This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B7ygSC1gVYfrDgyFHDjoB3VfkBc.cer File: B7ygSC1gVYfrDgyFHDjoB3VfkBc.cer (raw, json) Hash identifier: ovkpDDKW35/Kpqk4/1qMs1ni6vFevPs802XaA3UdpFc= Subject key identifier: 07:BC:A0:48:2D:60:55:87:EB:0E:0C:85:1C:38:E8:07:75:5F:90:17 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA3645D806C9A69DC3EB23CB060D1E1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/B7ygSC1gVYfrDgyFHDjoB3VfkBc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.84.157.0/24 IP: 2a14:1740::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:64:5d:80:6c:9a:69:dc:3e:b2:3c:b0:60:d1:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07bca0482d605587eb0e0c851c38e807755f9017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:38:ff:fa:13:0f:bf:d4:38:1f:1f:bf:31:c7: 75:63:81:2e:7b:c6:32:f5:d9:37:74:63:7e:9b:76: 8d:d6:18:a0:19:de:b6:ec:e7:84:24:28:5c:17:f7: 0a:91:e7:ee:93:7f:1b:c8:d0:9c:af:51:fb:41:2e: b7:bf:f7:e7:a1:8d:68:59:e7:4e:81:5c:51:ea:b0: 01:08:4f:37:96:5b:ad:10:bf:d9:56:55:2d:74:15: 3a:08:80:a8:29:a0:f5:b2:b7:b6:fc:9a:f2:4a:fa: 19:de:88:6f:0b:3b:e8:d4:a0:58:02:6a:00:2c:4b: 13:ca:fa:8d:b8:a0:25:b4:b5:7f:12:9b:52:bd:25: 75:99:5f:e4:5e:ff:ed:91:d2:77:d6:d2:1f:4d:36: 7c:0e:0d:60:5a:3f:f0:2c:74:62:24:8f:eb:5c:d0: 73:27:35:80:ac:93:5a:98:4e:7d:08:da:a2:85:74: 87:05:6c:3b:d3:81:93:9e:01:02:eb:83:4e:42:aa: 3a:d2:d8:41:1e:6c:dc:2c:b0:0f:33:ec:05:68:ad: 99:a5:ac:48:88:c7:8e:fb:7e:1c:2a:39:e4:2e:33: 59:13:b4:20:0c:63:a1:0c:d9:d7:28:dd:76:31:02: 5e:63:93:ca:5a:e0:87:19:98:7f:f4:00:23:a4:71: 21:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BC:A0:48:2D:60:55:87:EB:0E:0C:85:1C:38:E8:07:75:5F:90:17 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/B7ygSC1gVYfrDgyFHDjoB3VfkBc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.84.157.0/24 IPv6: 2a14:1740::/29 Signature Algorithm: sha256WithRSAEncryption 26:fa:02:6d:44:58:4c:53:a1:6d:57:81:8b:c3:1e:79:b9:4b: 84:f5:72:9d:e5:37:44:cc:21:81:6e:ac:12:22:38:4c:13:90: 79:d8:4c:69:c6:21:dc:8c:ae:4f:64:dd:77:7b:23:c8:74:3a: e8:bc:25:a0:de:a0:87:22:9d:79:2a:50:f8:d5:8b:e2:dc:c8: 91:ac:3c:28:a3:ea:f1:85:28:10:4e:9f:ae:63:97:d6:ee:f5: 65:5d:83:24:1b:88:9c:23:4b:9e:e5:08:5d:05:bd:45:21:5f: 84:73:ce:b1:6d:38:c8:22:5d:79:46:1c:f7:40:4c:b4:ae:0e: a8:c6:ff:5c:f4:06:0d:b3:85:48:69:d4:41:44:a3:9e:bd:3d: d6:c9:88:30:21:5b:87:2b:34:9e:bd:71:d6:6d:a4:fc:a4:95: a7:8a:1c:c6:b4:b1:07:db:61:61:4b:ab:ff:55:f0:69:5b:95: 65:f4:c3:1e:a4:bf:e8:23:e3:f4:1f:f7:8d:7b:00:63:42:70: ba:14:5b:17:00:d8:70:06:92:52:08:57:0b:b3:54:f2:ff:60: 4f:82:fc:6d:83:57:ff:58:0e:5f:33:ea:72:88:64:b0:03:68: 11:d9:c6:80:7a:bd:5c:cb:d5:2e:f2:f2:22:f0:f6:00:47:62: 1e:9f:ff:1c -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt7o2RdgGyaadw+sjywYNHhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2JjYTA0ODJkNjA1NTg3ZWIwZTBjODUxYzM4ZTgwNzc1NWY5MDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujj/+hMPv9Q4Hx+/Mcd1Y4Eue8Yy 9dk3dGN+m3aN1higGd627OeEJChcF/cKkefuk38byNCcr1H7QS63v/fnoY1oWedO gVxR6rABCE83llutEL/ZVlUtdBU6CICoKaD1sre2/JrySvoZ3ohvCzvo1KBYAmoA LEsTyvqNuKAltLV/EptSvSV1mV/kXv/tkdJ31tIfTTZ8Dg1gWj/wLHRiJI/rXNBz JzWArJNamE59CNqihXSHBWw704GTngEC64NOQqo60thBHmzcLLAPM+wFaK2ZpaxI iMeO+34cKjnkLjNZE7QgDGOhDNnXKN12MQJeY5PKWuCHGZh/9AAjpHEh4QIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFAe8oEgtYFWH6w4MhRw46Ad1X5AXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk0Lzc2NjMx MS1jYWE0LTQzOTktOGIzNS1mYzc5YWYxZjZmYjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQvNzY2MzEx LWNhYTQtNDM5OS04YjM1LWZjNzlhZjFmNmZiMy8xL0I3eWdTQzFnVllmckRneUZI RGpvQjNWZmtCYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuVSdMA0EAgACMAcDBQMqFBdAMA0GCSqGSIb3 DQEBCwUAA4IBAQAm+gJtRFhMU6FtV4GLwx55uUuE9XKd5TdEzCGBbqwSIjhME5B5 2ExpxiHcjK5PZN13eyPIdDrovCWg3qCHIp15KlD41Yvi3MiRrDwoo+rxhSgQTp+u Y5fW7vVlXYMkG4icI0ue5QhdBb1FIV+Ec86xbTjIIl15Rhz3QEy0rg6oxv9c9AYN s4VIadRBRKOevT3WyYgwIVuHKzSevXHWbaT8pJWnihzGtLEH22FhS6v/VfBpW5Vl 9MMepL/oI+P0H/eNewBjQnC6FFsXANhwBpJSCFcLs1Ty/2BPgvxtg1f/WA5fM+py iGSwA2gR2caAer1cy9Uu8vIi8PYAR2Ien/8c -----END CERTIFICATE-----Generated at Wed Jan 21 09:24:52 2026 by rpki-client