This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer File: RoZEuS85TK82Z722rz44aZxU8xU.cer (raw, json) Hash identifier: pillQNn0OP9uidbA+BTH+NwXAx5o7PcNtj9nyBP3/ZY= Subject key identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910B0917378183B877FEB618CB4B944 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216383 IP: 146.19.70.0/24 IP: 2a13:c4c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 21:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b0:91:73:78:18:3b:87:7f:eb:61:8c:b4:b9:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=468644b92f394caf3667bdb6af3e38699c54f315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e4:3f:aa:a5:af:ee:9a:cf:d1:df:4e:35:32: 86:6e:83:e3:c1:ef:e4:a7:1d:1c:dc:91:4f:3c:97: d0:67:2b:24:a5:37:df:7f:f3:10:82:bf:af:1f:cf: 09:5e:91:a1:0c:c5:22:55:e7:fb:a1:1e:08:91:01: 86:e4:43:51:7c:91:bc:20:9e:ce:a9:b4:a3:01:3c: 78:73:69:ce:66:d7:a4:cb:af:e5:5e:27:ef:7f:32: 7c:43:20:83:74:10:f9:c1:2c:e7:82:0b:5a:cb:f5: be:42:19:9f:74:57:81:58:b7:f2:04:e8:d6:1a:66: fd:3f:f0:08:7e:f8:d3:43:19:fb:39:c9:45:da:8c: a6:80:73:0b:4c:05:1d:25:84:2a:20:10:91:e5:9c: df:a3:8a:43:64:cd:5b:3e:3b:fd:d1:d7:0c:2e:82: 30:57:69:ee:a1:1f:1a:c0:cc:cb:af:b2:17:f2:17: a0:d3:d0:09:64:cc:be:3e:59:b2:62:74:e9:b6:84: fe:51:4a:b6:6d:6b:00:e5:04:ed:dc:14:8c:a1:f4: 64:7e:52:a5:69:81:36:6a:72:40:2e:8e:b9:d3:0c: e5:be:ae:62:e1:c8:77:b1:b4:f3:55:35:f6:ea:f6: 42:5c:94:21:ff:93:ef:12:24:dc:ea:04:63:0c:46: cd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.70.0/24 IPv6: 2a13:c4c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216383 Signature Algorithm: sha256WithRSAEncryption a7:ee:83:45:b2:6c:3e:13:b5:6c:98:c4:11:95:39:c7:18:ee: 65:ee:5a:c6:4f:16:e6:a5:7b:04:47:eb:d6:07:ff:9a:3b:a4: d4:97:2b:67:ed:01:72:7a:bb:26:1f:3f:98:52:c8:ab:6f:e0: 66:ad:8a:7f:2e:fc:d1:1e:11:54:ab:b1:13:77:fe:97:64:d5: a0:97:d8:f2:86:93:d7:12:cc:52:f5:86:f9:c8:32:cd:92:81: c5:3d:e6:60:cd:58:07:74:66:34:c4:8f:cb:65:67:df:67:41: 2e:4e:f6:ed:42:86:a8:91:51:b4:21:45:ab:18:a6:94:36:53: 9c:95:7e:87:25:0d:de:f4:ae:2f:10:35:10:28:11:96:58:86: 23:6a:67:10:39:cf:88:7e:88:bc:0a:aa:4c:3e:53:40:19:7a: 29:4f:42:84:57:81:49:e8:55:4f:d5:ca:b3:5c:be:6a:3d:5a: c8:a8:f1:24:e5:a4:35:af:87:bd:46:33:34:4d:ac:53:47:a0: c4:e8:79:8a:9e:5d:e0:c6:b4:bf:ef:aa:53:c1:f9:c1:2b:f7: f5:81:2c:41:e8:78:2d:13:e8:b1:5e:6c:80:dd:45:ee:10:5f: 87:42:15:02:1e:0b:0f:5d:98:34:47:34:2c:37:e0:fa:ee:35: 68:a6:5d:13 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5ELCRc3gYO4d/62GMtLlEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Njg2NDRiOTJmMzk0Y2FmMzY2N2JkYjZhZjNlMzg2OTljNTRmMzE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+Q/qqWv7prP0d9ONTKGboPjwe/k px0c3JFPPJfQZyskpTfff/MQgr+vH88JXpGhDMUiVef7oR4IkQGG5ENRfJG8IJ7O qbSjATx4c2nOZteky6/lXifvfzJ8QyCDdBD5wSznggtay/W+QhmfdFeBWLfyBOjW Gmb9P/AIfvjTQxn7OclF2oymgHMLTAUdJYQqIBCR5Zzfo4pDZM1bPjv90dcMLoIw V2nuoR8awMzLr7IX8heg09AJZMy+PlmyYnTptoT+UUq2bWsA5QTt3BSMofRkflKl aYE2anJALo650wzlvq5i4ch3sbTzVTX26vZCXJQh/5PvEiTc6gRjDEbNNwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFEaGRLkvOUyvNme9tq8+OGmcVPMVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QzLzA5MTg0 MS0wMmZlLTQ0ZGItYmExNi1hNWUxM2I0ZmIxMmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMvMDkxODQx LTAyZmUtNDRkYi1iYTE2LWE1ZTEzYjRmYjEyYi8xL1JvWkV1Uzg1VEs4Mlo3MjJy ejQ0YVp4VTh4VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAkhNGMA0EAgACMAcDBQMqE8TAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNNPzANBgkqhkiG9w0BAQsFAAOCAQEAp+6DRbJsPhO1 bJjEEZU5xxjuZe5axk8W5qV7BEfr1gf/mjuk1JcrZ+0Bcnq7Jh8/mFLIq2/gZq2K fy780R4RVKuxE3f+l2TVoJfY8oaT1xLMUvWG+cgyzZKBxT3mYM1YB3RmNMSPy2Vn 32dBLk727UKGqJFRtCFFqximlDZTnJV+hyUN3vSuLxA1ECgRlliGI2pnEDnPiH6I vAqqTD5TQBl6KU9ChFeBSehVT9XKs1y+aj1ayKjxJOWkNa+HvUYzNE2sU0egxOh5 ip5d4Ma0v++qU8H5wSv39YEsQeh4LRPosV5sgN1F7hBfh0IVAh4LD12YNEc0LDfg +u41aKZdEw== -----END CERTIFICATE-----Generated at Tue Feb 3 02:16:47 2026 by rpki-client