This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IrPk850cPBTYMWBr_KFmbd6b7WI.cer File: IrPk850cPBTYMWBr_KFmbd6b7WI.cer (raw, json) Hash identifier: pGom6P76kohY2jJGCgeKeDS1CTJpgDwWvcNW9SXdNeI= Subject key identifier: 22:B3:E4:F3:9D:1C:3C:14:D8:31:60:6B:FC:A1:66:6D:DE:9B:ED:62 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797F37975F5712A512EAC3A3FCB190F4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9e/51a678-3645-4ca4-8c0d-ed5947f66b70/1/IrPk850cPBTYMWBr_KFmbd6b7WI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9e/51a678-3645-4ca4-8c0d-ed5947f66b70/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211046 IP: 91.205.222.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:37:97:5f:57:12:a5:12:ea:c3:a3:fc:b1:90:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22b3e4f39d1c3c14d831606bfca1666dde9bed62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:23:5d:3c:25:30:18:c7:94:b6:d2:11:e2:03: 8c:52:57:5f:79:68:e9:60:5e:33:c3:6d:93:55:b9: b5:dd:fc:92:90:61:a8:62:98:dc:7b:cb:d6:fd:53: a9:e8:c5:8e:a4:ce:c5:6b:96:f8:f2:11:0a:e0:c8: 29:75:16:b5:4b:cb:68:62:65:b2:50:09:6f:94:62: 28:ce:f0:e8:f2:9f:7d:dc:14:e0:0b:93:5a:39:20: 8b:71:20:f0:4b:67:1c:a7:4b:8b:3d:4e:f2:b8:d7: 5d:44:12:a3:7e:5f:d2:bd:59:be:7a:8b:69:58:89: 7c:25:42:7f:c2:0d:67:88:35:07:01:ab:b2:f8:5f: f8:c0:f9:f8:33:fd:85:51:32:de:7a:54:19:c1:7d: 99:0a:30:48:3b:99:27:d1:dc:5e:d2:93:ad:47:a1: 2d:f2:d8:fb:71:69:59:e4:6a:d7:65:22:26:88:26: 5e:65:1a:04:5e:9b:26:e0:f6:14:4e:3b:8f:ea:c4: 55:82:26:ec:46:53:98:32:ff:69:e2:ce:1c:63:16: f8:80:10:bf:67:8c:55:3e:1d:c9:1f:fd:67:87:89: 91:45:3e:a3:76:c3:0d:00:fc:c8:59:71:28:bb:9b: 69:f3:22:cb:db:f2:0b:9a:91:b7:79:f7:f3:90:09: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B3:E4:F3:9D:1C:3C:14:D8:31:60:6B:FC:A1:66:6D:DE:9B:ED:62 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/51a678-3645-4ca4-8c0d-ed5947f66b70/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/51a678-3645-4ca4-8c0d-ed5947f66b70/1/IrPk850cPBTYMWBr_KFmbd6b7WI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.205.222.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211046 Signature Algorithm: sha256WithRSAEncryption 70:ce:9a:04:c3:10:4a:bf:5b:29:a7:95:74:a9:8d:bc:8f:c5: bb:45:da:27:05:d9:55:bf:92:69:d1:2b:06:71:1e:6b:ac:cf: b5:6a:24:7a:00:46:ea:da:cd:da:32:b5:f5:2b:56:64:fc:f3: 1e:f4:17:60:2d:37:cc:1b:ae:32:be:a9:9e:02:ad:a4:28:66: a9:c0:95:2c:df:e9:45:0a:e2:4a:6b:e5:32:ae:59:3d:5e:e0: 21:4d:9d:57:83:05:28:95:5c:4a:ef:f8:40:32:24:30:3b:b2: 37:7c:52:40:2a:3b:7e:d6:10:0b:b9:0f:6a:cd:49:5b:48:ce: c4:50:de:b2:bc:7c:6b:e6:66:7e:b6:e4:cc:31:11:b2:a2:6c: 44:6a:46:5e:6f:e8:d7:ac:41:13:c0:ae:91:d0:3d:d8:c0:29: da:c6:6e:7e:ea:77:b4:71:3b:c6:24:c5:b3:25:2e:a2:70:5c: 50:b3:38:4e:64:a2:bf:8c:4a:f3:12:73:d2:cb:40:fb:f2:63: 62:ae:3e:1d:fe:15:f5:49:75:2a:b3:8e:0f:94:e9:92:05:bd: 20:fd:41:8a:ea:e0:35:dc:36:75:3f:1f:36:d1:be:7d:ba:0a: 67:ca:57:84:8c:3d:3d:d8:17:80:de:f7:39:91:e5:23:47:b1: 73:06:24:37 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5fzeXX1cSpRLqw6P8sZD0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmIzZTRmMzlkMWMzYzE0ZDgzMTYwNmJmY2ExNjY2ZGRlOWJlZDYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0yNdPCUwGMeUttIR4gOMUldfeWjp YF4zw22TVbm13fySkGGoYpjce8vW/VOp6MWOpM7Fa5b48hEK4MgpdRa1S8toYmWy UAlvlGIozvDo8p993BTgC5NaOSCLcSDwS2ccp0uLPU7yuNddRBKjfl/SvVm+eotp WIl8JUJ/wg1niDUHAauy+F/4wPn4M/2FUTLeelQZwX2ZCjBIO5kn0dxe0pOtR6Et 8tj7cWlZ5GrXZSImiCZeZRoEXpsm4PYUTjuP6sRVgibsRlOYMv9p4s4cYxb4gBC/ Z4xVPh3JH/1nh4mRRT6jdsMNAPzIWXEou5tp8yLL2/ILmpG3effzkAkVzwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFCKz5POdHDwU2DFga/yhZm3em+1iMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzllLzUxYTY3 OC0zNjQ1LTRjYTQtOGMwZC1lZDU5NDdmNjZiNzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUvNTFhNjc4 LTM2NDUtNGNhNC04YzBkLWVkNTk0N2Y2NmI3MC8xL0lyUGs4NTBjUEJUWU1XQnJf S0ZtYmQ2YjdXSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW83eMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwM4ZjANBgkqhkiG9w0BAQsFAAOCAQEAcM6aBMMQSr9bKaeVdKmNvI/Fu0XaJwXZ Vb+SadErBnEea6zPtWokegBG6trN2jK19StWZPzzHvQXYC03zBuuMr6pngKtpChm qcCVLN/pRQriSmvlMq5ZPV7gIU2dV4MFKJVcSu/4QDIkMDuyN3xSQCo7ftYQC7kP as1JW0jOxFDesrx8a+ZmfrbkzDERsqJsRGpGXm/o16xBE8CukdA92MAp2sZufup3 tHE7xiTFsyUuonBcULM4TmSiv4xK8xJz0stA+/JjYq4+Hf4V9Ul1KrOOD5TpkgW9 IP1BiurgNdw2dT8fNtG+fboKZ8pXhIw9PdgXgN73OZHlI0excwYkNw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:13 2026 by rpki-client