This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer File: 0OhNbWqe7eaC7xtcePGz8KMxORE.cer (raw, json) Hash identifier: 0LGzaZiceAi+88qyFZBmMzsX7Qx2rHOf2cmTauYOFFQ= Subject key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F0E0B68BD4B1B5962D00B19294455 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 13154 IP: 193.105.161.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:0e:0b:68:bd:4b:1b:59:62:d0:0b:19:29:44:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3a:44:32:1b:aa:f3:a5:be:42:1c:d7:35:1c: 73:1a:93:58:93:30:f6:fc:fd:22:3d:e2:17:cb:87: 62:10:06:5a:a9:df:4a:6e:c8:ff:89:11:b3:04:3e: 1e:c0:93:65:ad:af:1b:75:24:db:d8:a7:bc:4a:56: 23:1f:b5:b4:86:10:37:bc:4e:c3:2e:58:9e:b9:c5: da:9c:fa:b4:18:a0:f7:59:c8:6a:a6:28:df:2d:aa: 03:87:41:cb:9b:ae:78:7a:b0:0e:45:67:dd:d8:cc: 08:e4:16:50:08:80:f4:44:d3:64:19:c1:4b:52:ca: 77:af:c2:95:0d:e0:fa:f2:1e:8c:27:8e:3b:8e:fe: 08:e4:e4:69:15:d4:62:65:e8:52:17:06:3e:b4:02: 61:ec:04:8e:af:b6:c5:ae:4a:50:19:66:ea:0a:35: 92:ab:07:b9:93:63:29:bb:e7:3f:22:f4:dc:63:5c: 44:39:c9:a6:c8:c7:da:ba:85:e3:ab:70:e3:c0:45: 09:78:8e:1f:74:3e:dd:06:ca:2a:93:4c:bb:54:0f: 9b:22:91:93:bd:3c:b2:da:c6:40:3a:cd:94:a0:50: 22:2a:13:1e:be:71:ee:02:5e:73:18:f2:36:cf:25: a7:a7:79:b7:4f:d0:62:77:8b:7d:62:4d:b0:eb:25: d6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.105.161.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 13154 Signature Algorithm: sha256WithRSAEncryption a3:2f:a5:1c:e3:30:98:19:87:76:07:62:08:76:23:51:af:8a: d9:28:99:5a:7d:a6:ea:9e:4a:99:61:22:87:04:0d:54:41:3a: b6:40:16:72:70:01:94:52:64:9b:07:ec:c0:55:5a:48:87:04: 88:3e:51:54:5c:99:98:96:0d:96:84:66:e8:57:a8:bc:44:b7: 4b:8a:5b:e3:a4:e4:24:25:7b:37:d6:14:c8:1e:68:9e:2f:e9: af:db:e5:1b:23:33:1a:61:ae:12:4a:7a:0c:ed:9e:2a:35:a7: c9:45:70:59:b2:d2:3f:da:24:48:c2:2a:57:3f:db:d8:94:fb: 58:e4:3c:2b:7f:b2:67:59:1d:83:84:80:16:4b:72:f5:73:02: 53:fb:a7:a7:e8:7a:bf:04:94:a3:a8:6d:92:f0:dc:eb:08:8f: 15:d9:79:e1:b4:62:17:8f:cf:f8:21:ed:b6:84:f5:79:73:41: 77:b5:21:dc:a6:ba:bd:33:50:a9:4e:36:6c:dc:08:6d:6e:7a: 51:d8:1e:17:a3:91:fd:09:b1:56:dc:c0:01:f5:6a:6c:fb:21: 28:2e:1f:c2:2e:62:6a:38:1a:66:ff:d8:7d:0d:fd:33:d4:02: 92:66:ac:77:7b:e1:c0:ca:3f:8c:27:38:58:ff:1a:a4:3f:03: 59:f6:cc:0a -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt8fw4LaL1LG1li0AsZKURVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGU4NGQ2ZDZhOWVlZGU2ODJlZjFiNWM3OGYxYjNmMGEzMzEzOTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5jpEMhuq86W+QhzXNRxzGpNYkzD2 /P0iPeIXy4diEAZaqd9Kbsj/iRGzBD4ewJNlra8bdSTb2Ke8SlYjH7W0hhA3vE7D LlieucXanPq0GKD3WchqpijfLaoDh0HLm654erAORWfd2MwI5BZQCID0RNNkGcFL Usp3r8KVDeD68h6MJ447jv4I5ORpFdRiZehSFwY+tAJh7ASOr7bFrkpQGWbqCjWS qwe5k2Mpu+c/IvTcY1xEOcmmyMfauoXjq3DjwEUJeI4fdD7dBsoqk0y7VA+bIpGT vTyy2sZAOs2UoFAiKhMevnHuAl5zGPI2zyWnp3m3T9Bid4t9Yk2w6yXWiwIDAQAB o4ICnzCCApswHQYDVR0OBBYEFNDoTW1qnu3mgu8bXHjxs/CjMTkRMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1LzYyYjc3 NS03ODQxLTRhNjEtYjc4Yy1iN2JhMjgxNjVhNzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvNjJiNzc1 LTc4NDEtNGE2MS1iNzhjLWI3YmEyODE2NWE3Ny8xLzBPaE5iV3FlN2VhQzd4dGNl UEd6OEtNeE9SRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwWmhMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AjNiMA0GCSqGSIb3DQEBCwUAA4IBAQCjL6Uc4zCYGYd2B2IIdiNRr4rZKJlafabq nkqZYSKHBA1UQTq2QBZycAGUUmSbB+zAVVpIhwSIPlFUXJmYlg2WhGboV6i8RLdL ilvjpOQkJXs31hTIHmieL+mv2+UbIzMaYa4SSnoM7Z4qNafJRXBZstI/2iRIwipX P9vYlPtY5Dwrf7JnWR2DhIAWS3L1cwJT+6en6Hq/BJSjqG2S8NzrCI8V2XnhtGIX j8/4Ie22hPV5c0F3tSHcprq9M1CpTjZs3AhtbnpR2B4Xo5H9CbFW3MAB9Wps+yEo Lh/CLmJqOBpm/9h9Df0z1AKSZqx3e+HAyj+MJzhY/xqkPwNZ9swK -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:15 2026 by rpki-client