This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0AEr-PVySEpvYGhWLKmRnG2lRG8.cer File: 0AEr-PVySEpvYGhWLKmRnG2lRG8.cer (raw, json) Hash identifier: EoDPhDOUzkSuqoRvQrBEimrgsnAjthcrvMK34pEmmnI= Subject key identifier: D0:01:2B:F8:F5:72:48:4A:6F:60:68:56:2C:A9:91:9C:6D:A5:44:6F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A355E20A37AACDCDD74803474070F1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/0AEr-PVySEpvYGhWLKmRnG2lRG8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.24.230.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:55:e2:0a:37:aa:cd:cd:d7:48:03:47:40:70:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0012bf8f572484a6f6068562ca9919c6da5446f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:a8:e9:e1:3d:4f:40:da:cc:95:00:9b:4f: 6d:7c:2d:39:66:99:d0:35:48:b5:32:1d:a6:0a:ba: 1d:77:85:14:99:39:7e:79:06:dd:27:4b:a4:ea:7a: e2:a9:c8:b3:af:60:4f:92:0b:9b:15:19:fb:62:ca: 9a:ed:21:68:2c:0d:73:b6:e7:26:02:26:5f:bc:0f: 2b:63:55:c1:07:7e:60:0a:e6:e7:ff:c5:88:b9:39: f3:fa:6d:5e:fb:fb:2a:08:1b:45:06:07:c7:b7:99: 87:65:64:6d:40:77:d7:46:40:da:99:04:cf:23:b5: e2:1e:2e:00:19:81:9b:a3:d1:af:45:a1:ac:5c:d2: ad:ec:81:6d:90:f9:d1:9b:84:2c:a6:6a:19:02:b7: 31:a9:6b:01:2d:a3:25:ba:1a:81:4f:d9:e1:45:c9: 26:a7:3c:5c:f3:d1:8c:94:a2:42:7e:8a:7c:04:87: 36:02:07:ee:82:90:fd:61:c8:6d:39:36:00:50:46: 46:21:55:ed:b9:2a:c3:64:5e:c7:1b:43:5b:92:e6: fa:63:f2:71:69:0f:c4:20:4f:11:30:7b:23:96:eb: 98:88:22:7f:e3:c7:29:8a:a3:0e:d5:ca:e5:84:3f: 5f:d3:bc:52:97:1a:4a:de:c9:c0:9e:72:8f:62:49: ee:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:01:2B:F8:F5:72:48:4A:6F:60:68:56:2C:A9:91:9C:6D:A5:44:6F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/55eb96-f121-4cf4-ac94-8477b6638f31/1/0AEr-PVySEpvYGhWLKmRnG2lRG8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.24.230.0/24 Signature Algorithm: sha256WithRSAEncryption 54:48:29:4f:24:4d:00:23:2f:ca:ad:19:89:e3:10:10:70:03: d6:68:62:a8:49:c6:7a:97:f9:8a:66:05:ac:e0:b5:ca:52:e3: 6f:92:70:8a:e1:69:cb:ad:b0:ca:20:65:5a:28:46:2c:1f:ed: 8e:1d:87:03:a8:72:8b:95:83:74:50:05:20:f9:a8:15:ae:d8: ad:05:24:6a:7d:de:9b:92:0e:c5:29:60:fe:52:98:fc:80:14: 9e:2b:ee:73:59:02:8f:56:ab:d8:7b:85:1b:76:06:c9:97:a9: 04:f5:e2:74:45:e9:45:0a:8c:42:19:98:28:e0:8b:28:b0:ef: 31:67:ee:6a:44:7c:e2:e7:11:c6:94:4a:60:d4:5b:0b:f9:d1: 38:dd:72:5e:ba:c3:bb:05:8b:3d:ef:fd:9a:7f:38:9e:e6:4a: 13:ff:9f:02:d7:cd:60:6b:de:44:3c:2e:6a:ee:9f:21:69:10: 65:ff:7e:b0:3d:6f:6c:d1:cf:74:52:0e:95:cd:e2:0d:9c:0a: b7:d2:9d:b6:b0:2d:61:f3:2e:1c:1d:1f:ac:28:e1:84:21:55: 61:90:3b:1f:94:a5:60:22:29:b3:5c:44:0c:54:54:cf:46:ed: 3e:90:f4:41:97:c8:6a:7f:00:cf:e3:84:13:cb:8a:3f:ea:12: 43:90:d5:92 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt4o1XiCjeqzc3XSANHQHDxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDAxMmJmOGY1NzI0ODRhNmY2MDY4NTYyY2E5OTE5YzZkYTU0NDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0c6o6eE9T0DazJUAm09tfC05ZpnQ NUi1Mh2mCrodd4UUmTl+eQbdJ0uk6nriqcizr2BPkgubFRn7Ysqa7SFoLA1ztucm AiZfvA8rY1XBB35gCubn/8WIuTnz+m1e+/sqCBtFBgfHt5mHZWRtQHfXRkDamQTP I7XiHi4AGYGbo9GvRaGsXNKt7IFtkPnRm4QspmoZArcxqWsBLaMluhqBT9nhRckm pzxc89GMlKJCfop8BIc2AgfugpD9YchtOTYAUEZGIVXtuSrDZF7HG0Nbkub6Y/Jx aQ/EIE8RMHsjluuYiCJ/48cpiqMO1crlhD9f07xSlxpK3snAnnKPYknuwQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFNABK/j1ckhKb2BoViypkZxtpURvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ0LzU1ZWI5 Ni1mMTIxLTRjZjQtYWM5NC04NDc3YjY2MzhmMzEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvNTVlYjk2 LWYxMjEtNGNmNC1hYzk0LTg0NzdiNjYzOGYzMS8xLzBBRXItUFZ5U0VwdllHaFdM S21SbkcybFJHOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwhjmMA0GCSqGSIb3DQEBCwUAA4IBAQBUSClP JE0AIy/KrRmJ4xAQcAPWaGKoScZ6l/mKZgWs4LXKUuNvknCK4WnLrbDKIGVaKEYs H+2OHYcDqHKLlYN0UAUg+agVrtitBSRqfd6bkg7FKWD+Upj8gBSeK+5zWQKPVqvY e4UbdgbJl6kE9eJ0RelFCoxCGZgo4IsosO8xZ+5qRHzi5xHGlEpg1FsL+dE43XJe usO7BYs97/2afzie5koT/58C181ga95EPC5q7p8haRBl/36wPW9s0c90Ug6VzeIN nAq30p22sC1h8y4cHR+sKOGEIVVhkDsflKVgIimzXEQMVFTPRu0+kPRBl8hqfwDP 44QTy4o/6hJDkNWS -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:20 2026 by rpki-client