This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AOezY1s9V4VgNwpYMDz81c2SkQU.cer File: AOezY1s9V4VgNwpYMDz81c2SkQU.cer (raw, json) Hash identifier: 9wwUYLFWsfUdxDtwFYgyBvLNG8wrFGg2lB6L5mlqry0= Subject key identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6ABC38A694800102833509E22B04A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:17:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204623 IP: 185.245.36.0/22 IP: 2a12:3580::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ab:c3:8a:69:48:00:10:28:33:50:9e:22:b0:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=00e7b3635b3d578560370a58303cfcd5cd929105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:0c:ba:c8:e9:29:b6:be:f5:51:a1:03:b2: 3b:d0:6b:e4:c7:b5:4f:6b:ec:c5:f2:fe:ab:21:cc: 4f:7b:4f:2c:cc:36:c2:69:18:9e:ad:35:ec:0f:11: 09:3d:2a:61:1c:e8:af:1e:83:26:98:ee:05:54:c5: f0:69:9b:57:9d:62:c6:b9:27:89:f5:44:08:74:09: f1:0a:34:21:39:b8:70:60:c8:74:7e:6e:f1:81:d1: 36:ef:ed:5c:a6:fd:e2:20:63:84:3b:01:48:e1:9f: 3d:fd:d4:54:5b:d2:a5:51:c9:24:4d:5b:b1:f1:6a: d6:37:9c:0e:91:ec:2a:4a:f9:d4:65:f1:cc:30:ce: bd:28:3e:c8:af:e2:0e:d1:fd:90:c4:f7:62:20:55: a2:07:ec:c1:e0:81:6d:40:b6:fd:c1:ba:08:b2:10: 73:ef:14:76:fe:31:ed:b2:b4:04:5c:12:70:0e:40: 1e:e8:5d:28:8f:fa:1f:cf:ba:35:82:85:55:83:79: 76:59:9b:a1:fe:be:f9:97:4d:36:09:0c:98:32:a4: e5:1b:cb:ba:20:49:0d:b6:20:46:9a:3a:3a:42:a7: 35:a9:bd:6b:51:73:2d:b6:9d:69:5f:50:e8:6e:33: b0:8b:55:31:7c:2d:01:22:79:6b:9a:0a:db:b7:fe: 07:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E7:B3:63:5B:3D:57:85:60:37:0A:58:30:3C:FC:D5:CD:92:91:05 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46238a-a19a-4915-8a47-a0cd141513cb/1/AOezY1s9V4VgNwpYMDz81c2SkQU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.245.36.0/22 IPv6: 2a12:3580::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204623 Signature Algorithm: sha256WithRSAEncryption 9a:e7:85:22:2c:6b:be:f5:ef:91:8d:e5:53:74:c3:04:f9:ba: a8:00:27:9a:d4:b3:77:99:62:4c:5d:42:49:44:12:0f:b6:b8: a5:08:dd:2c:e4:69:0a:cd:6f:ef:72:74:44:d0:24:46:c5:83: 79:95:66:3a:76:79:fb:45:31:2c:e5:ab:82:59:83:98:23:4c: 4d:51:5e:0a:9e:49:7f:e5:77:31:a1:02:68:d3:09:f7:13:5a: 65:d5:58:17:ae:a4:60:27:6a:b5:59:55:34:5e:5f:70:94:36: c2:a5:ea:3e:53:9b:69:a0:7a:73:5f:21:51:3d:f7:65:e0:e4: 92:bc:c3:61:c6:67:e7:ce:2f:41:81:0f:fc:d8:55:c8:0c:c1: 45:37:15:96:16:24:01:5a:56:3b:87:a0:5d:6d:bd:f6:34:fe: 02:45:30:41:25:2c:3b:6f:e8:21:6c:5f:92:4a:b2:70:a4:fa: 0c:7d:56:48:fb:92:d6:9f:fa:61:35:06:cc:70:d2:71:df:eb: 0d:c6:1d:ef:8f:e7:c8:b3:a9:ee:b6:ca:57:7f:d4:87:52:82: 67:de:35:2b:35:60:5d:b1:3d:67:69:3c:9f:96:31:43:75:7d: 3d:75:62:5c:53:98:69:53:17:be:32:2c:09:dc:ed:58:c6:8e: 46:bb:5d:b6 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3xqvDimlIABAoM1CeIrBKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMGU3YjM2MzViM2Q1Nzg1NjAzNzBhNTgzMDNjZmNkNWNkOTI5MTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtsMusjpKba+9VGhA7I70Gvkx7VP a+zF8v6rIcxPe08szDbCaRierTXsDxEJPSphHOivHoMmmO4FVMXwaZtXnWLGuSeJ 9UQIdAnxCjQhObhwYMh0fm7xgdE27+1cpv3iIGOEOwFI4Z89/dRUW9KlUckkTVux 8WrWN5wOkewqSvnUZfHMMM69KD7Ir+IO0f2QxPdiIFWiB+zB4IFtQLb9wboIshBz 7xR2/jHtsrQEXBJwDkAe6F0oj/ofz7o1goVVg3l2WZuh/r75l002CQyYMqTlG8u6 IEkNtiBGmjo6Qqc1qb1rUXMttp1pX1DobjOwi1UxfC0BInlrmgrbt/4HvwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFADns2NbPVeFYDcKWDA8/NXNkpEFMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YwLzQ2MjM4 YS1hMTlhLTQ5MTUtOGE0Ny1hMGNkMTQxNTEzY2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvNDYyMzhh LWExOWEtNDkxNS04YTQ3LWEwY2QxNDE1MTNjYi8xL0FPZXpZMXM5VjRWZ053cFlN RHo4MWMyU2tRVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCufUkMA0EAgACMAcDBQMqEjWAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMfTzANBgkqhkiG9w0BAQsFAAOCAQEAmueFIixrvvXv kY3lU3TDBPm6qAAnmtSzd5liTF1CSUQSD7a4pQjdLORpCs1v73J0RNAkRsWDeZVm OnZ5+0UxLOWrglmDmCNMTVFeCp5Jf+V3MaECaNMJ9xNaZdVYF66kYCdqtVlVNF5f cJQ2wqXqPlObaaB6c18hUT33ZeDkkrzDYcZn584vQYEP/NhVyAzBRTcVlhYkAVpW O4egXW299jT+AkUwQSUsO2/oIWxfkkqycKT6DH1WSPuS1p/6YTUGzHDScd/rDcYd 74/nyLOp7rbKV3/Uh1KCZ941KzVgXbE9Z2k8n5YxQ3V9PXViXFOYaVMXvjIsCdzt WMaORrtdtg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:14 2026 by rpki-client