Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/N1YZIA7JY9GUqAGNQWPXeKXLUmo.cer
File: N1YZIA7JY9GUqAGNQWPXeKXLUmo.cer (raw, json)
Hash identifier: QDV3ShbVQQPXIK2S120FyPDuHZSX+l369l2skMR69oQ=
Subject key identifier: 37:56:19:20:0E:C9:63:D1:94:A8:01:8D:41:63:D7:78:A5:CB:52:6A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019D2FB5F3280A8B0F418FE5F28A5ABD6C56
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/0b8a5e-66ea-4e20-9ea8-2edd21783703/1/N1YZIA7JY9GUqAGNQWPXeKXLUmo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/0b8a5e-66ea-4e20-9ea8-2edd21783703/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 27 Mar 2026 14:32:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 199738
IP: 213.173.12.0/23
IP: 2a13:8040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2f:b5:f3:28:0a:8b:0f:41:8f:e5:f2:8a:5a:bd:6c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 27 14:32:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=375619200ec963d194a8018d4163d778a5cb526a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:28:cb:b8:0f:47:78:0b:7c:5e:78:92:8d:bc:
99:f0:d8:ee:00:73:61:73:dd:5a:60:1c:f3:b7:8a:
64:6a:9c:bf:d6:20:70:ba:c4:76:49:f8:c9:1b:72:
4c:f1:ce:91:de:de:9e:35:7a:ed:df:27:59:57:6e:
f9:fa:1a:67:73:5b:05:8f:db:0e:6f:02:6e:35:28:
98:23:1b:7b:35:4c:22:88:0b:79:d7:15:c2:79:7c:
9b:49:fb:49:77:11:f5:99:75:22:1f:61:82:ea:84:
05:6f:c6:dd:54:4b:72:05:34:3b:36:1a:43:22:1f:
2e:54:32:19:13:6d:f5:5d:49:f3:28:32:86:fa:df:
4d:90:5b:73:e6:ae:e4:35:d8:6f:62:b7:42:32:88:
e9:56:fc:16:45:ed:91:60:dd:53:9c:c2:3f:b4:34:
54:eb:83:58:a9:71:bb:dc:65:f2:6d:32:56:fc:46:
87:7a:65:40:7d:99:f5:ec:c0:d0:46:a9:4b:59:ae:
a2:6e:d5:38:14:7e:41:b0:e9:76:da:d2:51:3b:e3:
9b:fe:31:84:38:a3:4e:66:46:4f:fb:a0:96:ae:94:
7e:c9:a3:6e:23:95:13:0b:23:f0:39:42:14:4a:40:
9e:80:38:fe:02:d6:c2:00:fa:a6:94:36:e1:5e:d4:
88:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:56:19:20:0E:C9:63:D1:94:A8:01:8D:41:63:D7:78:A5:CB:52:6A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/0b8a5e-66ea-4e20-9ea8-2edd21783703/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/0b8a5e-66ea-4e20-9ea8-2edd21783703/1/N1YZIA7JY9GUqAGNQWPXeKXLUmo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.12.0/23
IPv6:
2a13:8040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199738
Signature Algorithm: sha256WithRSAEncryption
20:76:f4:9f:24:e5:3d:c8:83:8f:7c:c1:57:ee:1e:76:a8:24:
5b:5c:a5:6d:ff:72:97:19:95:5c:c4:2e:d7:09:a1:29:05:ee:
f8:1c:74:65:f2:a4:3f:4a:96:00:d7:0c:1a:fe:91:7e:3e:4c:
c3:4e:22:a5:af:66:e7:30:1e:04:12:20:9e:21:1c:e1:e3:46:
ad:d7:e1:e1:92:c0:81:c0:1c:0d:01:43:b6:92:67:fc:49:6a:
dc:99:c3:15:fe:44:07:ed:56:6e:80:41:03:b2:42:99:90:f6:
d7:d9:64:55:52:28:8d:03:11:f0:8c:bb:2c:56:3f:aa:f8:40:
c2:db:42:1c:c2:17:be:59:3c:52:29:ff:95:10:48:5f:67:57:
71:7f:df:85:89:0d:1c:2f:9e:be:8b:f9:de:48:cf:60:93:b2:
39:f5:db:46:a7:41:02:42:e9:56:52:42:10:73:67:b2:d5:c9:
00:fd:f5:06:ae:90:3a:62:7e:56:42:d5:da:aa:35:a1:05:00:
e3:e6:1d:15:ee:13:9b:3a:62:1c:c6:d2:a5:ca:54:1b:89:ef:
b3:f5:60:16:04:49:0a:7d:16:f4:c0:11:9e:ca:66:35:b3:5a:
ee:f3:57:ee:c1:96:81:0d:c3:94:b8:5e:e6:2e:3d:e1:33:64:
73:54:34:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:08:53 2026 by rpki-client