This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0VK0wfXUhO78KxWX9FUAOrZUsFU.cer File: 0VK0wfXUhO78KxWX9FUAOrZUsFU.cer (raw, json) Hash identifier: Ew9qQAtBFE4E7T8IRKEu69Hi6CxqU0WfZSVxSJB7uf8= Subject key identifier: D1:52:B4:C1:F5:D4:84:EE:FC:2B:15:97:F4:55:00:3A:B6:54:B0:55 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F14F304BCBC3B143CA70CAB53C44E97 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/0VK0wfXUhO78KxWX9FUAOrZUsFU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:20:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209721 IP: 194.26.120.0/21 IP: 2001:67c:2e0c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:f3:04:bc:bc:3b:14:3c:a7:0c:ab:53:c4:4e:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d152b4c1f5d484eefc2b1597f455003ab654b055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5d:db:4e:6f:b1:1d:4b:92:49:0f:b2:ea:09: 3d:0e:23:6c:57:07:fc:fc:f6:86:0a:ad:a8:30:a7: 34:2d:6e:89:85:28:17:1b:15:9c:7f:ee:76:18:04: dc:c4:0b:f0:ac:85:06:01:ff:22:c0:37:43:75:8f: 10:e2:12:06:b9:40:35:6c:ae:3e:db:e7:75:03:fa: 75:f9:53:6e:75:04:20:fb:a0:fe:bb:a6:d7:b0:01: e2:70:3c:41:93:ab:fd:bd:b7:01:ab:9c:25:31:b7: b0:77:fd:4a:b9:57:54:1d:0b:71:e7:99:80:d7:8c: f9:c8:39:dc:ff:cd:c0:bc:6e:9a:3c:e0:c2:a3:d5: b4:ac:47:c7:01:35:11:a4:54:13:3e:ff:c5:9a:60: af:15:e0:b4:0b:fd:1f:a9:b8:49:8b:de:c6:df:d3: 01:cd:74:0a:ff:d6:b4:6e:e9:61:d6:59:48:55:f1: b7:e0:32:0a:f7:4e:7c:c4:1b:89:99:5d:75:1e:a8: 23:67:f5:c5:d5:9d:3b:17:08:34:ba:79:1b:a3:91: 60:0a:20:68:92:68:91:b0:2c:93:2a:ec:74:11:e1: fb:de:56:0b:92:6d:e3:ae:dc:99:56:26:be:f7:2b: a9:6e:f4:47:fe:86:07:21:4c:51:18:60:9b:2b:35: 61:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:52:B4:C1:F5:D4:84:EE:FC:2B:15:97:F4:55:00:3A:B6:54:B0:55 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/379e32-02e0-4339-882b-2f75195216b9/1/0VK0wfXUhO78KxWX9FUAOrZUsFU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.26.120.0/21 IPv6: 2001:67c:2e0c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209721 Signature Algorithm: sha256WithRSAEncryption 31:47:98:71:50:1a:cc:bc:4c:6d:f4:cd:86:a3:ea:b5:58:f6: 1d:56:a2:38:f1:05:72:e3:d1:a6:47:ee:9c:40:c6:18:e0:44: ca:7f:c2:ad:1e:0d:07:ef:4c:cd:ff:b7:b3:5b:e2:e3:b3:29: ed:88:8c:57:d7:27:ce:d3:30:2c:30:53:72:32:36:69:14:4d: 81:4e:94:83:34:f6:55:d9:02:f5:a8:cf:a6:6d:e7:4e:79:f5: 4e:0f:e8:32:17:23:48:b5:da:dc:d1:fa:79:49:28:95:9c:a7: 0c:21:5e:ec:06:1b:cb:e3:9d:c4:82:23:6c:03:94:2d:8b:a4: 6e:21:53:8b:d5:32:01:49:2b:76:bb:f3:f3:7b:51:da:6c:a1: fd:22:0d:f3:e4:f7:c4:5d:c0:64:ba:d8:90:bc:02:be:d5:22: 78:29:7c:83:69:94:2f:54:15:ba:b1:67:d1:51:f0:fa:a3:db: 78:b5:ae:2b:68:1c:9c:e0:64:bb:60:c4:5e:06:c4:19:dd:f7: 8d:83:4d:c7:66:4c:2b:23:0d:b9:33:5f:42:93:11:eb:70:0d: ac:18:29:29:a6:4a:36:5d:73:32:b0:cf:62:41:bd:7a:df:aa: 50:79:84:ce:a3:f8:34:6f:5a:5c:7e:d5:1d:59:12:6f:89:31: 86:01:47:02 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt/FPMEvLw7FDynDKtTxE6XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMTUyYjRjMWY1ZDQ4NGVlZmMyYjE1OTdmNDU1MDAzYWI2NTRiMDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxV3bTm+xHUuSSQ+y6gk9DiNsVwf8 /PaGCq2oMKc0LW6JhSgXGxWcf+52GATcxAvwrIUGAf8iwDdDdY8Q4hIGuUA1bK4+ 2+d1A/p1+VNudQQg+6D+u6bXsAHicDxBk6v9vbcBq5wlMbewd/1KuVdUHQtx55mA 14z5yDnc/83AvG6aPODCo9W0rEfHATURpFQTPv/FmmCvFeC0C/0fqbhJi97G39MB zXQK/9a0bulh1llIVfG34DIK9058xBuJmV11HqgjZ/XF1Z07Fwg0unkbo5FgCiBo kmiRsCyTKux0EeH73lYLkm3jrtyZVia+9yupbvRH/oYHIUxRGGCbKzVhrQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFNFStMH11ITu/CsVl/RVADq2VLBVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFkLzM3OWUz Mi0wMmUwLTQzMzktODgyYi0yZjc1MTk1MjE2YjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWQvMzc5ZTMy LTAyZTAtNDMzOS04ODJiLTJmNzUxOTUyMTZiOS8xLzBWSzB3ZlhVaE83OEt4V1g5 RlVBT3JaVXNGVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQDwhp4MA8EAgACMAkDBwAgAQZ8LgwwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAzM5MA0GCSqGSIb3DQEBCwUAA4IBAQAxR5hxUBrM vExt9M2Go+q1WPYdVqI48QVy49GmR+6cQMYY4ETKf8KtHg0H70zN/7ezW+Ljsynt iIxX1yfO0zAsMFNyMjZpFE2BTpSDNPZV2QL1qM+mbedOefVOD+gyFyNItdrc0fp5 SSiVnKcMIV7sBhvL453EgiNsA5Qti6RuIVOL1TIBSSt2u/Pze1HabKH9Ig3z5PfE XcBkutiQvAK+1SJ4KXyDaZQvVBW6sWfRUfD6o9t4ta4raByc4GS7YMReBsQZ3feN g03HZkwrIw25M19CkxHrcA2sGCkppko2XXMysM9iQb1636pQeYTOo/g0b1pcftUd WRJviTGGAUcC -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:16 2026 by rpki-client