This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer File: LRjYfouf6XS-3wl_iJSDmIYaxH4.cer (raw, json) Hash identifier: NNt+6tInEWlscCEVMV+p1Rviq+JzP2uWoH0LVajmH+c= Subject key identifier: 2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834D0988F274A3CCCDC90ABA6E60AEA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:05 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211196 IP: 109.121.127.0/24 IP: 185.53.112.0/22 IP: 185.198.68.0/24 IP: 2a0b:6f80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:d0:98:8f:27:4a:3c:cc:dc:90:ab:a6:e6:0a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2d18d87e8b9fe974bedf097f88948398861ac47e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:01:ce:12:63:ba:b3:25:aa:36:17:2a:3d:0c: 3c:30:2a:68:0a:92:c9:57:b2:4d:b0:6d:53:22:8a: 79:a2:98:4b:e0:b9:df:ad:06:ac:c8:0b:3b:35:64: b1:ac:9a:26:cb:5d:24:2b:c4:28:b3:5e:46:49:3b: 1e:98:67:e2:ed:c7:cb:4d:ee:a6:63:ca:2a:0d:c1: 06:f0:4e:72:45:9c:ee:b6:dd:a8:35:00:20:35:ba: 1b:b1:31:61:b5:af:5b:1d:c1:0e:a4:1d:e6:19:2f: 45:64:eb:77:60:9e:97:5c:de:2f:25:a9:65:ff:da: ae:4d:f7:29:b9:8c:25:0a:3e:fe:04:2d:0b:36:4b: de:c0:1a:77:1f:b7:0e:d7:66:63:8c:cc:82:f0:82: 91:c3:20:46:c8:a8:ab:58:87:97:b9:4b:f2:11:fd: e4:a5:eb:c0:56:13:c8:19:5a:4d:c3:80:c9:d2:52: df:6e:bb:31:ca:9e:39:a9:d2:02:85:1a:5a:3f:cb: f7:b0:df:c0:66:76:8c:e3:e4:ff:44:32:e7:86:95: 0b:74:16:56:06:4b:be:02:16:83:65:1b:0a:5d:e0: bb:46:58:5c:73:7a:1b:0f:4b:8a:4e:93:2c:cc:8e: a6:73:e3:ca:22:d6:55:ba:c7:89:44:f7:1d:a8:80: 62:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.121.127.0/24 185.53.112.0/22 185.198.68.0/24 IPv6: 2a0b:6f80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211196 Signature Algorithm: sha256WithRSAEncryption 4d:34:a2:13:8d:02:21:7a:94:a1:67:09:bd:7d:0c:e0:f3:46: dd:83:9e:ee:72:0c:68:b8:5d:51:75:dc:bc:4d:b9:d2:32:9f: 63:ff:20:d1:c1:b3:a8:ce:09:92:be:8e:69:79:92:ae:9d:1d: 24:7f:02:a3:cc:a5:7b:f0:40:61:c2:81:c0:63:fa:f5:0c:bb: 5b:40:75:ef:14:f3:f5:47:c4:63:23:f6:35:df:06:3e:bb:96: b3:6b:48:b9:3c:7d:b0:39:66:38:9f:dd:a2:87:b8:dd:fc:f8: 26:02:c0:58:e4:e2:9f:fd:5d:fa:13:ea:39:7f:8d:fa:dd:69: 51:22:1f:e9:d6:c2:5d:ba:21:c3:a7:dd:c3:36:22:21:fc:51: 02:ca:a8:36:73:bb:dd:e4:15:62:32:df:10:14:25:c4:ec:e2: 2c:20:cf:32:3f:7d:81:bb:e1:c0:72:e0:20:b8:74:d5:23:c2: 86:31:9e:cd:fb:23:5b:35:90:38:5e:bb:37:5e:79:49:e2:b8: 1b:2d:3c:62:a7:8c:5e:24:6e:e6:77:a8:22:24:67:f7:43:28: 39:47:3e:09:40:5a:05:85:72:ee:67:0e:ea:62:5b:fa:7e:0d: 76:3e:4d:8e:09:31:53:89:a5:34:4b:e1:eb:18:c2:12:f0:66: 76:19:ed:02 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt4NNCYjydKPMzckKum5grqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZDE4ZDg3ZThiOWZlOTc0YmVkZjA5N2Y4ODk0ODM5ODg2MWFjNDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gHOEmO6syWqNhcqPQw8MCpoCpLJ V7JNsG1TIop5ophL4LnfrQasyAs7NWSxrJomy10kK8Qos15GSTsemGfi7cfLTe6m Y8oqDcEG8E5yRZzutt2oNQAgNbobsTFhta9bHcEOpB3mGS9FZOt3YJ6XXN4vJall /9quTfcpuYwlCj7+BC0LNkvewBp3H7cO12ZjjMyC8IKRwyBGyKirWIeXuUvyEf3k pevAVhPIGVpNw4DJ0lLfbrsxyp45qdIChRpaP8v3sN/AZnaM4+T/RDLnhpULdBZW Bku+AhaDZRsKXeC7Rlhcc3obD0uKTpMszI6mc+PKItZVuseJRPcdqIBiGwIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFC0Y2H6Ln+l0vt8Jf4iUg5iGGsR+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZiL2VjODVm NS03ZjY1LTQ5ZjItOThiOS1jZjA5MDcxMzMyNDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmIvZWM4NWY1 LTdmNjUtNDlmMi05OGI5LWNmMDkwNzEzMzI0MS8xL0xSallmb3VmNlhTLTN3bF9p SlNEbUlZYXhINC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQAbXl/AwQCuTVwAwQAucZEMA0EAgACMAcDBQAq C2+AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwM4/DANBgkqhkiG9w0BAQsFAAOC AQEATTSiE40CIXqUoWcJvX0M4PNG3YOe7nIMaLhdUXXcvE250jKfY/8g0cGzqM4J kr6OaXmSrp0dJH8Co8yle/BAYcKBwGP69Qy7W0B17xTz9UfEYyP2Nd8GPruWs2tI uTx9sDlmOJ/dooe43fz4JgLAWOTin/1d+hPqOX+N+t1pUSIf6dbCXbohw6fdwzYi IfxRAsqoNnO73eQVYjLfEBQlxOziLCDPMj99gbvhwHLgILh01SPChjGezfsjWzWQ OF67N155SeK4Gy08YqeMXiRu5neoIiRn90MoOUc+CUBaBYVy7mcO6mJb+n4Ndj5N jgkxU4mlNEvh6xjCEvBmdhntAg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:29 2026 by rpki-client