This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer File: 1jND98xsI32j-LgROMBR2Pk8nE0.cer (raw, json) Hash identifier: Q1JQp7cQbFKKF1dLv9bcXi5UjUk8kAZgCEdROtrBxlA= Subject key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B775919F323FD9FAEC6B51CDA95D565E4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209379 IP: 185.203.200.0/22 IP: 2a0a:edc0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:19:f3:23:fd:9f:ae:c6:b5:1c:da:95:d5:65:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:88:5a:83:ee:da:3d:68:a9:92:22:34:70: 8b:5d:86:3f:af:c6:5e:46:5d:e2:24:14:4b:03:bb: 74:32:ad:0d:56:c3:09:41:db:93:27:51:f1:be:4b: df:73:9c:84:29:a9:c9:26:3b:e1:01:56:5a:e2:eb: 39:b8:22:5b:81:89:c2:37:65:ff:93:41:e2:27:85: 4a:d8:ab:5b:96:5c:8e:04:5c:e1:f4:af:28:a4:c5: 05:62:a2:70:94:5e:aa:cc:0f:1e:8a:87:a4:1c:f3: b9:c5:fc:a7:68:e7:c9:a5:61:45:fd:31:49:4b:0c: 6c:64:cd:37:1e:f1:2b:11:a8:d1:51:ea:d7:52:20: 01:26:ba:b8:b7:3f:a4:ec:94:e1:a1:e4:53:cf:07: 18:fa:4a:3f:d0:ec:51:0c:cd:92:c5:62:23:3f:57: ad:8b:af:f6:92:87:7d:f8:aa:76:7f:08:e4:1f:0b: a4:05:c6:d3:22:38:b8:28:e4:8f:d4:31:57:10:50: 3a:ae:ff:f2:be:dc:c5:ab:bb:75:bc:30:7c:37:14: 64:a0:a8:c6:d0:4c:fb:d0:15:e6:ed:19:f5:bf:c7: 1f:68:8e:09:1d:2c:c8:a1:02:9f:df:74:21:fa:29: 1e:61:a8:d0:de:f9:63:9e:dd:ea:1f:88:7c:99:93: a1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.203.200.0/22 IPv6: 2a0a:edc0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209379 Signature Algorithm: sha256WithRSAEncryption af:ba:8e:13:16:7d:8e:35:ba:87:d6:d4:03:96:21:70:8c:6d: 00:90:ed:5e:aa:d4:a6:93:cd:b5:e2:19:7a:ca:b5:45:13:5c: 20:70:66:5a:51:20:d6:89:24:38:13:d9:ae:16:ec:ff:2d:8a: 9a:52:ee:27:78:c3:6a:9b:ee:18:5a:24:7e:69:d5:f9:48:2a: 79:45:20:6f:16:b2:b1:19:ee:3a:4b:af:16:e8:5e:9a:8c:5f: f7:ae:88:4b:23:d0:62:4f:d5:8a:17:4a:57:34:a7:97:07:ab: 18:75:3d:ab:4e:9b:e8:5f:46:e6:30:f6:c5:0f:eb:6a:87:16: cd:83:7f:64:b6:de:84:81:55:b8:e4:a6:9f:6f:6d:d5:a9:53: fa:cc:49:6e:04:69:04:c7:50:35:00:ec:8a:91:3b:49:3b:13: ff:47:09:d6:7c:e1:ed:12:26:0e:04:16:5e:a8:3a:4c:9f:ae: 66:35:29:cb:92:3a:8e:38:4d:45:14:8d:7d:9d:52:93:76:3a: 3b:c4:2a:d1:4b:21:6f:7b:32:36:45:54:ba:28:f3:87:e1:6e: a8:f3:68:34:b1:07:bd:86:64:a6:06:ab:cf:1c:f5:95:4f:83: d0:a6:02:35:f5:b3:07:59:07:d7:4f:eb:cf:96:a6:48:1e:02: eb:9d:74:fa -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3WRnzI/2frsa1HNqV1WXkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjMzNDNmN2NjNmMyMzdkYTNmOGI4MTEzOGMwNTFkOGY5M2M5YzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9qIWoPu2j1oqZIiNHCLXYY/r8Ze Rl3iJBRLA7t0Mq0NVsMJQduTJ1Hxvkvfc5yEKanJJjvhAVZa4us5uCJbgYnCN2X/ k0HiJ4VK2KtbllyOBFzh9K8opMUFYqJwlF6qzA8eioekHPO5xfynaOfJpWFF/TFJ SwxsZM03HvErEajRUerXUiABJrq4tz+k7JThoeRTzwcY+ko/0OxRDM2SxWIjP1et i6/2kod9+Kp2fwjkHwukBcbTIji4KOSP1DFXEFA6rv/yvtzFq7t1vDB8NxRkoKjG 0Ez70BXm7Rn1v8cfaI4JHSzIoQKf33Qh+ikeYajQ3vljnt3qH4h8mZOh1wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNYzQ/fMbCN9o/i4ETjAUdj5PJxNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM1LzhlYjU4 MS05Yzc0LTQ4ZTEtODIxYS01MzE4MGVlYzU2ZmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzUvOGViNTgx LTljNzQtNDhlMS04MjFhLTUzMTgwZWVjNTZmYi8xLzFqTkQ5OHhzSTMyai1MZ1JP TUJSMlBrOG5FMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCucvIMA0EAgACMAcDBQAqCu3AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMx4zANBgkqhkiG9w0BAQsFAAOCAQEAr7qOExZ9jjW6 h9bUA5YhcIxtAJDtXqrUppPNteIZesq1RRNcIHBmWlEg1okkOBPZrhbs/y2KmlLu J3jDapvuGFokfmnV+UgqeUUgbxaysRnuOkuvFuhemoxf966ISyPQYk/VihdKVzSn lwerGHU9q06b6F9G5jD2xQ/raocWzYN/ZLbehIFVuOSmn29t1alT+sxJbgRpBMdQ NQDsipE7STsT/0cJ1nzh7RImDgQWXqg6TJ+uZjUpy5I6jjhNRRSNfZ1Sk3Y6O8Qq 0Ushb3syNkVUuijzh+FuqPNoNLEHvYZkpgarzxz1lU+D0KYCNfWzB1kH10/rz5am SB4C6510+g== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:59 2026 by rpki-client