This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DiKD5uavmRQidDcR96cjE3aA5p4.cer File: DiKD5uavmRQidDcR96cjE3aA5p4.cer (raw, json) Hash identifier: IVhPS54Y6lGREuSaqVtyBXps+lvOSLpvxQFeJ1nIS4o= Subject key identifier: 0E:22:83:E6:E6:AF:99:14:22:74:37:11:F7:A7:23:13:76:80:E6:9E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA501F84A0EA6623A8A6049C712F449 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/DiKD5uavmRQidDcR96cjE3aA5p4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204641 IP: 45.80.148.0/22 IP: 185.244.128.0/22 IP: 2a0d:2f80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:01:f8:4a:0e:a6:62:3a:8a:60:49:c7:12:f4:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e2283e6e6af991422743711f7a723137680e69e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:c5:ac:d6:af:51:2b:3f:af:60:9c:14:6f: 93:68:7e:78:08:3e:90:0a:1b:ad:eb:25:a4:c8:75: 84:35:8d:1b:d6:c2:56:d9:7d:25:d3:68:0e:c9:04: e5:34:e7:12:bf:49:c2:54:fa:62:5e:20:33:c7:93: 71:c3:4a:58:07:be:af:46:31:03:4b:22:e2:9c:07: 36:bb:9c:6e:68:f3:72:63:60:bc:76:0c:9f:f6:dd: 49:90:93:f4:c2:fa:0b:79:8c:ae:ec:0e:3e:76:6c: 93:fd:92:fe:49:ef:92:13:28:b2:62:06:72:fc:aa: e8:4b:e2:d5:b4:e8:50:28:e1:dd:94:1b:b9:13:f4: 03:b3:63:a5:52:88:5c:d0:db:b7:1b:ba:79:83:0d: 38:8b:6b:31:db:fc:2b:15:6e:79:1e:9f:f1:f7:88: a8:48:88:30:fa:05:de:6c:a3:96:2a:a0:eb:95:7e: 47:2e:55:67:af:2d:ef:0d:45:2f:96:f9:a9:a4:b2: 9c:a2:56:d2:3c:d1:7e:c2:10:bb:d4:5e:22:5c:16: 49:c5:fc:cc:45:61:42:75:d9:20:1f:50:db:16:e3: 5a:23:0e:30:fb:fa:8e:a6:9a:77:21:f8:ce:57:b5: 97:ed:e0:65:50:89:ee:71:4e:1b:29:dc:c1:d9:94: 0a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:22:83:E6:E6:AF:99:14:22:74:37:11:F7:A7:23:13:76:80:E6:9E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/DiKD5uavmRQidDcR96cjE3aA5p4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.80.148.0/22 185.244.128.0/22 IPv6: 2a0d:2f80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204641 Signature Algorithm: sha256WithRSAEncryption 53:7b:18:40:94:cd:1c:21:44:7d:48:7c:35:f4:13:c6:02:84: 9c:9e:eb:19:f7:a6:cc:1a:14:14:20:09:d6:56:7c:0e:72:cc: fd:42:b3:85:ac:e3:ca:b7:57:bd:64:c0:f4:8c:0c:be:91:33: 66:b9:ec:82:2d:31:21:f9:16:4a:e0:b1:9d:70:63:91:aa:8a: c8:04:1f:a4:e1:dd:f1:8b:d1:c4:31:fd:39:03:eb:74:96:d7: a7:83:f4:eb:bd:15:a1:3f:5d:0b:9d:67:44:07:d2:99:61:43: c4:11:66:85:09:c4:94:72:30:84:32:7f:15:b1:87:b3:e9:cc: 8e:1d:34:89:fa:d3:4e:64:b4:03:4e:65:c4:e9:cf:89:0b:b4: 78:79:79:78:87:cf:5d:4d:f4:b5:82:86:03:9e:4d:80:67:d7: 9a:d0:be:74:fb:04:4c:87:4f:5c:b4:f5:aa:ec:fd:b9:38:d8: 08:22:69:56:a8:c5:49:db:5f:80:ff:11:0d:04:d5:b7:10:74: 25:14:35:b5:87:f4:b0:e9:eb:bf:c3:7e:e5:23:9f:f9:89:e4: 1b:18:29:65:9d:2a:0a:9c:0c:c6:4e:c8:04:6b:03:fd:e7:f8: a1:d2:1e:3d:e0:f0:52:77:13:ab:ec:38:89:e9:cf:d1:6a:01: 9d:09:7f:a9 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt7pQH4Sg6mYjqKYEnHEvRJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTIyODNlNmU2YWY5OTE0MjI3NDM3MTFmN2E3MjMxMzc2ODBlNjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuX/FrNavUSs/r2CcFG+TaH54CD6Q Chut6yWkyHWENY0b1sJW2X0l02gOyQTlNOcSv0nCVPpiXiAzx5Nxw0pYB76vRjED SyLinAc2u5xuaPNyY2C8dgyf9t1JkJP0wvoLeYyu7A4+dmyT/ZL+Se+SEyiyYgZy /KroS+LVtOhQKOHdlBu5E/QDs2OlUohc0Nu3G7p5gw04i2sx2/wrFW55Hp/x94io SIgw+gXebKOWKqDrlX5HLlVnry3vDUUvlvmppLKcolbSPNF+whC71F4iXBZJxfzM RWFCddkgH1DbFuNaIw4w+/qOppp3IfjOV7WX7eBlUInucU4bKdzB2ZQKoQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFA4ig+bmr5kUInQ3EfenIxN2gOaeMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NmLzg0NzUw Zi03NmM0LTQxZWUtODUxNy1lMGFkYWI3ZjExMTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2YvODQ3NTBm LTc2YzQtNDFlZS04NTE3LWUwYWRhYjdmMTExMi8xL0RpS0Q1dWF2bVJRaWREY1I5 NmNqRTNhQTVwNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCLVCUAwQCufSAMA0EAgACMAcDBQMqDS+AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMfYTANBgkqhkiG9w0BAQsFAAOCAQEAU3sY QJTNHCFEfUh8NfQTxgKEnJ7rGfemzBoUFCAJ1lZ8DnLM/UKzhazjyrdXvWTA9IwM vpEzZrnsgi0xIfkWSuCxnXBjkaqKyAQfpOHd8YvRxDH9OQPrdJbXp4P0670VoT9d C51nRAfSmWFDxBFmhQnElHIwhDJ/FbGHs+nMjh00ifrTTmS0A05lxOnPiQu0eHl5 eIfPXU30tYKGA55NgGfXmtC+dPsETIdPXLT1quz9uTjYCCJpVqjFSdtfgP8RDQTV txB0JRQ1tYf0sOnrv8N+5SOf+YnkGxgpZZ0qCpwMxk7IBGsD/ef4odIePeDwUncT q+w4ienP0WoBnQl/qQ== -----END CERTIFICATE-----Generated at Fri Jan 30 14:29:55 2026 by rpki-client