This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer File: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer (raw, json) Hash identifier: 00b6EAjeNTiEvhBuYp3VxY9AOX+py72axzof/wSrXEY= Subject key identifier: D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910E34E8A5ACF27A7B31ADCF7A7D26C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215867 IP: 195.211.125.0/24 IP: 2a13:4280::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:e3:4e:8a:5a:cf:27:a7:b3:1a:dc:f7:a7:d2:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:54:f9:96:39:43:1b:ac:97:3e:5a:e2:22:15: f6:75:2f:bd:d8:99:9c:fc:67:9f:0a:96:86:26:17: 51:fe:14:aa:ed:86:80:21:20:56:fd:92:10:51:81: db:23:99:27:9a:6c:9d:2c:20:0b:3c:de:03:aa:37: 8a:c2:b8:ca:5c:17:3f:0a:14:85:3e:2e:2f:e5:3e: 14:2e:1e:a0:c5:b6:0d:85:2c:67:ba:f7:68:ef:0e: 39:2e:07:bd:21:cb:ed:c0:1e:48:f1:6e:dc:30:26: 88:64:58:ac:3c:32:8e:5e:d1:c7:fc:60:d8:32:de: 0c:9f:8c:bd:a8:e7:aa:66:b7:20:f8:39:09:35:9b: cb:02:53:50:ca:76:2f:5e:32:18:28:3d:5c:f6:88: dc:fa:11:5b:69:c5:f9:3e:72:7e:27:e3:7f:2d:be: 09:32:bc:01:2f:45:8a:58:3a:1f:85:0c:87:90:5d: 95:39:9a:1e:dc:1e:6f:55:ab:34:a5:17:b5:3f:79: e3:af:bf:d4:16:e8:75:d8:8e:31:c0:e2:24:17:68: cd:f1:03:61:09:62:a5:0a:6f:b8:8f:8e:d2:66:42: 28:ee:07:12:f4:a4:a9:13:fc:6f:18:16:8e:da:de: bf:8f:24:9c:74:7e:ce:4b:b3:f4:56:1c:4f:32:b8: 60:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.211.125.0/24 IPv6: 2a13:4280::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215867 Signature Algorithm: sha256WithRSAEncryption 6f:f8:91:29:1c:a2:dc:e1:a3:c7:23:93:f8:ae:83:fb:37:25: 6b:ba:5c:68:e7:7e:bf:d9:43:f1:33:56:5e:84:97:bd:27:51: e1:50:c6:b6:44:16:b5:4f:20:77:2c:03:9a:69:ea:46:53:b7: 94:0c:25:4c:4f:b4:a3:85:dc:d3:13:2f:96:5f:b1:9b:67:a0: ff:16:84:5f:e3:2a:36:cf:1b:9e:ce:b2:fe:58:7a:8e:4f:19: ff:c6:3b:3a:b9:8e:50:25:a6:4c:ef:48:88:8e:51:22:ae:8e: 50:7a:48:be:c1:c4:0c:81:3d:31:22:7b:66:66:f4:6b:c3:d3: ab:1f:2d:d5:cb:f5:e5:cd:d4:c7:ec:56:b8:81:af:71:6c:3e: 5d:1c:f6:06:a3:17:dc:d6:82:3a:2c:f6:dd:6a:61:a2:6f:d4: f3:67:73:65:4f:83:36:0c:b8:80:97:18:9f:4f:0e:15:aa:13: 24:92:1c:29:9b:bc:d1:53:bf:5f:18:f7:5e:7a:45:aa:69:55: 36:5a:a4:1a:68:42:1b:13:e6:8c:55:4b:e4:a0:68:36:8b:3b: 72:b0:94:13:22:fe:e4:a5:b3:19:2c:55:a4:1f:1a:1e:3a:cd: 80:f2:25:80:98:59:e8:c5:9e:a2:3f:18:ca:6d:12:2f:c8:41: 1f:39:cd:be -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5EONOilrPJ6ezGtz3p9JsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjFhNTk0MDcyMmIyMDdiMjlkOTVhNmM4MWJlMGQyYmY0ZDQxMGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1T5ljlDG6yXPlriIhX2dS+92Jmc /GefCpaGJhdR/hSq7YaAISBW/ZIQUYHbI5knmmydLCALPN4DqjeKwrjKXBc/ChSF Pi4v5T4ULh6gxbYNhSxnuvdo7w45Lge9IcvtwB5I8W7cMCaIZFisPDKOXtHH/GDY Mt4Mn4y9qOeqZrcg+DkJNZvLAlNQynYvXjIYKD1c9ojc+hFbacX5PnJ+J+N/Lb4J MrwBL0WKWDofhQyHkF2VOZoe3B5vVas0pRe1P3njr7/UFuh12I4xwOIkF2jN8QNh CWKlCm+4j47SZkIo7gcS9KSpE/xvGBaO2t6/jyScdH7OS7P0VhxPMrhgAQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNIaWUByKyB7KdlabIG+DSv01BDMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ4LzU2NDMz YS0wYTcwLTRlYWUtOWY5ZC04Y2ZiZGI3OTkyODQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgvNTY0MzNh LTBhNzAtNGVhZS05ZjlkLThjZmJkYjc5OTI4NC8xLzBocFpRSElySUhzcDJWcHNn YjROS19UVUVNdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAw9N9MA0EAgACMAcDBQMqE0KAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNLOzANBgkqhkiG9w0BAQsFAAOCAQEAb/iRKRyi3OGj xyOT+K6D+zcla7pcaOd+v9lD8TNWXoSXvSdR4VDGtkQWtU8gdywDmmnqRlO3lAwl TE+0o4Xc0xMvll+xm2eg/xaEX+MqNs8bns6y/lh6jk8Z/8Y7OrmOUCWmTO9IiI5R Iq6OUHpIvsHEDIE9MSJ7Zmb0a8PTqx8t1cv15c3Ux+xWuIGvcWw+XRz2BqMX3NaC Oiz23Wphom/U82dzZU+DNgy4gJcYn08OFaoTJJIcKZu80VO/Xxj3XnpFqmlVNlqk GmhCGxPmjFVL5KBoNos7crCUEyL+5KWzGSxVpB8aHjrNgPIlgJhZ6MWeoj8Yym0S L8hBHznNvg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:26 2026 by rpki-client