This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JrnOsQwsjADRYJlgPMEb7QBUe-Y.cer File: JrnOsQwsjADRYJlgPMEb7QBUe-Y.cer (raw, json) Hash identifier: GrNNnXTN/QHkgDvxPrTxHaZkjF3N7SVHA7FR8WU5Hh4= Subject key identifier: 26:B9:CE:B1:0C:2C:8C:00:D1:60:99:60:3C:C1:1B:ED:00:54:7B:E6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1591C8A05D06AC4F2E0C12BFEEE353 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/JrnOsQwsjADRYJlgPMEb7QBUe-Y.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:18 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 29686 IP: 82.96.64.0/18 IP: 85.190.0.0/18 IP: 185.191.224.0/22 IP: 2001:1bc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:91:c8:a0:5d:06:ac:4f:2e:0c:12:bf:ee:e3:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=26b9ceb10c2c8c00d16099603cc11bed00547be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:7a:f0:9b:54:87:25:90:25:a0:d9:39:e3: 02:e5:86:0d:5a:0a:13:ea:e3:93:bf:93:50:1d:3d: 37:f4:7c:7e:26:6d:73:c9:4f:3c:6b:63:c0:16:16: e8:f3:ab:9c:cb:38:53:c4:7e:3f:f1:9b:70:f6:c7: 45:92:2a:33:f0:db:18:e9:fa:d4:0e:89:8e:04:d4: 0e:d7:66:b1:c2:6d:9c:ef:1e:d0:55:5e:65:2e:69: 0e:e7:9d:32:35:03:04:8c:fa:e3:6f:3e:03:be:1e: 11:4d:e5:db:3b:02:f5:fd:fc:4c:24:ad:81:a4:8c: d8:e4:a2:b0:f8:2e:5f:36:54:a0:31:4a:8e:7f:c2: 3a:04:14:0d:32:ea:9b:7b:d4:a5:8a:e8:52:20:ba: 21:01:ae:21:dc:62:2e:1b:95:a2:bb:c1:eb:b8:67: 7c:05:1e:c8:7b:bd:ce:f8:9b:87:d0:ad:67:52:8c: 51:87:04:3c:24:0d:30:da:60:21:2c:05:0d:04:30: a9:ee:47:5f:62:61:51:37:f0:82:ea:24:b0:a2:5d: 58:ae:42:c7:c3:e3:04:e9:bf:32:3c:ce:14:41:38: 90:b4:87:e0:9e:c8:a5:8c:8d:74:41:bf:92:fb:7c: b6:be:7a:1c:e9:16:b0:29:74:a6:83:be:d9:0f:14: 7d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B9:CE:B1:0C:2C:8C:00:D1:60:99:60:3C:C1:1B:ED:00:54:7B:E6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc98cb-971d-4b04-b81e-b610568466b3/1/JrnOsQwsjADRYJlgPMEb7QBUe-Y.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.96.64.0/18 85.190.0.0/18 185.191.224.0/22 IPv6: 2001:1bc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 29686 Signature Algorithm: sha256WithRSAEncryption 8b:cc:81:d8:7f:3b:cb:0b:d4:06:37:b2:21:b5:3c:83:2e:2c: 93:4f:f0:df:90:20:1e:18:bf:f8:32:89:e9:7d:93:15:0c:48: 43:3c:78:4f:99:87:50:f0:8c:c9:c1:b5:ab:f4:49:bc:b3:bc: 92:43:94:92:3b:22:5c:c2:c1:7f:5c:1d:1a:71:a8:e1:95:77: 07:a3:5b:fb:71:d3:d8:78:23:d7:ef:ad:3d:f1:ee:12:73:65: 2f:4f:18:f0:b1:ae:0e:30:3f:d9:11:84:a9:5c:e2:85:0a:09: f0:49:47:d4:ea:70:4f:2c:98:62:37:1d:e6:27:88:c6:b9:d5: bc:2d:76:34:bc:3f:5d:af:3c:44:34:55:b0:ee:54:dd:4e:fb: aa:71:29:54:3d:a9:df:f1:29:48:f1:e1:07:cf:43:50:8b:a9: 2a:39:7c:56:9a:7c:89:29:bf:8a:ad:e0:dc:ee:c8:89:2c:d6: bc:d3:0d:2a:9a:28:1b:05:77:f1:f5:75:41:52:f5:7c:ec:4a: ed:2e:4d:a4:5d:16:69:4c:68:8f:42:9d:57:9c:43:89:b0:53: 9c:8e:b0:77:4c:68:e8:87:0a:9e:bf:cc:fb:2b:52:04:cd:46: b6:c9:ff:f8:f1:f0:dd:90:d1:fa:e7:9c:a2:63:fb:e5:29:2c: 5e:84:b8:24 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt/FZHIoF0GrE8uDBK/7uNTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNmI5Y2ViMTBjMmM4YzAwZDE2MDk5NjAzY2MxMWJlZDAwNTQ3YmU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDR68JtUhyWQJaDZOeMC5YYNWgoT 6uOTv5NQHT039Hx+Jm1zyU88a2PAFhbo86ucyzhTxH4/8Ztw9sdFkioz8NsY6frU DomOBNQO12axwm2c7x7QVV5lLmkO550yNQMEjPrjbz4Dvh4RTeXbOwL1/fxMJK2B pIzY5KKw+C5fNlSgMUqOf8I6BBQNMuqbe9SliuhSILohAa4h3GIuG5Wiu8HruGd8 BR7Ie73O+JuH0K1nUoxRhwQ8JA0w2mAhLAUNBDCp7kdfYmFRN/CC6iSwol1YrkLH w+ME6b8yPM4UQTiQtIfgnsiljI10Qb+S+3y2vnoc6RawKXSmg77ZDxR90wIDAQAB o4ICujCCArYwHQYDVR0OBBYEFCa5zrEMLIwA0WCZYDzBG+0AVHvmMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVkL2JjOThj Yi05NzFkLTRiMDQtYjgxZS1iNjEwNTY4NDY2YjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQvYmM5OGNi LTk3MWQtNGIwNC1iODFlLWI2MTA1Njg0NjZiMy8xL0pybk9zUXdzakFEUllKbGdQ TUViN1FCVWUtWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQGUmBAAwQGVb4AAwQCub/gMA0EAgACMAcDBQMg ARvAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAnP2MA0GCSqGSIb3DQEBCwUAA4IB AQCLzIHYfzvLC9QGN7IhtTyDLiyTT/DfkCAeGL/4MonpfZMVDEhDPHhPmYdQ8IzJ wbWr9Em8s7ySQ5SSOyJcwsF/XB0acajhlXcHo1v7cdPYeCPX76098e4Sc2UvTxjw sa4OMD/ZEYSpXOKFCgnwSUfU6nBPLJhiNx3mJ4jGudW8LXY0vD9drzxENFWw7lTd TvuqcSlUPanf8SlI8eEHz0NQi6kqOXxWmnyJKb+KreDc7siJLNa80w0qmigbBXfx 9XVBUvV87ErtLk2kXRZpTGiPQp1XnEOJsFOcjrB3TGjohwqev8z7K1IEzUa2yf/4 8fDdkNH655yiY/vlKSxehLgk -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:29 2026 by rpki-client