This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VQlsYRU9KrVQd_GjDCRZhgAbodk.cer File: VQlsYRU9KrVQd_GjDCRZhgAbodk.cer (raw, json) Hash identifier: q2VRFnQH+OILwrHlc9y3RzF5zvsHjyCLydh2plvJv+o= Subject key identifier: 55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E019E8855729AD68E02BF385034F3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:17:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205934 IP: 195.245.235.0/24 IP: 2a0b:a340::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:01:9e:88:55:72:9a:d6:8e:02:bf:38:50:34:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=55096c61153d2ab55077f1a30c245986001ba1d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ae:2e:7a:e4:64:53:a5:93:b2:7c:98:8a:d9: 13:42:eb:fe:17:7c:64:3a:9c:35:aa:e4:f6:2a:46: 45:3f:28:91:18:23:73:1c:6e:ec:91:98:51:34:c1: 18:d7:a2:11:15:4d:f9:39:b0:16:75:e4:f6:0f:4f: dd:75:f0:99:9f:4c:5c:67:98:ed:0d:a4:6b:3d:5a: 6b:aa:c3:19:c0:1a:89:e7:37:b2:7e:39:59:11:e6: 76:ba:24:35:b0:4f:fb:a7:6d:5e:1f:24:66:69:39: 4c:d7:6f:8f:2c:54:ef:ff:85:7c:f5:d5:25:70:bd: 87:ea:46:2c:70:8f:51:5b:4b:af:ea:ed:ff:06:aa: 88:71:cc:3c:33:61:3a:cf:af:7b:35:43:2e:05:ee: 5b:7e:81:e6:11:45:ff:a6:fd:a3:8a:4f:b9:38:14: 1a:39:64:de:87:1f:68:31:f3:5f:5b:e7:f4:e3:3d: 65:df:48:2c:be:74:b8:2f:ad:aa:cd:22:41:67:6c: e0:94:02:a8:86:a8:1a:41:af:4a:36:17:35:f0:b1: 79:f1:9b:a4:fc:54:3d:4d:8a:18:12:9f:29:36:b3: e3:08:5d:49:fc:73:48:ef:d0:b9:de:65:f9:45:83: 65:dd:1e:48:fa:56:58:08:69:9e:92:2a:a1:db:34: 6f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:09:6C:61:15:3D:2A:B5:50:77:F1:A3:0C:24:59:86:00:1B:A1:D9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/49bfec-757f-4319-b45d-9b5d63b5cbf5/1/VQlsYRU9KrVQd_GjDCRZhgAbodk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.245.235.0/24 IPv6: 2a0b:a340::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205934 Signature Algorithm: sha256WithRSAEncryption 63:72:9a:44:2a:ad:ef:f2:bd:2e:a0:27:73:92:7f:96:02:dc: 1c:de:17:f0:41:ec:f5:16:75:17:9b:c8:63:b7:37:2a:e6:44: fb:39:a1:b9:a2:e5:de:fd:6d:41:fe:4d:9c:d5:b1:df:51:87: f1:cd:e8:1f:fa:64:cf:e8:f9:1e:34:6a:35:8c:5c:17:d8:46: bb:1d:12:3b:a8:20:a9:9a:17:85:59:7e:10:a9:30:a2:1d:e2: 2c:65:4c:77:9e:b3:c8:34:1a:9d:a9:d9:33:58:99:ab:09:05: 5e:37:dd:62:0a:75:84:d6:3f:2f:41:eb:c2:39:a6:77:50:3b: e3:99:cf:27:08:a9:25:ba:72:66:ae:0e:91:be:1e:08:fb:e0: f3:b0:26:8e:46:9b:fe:e5:ae:5c:2d:9e:62:bc:d6:5b:1d:2d: 55:f3:25:d8:f0:95:9c:b6:4a:11:39:cc:31:17:b9:23:f2:31: f5:a9:50:70:e2:05:11:04:09:11:4d:68:89:5e:ba:99:d9:dd: 34:c1:30:bb:ed:3f:0b:87:de:9c:04:33:09:40:e5:45:56:c0: 21:b7:cf:5e:17:da:3a:29:99:0b:45:33:3a:d5:07:91:a2:98: 6a:18:19:78:7b:13:ff:8e:a5:15:ce:82:f8:40:c8:fe:bd:54: e6:22:31:82 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5fgGeiFVymtaOAr84UDTzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NTA5NmM2MTE1M2QyYWI1NTA3N2YxYTMwYzI0NTk4NjAwMWJhMWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkq4ueuRkU6WTsnyYitkTQuv+F3xk Opw1quT2KkZFPyiRGCNzHG7skZhRNMEY16IRFU35ObAWdeT2D0/ddfCZn0xcZ5jt DaRrPVprqsMZwBqJ5zeyfjlZEeZ2uiQ1sE/7p21eHyRmaTlM12+PLFTv/4V89dUl cL2H6kYscI9RW0uv6u3/BqqIccw8M2E6z697NUMuBe5bfoHmEUX/pv2jik+5OBQa OWTehx9oMfNfW+f04z1l30gsvnS4L62qzSJBZ2zglAKohqgaQa9KNhc18LF58Zuk /FQ9TYoYEp8pNrPjCF1J/HNI79C53mX5RYNl3R5I+lZYCGmekiqh2zRv6QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFUJbGEVPSq1UHfxowwkWYYAG6HZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUyLzQ5YmZl Yy03NTdmLTQzMTktYjQ1ZC05YjVkNjNiNWNiZjUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIvNDliZmVj LTc1N2YtNDMxOS1iNDVkLTliNWQ2M2I1Y2JmNS8xL1ZRbHNZUlU5S3JWUWRfR2pE Q1JaaGdBYm9kay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAw/XrMA0EAgACMAcDBQMqC6NAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMkbjANBgkqhkiG9w0BAQsFAAOCAQEAY3KaRCqt7/K9 LqAnc5J/lgLcHN4X8EHs9RZ1F5vIY7c3KuZE+zmhuaLl3v1tQf5NnNWx31GH8c3o H/pkz+j5HjRqNYxcF9hGux0SO6ggqZoXhVl+EKkwoh3iLGVMd56zyDQananZM1iZ qwkFXjfdYgp1hNY/L0Hrwjmmd1A745nPJwipJbpyZq4Okb4eCPvg87Amjkab/uWu XC2eYrzWWx0tVfMl2PCVnLZKETnMMRe5I/Ix9alQcOIFEQQJEU1oiV66mdndNMEw u+0/C4fenAQzCUDlRVbAIbfPXhfaOimZC0UzOtUHkaKYahgZeHsT/46lFc6C+EDI /r1U5iIxgg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:34 2026 by rpki-client