This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W4oWUi7DSxxbxHCCBswZY6FbvbE.cer File: W4oWUi7DSxxbxHCCBswZY6FbvbE.cer (raw, json) Hash identifier: B0qOIJyVFtJpwzWPYlm2XKfRKZG/uHHqljdcu51tSZU= Subject key identifier: 5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B367F63FF3298EA1D02CDC8A98B13FE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/W4oWUi7DSxxbxHCCBswZY6FbvbE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212905 IP: 5.182.247.0/24 IP: 178.159.35.0/24 IP: 2a0c:d200::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:7f:63:ff:32:98:ea:1d:02:cd:c8:a9:8b:13:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5b8a16522ec34b1c5bc4708206cc1963a15bbdb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8d:02:2d:e7:d0:db:26:f2:4a:06:13:ac:23: 4b:f4:77:8d:c2:9d:d5:13:b7:88:34:6c:ef:41:fb: 1f:b5:85:76:df:98:08:77:5f:7b:87:1f:25:71:b9: 1c:90:83:64:91:67:25:15:90:a8:ac:9b:02:fc:17: 1c:1a:7b:3d:af:37:78:51:e0:aa:e1:74:f1:87:34: c4:48:c7:8f:73:4e:0a:c5:69:6d:15:b3:8f:0f:60: 8a:20:4a:a9:1b:f8:f0:90:43:3d:3b:1a:7d:26:c9: 23:66:79:98:6c:c8:ac:3b:43:8e:54:cf:84:f1:08: 95:2a:76:aa:ae:5c:76:db:6f:cb:e5:df:96:25:bd: a1:35:6e:71:65:e9:3e:94:72:cf:16:4a:ca:5a:32: 15:34:cd:34:a0:fa:4a:af:5e:44:5c:2b:8e:cb:5e: b2:82:9a:f9:cc:9f:c0:57:e7:2c:58:4c:87:87:15: a6:9f:49:72:2d:a1:39:ee:2a:9c:07:f7:0d:d6:e9: dc:cf:ba:3a:f9:99:80:04:03:29:84:2f:6f:b9:1e: a1:1d:21:ca:8a:b7:df:19:52:41:3b:66:fe:49:0c: e9:70:e6:d6:7f:39:e1:a7:1e:f5:46:90:a2:c5:66: 14:c5:ae:26:47:22:95:f3:4c:67:b3:c0:99:ba:14: a9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8A:16:52:2E:C3:4B:1C:5B:C4:70:82:06:CC:19:63:A1:5B:BD:B1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/34536a-771a-4775-b2bd-cac8ed76a844/1/W4oWUi7DSxxbxHCCBswZY6FbvbE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.247.0/24 178.159.35.0/24 IPv6: 2a0c:d200::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212905 Signature Algorithm: sha256WithRSAEncryption 50:9d:2a:d8:b7:77:72:da:ac:bc:6a:7f:60:b8:2c:46:8c:68: 41:7a:c9:c1:68:d9:20:7b:d5:a4:6a:d3:59:cc:49:00:88:85: dc:d7:de:e0:57:17:a7:b3:49:2d:d9:1b:69:a3:11:96:30:1b: 30:9c:0d:56:7a:9e:51:f3:51:9a:28:2b:19:19:df:4c:ae:57: ca:5f:ad:28:0a:d5:55:11:88:f5:b6:24:56:a8:b4:94:7e:91: f8:2b:6b:f2:b0:a7:a8:86:d8:bb:8b:d9:9d:f0:58:b1:b0:ee: 71:14:17:3a:bf:95:8e:1a:32:9c:8d:89:0b:e0:4f:4b:69:95: 15:13:c4:d6:45:bc:e5:14:e6:81:8f:61:4a:78:55:e7:6f:1a: a0:46:83:fa:aa:60:9e:d7:3a:b5:db:a3:4b:a9:51:93:c6:2c: 3b:0e:d8:12:ac:fe:84:18:0a:d7:3c:97:49:94:27:12:0a:d8: 88:19:40:18:7a:4b:e9:ac:02:23:97:66:c4:b4:35:fa:e0:79: d0:ee:4a:a1:62:74:b1:52:01:17:c9:d1:15:7e:96:30:24:e0: c9:af:5b:1f:f8:85:33:05:fd:99:05:4f:8b:dc:1d:fa:b9:92: be:17:a7:48:4c:89:db:0a:d2:32:4d:59:60:0b:93:30:75:e6: 1a:5c:53:97 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt7Nn9j/zKY6h0CzcipixP+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1YjhhMTY1MjJlYzM0YjFjNWJjNDcwODIwNmNjMTk2M2ExNWJiZGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA640CLefQ2ybySgYTrCNL9HeNwp3V E7eINGzvQfsftYV235gId197hx8lcbkckINkkWclFZCorJsC/BccGns9rzd4UeCq 4XTxhzTESMePc04KxWltFbOPD2CKIEqpG/jwkEM9Oxp9JskjZnmYbMisO0OOVM+E 8QiVKnaqrlx222/L5d+WJb2hNW5xZek+lHLPFkrKWjIVNM00oPpKr15EXCuOy16y gpr5zJ/AV+csWEyHhxWmn0lyLaE57iqcB/cN1uncz7o6+ZmABAMphC9vuR6hHSHK irffGVJBO2b+SQzpcObWfznhpx71RpCixWYUxa4mRyKV80xns8CZuhSpWwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFFuKFlIuw0scW8RwggbMGWOhW72xMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE1LzM0NTM2 YS03NzFhLTQ3NzUtYjJiZC1jYWM4ZWQ3NmE4NDQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUvMzQ1MzZh LTc3MWEtNDc3NS1iMmJkLWNhYzhlZDc2YTg0NC8xL1c0b1dVaTdEU3h4YnhIQ0NC c3daWTZGYnZiRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQABbb3AwQAsp8jMA0EAgACMAcDBQMqDNIAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwM/qTANBgkqhkiG9w0BAQsFAAOCAQEAUJ0q 2Ld3ctqsvGp/YLgsRoxoQXrJwWjZIHvVpGrTWcxJAIiF3Nfe4FcXp7NJLdkbaaMR ljAbMJwNVnqeUfNRmigrGRnfTK5Xyl+tKArVVRGI9bYkVqi0lH6R+Ctr8rCnqIbY u4vZnfBYsbDucRQXOr+VjhoynI2JC+BPS2mVFRPE1kW85RTmgY9hSnhV528aoEaD +qpgntc6tdujS6lRk8YsOw7YEqz+hBgK1zyXSZQnEgrYiBlAGHpL6awCI5dmxLQ1 +uB50O5KoWJ0sVIBF8nRFX6WMCTgya9bH/iFMwX9mQVPi9wd+rmSvhenSEyJ2wrS Mk1ZYAuTMHXmGlxTlw== -----END CERTIFICATE-----Generated at Mon Jan 26 23:25:32 2026 by rpki-client