This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/E34RA3dXhdAS_I3atMAqwDeRudQ.cer File: E34RA3dXhdAS_I3atMAqwDeRudQ.cer (raw, json) Hash identifier: HDOdRCi7+L/LBGLCj01Htdc+3AIj775NpzYlx2DUtwQ= Subject key identifier: 13:7E:11:03:77:57:85:D0:12:FC:8D:DA:B4:C0:2A:C0:37:91:B9:D4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834B1448FC2FB29193D36DF11BE8B7F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/E34RA3dXhdAS_I3atMAqwDeRudQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203715 IP: 185.126.60.0/22 IP: 2a06:bf00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:b1:44:8f:c2:fb:29:19:3d:36:df:11:be:8b:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=137e1103775785d012fc8ddab4c02ac03791b9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8c:83:14:5f:08:3a:69:4d:28:0b:08:dc:7a: d3:fb:12:4c:6c:d4:53:3b:0b:de:ce:aa:fe:41:f0: 35:98:80:c0:3b:23:93:58:a4:07:dd:db:03:b5:4a: 36:0d:8d:c4:60:9f:0a:a3:08:78:a7:23:03:0c:6a: 38:8c:c4:8d:b2:fa:d6:20:88:e3:24:b3:86:cc:26: 85:40:36:8a:74:1c:ee:8c:92:83:77:fa:2e:b8:26: 4e:23:88:95:60:c9:5f:5c:5d:1f:2a:20:3e:9e:38: c9:75:24:07:a9:d3:73:a0:78:63:e4:df:c8:fb:62: 7e:54:02:89:9f:39:18:6c:d3:4c:13:ba:35:64:ac: 75:f6:33:2c:92:71:f0:aa:58:cd:03:9c:7b:2d:54: af:70:f1:01:19:7e:c9:07:2c:b6:f9:2e:9b:a2:70: b2:21:81:59:d2:52:87:e6:87:ca:18:83:2b:db:48: 83:38:fb:4c:23:d7:5d:da:6e:bd:fb:f6:57:1e:6e: 8f:54:20:f5:76:5e:db:5c:0f:e0:88:2e:29:7d:ec: 47:55:b8:6c:a2:eb:13:fd:07:78:e3:d3:bc:ab:10: 49:e5:7e:e7:3f:c9:d9:f3:46:d3:95:e3:fc:aa:ab: 8e:7f:4a:68:8a:b9:7e:58:9d:d3:73:51:1a:27:50: 4b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7E:11:03:77:57:85:D0:12:FC:8D:DA:B4:C0:2A:C0:37:91:B9:D4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e16ee7-efef-4809-89ff-8bdccce5dfe8/1/E34RA3dXhdAS_I3atMAqwDeRudQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.126.60.0/22 IPv6: 2a06:bf00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203715 Signature Algorithm: sha256WithRSAEncryption 33:86:be:49:71:fd:e8:62:93:9c:ef:59:29:c1:0c:08:45:7e: 8e:fb:66:70:18:36:c9:98:f4:18:8d:d5:b0:8f:53:bf:df:8e: 6f:a4:8e:14:e3:76:cf:23:d8:dd:88:36:e2:b9:21:0c:99:cf: c6:8e:e4:24:8c:c5:b7:86:e7:04:f8:50:d1:d8:63:4b:84:2a: 06:af:6d:b7:5e:47:33:94:fb:04:4a:6c:0e:fd:d7:2b:c3:60: 53:db:00:e2:aa:82:d7:71:a1:49:86:f9:2e:ee:46:57:0f:f0: b5:3d:d6:42:36:50:af:d0:fc:4c:59:de:07:df:0b:63:e3:8a: c2:c3:34:68:36:a4:d8:98:b7:dd:5c:2b:9a:db:e6:01:9b:03: 31:1f:b8:b1:72:b6:e0:47:de:cd:29:0d:44:ae:6c:38:0d:a1: 36:6c:82:9b:5e:a0:b6:49:be:66:8f:0d:0f:9f:38:a2:2a:91: cc:e1:27:8d:dc:a1:7b:71:31:7a:eb:de:d9:5e:f2:bb:6d:80: ed:d4:28:a8:1c:2e:b7:bc:5d:91:67:ff:dd:16:09:ce:4a:4f: fa:2f:36:3c:c3:87:d8:50:00:7f:67:5a:d5:ef:ce:bb:39:ab: 16:05:c2:81:d5:2c:cc:87:ec:fc:fa:1b:94:d4:57:8e:2e:b4: c8:16:1c:6d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt4NLFEj8L7KRk9Nt8Rvot/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzdlMTEwMzc3NTc4NWQwMTJmYzhkZGFiNGMwMmFjMDM3OTFiOWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYyDFF8IOmlNKAsI3HrT+xJMbNRT Owvezqr+QfA1mIDAOyOTWKQH3dsDtUo2DY3EYJ8Kowh4pyMDDGo4jMSNsvrWIIjj JLOGzCaFQDaKdBzujJKDd/ouuCZOI4iVYMlfXF0fKiA+njjJdSQHqdNzoHhj5N/I +2J+VAKJnzkYbNNME7o1ZKx19jMsknHwqljNA5x7LVSvcPEBGX7JByy2+S6bonCy IYFZ0lKH5ofKGIMr20iDOPtMI9dd2m69+/ZXHm6PVCD1dl7bXA/giC4pfexHVbhs ousT/Qd449O8qxBJ5X7nP8nZ80bTleP8qquOf0poirl+WJ3Tc1EaJ1BLvwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBN+EQN3V4XQEvyN2rTAKsA3kbnUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZjL2UxNmVl Ny1lZmVmLTQ4MDktODlmZi04YmRjY2NlNWRmZTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMvZTE2ZWU3 LWVmZWYtNDgwOS04OWZmLThiZGNjY2U1ZGZlOC8xL0UzNFJBM2RYaGRBU19JM2F0 TUFxd0RlUnVkUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuX48MA0EAgACMAcDBQMqBr8AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMbwzANBgkqhkiG9w0BAQsFAAOCAQEAM4a+SXH96GKT nO9ZKcEMCEV+jvtmcBg2yZj0GI3VsI9Tv9+Ob6SOFON2zyPY3Yg24rkhDJnPxo7k JIzFt4bnBPhQ0dhjS4QqBq9tt15HM5T7BEpsDv3XK8NgU9sA4qqC13GhSYb5Lu5G Vw/wtT3WQjZQr9D8TFneB98LY+OKwsM0aDak2Ji33VwrmtvmAZsDMR+4sXK24Efe zSkNRK5sOA2hNmyCm16gtkm+Zo8ND584oiqRzOEnjdyhe3Exeuve2V7yu22A7dQo qBwut7xdkWf/3RYJzkpP+i82PMOH2FAAf2da1e/OuzmrFgXCgdUszIfs/PoblNRX ji60yBYcbQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:09 2026 by rpki-client