc:bb:9e:6f:d4:56:35:44:82:8e:b9:96:38:3a:2c:
60:95:ee:ef:2c:ac:b9:d4:b8:61:fd:c2:cd:d5:52:
41:08:c4:e0:65:af:86:79:1e:c3:12:62:6a:a3:48:
e4:91:da:99:c6:25:b1:89:06:f2:b9:64:ac:04:34:
6f:77:58:15:43:be:71:7e:33:14:5c:25:4e:0e:3c:
bd:2a:69:f1:86:d0:8a:2b:b1:91:d6:e6:d7:2e:8c:
3c:ab:d9:17:03:7e:5f:3c:fc:84:bd:b1:28:7f:53:
fd:72:33:4b:89:10:da:08:ba:af:b2:23:4c:29:77:
18:70:10:95:24:5a:26:18:0b:60:1e:28:96:f9:df:
6b:36:0a:9b:45:5e:94:a2:ab:44:93:71:c2:64:8c:
7d:b1:42:cd:d1:ae:b9:99:6e:a5:7e:02:d6:72:0d:
f0:54:c0:45:6e:5f:be:37:5f:51:3c:8c:b4:b4:15:
c0:60:0e:86:7b:31:29:b9:7a:33:21:38:c5:4d:4c:
71:72:08:b5:a3:3e:5f:03:b1:39:52:d1:0b:3f:5a:
29:04:df:35:f5:e4:f2:8b:6f:bb:67:64:05:a8:ba:
0d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2A:F3:6B:9C:07:9D:A0:91:82:7D:A3:D0:7C:9C:8A:52:36:CB:54
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c2fd33-fd44-4e08-b424-aa1045220b5b/1/Iyrza5wHnaCRgn2j0HycilI2y1Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.180.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200984
Signature Algorithm: sha256WithRSAEncryption
42:38:b3:3e:c2:44:8b:a7:58:a0:35:cb:aa:42:d4:d6:c2:ff:
58:22:91:92:bd:cc:30:b1:34:9f:3d:56:38:74:35:4d:9c:30:
e4:05:60:62:e5:a3:e6:c3:fb:cf:4d:0e:3e:21:5d:d5:2f:29:
97:c2:0c:90:55:61:d6:4d:21:e7:6e:78:e4:54:17:61:ed:b5:
26:9e:f4:23:2e:8e:41:da:ed:4f:8b:be:05:80:70:ac:da:16:
6b:1c:25:fa:5c:af:03:e0:e4:47:6d:42:2d:c4:56:29:96:4b:
10:09:b5:58:9d:a0:ba:54:29:e4:54:1e:82:da:e4:79:03:ee:
61:71:6e:88:2b:09:c5:f4:3a:b0:21:5b:9e:78:12:c9:6f:de:
b3:28:68:cc:8d:eb:78:01:df:43:5e:c5:6d:28:f2:e5:26:0a:
f8:f3:4c:8c:f9:53:ba:b7:50:64:cf:29:8a:8f:55:f0:55:68:
35:a5:e3:93:d5:51:92:31:13:cd:64:02:2b:36:4c:54:07:db:
d6:31:2c:96:03:14:00:e9:09:a2:76:b8:3d:89:2d:31:33:48:
0b:dc:e4:a3:00:5a:d3:0d:7d:e9:67:55:68:5f:c6:bf:1d:e0:
f3:68:a8:bd:0c:31:90:65:42:29:25:eb:90:5b:ad:48:29:58:
d3:51:09:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:45:05 2025 by rpki-client