This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer File: J2zuYEMhsPEryjZ7VMBzmqil8To.cer (raw, json) Hash identifier: 7VcnutlUaJuNjkPYIjGn7bY657LBxvvdzxGXKoaA0rM= Subject key identifier: 27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF2500D9FC2A10207650B39DAEAAB1E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:22:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 31332 IP: 193.22.165.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:50:0d:9f:c2:a1:02:07:65:0b:39:da:ea:ab:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:22:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=276cee604321b0f12bca367b54c0739aa8a5f13a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:be:4e:fc:f2:c8:d1:d8:95:86:68:88:6e:a7: ea:3f:8a:d7:1d:6c:f1:ac:bf:28:59:cc:8a:4e:80: df:09:57:9f:ea:74:05:4f:3c:51:c8:58:eb:1a:76: 78:da:43:75:e6:36:a0:a2:f7:80:04:5a:41:94:b5: 1f:7c:23:18:48:ea:7a:da:81:9f:13:70:53:e3:6e: 6c:e5:3f:99:e1:7f:2b:6b:a1:67:67:e4:78:eb:7f: c6:7d:5b:9c:02:6c:e0:d0:67:60:f4:b3:99:a8:91: d4:e9:30:bf:8b:df:f1:e4:c4:93:89:04:60:0b:be: e3:a3:ba:68:6a:f6:75:7d:eb:9a:65:60:42:19:e5: 4a:0b:06:7d:12:47:2a:9b:3e:b8:a4:21:fa:c6:83: 0d:48:bc:bd:20:d6:9d:15:d3:29:1f:c2:45:2e:8d: 44:39:7e:5e:33:fe:3b:b1:0f:3c:70:e9:90:67:1c: 91:aa:0b:30:aa:54:6d:18:c2:d6:b8:76:40:3d:d3: 48:57:f7:62:35:9f:bf:25:eb:b0:69:78:a6:d4:b7: 11:ca:4f:20:82:07:b5:f0:d7:34:a0:a2:20:8e:ca: 49:86:4c:90:74:02:79:00:f9:23:55:39:de:e1:b9: fd:6f:bf:f6:5e:99:9a:18:f6:61:2c:e7:9e:93:84: 31:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.22.165.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 31332 Signature Algorithm: sha256WithRSAEncryption 55:0c:7a:52:dc:2d:1b:20:9c:8e:58:79:e5:cb:7a:ae:13:89: 1d:54:33:08:91:3e:66:69:fe:74:76:12:4b:62:ee:40:8d:70: 66:e3:19:78:42:fa:a0:34:54:5f:1b:dd:8a:c5:69:8a:70:95: 4e:99:9a:b0:9e:f6:ab:ad:00:09:05:42:f1:dd:b1:8e:9a:91: 9b:ce:50:c4:fb:29:e7:2d:a8:64:ae:d3:1c:c4:92:96:fa:cd: 39:f0:3f:04:95:3e:8d:69:ff:5e:4a:f3:c9:23:0e:1e:ae:7f: 56:ef:98:49:e5:d5:eb:58:b2:64:97:fa:b2:4a:4d:56:3c:fa: 29:57:76:f7:d0:16:88:b2:94:94:e7:d3:19:cc:79:4b:5a:c1: 86:3e:ed:72:46:52:2b:cb:05:3b:1f:f2:48:f4:ac:77:ac:8b: 59:78:c8:5c:b6:d1:3c:3f:d2:c1:50:0f:63:32:81:0b:77:45: b2:b1:3c:a9:54:3d:64:24:6e:a6:53:21:1f:6b:5e:6d:16:3b: 8c:5b:61:ff:0d:ad:43:4e:cc:c7:03:2d:b1:05:ed:f8:dc:31: ed:dd:8a:fe:29:4c:90:98:2c:12:45:4a:61:3b:2c:11:79:11: 24:df:ed:af:ef:a6:91:cf:8d:ba:5c:ae:60:ea:11:6a:c9:16: 56:e0:90:82 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt/8lANn8KhAgdlCzna6qseMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMjI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNzZjZWU2MDQzMjFiMGYxMmJjYTM2N2I1NGMwNzM5YWE4YTVmMTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtb5O/PLI0diVhmiIbqfqP4rXHWzx rL8oWcyKToDfCVef6nQFTzxRyFjrGnZ42kN15jagoveABFpBlLUffCMYSOp62oGf E3BT425s5T+Z4X8ra6FnZ+R463/GfVucAmzg0Gdg9LOZqJHU6TC/i9/x5MSTiQRg C77jo7poavZ1feuaZWBCGeVKCwZ9Ekcqmz64pCH6xoMNSLy9INadFdMpH8JFLo1E OX5eM/47sQ88cOmQZxyRqgswqlRtGMLWuHZAPdNIV/diNZ+/JeuwaXim1LcRyk8g gge18Nc0oKIgjspJhkyQdAJ5APkjVTne4bn9b7/2XpmaGPZhLOeek4Qx1QIDAQAB o4ICnzCCApswHQYDVR0OBBYEFCds7mBDIbDxK8o2e1TAc5qopfE6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIzL2E1OTk1 NS04NmNmLTQ2NTUtYTFmOC0yNTg5NTRiNGZlNWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjMvYTU5OTU1 LTg2Y2YtNDY1NS1hMWY4LTI1ODk1NGI0ZmU1YS8xL0oyenVZRU1oc1BFcnlqWjdW TUJ6bXFpbDhUby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwRalMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AnpkMA0GCSqGSIb3DQEBCwUAA4IBAQBVDHpS3C0bIJyOWHnly3quE4kdVDMIkT5m af50dhJLYu5AjXBm4xl4QvqgNFRfG92KxWmKcJVOmZqwnvarrQAJBULx3bGOmpGb zlDE+ynnLahkrtMcxJKW+s058D8ElT6Naf9eSvPJIw4ern9W75hJ5dXrWLJkl/qy Sk1WPPopV3b30BaIspSU59MZzHlLWsGGPu1yRlIrywU7H/JI9Kx3rItZeMhcttE8 P9LBUA9jMoELd0WysTypVD1kJG6mUyEfa15tFjuMW2H/Da1DTszHAy2xBe343DHt 3Yr+KUyQmCwSRUphOywReREk3+2v76aRz426XK5g6hFqyRZW4JCC -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:11 2026 by rpki-client