Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/O618kdgYkaWUfX4UpmhJEgY6Xdk.cer
File: O618kdgYkaWUfX4UpmhJEgY6Xdk.cer (raw, json)
Hash identifier: 8j7ykqU5ihsvTpyzlN6c9n9AhXmUFQ+53ono5/R/Le4=
Subject key identifier: 3B:AD:7C:91:D8:18:91:A5:94:7D:7E:14:A6:68:49:12:06:3A:5D:D9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019CF72C82FF128F0A38CCFE8775CF427BD5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/9493ee-7a05-41ef-bcf6-422022499aca/1/O618kdgYkaWUfX4UpmhJEgY6Xdk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/9493ee-7a05-41ef-bcf6-422022499aca/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 16 Mar 2026 15:03:35 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 215674
IP: 66.179.29.0/24
IP: 68.67.113.0/24
IP: 74.209.175.0/24
IP: 198.52.247.0/24
IP: 199.120.230.0/24
IP: 206.209.210.0/24
IP: 208.88.65.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 20:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f7:2c:82:ff:12:8f:0a:38:cc:fe:87:75:cf:42:7b:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 16 15:03:35 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=3bad7c91d81891a5947d7e14a6684912063a5dd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:97:7e:9e:a3:82:0d:f9:9d:9a:9c:0e:32:d1:
b8:06:0c:ce:28:02:f3:7b:6b:01:80:e7:74:8e:91:
53:88:a1:20:c8:22:7f:25:b6:af:15:d7:79:6b:b3:
90:b9:5b:de:1a:24:c4:e0:0b:d2:a8:f7:af:a3:c8:
7a:77:83:92:10:fc:98:b0:01:f7:bb:4a:10:13:7c:
20:5b:45:dd:28:53:a2:21:67:a0:d9:0f:d4:48:d2:
36:f4:35:79:03:b4:cc:5c:7d:13:3d:59:1d:05:a0:
28:78:83:1a:7d:c5:84:16:4c:a9:b9:c7:af:ba:62:
84:68:29:64:64:ec:04:f0:ae:b1:fa:f8:a7:04:b7:
6e:5a:f1:1f:6d:2a:d2:c9:87:7c:4a:19:2e:b4:f9:
48:78:d8:08:68:9e:5a:91:8e:28:4a:e9:e0:74:5e:
46:bf:96:c6:2a:e3:cc:56:81:31:0b:18:29:ed:80:
13:d3:63:00:ee:c7:8e:ab:36:32:6e:b6:9e:03:1f:
63:43:e5:0e:d9:85:50:95:05:3f:9a:f8:bf:a2:0b:
e5:a7:84:37:8f:e8:b3:9f:db:17:d1:a0:ba:42:c5:
c5:7e:42:6a:5d:a9:c9:7e:0f:1b:71:09:8a:ac:9e:
1e:24:b9:f4:e0:d6:87:5b:1e:96:e9:fc:93:00:a1:
7e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AD:7C:91:D8:18:91:A5:94:7D:7E:14:A6:68:49:12:06:3A:5D:D9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9493ee-7a05-41ef-bcf6-422022499aca/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9493ee-7a05-41ef-bcf6-422022499aca/1/O618kdgYkaWUfX4UpmhJEgY6Xdk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.179.29.0/24
68.67.113.0/24
74.209.175.0/24
198.52.247.0/24
199.120.230.0/24
206.209.210.0/24
208.88.65.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215674
Signature Algorithm: sha256WithRSAEncryption
9c:e7:53:ae:de:b1:98:bb:56:ea:d1:b8:03:7e:dc:a2:f4:2c:
55:ce:98:9a:b6:a9:f3:a8:7f:24:f4:1a:e4:70:66:9f:b9:2a:
ef:ad:6a:c2:9e:8b:00:f5:27:3f:ec:34:5d:d5:5b:76:b7:e3:
4a:8e:e2:ee:1e:81:1b:59:2d:41:06:88:4e:b7:54:2a:70:35:
fa:1f:f3:59:55:b6:ce:ee:fc:d9:11:28:bc:a6:e0:8d:15:8a:
d5:17:ef:35:ff:7c:8a:76:99:de:7a:bf:a2:be:7d:1d:a4:25:
0c:4d:f2:72:e3:2c:45:26:1a:84:00:35:95:4d:7e:40:bd:26:
55:f3:3b:07:5d:8b:3a:61:c2:aa:4e:86:8c:b8:16:77:91:72:
ce:50:c8:42:a1:db:5a:97:32:09:d8:24:c6:cd:02:1b:0e:a1:
0b:34:99:45:6d:f7:21:c4:a3:5a:bb:2e:4b:71:50:5d:14:dc:
af:86:9c:60:ec:9f:58:19:09:b0:f9:ae:4f:1e:ad:50:10:61:
76:b8:17:4a:82:b5:84:4f:9b:16:b8:bb:2a:97:28:b3:ea:9d:
19:4b:da:50:0e:c9:31:bb:05:19:61:85:fe:9a:72:26:c2:db:
e8:ff:53:db:a7:9e:7f:a3:d4:30:6a:7d:31:b0:d8:f5:f5:91:
85:73:0c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 21 05:29:16 2026 by rpki-client