This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4COOIod_cwOWQAfOPjQG9frZSWI.cer File: 4COOIod_cwOWQAfOPjQG9frZSWI.cer (raw, json) Hash identifier: dLdwlJgbA3kD1mXop+zlnJF++3qYMtzRF12r9iKk9Is= Subject key identifier: E0:23:8E:22:87:7F:73:03:96:40:07:CE:3E:34:06:F5:FA:D9:49:62 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E38CF37BEE72A622E770B68063C8C08 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/da2276-6dbf-422e-9ebb-561175f04d8e/1/4COOIod_cwOWQAfOPjQG9frZSWI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/da2276-6dbf-422e-9ebb-561175f04d8e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:20:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202670 IP: 185.151.4.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:cf:37:be:e7:2a:62:2e:77:0b:68:06:3c:8c:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:20:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e0238e22877f7303964007ce3e3406f5fad94962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:68:d3:b7:3c:e8:2b:8f:26:7b:4b:39:80: e3:34:a7:9d:bb:c3:9f:18:13:6a:43:a8:22:40:5d: ac:5b:46:33:8c:fe:ed:a2:83:33:38:a5:2d:2e:85: 4b:cc:2d:66:95:f7:fe:3c:d0:3c:bb:78:dd:8b:a4: a4:ce:89:54:1f:ff:88:89:70:b6:48:ff:8d:cd:f7: 90:8c:c3:f3:f3:b7:d6:84:fe:01:cd:3f:89:22:5f: 34:49:ee:8f:5b:7d:e8:ba:da:46:f8:3a:fa:6a:1b: e2:cc:e2:43:a8:ab:cd:e5:65:11:8f:6a:06:3d:71: a2:b0:a9:10:69:08:0a:2c:30:77:b7:20:45:44:d4: f6:56:f1:a9:a0:f8:65:8d:97:39:ce:be:26:91:e9: 52:01:fe:25:98:e9:53:e5:7c:d3:c9:43:7e:b6:56: f8:34:9d:90:d7:5c:90:5c:59:35:65:81:f7:c7:c2: d0:87:c3:e1:b5:cb:13:6d:be:f9:b9:19:33:ed:f8: ab:31:c2:7f:7e:c2:1d:c4:5e:12:4c:55:ec:f3:2b: 30:c9:8f:d7:9b:87:9b:dd:e2:63:eb:62:1d:ec:a4: 5e:e3:f4:d6:b6:88:dc:f7:e0:2d:79:bd:53:6b:46: c4:fe:04:41:45:a9:b1:89:71:0d:bc:bb:04:88:70: a7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:23:8E:22:87:7F:73:03:96:40:07:CE:3E:34:06:F5:FA:D9:49:62 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/da2276-6dbf-422e-9ebb-561175f04d8e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/da2276-6dbf-422e-9ebb-561175f04d8e/1/4COOIod_cwOWQAfOPjQG9frZSWI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.151.4.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202670 Signature Algorithm: sha256WithRSAEncryption 7e:cf:e4:d8:b7:15:e6:45:26:93:7c:cf:77:08:6f:fa:05:85: e3:d5:ff:cc:56:7a:e0:ec:80:01:00:b5:b2:fc:7b:e5:88:43: 1b:07:f2:99:e0:dc:8a:60:96:7c:d3:30:38:5b:08:26:d2:d6: 89:e8:d7:a8:bd:d8:1c:64:dd:46:f4:8e:eb:35:de:26:87:0b: c6:e5:03:ee:41:b9:c0:76:5b:5a:da:69:98:27:42:ea:26:5b: 99:8f:92:0b:a7:53:14:16:1f:43:d8:91:1b:bd:da:a0:18:3e: 87:0c:8f:c5:28:03:20:3c:e6:e1:81:37:b4:b9:91:76:56:c9: f5:0f:b6:1f:20:1d:e6:9a:6b:b0:85:2f:05:8e:2f:2f:76:fd: 8f:b9:b8:c9:2f:80:bf:9e:0a:84:3a:d1:c4:6f:53:f4:a2:1c: 75:47:c3:a1:20:7b:4d:dd:e0:4b:b3:7e:cd:80:2d:18:4c:ac: 54:a3:87:50:84:21:57:1c:0f:47:ff:eb:34:c0:e2:5d:10:b0: 67:39:1e:c6:54:8b:ce:5c:7e:48:62:c4:0a:bf:05:5a:ee:df: 6b:3b:f5:ae:98:63:1e:a7:9d:76:fb:2e:e7:79:3f:39:be:34: 60:41:4e:85:1a:2d:0a:a1:8e:38:8e:bf:1c:91:39:c8:ec:50: 4e:cf:66:4e -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt+OM83vucqYi53C2gGPIwIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAyMDEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMDIzOGUyMjg3N2Y3MzAzOTY0MDA3Y2UzZTM0MDZmNWZhZDk0OTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApB9o07c86CuPJntLOYDjNKedu8Of GBNqQ6giQF2sW0YzjP7tooMzOKUtLoVLzC1mlff+PNA8u3jdi6SkzolUH/+IiXC2 SP+NzfeQjMPz87fWhP4BzT+JIl80Se6PW33outpG+Dr6ahvizOJDqKvN5WURj2oG PXGisKkQaQgKLDB3tyBFRNT2VvGpoPhljZc5zr4mkelSAf4lmOlT5XzTyUN+tlb4 NJ2Q11yQXFk1ZYH3x8LQh8PhtcsTbb75uRkz7firMcJ/fsIdxF4STFXs8yswyY/X m4eb3eJj62Id7KRe4/TWtojc9+Ateb1Ta0bE/gRBRamxiXENvLsEiHCn7wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFOAjjiKHf3MDlkAHzj40BvX62UliMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxL2RhMjI3 Ni02ZGJmLTQyMmUtOWViYi01NjExNzVmMDRkOGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvZGEyMjc2 LTZkYmYtNDIyZS05ZWJiLTU2MTE3NWYwNGQ4ZS8xLzRDT09Jb2RfY3dPV1FBZk9Q alFHOWZyWlNXSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCuZcEMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMXrjANBgkqhkiG9w0BAQsFAAOCAQEAfs/k2LcV5kUmk3zPdwhv+gWF49X/zFZ6 4OyAAQC1svx75YhDGwfymeDcimCWfNMwOFsIJtLWiejXqL3YHGTdRvSO6zXeJocL xuUD7kG5wHZbWtppmCdC6iZbmY+SC6dTFBYfQ9iRG73aoBg+hwyPxSgDIDzm4YE3 tLmRdlbJ9Q+2HyAd5pprsIUvBY4vL3b9j7m4yS+Av54KhDrRxG9T9KIcdUfDoSB7 Td3gS7N+zYAtGEysVKOHUIQhVxwPR//rNMDiXRCwZzkexlSLzlx+SGLECr8FWu7f azv1rphjHqeddvsu53k/Ob40YEFOhRotCqGOOI6/HJE5yOxQTs9mTg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:11 2026 by rpki-client