This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer File: G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer (raw, json) Hash identifier: kjFya6VQY0cKu7a8uKswuL7iDfsKqWZeUe3U2yC49O0= Subject key identifier: 1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E3755674033D22452FACFC05F6717C5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/G1RDfJLB4IsG4Hdhh8eITdUcDjg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205291 IP: 91.235.206.0/24 IP: 2a12:e0c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:55:67:40:33:d2:24:52:fa:cf:c0:5f:67:17:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b54437c92c1e08b06e0776187c7884dd51c0e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:21:3b:46:8e:99:00:62:13:a0:a3:b9:1c: 4a:40:9b:3a:86:7b:47:bd:45:8c:bf:d2:6d:a5:e6: 1f:03:5a:dc:31:0b:c1:e0:2c:86:b4:0d:5d:de:f2: 84:19:77:91:31:42:18:a5:16:3b:15:60:96:cb:65: e3:34:69:90:19:96:11:db:0f:ae:02:e9:1f:8d:cf: ae:f3:1b:37:47:d6:2a:df:af:b1:66:4c:4d:50:5b: e0:2e:81:e1:d8:61:98:1b:d1:a2:4c:9d:45:c4:8d: d8:c4:10:d4:92:9d:dc:13:6b:13:e6:fa:c8:45:f8: eb:f4:75:b1:62:d0:38:68:e3:3a:da:74:18:20:c5: b2:ac:45:f4:8b:11:c8:61:49:d7:a8:2a:20:a8:ed: 4f:e8:e4:b3:60:ac:65:65:d2:f5:49:03:4d:a0:a1: 96:ad:2f:3b:48:3a:0f:78:a6:49:33:33:b1:00:ad: 0e:44:74:3f:26:a1:e1:1d:24:7a:db:f7:22:e4:c0: b2:41:ee:84:06:0b:5a:9c:9a:d6:9f:71:ee:e0:3e: e4:4d:6f:29:05:5e:fe:2d:9b:30:bf:60:12:6f:9d: 2d:77:ba:2d:63:e7:14:ed:ec:11:b9:8b:e3:c6:e0: e8:59:6e:03:48:45:7e:7d:e5:85:d8:0e:0a:48:87: 54:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/G1RDfJLB4IsG4Hdhh8eITdUcDjg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.235.206.0/24 IPv6: 2a12:e0c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205291 Signature Algorithm: sha256WithRSAEncryption b0:e2:2d:42:09:d8:e8:b0:33:6f:51:3f:81:99:79:90:14:0c: eb:66:77:8b:70:d5:5d:c3:30:f1:bd:9b:11:d1:3e:b8:c5:03: ed:19:8f:9a:a7:b2:78:f8:b2:73:04:f5:47:d4:d6:7b:a9:01: ea:ea:b2:19:5c:8d:8f:5b:7f:e2:2e:52:45:c6:82:b6:24:d7: dc:73:40:6f:c1:8e:1b:dc:9d:5e:7a:2d:64:c3:01:89:de:2c: eb:4c:0d:97:86:11:71:7d:3a:b1:ea:c5:2c:63:45:57:a3:90: 85:6c:42:de:6a:40:86:13:5e:d6:0b:af:25:56:93:1d:32:75: a8:d4:b9:c6:d9:c9:c6:f3:3a:a2:2b:2e:bd:4a:c9:84:c9:ab: d8:c0:43:b9:70:fa:b2:01:a5:65:55:10:1f:86:a3:75:55:ed: 4c:3f:4a:c0:b4:cd:b0:61:dd:73:68:e7:6a:88:60:06:bd:0a: 8d:b8:ca:a8:a7:ac:72:e9:80:5b:72:7b:8c:7a:d4:d1:07:4d: a4:79:76:df:83:43:ff:2a:c7:2d:fa:50:fe:2c:80:dc:22:b9: 09:21:06:f9:8d:fe:c7:50:00:a2:37:a3:ad:2c:ce:60:f1:1a: 95:77:86:42:65:8f:2c:da:e7:55:7e:2a:9e:aa:50:20:94:ea: 9f:cd:cf:77 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+N1VnQDPSJFL6z8BfZxfFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjU0NDM3YzkyYzFlMDhiMDZlMDc3NjE4N2M3ODg0ZGQ1MWMwZTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3AhO0aOmQBiE6CjuRxKQJs6hntH vUWMv9JtpeYfA1rcMQvB4CyGtA1d3vKEGXeRMUIYpRY7FWCWy2XjNGmQGZYR2w+u Aukfjc+u8xs3R9Yq36+xZkxNUFvgLoHh2GGYG9GiTJ1FxI3YxBDUkp3cE2sT5vrI Rfjr9HWxYtA4aOM62nQYIMWyrEX0ixHIYUnXqCogqO1P6OSzYKxlZdL1SQNNoKGW rS87SDoPeKZJMzOxAK0ORHQ/JqHhHSR62/ci5MCyQe6EBgtanJrWn3Hu4D7kTW8p BV7+LZswv2ASb50td7otY+cU7ewRuYvjxuDoWW4DSEV+feWF2A4KSIdUWQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBtUQ3ySweCLBuB3YYfHiE3VHA44MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EwL2YxZGIz Ni02NjVkLTRkODAtYTFiMi01MTVlZTE1NzAyNTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAvZjFkYjM2 LTY2NWQtNGQ4MC1hMWIyLTUxNWVlMTU3MDI1OS8xL0cxUkRmSkxCNElzRzRIZGho OGVJVGRVY0RqZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAW+vOMA0EAgACMAcDBQMqEuDAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMh6zANBgkqhkiG9w0BAQsFAAOCAQEAsOItQgnY6LAz b1E/gZl5kBQM62Z3i3DVXcMw8b2bEdE+uMUD7RmPmqeyePiycwT1R9TWe6kB6uqy GVyNj1t/4i5SRcaCtiTX3HNAb8GOG9ydXnotZMMBid4s60wNl4YRcX06serFLGNF V6OQhWxC3mpAhhNe1guvJVaTHTJ1qNS5xtnJxvM6oisuvUrJhMmr2MBDuXD6sgGl ZVUQH4ajdVXtTD9KwLTNsGHdc2jnaohgBr0KjbjKqKescumAW3J7jHrU0QdNpHl2 34ND/yrHLfpQ/iyA3CK5CSEG+Y3+x1AAojejrSzOYPEalXeGQmWPLNrnVX4qnqpQ IJTqn83Pdw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:02 2026 by rpki-client