
Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer
File: r3P_HsVfSSlt1zQDn6AoTMQA6yY.cer (raw, json)
Hash identifier: ZNujS1UbJY2pKYcvtEefwxNhEqoUu64Ytckm/eSYxd8=
Subject key identifier: AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019F65F6BB53B4115BD8520B2FE41B339223
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/r3P_HsVfSSlt1zQDn6AoTMQA6yY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 15 Jul 2026 13:28:16 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 24864
AS: 211099
IP: 2.58.144.0/23
IP: 45.12.44.0/23
IP: 89.188.64.0/21
IP: 94.177.116.0/23
IP: 185.159.56.0/22
IP: 188.241.124.0/23
IP: 193.110.28.0/22
IP: 194.156.235.0/24
IP: 195.234.157.0/24
IP: 217.13.176.0/20
IP: 2a02:7c8::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 17:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:65:f6:bb:53:b4:11:5b:d8:52:0b:2f:e4:1b:33:92:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 15 13:28:16 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=af73ff1ec55f49296dd734039fa0284cc400eb26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:96:5e:09:c1:e4:9f:0c:d2:fe:92:12:c5:53:
d3:6f:e9:14:e1:3b:6b:e7:75:2f:31:13:bc:02:bc:
b2:e4:6a:b9:24:a1:ea:55:e7:c2:d5:2e:eb:8c:ea:
98:d3:51:10:66:0f:91:15:ad:48:8f:d6:5b:07:d0:
ee:5b:e0:97:47:1e:d4:5c:e8:e2:a2:31:40:a9:ea:
6d:a2:7d:ff:8c:fa:a2:39:5f:bb:90:2c:64:1c:0d:
d5:60:47:cb:00:27:f5:8a:58:45:3e:34:40:20:b3:
6e:a1:d1:9a:4d:06:c9:43:0e:bc:3d:cd:93:5a:65:
bb:6f:0a:27:2c:e8:08:e6:29:60:f2:b9:5a:da:ad:
61:3a:c7:ce:52:96:8e:ce:a6:6c:ff:90:65:39:7f:
7f:4e:6f:be:b3:9f:73:8b:e9:63:31:a2:a3:e6:4a:
2d:f2:aa:26:ab:d9:4f:8a:f1:b6:64:82:80:6f:e4:
0d:e8:a7:c7:42:8a:0f:d6:a9:2f:49:9a:6a:2b:79:
62:55:11:5c:73:77:2a:69:f6:f1:f0:8d:2e:73:18:
69:c7:c9:a8:30:68:ec:98:39:53:09:cf:5b:b3:62:
54:e2:ae:e7:39:22:e6:20:f3:5c:bf:8b:a1:58:12:
d1:02:97:2c:0d:42:5b:dc:dd:33:fe:df:47:6f:d6:
0b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:73:FF:1E:C5:5F:49:29:6D:D7:34:03:9F:A0:28:4C:C4:00:EB:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cea581-5cde-4574-ba0a-2c62de7b3e45/1/r3P_HsVfSSlt1zQDn6AoTMQA6yY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.144.0/23
45.12.44.0/23
89.188.64.0/21
94.177.116.0/23
185.159.56.0/22
188.241.124.0/23
193.110.28.0/22
194.156.235.0/24
195.234.157.0/24
217.13.176.0/20
IPv6:
2a02:7c8::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24864
211099
Signature Algorithm: sha256WithRSAEncryption
34:ac:f9:fe:41:d9:00:e5:1b:d2:3b:ef:5f:5f:54:09:79:83:
e5:35:87:b3:72:b4:f6:78:c0:b1:cf:ed:a8:06:4b:35:92:3c:
23:fa:ba:ae:6a:5a:f8:5a:a6:80:b4:78:62:3b:67:da:2d:36:
92:04:4f:ad:64:05:97:5d:28:b1:02:bf:01:17:69:68:7c:d9:
13:68:b8:e9:6e:70:6a:8e:66:89:2d:6a:b6:74:d3:36:70:0f:
fc:7b:79:3b:dc:0f:87:f0:b7:99:d5:bd:17:6b:82:d1:53:44:
27:0e:ab:43:74:d3:7b:8e:74:ec:7c:fd:3e:42:2b:b6:2e:85:
66:d4:a7:bf:68:cf:08:ef:4a:d5:fc:80:1e:d4:2b:41:2f:30:
83:62:9f:d0:f0:67:c1:bf:7d:e7:1a:3d:d7:99:8d:e6:38:fd:
f7:1d:60:74:94:22:19:a1:44:70:8e:05:da:15:5a:1c:2c:61:
32:c4:72:83:a6:f1:4e:ad:03:8b:d8:34:bd:94:6e:0f:11:2e:
57:c3:52:79:ea:90:44:3e:87:fd:73:b4:20:3c:c3:e8:b5:f0:
d6:44:ca:b4:ee:a2:17:f3:18:86:1f:b6:34:49:15:a5:8b:b4:
bd:16:9b:be:80:22:1c:a7:87:a3:3d:49:da:ef:9d:e5:25:0c:
40:5d:10:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:54:53 2026 by rpki-client