This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0wGZH8ND81jA8u665Vzy2jRSHHo.cer File: 0wGZH8ND81jA8u665Vzy2jRSHHo.cer (raw, json) Hash identifier: Wr5ELmew1u5WM905hSaH9EIT4WlQCUFvfA/U/EfDmA4= Subject key identifier: D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C12D70A70F9D08F7EB0024326BA2949 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/0wGZH8ND81jA8u665Vzy2jRSHHo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57866 AS: 211005 IP: 37.139.136.0/21 IP: 45.141.104.0/22 IP: 185.52.236.0/22 IP: 2001:678:fe0::/48 IP: 2a00:a7c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:d7:0a:70:f9:d0:8f:7e:b0:02:43:26:ba:29:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d301991fc343f358c0f2eebae55cf2da34521c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8c:52:00:df:1f:4e:46:e9:4e:94:0c:09:d5: bf:62:b9:25:bb:60:bf:c9:7c:cd:f7:e0:b2:9a:59: f7:75:fe:3b:44:ce:fe:0f:94:a7:ef:fb:4c:36:d9: 73:6f:52:2d:ff:0b:92:e4:bf:fb:ca:f4:52:d8:e0: 0a:df:e3:44:5a:8c:4d:58:54:c0:2f:42:a1:df:65: 3e:12:d7:8b:fe:6a:67:f8:6f:7e:67:a4:90:47:4b: 33:b5:fe:c1:e5:38:d0:f3:25:31:79:73:cd:0c:48: 3b:e5:6e:48:13:27:5c:25:eb:40:e2:15:36:e7:ff: 38:94:58:15:ca:86:bd:47:a3:55:71:da:e0:5a:f7: 18:3d:2f:5b:36:05:81:54:ac:f0:8b:f1:56:41:29: 8f:95:cd:80:eb:76:73:0c:66:12:ba:90:e8:46:0e: 25:d6:61:df:ef:61:da:65:62:f7:cd:34:88:dd:44: 11:2f:37:47:db:da:9c:c2:6d:3e:02:4d:66:2d:bb: 1e:e4:2c:ff:f6:e6:4b:34:4f:26:5f:42:71:be:21: 5b:47:9c:0f:02:52:9d:a3:c2:d4:01:d3:a7:24:40: 9d:9a:19:b1:2f:cd:a0:f5:90:72:95:73:d3:3c:db: 6b:08:62:bc:df:15:5d:fc:d5:5b:ab:36:52:78:7f: b0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:01:99:1F:C3:43:F3:58:C0:F2:EE:BA:E5:5C:F2:DA:34:52:1C:7A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c36f83-8b35-4d05-a334-f98c483015d7/1/0wGZH8ND81jA8u665Vzy2jRSHHo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.139.136.0/21 45.141.104.0/22 185.52.236.0/22 IPv6: 2001:678:fe0::/48 2a00:a7c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57866 211005 Signature Algorithm: sha256WithRSAEncryption 1a:2e:98:6f:04:33:ed:24:4c:01:3c:32:c7:d3:81:10:d8:b9: c4:a3:06:2c:9a:08:de:38:db:09:39:37:45:14:e4:23:96:d5: 97:8a:ad:20:fc:07:72:ec:dc:63:22:8e:a1:f7:76:6b:fc:78: f3:1e:7e:d9:d3:76:26:55:4c:ef:b2:d6:cc:f7:31:7e:69:81: c2:69:15:e1:cb:44:3e:b4:de:9d:de:fc:12:58:40:21:72:c2: 39:10:6d:fb:0e:01:7c:ca:31:1f:4a:24:6e:1d:5f:17:bb:95: 16:36:40:95:75:ff:70:d0:d4:f2:99:fd:8c:dc:63:e1:8f:c8: 19:70:7c:f6:b1:28:b0:3b:dc:e2:31:0a:1c:1c:54:82:9f:b8: 61:fe:47:c9:64:b1:6e:ab:18:41:75:39:79:d5:eb:b5:59:13: dc:d9:8a:b2:d1:54:9c:69:76:d4:3b:8b:df:88:9e:43:f7:94: 17:75:92:b6:ee:46:f5:9f:f0:78:d4:66:90:da:f7:54:17:83: be:e8:f5:89:89:ae:8d:6c:20:fb:68:e3:7f:33:0b:c0:3e:0b: 49:a4:24:48:f1:73:01:4b:a9:ec:1f:a2:31:21:ee:50:17:27: e7:81:c6:26:62:b1:cf:00:61:df:95:90:35:43:1f:6a:92:46: 2f:b2:fb:1b -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZt8EtcKcPnQj36wAkMmuilJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzAxOTkxZmMzNDNmMzU4YzBmMmVlYmFlNTVjZjJkYTM0NTIxYzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoxSAN8fTkbpTpQMCdW/Yrklu2C/ yXzN9+Cymln3df47RM7+D5Sn7/tMNtlzb1It/wuS5L/7yvRS2OAK3+NEWoxNWFTA L0Kh32U+EteL/mpn+G9+Z6SQR0sztf7B5TjQ8yUxeXPNDEg75W5IEydcJetA4hU2 5/84lFgVyoa9R6NVcdrgWvcYPS9bNgWBVKzwi/FWQSmPlc2A63ZzDGYSupDoRg4l 1mHf72HaZWL3zTSI3UQRLzdH29qcwm0+Ak1mLbse5Cz/9uZLNE8mX0JxviFbR5wP AlKdo8LUAdOnJECdmhmxL82g9ZBylXPTPNtrCGK83xVd/NVbqzZSeH+wDwIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFNMBmR/DQ/NYwPLuuuVc8to0Uhx6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE2L2MzNmY4 My04YjM1LTRkMDUtYTMzNC1mOThjNDgzMDE1ZDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYvYzM2Zjgz LThiMzUtNGQwNS1hMzM0LWY5OGM0ODMwMTVkNy8xLzB3R1pIOE5EODFqQTh1NjY1 Vnp5MmpSU0hIby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUF BwEHAQH/BDQwMjAYBAIAATASAwQDJYuIAwQCLY1oAwQCuTTsMBYEAgACMBADBwAg AQZ4D+ADBQAqAKfAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDiCgIDAzg9MA0G CSqGSIb3DQEBCwUAA4IBAQAaLphvBDPtJEwBPDLH04EQ2LnEowYsmgjeONsJOTdF FOQjltWXiq0g/Ady7NxjIo6h93Zr/HjzHn7Z03YmVUzvstbM9zF+aYHCaRXhy0Q+ tN6d3vwSWEAhcsI5EG37DgF8yjEfSiRuHV8Xu5UWNkCVdf9w0NTymf2M3GPhj8gZ cHz2sSiwO9ziMQocHFSCn7hh/kfJZLFuqxhBdTl51eu1WRPc2Yqy0VScaXbUO4vf iJ5D95QXdZK27kb1n/B41GaQ2vdUF4O+6PWJia6NbCD7aON/MwvAPgtJpCRI8XMB S6nsH6IxIe5QFyfngcYmYrHPAGHflZA1Qx9qkkYvsvsb -----END CERTIFICATE-----Generated at Mon Feb 2 12:45:58 2026 by rpki-client