This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer File: G58hugTl4wd7OR49SP9bClCzNp8.cer (raw, json) Hash identifier: X7Fty+VRqquthBTr7WcuMYfxL2Vo3htT6LUmGmSOv4c= Subject key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C12B0EF23335CD55031614622B63F89 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:18 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208022 IP: 195.93.226.0/24 IP: 2a0a:280::/29 IP: 2a11:3780::/29 IP: 2a12:ef40::/29 IP: 2a13:63c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:b0:ef:23:33:5c:d5:50:31:61:46:22:b6:3f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:a1:c8:b0:0a:71:cc:c7:aa:5a:06:7d:d7: ca:aa:97:14:d9:9c:29:df:cf:ad:b8:ea:a2:70:93: 65:a4:40:a3:b8:1f:29:10:3c:f7:9c:cd:31:dd:46: a5:f2:88:02:df:a3:5f:fc:71:29:83:d3:0a:30:97: 3f:4e:19:f4:ab:60:99:e7:3a:26:1a:a4:3d:e0:4b: 90:af:83:25:13:81:98:0c:8b:87:e1:d6:ff:75:79: ce:b7:67:ad:8c:b1:b1:a3:57:b9:c9:12:f9:b2:18: 81:4e:8d:92:e6:a0:9a:8c:c1:d1:e9:15:6a:0c:86: 80:c7:bf:d5:02:94:a6:57:4e:87:5e:6b:55:ca:7c: ec:d8:71:3d:35:00:2e:86:b9:7f:75:60:0d:ab:bd: b6:0f:b8:ac:e3:5e:57:90:fe:1b:e6:fd:75:c9:35: 23:21:8a:3a:d4:c2:c4:18:3f:d4:8e:ad:04:da:cc: 66:38:24:4d:59:27:1d:b5:33:a6:a3:78:bf:38:a8: f3:7e:0e:40:34:1d:79:74:bf:15:f5:c3:92:5d:7e: 58:dd:78:09:07:a8:29:13:de:00:c8:b7:4e:0d:dd: e6:a7:11:96:0d:5c:0d:e5:a1:b4:3c:f6:3b:73:d4: 4c:ee:bc:04:ce:5d:8f:76:34:4a:73:06:e3:e9:3f: 21:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.93.226.0/24 IPv6: 2a0a:280::/29 2a11:3780::/29 2a12:ef40::/29 2a13:63c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208022 Signature Algorithm: sha256WithRSAEncryption 03:1d:24:71:bb:ef:f1:68:fc:4c:8b:d4:55:80:d3:0f:5a:99: 9b:63:0e:2a:eb:d8:3b:f3:5f:17:93:99:d4:55:a7:bd:70:18: 9b:f5:33:88:14:46:a1:9e:26:e3:ed:58:67:f9:f4:1d:20:72: 80:a2:2a:21:f6:9d:ed:91:75:32:fa:87:c7:0f:3d:ba:c2:f3: 0b:f4:91:24:4a:b1:60:80:b0:93:01:db:3a:00:23:56:ee:d3: 96:28:8c:0b:fc:18:31:9c:d3:cd:e4:b0:a0:e9:d1:72:7e:ca: 3d:66:12:58:3c:25:3e:0f:86:5f:3b:de:57:f4:34:ae:77:e4: 14:57:16:73:a1:ad:cf:a4:97:c9:5c:3d:f5:bd:db:19:7a:43: 8b:54:b0:68:7c:22:4c:ee:c8:71:25:7d:e4:2b:de:27:08:ca: 87:42:5c:76:14:94:50:7c:3a:32:2f:e2:36:8e:15:46:6c:ca: 85:f5:00:e8:f3:18:e4:74:22:a8:25:e3:bf:d1:f7:ef:ae:b2: 0e:18:cb:34:1b:df:d5:4e:2e:cc:9a:64:3e:fc:c5:08:f7:39: d9:1e:17:51:59:db:0b:0f:b3:f3:1b:fc:a8:11:21:23:28:1a: eb:14:de:d7:f4:20:21:ed:8b:27:7d:6c:1e:d7:7c:de:05:c4: e8:b7:24:88 -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgISAZt8ErDvIzNc1VAxYUYitj+JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYjlmMjFiYTA0ZTVlMzA3N2IzOTFlM2Q0OGZmNWIwYTUwYjMzNjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFWhyLAKcczHqloGfdfKqpcU2Zwp 38+tuOqicJNlpECjuB8pEDz3nM0x3Ual8ogC36Nf/HEpg9MKMJc/Thn0q2CZ5zom GqQ94EuQr4MlE4GYDIuH4db/dXnOt2etjLGxo1e5yRL5shiBTo2S5qCajMHR6RVq DIaAx7/VApSmV06HXmtVynzs2HE9NQAuhrl/dWANq722D7is415XkP4b5v11yTUj IYo61MLEGD/Ujq0E2sxmOCRNWScdtTOmo3i/OKjzfg5ANB15dL8V9cOSXX5Y3XgJ B6gpE94AyLdODd3mpxGWDVwN5aG0PPY7c9RM7rwEzl2PdjRKcwbj6T8hKQIDAQAB o4ICxDCCAsAwHQYDVR0OBBYEFBufIboE5eMHezkePUj/WwpQszafMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIyL2Y2N2E3 OC0xODNkLTQ5NGEtOTk1ZS1mNTFjNWZiM2RmOWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIvZjY3YTc4 LTE4M2QtNDk0YS05OTVlLWY1MWM1ZmIzZGY5YS8xL0c1OGh1Z1RsNHdkN09SNDlT UDliQ2xDek5wOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUF BwEHAQH/BDQwMjAMBAIAATAGAwQAw13iMCIEAgACMBwDBQMqCgKAAwUDKhE3gAMF AyoS70ADBQMqE2PAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMsljANBgkqhkiG 9w0BAQsFAAOCAQEAAx0kcbvv8Wj8TIvUVYDTD1qZm2MOKuvYO/NfF5OZ1FWnvXAY m/UziBRGoZ4m4+1YZ/n0HSBygKIqIfad7ZF1MvqHxw89usLzC/SRJEqxYICwkwHb OgAjVu7TliiMC/wYMZzTzeSwoOnRcn7KPWYSWDwlPg+GXzveV/Q0rnfkFFcWc6Gt z6SXyVw99b3bGXpDi1SwaHwiTO7IcSV95CveJwjKh0JcdhSUUHw6Mi/iNo4VRmzK hfUA6PMY5HQiqCXjv9H3766yDhjLNBvf1U4uzJpkPvzFCPc52R4XUVnbCw+z8xv8 qBEhIyga6xTe1/QgIe2LJ31sHtd83gXE6LckiA== -----END CERTIFICATE-----Generated at Wed Jan 21 15:56:30 2026 by rpki-client