This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer File: KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer (raw, json) Hash identifier: xtnI/eRdmbvG3rA2V67rmFEVwnPDcBHscXdfkSKCzJs= Subject key identifier: 29:92:15:18:C5:DA:1B:84:C5:97:1A:79:BC:74:E8:AC:07:70:FD:49 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BEB1EEB9F532134834C488CC0EA7C359F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 23 Jan 2026 13:50:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201603 IP: 91.217.32.0/23 IP: 185.69.104.0/22 IP: 188.92.30.0/24 IP: 188.214.108.0/24 IP: 2a05:2140::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:eb:1e:eb:9f:53:21:34:83:4c:48:8c:c0:ea:7c:35:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 23 13:50:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29921518c5da1b84c5971a79bc74e8ac0770fd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:7b:d1:21:e0:06:16:ca:fe:fd:82:b2:2c: d1:3e:b7:62:ba:95:ba:68:a8:72:dc:a1:ff:2b:c1: 18:4d:6c:49:a9:66:55:a8:9c:88:08:7d:96:3a:7c: 2d:19:8c:c3:96:e9:e0:09:11:5e:9a:02:5b:af:29: 45:29:1d:27:18:08:48:e6:20:2d:75:4f:0b:5d:bb: ef:6e:ad:0a:05:a3:bc:c2:3d:69:ec:c0:dc:91:6f: 66:dd:e0:98:68:75:c3:73:5f:16:8f:f8:0f:8e:f4: d4:aa:fc:de:cd:e6:ad:3c:a0:a0:53:8c:a5:e6:78: aa:71:4e:ba:0b:23:7f:8c:47:12:05:e9:d2:77:11: cc:32:a3:e9:31:fc:39:b7:1c:18:95:39:b7:97:23: 24:18:6e:85:3f:62:66:69:f0:c1:17:60:c2:2a:61: 58:27:a0:2b:c0:38:68:87:22:4d:f3:83:b9:95:9e: 86:8d:e0:5d:88:63:93:63:3e:a9:26:65:b5:5a:ad: 12:e0:c2:8f:a4:24:f1:58:6b:7e:da:9d:c0:f9:7b: bc:3d:b1:0e:36:09:a6:bd:69:84:55:2c:a1:9b:61: 80:b8:f0:e9:22:c3:27:7a:f3:bb:c7:29:64:95:05: f8:aa:7b:ca:84:13:e9:11:24:1f:d2:a9:5f:f2:79: 95:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:92:15:18:C5:DA:1B:84:C5:97:1A:79:BC:74:E8:AC:07:70:FD:49 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.217.32.0/23 185.69.104.0/22 188.92.30.0/24 188.214.108.0/24 IPv6: 2a05:2140::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201603 Signature Algorithm: sha256WithRSAEncryption 44:d4:a0:23:4f:66:1b:38:d2:41:ba:b9:64:ea:74:a8:f8:dc: ae:25:9c:38:98:3d:8b:b6:39:50:e8:2f:6f:98:ad:c2:2f:a8: 61:b9:2e:0e:c4:eb:20:ac:f3:39:a5:e7:92:ab:3c:42:53:bf: 95:ac:88:ab:10:46:fc:81:47:a5:49:8d:f3:55:bf:03:70:f8: a2:c6:52:ae:ea:8a:3b:8e:a8:3d:1c:ac:e9:08:57:55:49:91: 44:68:27:c5:d3:4e:a4:a8:5c:f2:e8:a8:03:e5:14:23:73:69: 9e:40:22:ee:92:a0:ad:c2:0a:b3:a0:c1:f2:fe:c1:0d:36:a2: c3:08:ec:6c:c9:8b:53:78:95:97:f0:22:e1:ae:62:69:65:db: fc:34:0c:83:b5:9a:97:29:56:f4:7c:85:33:6b:9e:64:51:de: 8a:2a:5d:a5:62:5c:79:65:9b:ec:41:31:62:a4:2f:bd:5b:cc: 28:b2:6a:c7:88:25:47:16:36:c0:c9:fa:99:08:e3:51:ea:20: 27:21:6c:39:25:65:86:b6:2d:08:b9:cf:bc:39:e8:46:7f:dc: 76:c1:77:9e:58:a1:d1:ef:b6:a1:db:17:e8:de:c1:dc:08:ca: b0:0a:bb:78:9b:33:22:af:7b:a3:da:22:53:e6:2f:48:b6:5a: 2e:b8:cb:dd -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZvrHuufUyE0g0xIjMDqfDWfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTIzMTM1MDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOTkyMTUxOGM1ZGExYjg0YzU5NzFhNzliYzc0ZThhYzA3NzBmZDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBh70SHgBhbK/v2CsizRPrdiupW6 aKhy3KH/K8EYTWxJqWZVqJyICH2WOnwtGYzDlungCRFemgJbrylFKR0nGAhI5iAt dU8LXbvvbq0KBaO8wj1p7MDckW9m3eCYaHXDc18Wj/gPjvTUqvzezeatPKCgU4yl 5niqcU66CyN/jEcSBenSdxHMMqPpMfw5txwYlTm3lyMkGG6FP2JmafDBF2DCKmFY J6ArwDhohyJN84O5lZ6GjeBdiGOTYz6pJmW1Wq0S4MKPpCTxWGt+2p3A+Xu8PbEO NgmmvWmEVSyhm2GAuPDpIsMnevO7xylklQX4qnvKhBPpESQf0qlf8nmVgQIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFCmSFRjF2huExZcaebx06KwHcP1JMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MzLzcxNTgz NS1iYzFkLTRjYjgtOTYxOC00ZWYyODNjZTdmZjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMvNzE1ODM1 LWJjMWQtNGNiOC05NjE4LTRlZjI4M2NlN2ZmMS8xL0taSVZHTVhhRzRURmx4cDV2 SFRvckFkd19Vay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQBW9kgAwQCuUVoAwQAvFweAwQAvNZsMA0EAgAC MAcDBQMqBSFAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMTgzANBgkqhkiG9w0B AQsFAAOCAQEARNSgI09mGzjSQbq5ZOp0qPjcriWcOJg9i7Y5UOgvb5itwi+oYbku DsTrIKzzOaXnkqs8QlO/layIqxBG/IFHpUmN81W/A3D4osZSruqKO46oPRys6QhX VUmRRGgnxdNOpKhc8uioA+UUI3NpnkAi7pKgrcIKs6DB8v7BDTaiwwjsbMmLU3iV l/Ai4a5iaWXb/DQMg7WalylW9HyFM2ueZFHeiipdpWJceWWb7EExYqQvvVvMKLJq x4glRxY2wMn6mQjjUeogJyFsOSVlhrYtCLnPvDnoRn/cdsF3nlih0e+2odsX6N7B 3AjKsAq7eJszIq97o9oiU+YvSLZaLrjL3Q== -----END CERTIFICATE-----Generated at Mon Feb 9 15:02:49 2026 by rpki-client