This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Eho3KC3ZktiGWBYFWeBIOSeYyEs.cer File: Eho3KC3ZktiGWBYFWeBIOSeYyEs.cer (raw, json) Hash identifier: tXL5UiW4ljuBZsDcQmsJjwB7p2rsCvM7OaI05VR8tsg= Subject key identifier: 12:1A:37:28:2D:D9:92:D8:86:58:16:05:59:E0:48:39:27:98:C8:4B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5A9E919547F034C0294E368E41E089 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/Eho3KC3ZktiGWBYFWeBIOSeYyEs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51616 IP: 45.9.224.0/22 IP: 45.13.128.0/22 IP: 185.61.180.0/22 IP: 185.149.32.0/22 IP: 185.229.16.0/22 IP: 195.95.230.0/23 IP: 2a02:7ba0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:9e:91:95:47:f0:34:c0:29:4e:36:8e:41:e0:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=121a37282dd992d88658160559e048392798c84b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:78:76:ec:e2:6f:8c:92:18:8a:b4:18:33:1f: e0:65:40:de:76:d9:b7:da:9f:d1:ea:4a:cb:71:b4: 25:29:5e:e8:a1:9e:0d:12:96:82:d4:0b:45:d9:a6: 26:4f:03:cd:92:d1:73:75:fd:2d:bd:a2:71:ec:4e: 9c:3f:cd:3d:14:63:89:8c:68:ea:d8:dd:1b:e1:34: 85:35:2f:04:d2:f9:8b:0b:e2:fc:b2:58:79:ed:c4: cc:99:19:ef:4f:42:c0:14:83:83:6e:45:ed:ac:7a: 9e:43:3a:74:57:d1:fe:7c:69:22:ae:b9:6d:ae:63: e6:18:be:05:4e:33:4e:9c:3d:81:b7:00:f6:e8:99: 1f:d9:c8:19:a4:6e:a4:9d:bb:4f:c0:ae:11:88:11: 7c:4f:f4:aa:81:09:34:6f:4f:aa:34:ab:3a:fc:f6: cd:a5:b4:0e:05:fd:28:de:12:44:4c:42:12:1f:04: 26:22:04:08:ac:15:8a:2e:bf:f2:3c:e8:26:46:1b: 63:36:5c:43:a8:7c:61:2a:d8:24:a1:33:4b:27:6b: 47:fe:2d:9e:39:e6:02:5a:ca:55:2b:3c:b3:07:53: 1e:6e:2c:d8:02:9a:57:70:e2:76:89:c0:14:86:40: 61:ee:c5:fd:e0:95:9b:40:60:9d:ab:e2:e2:47:c6: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1A:37:28:2D:D9:92:D8:86:58:16:05:59:E0:48:39:27:98:C8:4B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/fed131-f9d7-41b2-b8bc-082b1f7f0db2/1/Eho3KC3ZktiGWBYFWeBIOSeYyEs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.9.224.0/22 45.13.128.0/22 185.61.180.0/22 185.149.32.0/22 185.229.16.0/22 195.95.230.0/23 IPv6: 2a02:7ba0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51616 Signature Algorithm: sha256WithRSAEncryption 87:c4:c9:ce:7a:e2:5f:8c:7b:55:06:98:22:d4:a4:d4:0b:89: ab:d3:81:02:fa:86:9b:8f:34:49:b7:ec:cf:d5:2a:48:93:31: 9c:91:17:23:0c:b7:56:3c:3f:f0:e3:b1:59:f8:2c:4f:10:13: ba:c9:4b:e1:2e:2a:35:c0:67:5f:8b:58:95:d2:06:b7:72:3a: 9b:fc:db:6b:23:ad:38:0e:53:4c:11:da:b3:cb:33:d4:6c:6c: 09:36:31:21:20:bd:ff:e4:c7:de:52:df:a6:2b:3f:4a:e6:b3: f6:87:10:8d:2e:11:c0:f1:47:39:b9:c5:55:40:a1:13:37:cb: 7e:b7:74:e9:76:8c:d2:a2:b8:6f:cb:79:d7:5f:55:aa:55:0e: f3:57:e5:c1:d8:64:c9:9f:7c:b5:9b:90:3a:06:1d:e4:32:83: e8:5d:ca:9c:e0:dd:48:6f:c5:5b:40:58:9d:f3:a1:f7:29:59: fa:e2:9b:52:14:02:b5:1d:4d:0f:0c:c5:8b:01:6b:1c:86:08: 9b:64:c2:a3:43:28:cc:38:a2:5b:d1:f7:dc:65:a7:28:2d:5f: 00:c8:94:4a:57:16:46:b0:3e:7b:e6:79:96:53:23:91:73:0c: 3b:9f:35:5f:9d:c7:02:a6:80:2a:8d:2d:cf:5e:74:20:20:a8: f1:b8:8f:f7 -----BEGIN CERTIFICATE----- MIIFwTCCBKmgAwIBAgISAZt6Wp6RlUfwNMApTjaOQeCJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjFhMzcyODJkZDk5MmQ4ODY1ODE2MDU1OWUwNDgzOTI3OThjODRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA63h27OJvjJIYirQYMx/gZUDedtm3 2p/R6krLcbQlKV7ooZ4NEpaC1AtF2aYmTwPNktFzdf0tvaJx7E6cP809FGOJjGjq 2N0b4TSFNS8E0vmLC+L8slh57cTMmRnvT0LAFIODbkXtrHqeQzp0V9H+fGkirrlt rmPmGL4FTjNOnD2BtwD26Jkf2cgZpG6knbtPwK4RiBF8T/SqgQk0b0+qNKs6/PbN pbQOBf0o3hJETEISHwQmIgQIrBWKLr/yPOgmRhtjNlxDqHxhKtgkoTNLJ2tH/i2e OeYCWspVKzyzB1MebizYAppXcOJ2icAUhkBh7sX94JWbQGCdq+LiR8bqVwIDAQAB o4ICzTCCAskwHQYDVR0OBBYEFBIaNygt2ZLYhlgWBVngSDknmMhLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE3L2ZlZDEz MS1mOWQ3LTQxYjItYjhiYy0wODJiMWY3ZjBkYjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcvZmVkMTMx LWY5ZDctNDFiMi1iOGJjLTA4MmIxZjdmMGRiMi8xL0VobzNLQzNaa3RpR1dCWUZX ZUJJT1NlWXlFcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEwGCCsGAQUF BwEHAQH/BD0wOzAqBAIAATAkAwQCLQngAwQCLQ2AAwQCuT20AwQCuZUgAwQCueUQ AwQBw1/mMA0EAgACMAcDBQAqAnugMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDJ oDANBgkqhkiG9w0BAQsFAAOCAQEAh8TJznriX4x7VQaYItSk1AuJq9OBAvqGm480 Sbfsz9UqSJMxnJEXIwy3Vjw/8OOxWfgsTxATuslL4S4qNcBnX4tYldIGt3I6m/zb ayOtOA5TTBHas8sz1GxsCTYxISC9/+TH3lLfpis/Suaz9ocQjS4RwPFHObnFVUCh EzfLfrd06XaM0qK4b8t5119VqlUO81flwdhkyZ98tZuQOgYd5DKD6F3KnODdSG/F W0BYnfOh9ylZ+uKbUhQCtR1NDwzFiwFrHIYIm2TCo0MozDiiW9H33GWnKC1fAMiU SlcWRrA+e+Z5llMjkXMMO581X53HAqaAKo0tz150ICCo8biP9w== -----END CERTIFICATE-----Generated at Tue Jan 27 11:50:58 2026 by rpki-client