This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3uo-GspqXJ3D-Iw4J28JHrq84KQ.cer File: 3uo-GspqXJ3D-Iw4J28JHrq84KQ.cer (raw, json) Hash identifier: bW8GcaNAmZfldZzEnv+nODuZjTPbWiue3wFxRRuqFk8= Subject key identifier: DE:EA:3E:1A:CA:6A:5C:9D:C3:F8:8C:38:27:6F:09:1E:BA:BC:E0:A4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C132A0A60A229034FD471E25A275EEA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a5/2f5e74-bd5e-4679-852b-7bef0b4cc25e/1/3uo-GspqXJ3D-Iw4J28JHrq84KQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a5/2f5e74-bd5e-4679-852b-7bef0b4cc25e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 20808 IP: 193.108.194.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:2a:0a:60:a2:29:03:4f:d4:71:e2:5a:27:5e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=deea3e1aca6a5c9dc3f88c38276f091ebabce0a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:89:62:4e:a2:49:16:af:ab:7a:a8:69:eb:25: be:88:30:26:ec:4c:55:45:48:42:e3:3e:77:f8:39: fd:23:7a:dc:9c:75:76:b0:1a:34:d2:35:2d:99:41: ef:f8:4c:db:46:94:c4:84:f3:4c:20:ec:7c:e5:0a: 26:c4:ff:26:91:e3:77:37:57:b8:56:8c:64:33:35: 31:46:cb:a6:e4:15:15:54:ca:81:53:84:f8:d3:28: fd:d2:f3:4c:d9:d7:e1:2e:4f:02:1e:e4:85:7b:14: 85:c7:12:a1:c1:83:f8:ec:0e:85:8c:10:a7:5e:02: d2:f8:93:f8:17:23:5c:de:f5:de:32:e2:37:a1:46: b5:bd:cd:60:12:c7:b1:78:7f:bf:f0:1a:87:9f:99: 05:bd:37:00:e8:64:b3:4d:0c:7c:12:b8:4e:24:4f: 25:4b:55:bd:1e:7e:c3:a3:28:2f:10:b6:22:a2:5f: 09:67:5b:0a:9f:9a:46:2b:3f:8f:2a:08:e9:b3:f3: b7:65:31:cc:8e:cd:55:03:c6:b5:18:33:4d:c9:52: 48:2b:d4:b4:26:23:45:ec:fc:a4:2f:c0:04:eb:41: ec:46:bd:67:ee:cd:59:f0:6f:ed:a5:e6:10:1a:56: a2:96:f6:aa:3f:0e:e3:c5:2b:9f:55:04:e7:52:fb: 4c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EA:3E:1A:CA:6A:5C:9D:C3:F8:8C:38:27:6F:09:1E:BA:BC:E0:A4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/2f5e74-bd5e-4679-852b-7bef0b4cc25e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/2f5e74-bd5e-4679-852b-7bef0b4cc25e/1/3uo-GspqXJ3D-Iw4J28JHrq84KQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.108.194.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 20808 Signature Algorithm: sha256WithRSAEncryption a7:8e:47:09:60:35:15:36:aa:ee:84:df:df:ae:ee:c0:48:c8: 98:f7:f5:2e:29:b9:ae:8b:81:6b:78:67:e1:67:11:6b:79:39: 33:16:21:c5:51:95:97:93:f7:89:ca:2a:b3:fe:81:1f:91:21: f2:54:b8:7b:31:85:e3:e9:50:e9:bb:4a:c6:b7:ba:3e:1c:21: 22:86:d4:1c:64:3e:0c:64:90:ff:14:d3:e8:45:7d:36:01:89: 72:3f:0b:83:10:e0:dd:35:1e:4e:bf:58:c4:95:1e:0d:65:7a: 61:aa:8e:b5:2b:62:98:8d:4d:8f:8d:27:51:f7:6f:d5:76:05: 4b:3a:14:2a:c3:a9:b5:2d:65:30:a9:ad:2f:de:02:6c:df:4d: 9c:26:e6:79:43:5e:c8:1b:48:68:ca:fd:b7:4f:f4:a3:cd:f4: 1e:d4:51:f7:c7:ab:c8:f0:43:1a:76:80:e9:0a:86:60:94:a6: 46:84:d4:b1:56:9e:fd:1e:9a:a0:a2:2e:20:87:d6:bb:73:c9: 54:82:e6:b4:83:46:73:a2:9c:5a:e5:46:ec:42:a8:26:51:c8: 36:a6:11:be:60:2a:3a:e1:3f:67:74:fd:dd:36:c5:08:84:de: 5a:80:0e:c0:7a:a3:ee:31:e3:eb:9a:0a:99:27:48:69:47:2c: 0f:e8:c7:e0 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt8EyoKYKIpA0/UceJaJ17qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWVhM2UxYWNhNmE1YzlkYzNmODhjMzgyNzZmMDkxZWJhYmNlMGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YliTqJJFq+reqhp6yW+iDAm7ExV RUhC4z53+Dn9I3rcnHV2sBo00jUtmUHv+EzbRpTEhPNMIOx85QomxP8mkeN3N1e4 VoxkMzUxRsum5BUVVMqBU4T40yj90vNM2dfhLk8CHuSFexSFxxKhwYP47A6FjBCn XgLS+JP4FyNc3vXeMuI3oUa1vc1gEsexeH+/8BqHn5kFvTcA6GSzTQx8ErhOJE8l S1W9Hn7DoygvELYiol8JZ1sKn5pGKz+PKgjps/O3ZTHMjs1VA8a1GDNNyVJIK9S0 JiNF7PykL8AE60HsRr1n7s1Z8G/tpeYQGlailvaqPw7jxSufVQTnUvtMSQIDAQAB o4ICnzCCApswHQYDVR0OBBYEFN7qPhrKalydw/iMOCdvCR66vOCkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E1LzJmNWU3 NC1iZDVlLTQ2NzktODUyYi03YmVmMGI0Y2MyNWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUvMmY1ZTc0 LWJkNWUtNDY3OS04NTJiLTdiZWYwYjRjYzI1ZS8xLzN1by1Hc3BxWEozRC1JdzRK MjhKSHJxODRLUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwWzCMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AlFIMA0GCSqGSIb3DQEBCwUAA4IBAQCnjkcJYDUVNqruhN/fru7ASMiY9/UuKbmu i4FreGfhZxFreTkzFiHFUZWXk/eJyiqz/oEfkSHyVLh7MYXj6VDpu0rGt7o+HCEi htQcZD4MZJD/FNPoRX02AYlyPwuDEODdNR5Ov1jElR4NZXphqo61K2KYjU2PjSdR 92/VdgVLOhQqw6m1LWUwqa0v3gJs302cJuZ5Q17IG0hoyv23T/SjzfQe1FH3x6vI 8EMadoDpCoZglKZGhNSxVp79Hpqgoi4gh9a7c8lUgua0g0Zzopxa5UbsQqgmUcg2 phG+YCo64T9ndP3dNsUIhN5agA7AeqPuMePrmgqZJ0hpRywP6Mfg -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:12 2026 by rpki-client