This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ASAlltXOzjfcNMhhBkV4_G2qXoY.cer File: ASAlltXOzjfcNMhhBkV4_G2qXoY.cer (raw, json) Hash identifier: 2jcMuUZVnG2ePyQMBFeYG0oC8MUhz/W+VpoPWz2D3g4= Subject key identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910DC6B27B83A75A358D179A215CA8A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 61399 IP: 185.1.110.0/24 IP: 185.211.228.0/22 IP: 2001:7f8:3c::/48 IP: 2a0b:6e40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:dc:6b:27:b8:3a:75:a3:58:d1:79:a2:15:ca:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=01202596d5cece37dc34c861064578fc6daa5e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:99:0b:25:05:32:9b:e8:fd:3e:3e:07:6f: 05:71:cd:36:15:5d:0c:9e:8e:58:3f:a7:7e:33:b6: 1c:f2:dc:75:01:fc:68:7f:2a:5c:8b:fb:72:93:28: 1c:f4:f3:02:72:f1:c9:0a:06:6a:af:32:a7:ab:60: f5:c2:2d:fa:f3:32:e2:d6:4c:4b:58:a4:f0:73:fd: 3e:6e:21:25:c8:8b:36:8e:5a:e6:13:7d:f0:e8:9c: 92:1f:ee:24:da:8a:2e:5f:e5:2e:7b:33:af:80:4d: 1a:69:d0:27:e7:86:b1:82:33:06:e6:f4:35:54:f1: 71:15:39:71:f2:12:59:d6:14:9b:84:02:04:be:53: 67:b1:d5:77:ef:3d:83:be:52:a9:b3:98:ea:15:7d: 16:91:b4:be:97:ba:1e:e2:e8:c7:5e:7e:d6:2e:56: fc:3e:eb:25:20:e2:9c:37:12:d2:ca:89:ad:d2:4a: b8:c1:20:c0:f4:20:2f:12:00:a8:5e:60:54:d5:f9: 20:db:e4:a4:9d:c5:5d:fb:00:56:ae:0e:a8:db:72: 32:c8:4d:d8:a0:eb:52:c4:0a:f2:df:64:69:30:de: ef:7b:eb:32:f0:90:a3:10:87:37:a6:73:c7:86:8a: 0d:93:be:85:3a:83:84:07:52:14:1b:bb:6b:57:b3: 34:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:20:25:96:D5:CE:CE:37:DC:34:C8:61:06:45:78:FC:6D:AA:5E:86 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/986164-8030-4e47-98b5-481151acf329/1/ASAlltXOzjfcNMhhBkV4_G2qXoY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.110.0/24 185.211.228.0/22 IPv6: 2001:7f8:3c::/48 2a0b:6e40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 61399 Signature Algorithm: sha256WithRSAEncryption 59:f8:7f:e5:95:65:8b:df:57:9b:0b:58:0e:22:e4:d0:ca:4b: 88:53:68:5f:f2:f1:00:c6:91:77:b6:1c:fa:97:d1:ad:08:5b: cb:ac:12:68:0d:b2:f5:ed:54:24:aa:ec:c3:0e:af:d6:0a:11: b5:69:41:3c:62:ac:0b:7f:28:cb:e8:b5:26:e8:bf:c7:3d:b2: 33:31:0e:4b:bf:f4:b1:00:6f:1d:ad:b2:7b:be:2c:03:f7:f4: 4c:0f:32:b1:53:de:b6:57:e5:0a:e8:34:a8:5d:ac:5d:52:38: 98:63:b9:9f:aa:9b:ee:37:c3:3e:84:7c:8c:cd:ac:8d:7a:73: 70:1a:98:95:bf:d3:00:6a:85:b7:b3:8c:6b:c0:5b:85:db:d7: c6:e4:c7:9e:1c:51:db:6f:4c:3d:2f:90:53:40:7f:0a:8b:4c: 91:12:96:73:06:dd:06:8a:91:a6:ed:0a:b3:84:a9:48:51:56: 2f:29:8c:d6:cb:6d:6b:bd:6d:e4:47:e6:f0:a9:f0:da:99:f5: 19:61:8d:8f:f3:87:43:e1:2a:dd:b9:57:99:be:d7:dd:2d:4d: a5:37:c4:9a:77:83:97:77:4d:bb:b2:d1:b1:3c:0c:84:42:2c: 9e:0d:f7:ba:22:d4:07:5a:ba:62:a9:8d:26:06:5c:b5:6c:de: 62:12:7e:d4 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt5ENxrJ7g6daNY0XmiFcqKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTIwMjU5NmQ1Y2VjZTM3ZGMzNGM4NjEwNjQ1NzhmYzZkYWE1ZTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWWZCyUFMpvo/T4+B28Fcc02FV0M no5YP6d+M7Yc8tx1Afxofypci/tykygc9PMCcvHJCgZqrzKnq2D1wi368zLi1kxL WKTwc/0+biElyIs2jlrmE33w6JySH+4k2oouX+UuezOvgE0aadAn54axgjMG5vQ1 VPFxFTlx8hJZ1hSbhAIEvlNnsdV37z2DvlKps5jqFX0WkbS+l7oe4ujHXn7WLlb8 PuslIOKcNxLSyomt0kq4wSDA9CAvEgCoXmBU1fkg2+SkncVd+wBWrg6o23IyyE3Y oOtSxAry32RpMN7ve+sy8JCjEIc3pnPHhooNk76FOoOEB1IUG7trV7M01QIDAQAB o4ICvjCCArowHQYDVR0OBBYEFAEgJZbVzs433DTIYQZFePxtql6GMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NiLzk4NjE2 NC04MDMwLTRlNDctOThiNS00ODExNTFhY2YzMjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2IvOTg2MTY0 LTgwMzAtNGU0Ny05OGI1LTQ4MTE1MWFjZjMyOS8xL0FTQWxsdFhPempmY05NaGhC a1Y0X0cycVhvWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF BwEHAQH/BC4wLDASBAIAATAMAwQAuQFuAwQCudPkMBYEAgACMBADBwAgAQf4ADwD BQMqC25AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDv1zANBgkqhkiG9w0BAQsF AAOCAQEAWfh/5ZVli99XmwtYDiLk0MpLiFNoX/LxAMaRd7Yc+pfRrQhby6wSaA2y 9e1UJKrsww6v1goRtWlBPGKsC38oy+i1Jui/xz2yMzEOS7/0sQBvHa2ye74sA/f0 TA8ysVPetlflCug0qF2sXVI4mGO5n6qb7jfDPoR8jM2sjXpzcBqYlb/TAGqFt7OM a8BbhdvXxuTHnhxR229MPS+QU0B/CotMkRKWcwbdBoqRpu0Ks4SpSFFWLymM1stt a71t5Efm8Knw2pn1GWGNj/OHQ+Eq3blXmb7X3S1NpTfEmneDl3dNu7LRsTwMhEIs ng33uiLUB1q6YqmNJgZctWzeYhJ+1A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:02 2026 by rpki-client