This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KJJ3dbRNuHnp85wpd72u1ipP8k0.cer File: KJJ3dbRNuHnp85wpd72u1ipP8k0.cer (raw, json) Hash identifier: DndkwcuRVgd819psphUxAnii79DCazgn89KvoUzEgBU= Subject key identifier: 28:92:77:75:B4:4D:B8:79:E9:F3:9C:29:77:BD:AE:D6:2A:4F:F2:4D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E382CF99D007C603E0FFE7C9295BE32 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/KJJ3dbRNuHnp85wpd72u1ipP8k0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.102.101.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:2c:f9:9d:00:7c:60:3e:0f:fe:7c:92:95:be:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=28927775b44db879e9f39c2977bdaed62a4ff24d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:73:97:3f:ce:56:24:ef:86:b4:7f:75:2c:c0: ae:02:92:08:cc:54:0b:0c:e1:10:fc:d0:43:d2:12: 12:45:db:b8:39:40:a8:e7:c7:d1:34:59:a7:94:97: 0a:f0:61:6b:32:3b:d6:c4:dd:ac:c8:5f:bb:81:3d: 98:75:ae:ed:b3:ae:4c:c7:45:42:7f:8f:15:4f:c6: cd:3b:f1:b1:6c:95:7e:7b:2c:fd:8f:0b:81:a1:de: 3d:30:bb:68:5a:0f:62:0f:d3:7d:84:81:50:fc:2c: b1:37:00:b8:aa:7d:6f:e6:02:27:16:6c:25:5f:f0: 5d:59:75:0b:2f:b7:5f:c2:bb:a9:52:96:1a:32:3b: d5:5c:1f:6c:21:d5:77:8a:f7:06:5a:3e:d1:cb:b0: e2:92:7b:f0:36:da:0b:e6:85:e0:96:e1:75:32:22: a6:05:c9:0a:ee:34:0d:ff:d5:de:42:60:dc:a6:c9: fe:80:ed:79:fc:59:b8:50:5c:43:5c:3c:48:38:09: c5:a9:86:a8:d2:7c:88:15:37:c0:cf:16:48:38:d4: 62:07:19:39:32:ff:15:fb:ff:99:df:6c:04:e7:a1: b5:b0:8f:6f:34:dd:41:11:ea:d9:fe:59:bb:e3:a8: a0:b0:d6:a9:90:3b:f7:b5:c9:db:9d:47:10:c5:f5: fd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:92:77:75:B4:4D:B8:79:E9:F3:9C:29:77:BD:AE:D6:2A:4F:F2:4D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/7ef3e3-242d-4cb3-a524-c44c6beef382/1/KJJ3dbRNuHnp85wpd72u1ipP8k0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.102.101.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:c3:63:10:66:66:63:c5:8b:95:5c:50:84:07:14:ee:51:eb: 91:51:b3:6e:49:2a:f7:85:50:e9:0e:be:77:b1:0c:c6:15:48: 81:54:89:df:f0:30:23:9f:e8:29:44:f0:3c:a5:68:b1:9b:c2: a4:c2:1b:4d:be:21:67:9f:fa:98:8a:42:cd:5f:7b:44:11:c5: 34:21:50:f9:50:e3:cd:27:bf:74:b4:fc:e7:3e:a8:1b:cd:f5: 7d:5a:c3:fc:ec:05:89:80:3b:c3:bf:b0:61:fd:ba:b5:8b:11: c0:98:c4:a3:34:2f:2b:41:fa:8e:7a:36:f1:72:ef:2a:c9:82: 0e:3d:38:83:60:88:56:63:a0:1e:b8:54:b5:36:67:a5:75:10: e0:75:43:f4:2d:d3:04:5d:a3:d4:e1:7d:7b:e0:0a:71:a5:ba: 7d:74:ee:f4:a7:b1:75:12:4a:5a:e9:6d:82:4f:c2:3a:80:16: d0:d1:07:9c:4d:ce:be:46:2f:b8:84:e7:d7:b1:aa:eb:81:1e: 21:16:7c:77:bc:a8:bc:92:e1:68:79:83:25:ff:9e:5f:33:12: e9:14:3b:17:fa:1a:3a:2e:7b:6f:44:9a:ac:c3:3d:50:55:c5: 31:85:06:8d:dc:8b:06:47:d5:7d:f9:6d:40:90:ca:20:75:cc: 0e:f2:b1:b2 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt+OCz5nQB8YD4P/nySlb4yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyODkyNzc3NWI0NGRiODc5ZTlmMzljMjk3N2JkYWVkNjJhNGZmMjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HOXP85WJO+GtH91LMCuApIIzFQL DOEQ/NBD0hISRdu4OUCo58fRNFmnlJcK8GFrMjvWxN2syF+7gT2Yda7ts65Mx0VC f48VT8bNO/GxbJV+eyz9jwuBod49MLtoWg9iD9N9hIFQ/CyxNwC4qn1v5gInFmwl X/BdWXULL7dfwrupUpYaMjvVXB9sIdV3ivcGWj7Ry7DiknvwNtoL5oXgluF1MiKm BckK7jQN/9XeQmDcpsn+gO15/Fm4UFxDXDxIOAnFqYao0nyIFTfAzxZIONRiBxk5 Mv8V+/+Z32wE56G1sI9vNN1BEerZ/lm746igsNapkDv3tcnbnUcQxfX9GwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFCiSd3W0Tbh56fOcKXe9rtYqT/JNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZmLzdlZjNl My0yNDJkLTRjYjMtYTUyNC1jNDRjNmJlZWYzODIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmYvN2VmM2Uz LTI0MmQtNGNiMy1hNTI0LWM0NGM2YmVlZjM4Mi8xL0tKSjNkYlJOdUhucDg1d3Bk NzJ1MWlwUDhrMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwmZlMA0GCSqGSIb3DQEBCwUAA4IBAQAPw2MQ ZmZjxYuVXFCEBxTuUeuRUbNuSSr3hVDpDr53sQzGFUiBVInf8DAjn+gpRPA8pWix m8KkwhtNviFnn/qYikLNX3tEEcU0IVD5UOPNJ790tPznPqgbzfV9WsP87AWJgDvD v7Bh/bq1ixHAmMSjNC8rQfqOejbxcu8qyYIOPTiDYIhWY6AeuFS1NmeldRDgdUP0 LdMEXaPU4X174Apxpbp9dO70p7F1Ekpa6W2CT8I6gBbQ0QecTc6+Ri+4hOfXsarr gR4hFnx3vKi8kuFoeYMl/55fMxLpFDsX+ho6LntvRJqswz1QVcUxhQaN3IsGR9V9 +W1AkMogdcwO8rGy -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:04 2026 by rpki-client