This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A5aaE8t8Nxi9NxdxJijnqxszsKU.cer File: A5aaE8t8Nxi9NxdxJijnqxszsKU.cer (raw, json) Hash identifier: UONV/Ysw8WN+V+VAnWAmvXNs60QdG3OwlR/zYTirsHE= Subject key identifier: 03:96:9A:13:CB:7C:37:18:BD:37:17:71:26:28:E7:AB:1B:33:B0:A5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA6213F61491D6BDACD3BE7A5F1E098 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/A5aaE8t8Nxi9NxdxJijnqxszsKU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:19:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49326 IP: 80.244.0.0/24 IP: 2a13:7340::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:21:3f:61:49:1d:6b:da:cd:3b:e7:a5:f1:e0:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03969a13cb7c3718bd3717712628e7ab1b33b0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:43:ad:5d:d6:f9:af:f5:2f:25:d0:a7:c2:3c: fd:0d:ad:c4:9e:ba:2f:59:fc:9a:2b:4f:50:f2:41: 7d:b0:a5:a5:36:54:a9:4e:e5:6a:78:f1:1b:e9:8e: 7b:0d:4f:99:ee:7d:8a:1d:69:85:87:b0:55:92:69: e4:3e:8d:1e:1e:b1:eb:89:c8:d6:30:8f:e8:f0:9f: 3b:99:e8:fe:db:38:8f:a7:55:b7:20:1a:8f:8f:11: ac:b3:41:80:5c:8a:97:36:bc:98:9e:9a:4f:22:2c: a5:57:cf:63:a4:0f:29:86:3d:36:7f:69:84:1b:cd: 4b:82:cf:29:98:2b:de:38:e9:c6:fc:5d:0e:e9:d4: b4:63:25:b5:b8:70:ca:5f:3f:f2:49:0e:98:f3:3a: e7:1e:3f:7f:d1:a1:70:2c:62:95:a5:f4:06:9f:5d: db:70:3a:af:7f:d7:c2:b5:ad:9d:bf:a5:2c:8d:fd: 06:b5:f3:a7:92:06:3c:5f:85:06:33:00:c8:d8:a3: 1d:d3:4b:27:59:5b:0d:8d:53:5b:0c:98:51:27:21: 9e:2b:3d:c3:d6:cc:c8:34:32:6f:b8:4e:47:6b:02: 00:16:5a:cc:5c:a1:66:2d:52:1f:cd:36:49:f6:c3: 51:95:03:9c:bb:09:64:7e:bd:5d:87:cc:86:1f:66: f3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:96:9A:13:CB:7C:37:18:BD:37:17:71:26:28:E7:AB:1B:33:B0:A5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c129ab-79a7-4bc0-9a3b-41efeace7a71/1/A5aaE8t8Nxi9NxdxJijnqxszsKU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.244.0.0/24 IPv6: 2a13:7340::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49326 Signature Algorithm: sha256WithRSAEncryption 62:0f:21:72:88:7b:d1:23:1e:c5:ac:e7:f9:a9:12:a9:cf:18: 23:c6:e1:d9:f0:93:c1:87:70:fe:d4:f9:6d:f0:ad:d1:c5:2e: 8d:7f:2b:5d:e7:21:77:07:f1:38:32:d9:d2:6b:cf:27:76:cc: ab:25:25:10:42:fc:02:f4:63:14:63:6a:04:09:21:9d:70:f7: 18:e9:ea:61:67:bb:59:d6:cc:58:55:6b:d0:c5:d7:69:e8:00: 3c:fd:b0:ee:e4:66:75:8f:10:e0:e8:42:91:0a:49:7f:65:fb: 24:6c:3e:69:8a:ea:0e:70:d9:90:25:0b:82:63:91:ae:15:4a: 5a:34:64:ac:32:22:fd:55:84:38:1a:c4:73:97:5b:02:cd:e5: 4c:d0:d5:d1:53:4b:2f:bc:49:a0:12:fd:a1:9e:44:7e:fd:86: 39:cd:4d:7c:09:92:5b:4c:d7:bb:e5:46:b2:b3:fb:29:24:35: ab:df:9f:0e:f6:b9:2e:c8:b2:90:a4:be:3b:67:16:b1:de:a8: 9d:fb:1f:a7:95:98:e0:68:a2:39:8b:8e:ff:8b:4f:dc:f7:35: c7:87:40:eb:a1:40:0a:59:ec:05:ed:a8:44:b8:4f:fc:e0:9a: 00:23:27:ac:35:49:08:fe:6e:1a:5d:99:9c:c5:a4:9e:1f:6e: 43:05:1b:88 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+piE/YUkda9rNO+el8eCYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzk2OWExM2NiN2MzNzE4YmQzNzE3NzEyNjI4ZTdhYjFiMzNiMGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EOtXdb5r/UvJdCnwjz9Da3Enrov WfyaK09Q8kF9sKWlNlSpTuVqePEb6Y57DU+Z7n2KHWmFh7BVkmnkPo0eHrHricjW MI/o8J87mej+2ziPp1W3IBqPjxGss0GAXIqXNryYnppPIiylV89jpA8phj02f2mE G81Lgs8pmCveOOnG/F0O6dS0YyW1uHDKXz/ySQ6Y8zrnHj9/0aFwLGKVpfQGn13b cDqvf9fCta2dv6Usjf0GtfOnkgY8X4UGMwDI2KMd00snWVsNjVNbDJhRJyGeKz3D 1szINDJvuE5HawIAFlrMXKFmLVIfzTZJ9sNRlQOcuwlkfr1dh8yGH2bz6QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFAOWmhPLfDcYvTcXcSYo56sbM7ClMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkxL2MxMjlh Yi03OWE3LTRiYzAtOWEzYi00MWVmZWFjZTdhNzEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEvYzEyOWFi LTc5YTctNGJjMC05YTNiLTQxZWZlYWNlN2E3MS8xL0E1YWFFOHQ4TnhpOU54ZHhK aWpucXhzenNLVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAUPQAMA0EAgACMAcDBQAqE3NAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDArjANBgkqhkiG9w0BAQsFAAOCAQEAYg8hcoh70SMe xazn+akSqc8YI8bh2fCTwYdw/tT5bfCt0cUujX8rXechdwfxODLZ0mvPJ3bMqyUl EEL8AvRjFGNqBAkhnXD3GOnqYWe7WdbMWFVr0MXXaegAPP2w7uRmdY8Q4OhCkQpJ f2X7JGw+aYrqDnDZkCULgmORrhVKWjRkrDIi/VWEOBrEc5dbAs3lTNDV0VNLL7xJ oBL9oZ5Efv2GOc1NfAmSW0zXu+VGsrP7KSQ1q9+fDva5LsiykKS+O2cWsd6onfsf p5WY4GiiOYuO/4tP3Pc1x4dA66FAClnsBe2oRLhP/OCaACMnrDVJCP5uGl2ZnMWk nh9uQwUbiA== -----END CERTIFICATE-----Generated at Mon Jan 26 10:51:39 2026 by rpki-client