This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PYUAvN5JaJnF0fqSTeTngn2ZFs4.cer File: PYUAvN5JaJnF0fqSTeTngn2ZFs4.cer (raw, json) Hash identifier: +tFCZkvrGI9fXxlFB0exFBDxdl2bfj8gCbjVMqHQGTM= Subject key identifier: 3D:85:00:BC:DE:49:68:99:C5:D1:FA:92:4D:E4:E7:82:7D:99:16:CE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7835390BDF6B90FDDC7B164765515FBA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/62/419b5d-14aa-4e36-9df7-7526c9f05cd8/1/PYUAvN5JaJnF0fqSTeTngn2ZFs4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/62/419b5d-14aa-4e36-9df7-7526c9f05cd8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25241 IP: 195.234.144.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:39:0b:df:6b:90:fd:dc:7b:16:47:65:51:5f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3d8500bcde496899c5d1fa924de4e7827d9916ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d9:a4:05:90:71:ed:85:12:c5:f8:24:17:a9: b3:6b:dc:be:67:c5:91:03:5c:3a:10:28:e5:27:e0: b5:f2:90:9c:d1:d6:f3:1f:62:cc:0c:0e:34:75:60: a6:72:92:6b:8d:45:f6:85:ac:66:3c:82:27:a8:05: 19:5e:2c:c7:2f:eb:41:60:64:00:95:3a:a5:92:28: ec:db:1d:02:40:6a:4c:f6:80:e3:43:3f:c8:ca:64: cf:9a:9c:b6:40:3e:04:4a:f2:1c:80:62:05:7a:2b: 76:a2:c2:90:b8:26:1c:0f:4b:58:a3:62:96:86:33: 27:1e:1e:2e:90:ef:67:b3:d2:82:d5:b2:4d:b9:70: 14:1d:c0:92:39:2e:ad:b5:5b:a7:99:e8:e7:ec:63: ac:56:48:40:d6:4f:b8:54:79:9d:45:f3:b0:9d:1a: b1:66:87:86:cd:4d:15:60:51:04:d9:bb:19:d0:d7: 33:95:74:07:8b:a1:7f:14:8c:2c:dc:aa:83:c9:f7: a6:aa:bb:63:d2:51:8e:1c:a7:02:f9:3f:00:1f:79: 84:1a:a5:48:f5:e0:1c:79:be:fc:df:8c:a3:99:2e: 5a:03:31:95:e7:c6:a5:93:be:e5:f0:8a:01:c2:33: 22:f4:e0:f8:b2:ef:38:92:01:de:b8:bf:12:ab:4f: 06:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:85:00:BC:DE:49:68:99:C5:D1:FA:92:4D:E4:E7:82:7D:99:16:CE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/419b5d-14aa-4e36-9df7-7526c9f05cd8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/419b5d-14aa-4e36-9df7-7526c9f05cd8/1/PYUAvN5JaJnF0fqSTeTngn2ZFs4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.234.144.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25241 Signature Algorithm: sha256WithRSAEncryption 84:24:e8:2c:5b:8b:c5:fb:53:8f:f0:fd:27:98:a2:dd:13:a4: 48:97:ad:7d:0a:d4:bf:b2:5d:5c:38:50:99:d0:d4:c5:dc:b4: 87:da:98:5e:eb:92:c8:0f:13:ee:01:cf:7d:16:a6:70:bb:11: c7:75:ee:b0:5c:a7:d6:99:f5:ad:1c:7b:b5:0e:97:3e:ac:df: e6:f4:bd:75:2d:e1:cd:53:d0:b6:a5:d0:cd:28:9b:9c:5e:bb: 69:8d:f4:cd:72:f6:44:91:c4:81:a0:66:ac:91:87:8b:cb:4f: 6a:ad:c2:51:e9:29:39:49:cf:12:20:c7:6a:49:41:b2:03:17: 0a:9d:b7:a6:2e:14:d2:cc:fb:ec:63:c2:17:ec:72:4a:82:b3: 53:03:57:a8:de:4f:9b:03:f2:15:12:bb:47:67:3e:5d:15:8d: 79:fe:36:cc:9c:4f:f7:5d:4b:45:48:96:ac:6a:d0:8f:3f:9c: d7:80:1c:12:b1:fc:f0:57:e4:2d:74:c8:ce:19:4f:0e:8b:10: 47:47:83:d7:df:f8:19:81:f6:dd:95:b0:9a:fa:04:a6:74:6e: ea:2a:05:87:a8:19:f8:3e:56:9c:57:f4:2e:0d:c1:bd:f0:3b: db:41:be:0e:8d:ca:fc:d7:bd:57:06:0a:17:45:0f:78:8d:e0: bf:90:14:f9 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt4NTkL32uQ/dx7FkdlUV+6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDg1MDBiY2RlNDk2ODk5YzVkMWZhOTI0ZGU0ZTc4MjdkOTkxNmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtmkBZBx7YUSxfgkF6mza9y+Z8WR A1w6ECjlJ+C18pCc0dbzH2LMDA40dWCmcpJrjUX2haxmPIInqAUZXizHL+tBYGQA lTqlkijs2x0CQGpM9oDjQz/IymTPmpy2QD4ESvIcgGIFeit2osKQuCYcD0tYo2KW hjMnHh4ukO9ns9KC1bJNuXAUHcCSOS6ttVunmejn7GOsVkhA1k+4VHmdRfOwnRqx ZoeGzU0VYFEE2bsZ0NczlXQHi6F/FIws3KqDyfemqrtj0lGOHKcC+T8AH3mEGqVI 9eAceb7834yjmS5aAzGV58alk77l8IoBwjMi9OD4su84kgHeuL8Sq08G8wIDAQAB o4ICnzCCApswHQYDVR0OBBYEFD2FALzeSWiZxdH6kk3k54J9mRbOMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYyLzQxOWI1 ZC0xNGFhLTRlMzYtOWRmNy03NTI2YzlmMDVjZDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIvNDE5YjVk LTE0YWEtNGUzNi05ZGY3LTc1MjZjOWYwNWNkOC8xL1BZVUF2TjVKYUpuRjBmcVNU ZVRuZ24yWkZzNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAw+qQMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AmKZMA0GCSqGSIb3DQEBCwUAA4IBAQCEJOgsW4vF+1OP8P0nmKLdE6RIl619CtS/ sl1cOFCZ0NTF3LSH2phe65LIDxPuAc99FqZwuxHHde6wXKfWmfWtHHu1Dpc+rN/m 9L11LeHNU9C2pdDNKJucXrtpjfTNcvZEkcSBoGaskYeLy09qrcJR6Sk5Sc8SIMdq SUGyAxcKnbemLhTSzPvsY8IX7HJKgrNTA1eo3k+bA/IVErtHZz5dFY15/jbMnE/3 XUtFSJasatCPP5zXgBwSsfzwV+QtdMjOGU8OixBHR4PX3/gZgfbdlbCa+gSmdG7q KgWHqBn4PlacV/QuDcG98DvbQb4Ojcr8171XBgoXRQ94jeC/kBT5 -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:08 2026 by rpki-client