This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J8Y3pwndvn9iN6-NWykTtCI3FXw.cer File: J8Y3pwndvn9iN6-NWykTtCI3FXw.cer (raw, json) Hash identifier: 5ed/5HjFJWt8dCi7UCqJpnjsErHzT2XXE0qNqvg0jDU= Subject key identifier: 27:C6:37:A7:09:DD:BE:7F:62:37:AF:8D:5B:29:13:B4:22:37:15:7C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834E16C8D4D38B0C80B16AFAFD7260C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/J8Y3pwndvn9iN6-NWykTtCI3FXw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211029 IP: 185.253.244.0/22 IP: 2a12:9540::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e1:6c:8d:4d:38:b0:c8:0b:16:af:af:d7:26:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=27c637a709ddbe7f6237af8d5b2913b42237157c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:cc:1c:0f:8a:db:b5:fd:3a:96:40:c1:db:27: f5:b2:9a:8b:5a:71:93:23:59:bd:73:08:cd:d0:38: bd:1d:1a:0c:3d:78:c9:30:36:f0:82:94:cb:38:e4: 12:a7:65:dc:68:6e:af:ac:90:aa:1b:5f:97:e8:96: 69:ca:d8:76:61:7b:b8:21:f7:66:f0:3a:fe:71:b0: f4:43:c5:12:71:8a:01:26:73:94:ec:e6:e2:e8:bf: 85:c2:8e:c4:ea:94:43:8c:db:8b:8b:d7:3c:b0:83: da:a8:06:73:8b:19:8f:f6:3d:6d:d5:78:81:d7:9a: 67:19:9b:a7:98:09:ce:c4:51:f5:f7:11:64:42:a1: 37:fd:e8:b0:aa:08:a8:63:f1:45:bb:c8:64:3f:de: 82:c9:0d:be:ee:f5:0b:55:45:2b:60:3a:75:ea:dd: d4:cf:50:48:d6:93:ce:be:06:8c:81:d3:52:c7:81: a9:f1:a2:fd:0f:c3:21:82:ab:41:9f:b9:46:9d:55: 21:8e:5b:8f:cf:6c:35:97:8b:48:e8:a7:50:a3:c7: b0:9d:9a:b8:6e:73:3a:40:d7:d6:d7:3e:e4:86:7b: 86:4d:a7:9e:b3:2e:92:f2:62:b2:8c:31:6d:e1:ce: 5e:58:c8:23:1b:a0:5e:ae:9c:bc:89:fb:de:88:a7: bf:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C6:37:A7:09:DD:BE:7F:62:37:AF:8D:5B:29:13:B4:22:37:15:7C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/cc7e6b-8c86-45ab-ac03-cbadb64340e0/1/J8Y3pwndvn9iN6-NWykTtCI3FXw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.253.244.0/22 IPv6: 2a12:9540::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211029 Signature Algorithm: sha256WithRSAEncryption 22:d9:7b:72:84:d1:87:78:2f:58:9c:bc:71:d8:bc:13:4c:02: 0d:b5:35:56:6f:1b:1e:ca:b8:c8:3e:db:8d:19:58:08:16:f0: 76:e2:cb:9c:57:32:2e:a8:ff:8f:95:4b:39:92:13:9a:16:c5: 8a:ee:11:b5:66:e3:b9:31:35:d2:87:30:51:6d:92:75:f7:b0: b8:d8:38:d6:dc:2e:28:0d:68:f7:15:69:01:0d:e9:10:59:c4: b4:f2:27:0e:c9:00:58:7c:e8:06:22:b9:b4:e7:3a:d6:69:b1: f3:87:71:2d:e2:49:d7:a5:73:ca:00:45:e9:d8:1d:2b:d8:cb: 02:93:c5:e1:72:5a:f4:40:4d:f2:5c:8e:4f:65:a7:9e:1e:1a: 0a:20:64:8a:23:cc:e2:0a:33:e7:37:51:ec:52:29:ef:d7:4d: 83:76:ee:2e:aa:04:aa:53:82:53:86:a7:d9:29:e6:10:63:fd: 66:91:0d:68:0a:cf:f6:c7:ad:c1:33:04:47:2d:fb:b1:11:f1: 7a:b9:68:25:0b:b1:82:8b:c1:ba:7a:6c:ff:59:4a:e6:25:79: 5a:99:00:fb:5f:4e:ae:98:5c:11:9f:c4:2e:82:63:a1:fc:0c: a9:4f:39:9b:ad:6a:35:7a:c6:bc:fb:5a:8e:fa:f7:0c:a5:90: ee:50:18:51 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt4NOFsjU04sMgLFq+v1yYMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyN2M2MzdhNzA5ZGRiZTdmNjIzN2FmOGQ1YjI5MTNiNDIyMzcxNTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8wcD4rbtf06lkDB2yf1spqLWnGT I1m9cwjN0Di9HRoMPXjJMDbwgpTLOOQSp2XcaG6vrJCqG1+X6JZpyth2YXu4Ifdm 8Dr+cbD0Q8UScYoBJnOU7Obi6L+Fwo7E6pRDjNuLi9c8sIPaqAZzixmP9j1t1XiB 15pnGZunmAnOxFH19xFkQqE3/eiwqgioY/FFu8hkP96CyQ2+7vULVUUrYDp16t3U z1BI1pPOvgaMgdNSx4Gp8aL9D8MhgqtBn7lGnVUhjluPz2w1l4tI6KdQo8ewnZq4 bnM6QNfW1z7khnuGTaeesy6S8mKyjDFt4c5eWMgjG6Berpy8ifveiKe/MwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFCfGN6cJ3b5/YjevjVspE7QiNxV8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE2L2NjN2U2 Yi04Yzg2LTQ1YWItYWMwMy1jYmFkYjY0MzQwZTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYvY2M3ZTZi LThjODYtNDVhYi1hYzAzLWNiYWRiNjQzNDBlMC8xL0o4WTNwd25kdm45aU42LU5X eWtUdENJM0ZYdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuf30MA0EAgACMAcDBQMqEpVAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM4VTANBgkqhkiG9w0BAQsFAAOCAQEAItl7coTRh3gv WJy8cdi8E0wCDbU1Vm8bHsq4yD7bjRlYCBbwduLLnFcyLqj/j5VLOZITmhbFiu4R tWbjuTE10ocwUW2SdfewuNg41twuKA1o9xVpAQ3pEFnEtPInDskAWHzoBiK5tOc6 1mmx84dxLeJJ16VzygBF6dgdK9jLApPF4XJa9EBN8lyOT2Wnnh4aCiBkiiPM4goz 5zdR7FIp79dNg3buLqoEqlOCU4an2SnmEGP9ZpENaArP9setwTMERy37sRHxerlo JQuxgovBunps/1lK5iV5WpkA+19OrphcEZ/ELoJjofwMqU85m61qNXrGvPtajvr3 DKWQ7lAYUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:13 2026 by rpki-client