This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2OtznG09xxpiBsjzcSQm_1MqCv4.cer File: 2OtznG09xxpiBsjzcSQm_1MqCv4.cer (raw, json) Hash identifier: ar+VDR+bAiKwML6yd+hajXMVFaSOyidBCCnQDXJR5+k= Subject key identifier: D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834B25DA8FBC1F5A9273FED9F4906C9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.202.80.0/22 IP: 2a0c:cd00::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:b2:5d:a8:fb:c1:f5:a9:27:3f:ed:9f:49:06:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d8eb739c6d3dc71a6206c8f3712426ff532a0afe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:4d:38:a6:d7:0c:a8:66:d9:75:88:4e:6c: e2:89:7f:ae:80:91:5d:28:63:72:3c:0e:dc:ac:01: e0:f2:6e:37:94:c3:d1:d2:83:bd:47:78:1e:a1:ef: c8:9f:36:06:51:91:29:6d:16:bc:f7:5d:b7:7c:63: 29:c7:df:61:42:0a:77:ac:0f:a9:20:bd:86:35:f2: 05:cb:4c:ff:a6:47:8d:c3:98:d8:e6:40:28:69:ed: 25:e8:90:f3:24:b0:83:39:f3:01:bc:ea:53:46:63: 5a:9d:59:ed:c9:6c:95:fd:cf:5a:a5:a7:9e:70:65: 22:67:57:24:16:d0:b0:66:79:3f:a8:03:ca:61:16: 83:f5:50:a6:80:4c:de:66:5f:b5:1c:0d:74:bc:c2: ac:27:90:8b:52:66:91:0c:42:93:44:aa:67:ef:1d: c3:87:ca:8c:44:46:92:68:ed:fc:03:32:d9:86:13: d9:f2:18:1e:1c:9f:62:9b:0a:1a:c5:95:80:fa:6b: 33:26:0e:d9:b3:3b:d9:f8:89:af:c1:f6:3d:96:93: 40:ab:cd:a8:29:f3:f7:2d:06:59:08:bb:1d:25:de: e6:f5:de:c5:6f:b0:a5:07:e8:05:25:6e:f3:95:01: a2:de:b8:33:86:d6:4e:55:f7:90:43:e3:c3:8f:8a: 84:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:EB:73:9C:6D:3D:C7:1A:62:06:C8:F3:71:24:26:FF:53:2A:0A:FE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/0181f8-4fa4-4697-a272-333b6d4ea45b/1/2OtznG09xxpiBsjzcSQm_1MqCv4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.202.80.0/22 IPv6: 2a0c:cd00::/32 Signature Algorithm: sha256WithRSAEncryption 6c:9a:44:51:f3:a8:d5:e7:b3:2e:6e:78:da:39:83:35:6c:83: 40:7c:f9:c6:7b:98:82:ac:d6:4b:9e:a9:cc:8d:94:36:0e:eb: 06:a7:6a:9e:86:8d:24:bf:3b:13:22:e0:e3:c3:38:af:f9:dd: 44:56:ee:de:98:29:7c:10:1b:6c:e8:e8:5f:bb:e7:de:c1:5a: 7b:a8:7f:dd:be:fc:f2:c1:2c:c6:c6:98:7f:b2:a6:79:60:43: 67:a9:0d:ed:64:f3:2f:3c:6e:90:7b:6d:46:7e:4b:18:28:fe: be:88:41:e4:1c:27:54:56:c7:58:06:ac:06:3c:2a:7c:17:37: bb:59:fa:7c:82:1a:c8:80:ef:f7:5c:8e:ae:6e:e5:a0:86:87: 92:a0:cc:07:2a:8d:3a:e5:32:fa:cf:44:eb:90:b4:81:9d:22: a8:7e:25:f8:8e:f2:95:53:e3:91:aa:dd:a0:57:1d:08:ac:df: da:c1:c3:42:56:eb:69:98:34:8b:be:f7:f9:d5:5d:a7:de:e0: c7:71:86:81:a7:3b:bf:ef:42:a6:09:82:27:82:19:c2:4f:a0: 35:d0:59:43:0e:e2:ff:ae:d5:ea:d6:0a:a4:90:99:22:6d:cb: bb:a4:d3:2a:23:ba:66:1a:94:98:3c:8a:5e:57:1f:e4:5e:64: 6c:a6:c7:3a -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt4NLJdqPvB9aknP+2fSQbJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOGViNzM5YzZkM2RjNzFhNjIwNmM4ZjM3MTI0MjZmZjUzMmEwYWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSJNOKbXDKhm2XWITmziiX+ugJFd KGNyPA7crAHg8m43lMPR0oO9R3geoe/InzYGUZEpbRa89123fGMpx99hQgp3rA+p IL2GNfIFy0z/pkeNw5jY5kAoae0l6JDzJLCDOfMBvOpTRmNanVntyWyV/c9apaee cGUiZ1ckFtCwZnk/qAPKYRaD9VCmgEzeZl+1HA10vMKsJ5CLUmaRDEKTRKpn7x3D h8qMREaSaO38AzLZhhPZ8hgeHJ9imwoaxZWA+mszJg7ZszvZ+ImvwfY9lpNAq82o KfP3LQZZCLsdJd7m9d7Fb7ClB+gFJW7zlQGi3rgzhtZOVfeQQ+PDj4qEnwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFNjrc5xtPccaYgbI83EkJv9TKgr+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU5LzAxODFm OC00ZmE0LTQ2OTctYTI3Mi0zMzNiNmQ0ZWE0NWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkvMDE4MWY4 LTRmYTQtNDY5Ny1hMjcyLTMzM2I2ZDRlYTQ1Yi8xLzJPdHpuRzA5eHhwaUJzanpj U1FtXzFNcUN2NC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCucpQMA0EAgACMAcDBQAqDM0AMA0GCSqGSIb3 DQEBCwUAA4IBAQBsmkRR86jV57MubnjaOYM1bINAfPnGe5iCrNZLnqnMjZQ2DusG p2qeho0kvzsTIuDjwziv+d1EVu7emCl8EBts6Ohfu+fewVp7qH/dvvzywSzGxph/ sqZ5YENnqQ3tZPMvPG6Qe21GfksYKP6+iEHkHCdUVsdYBqwGPCp8Fze7Wfp8ghrI gO/3XI6ubuWghoeSoMwHKo065TL6z0TrkLSBnSKofiX4jvKVU+ORqt2gVx0IrN/a wcNCVutpmDSLvvf51V2n3uDHcYaBpzu/70KmCYInghnCT6A10FlDDuL/rtXq1gqk kJkibcu7pNMqI7pmGpSYPIpeVx/kXmRspsc6 -----END CERTIFICATE-----Generated at Tue Feb 10 05:32:34 2026 by rpki-client