This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WA3dtRFgPkHCt6u6PSSdXvXtTRE.cer File: WA3dtRFgPkHCt6u6PSSdXvXtTRE.cer (raw, json) Hash identifier: CXmUAzQ3aL/ZTyxz12LGAETt01++zgxEbqUe8AdYHrQ= Subject key identifier: 58:0D:DD:B5:11:60:3E:41:C2:B7:AB:BA:3D:24:9D:5E:F5:ED:4D:11 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C132FA8F66186CC52AA70ED64AA2DCE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/WA3dtRFgPkHCt6u6PSSdXvXtTRE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:50 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201119 IP: 185.195.144.0/22 IP: 2a0a:5bc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:2f:a8:f6:61:86:cc:52:aa:70:ed:64:aa:2d:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=580dddb511603e41c2b7abba3d249d5ef5ed4d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9e:7c:37:4b:17:7d:a3:97:cd:fd:44:fc:fa: 9c:10:65:77:c6:48:82:7b:e6:01:fa:c5:23:88:cc: ce:61:ad:87:b0:9c:7f:43:88:3c:fc:fd:88:70:9d: 1c:01:59:d9:13:2b:e1:a5:9f:89:6e:f9:f3:16:2d: 78:92:6f:75:61:fb:2c:13:bf:5d:b8:89:2b:7a:cf: 8e:75:bd:34:b0:e9:1c:11:4c:b2:69:b4:0d:93:bc: 10:6d:c6:91:50:aa:17:d5:67:d4:f9:17:eb:72:44: 77:08:84:fe:d3:78:e5:5f:69:1b:ce:04:07:54:70: 21:ed:c8:55:3b:58:f5:05:b3:a0:f6:ef:1e:c8:c3: 48:9b:28:1a:47:e1:b1:12:3d:9c:33:39:01:98:60: e2:5f:c6:ea:cd:d7:78:7e:32:00:3c:93:af:74:43: f6:3e:5c:d3:fb:04:85:b7:4f:03:7b:80:e3:c1:4f: b1:3a:d2:67:bd:f6:0b:02:f8:da:30:9a:48:32:2b: 25:9c:47:7a:86:b9:83:d9:14:53:bb:08:55:6c:8a: 22:30:a9:2b:49:a8:ba:1f:88:3e:d0:a5:f6:7f:a2: fc:15:59:b9:11:58:a7:bd:5f:0e:00:28:2c:63:db: 3c:65:20:84:53:0d:60:33:22:e6:19:29:e2:f4:11: 51:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:0D:DD:B5:11:60:3E:41:C2:B7:AB:BA:3D:24:9D:5E:F5:ED:4D:11 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/fc96a4-36d1-4c3d-850b-3cd417aee9ce/1/WA3dtRFgPkHCt6u6PSSdXvXtTRE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.144.0/22 IPv6: 2a0a:5bc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201119 Signature Algorithm: sha256WithRSAEncryption 32:25:78:92:8c:23:b9:ff:fe:08:9b:43:b9:21:c8:69:e9:c5: a0:18:37:58:ab:1a:3e:9c:41:34:fb:db:11:57:c3:9f:76:86: b2:d3:49:3d:06:34:7c:cd:41:a5:63:10:34:b6:4f:5f:5e:da: 6b:9b:54:a3:d0:26:df:d1:e3:c5:b3:64:44:4c:7e:3c:51:d5: 8d:4e:c8:2c:27:35:42:5d:97:c5:ea:c7:42:df:5f:27:28:11: 08:ca:22:9c:0c:96:da:b3:5e:e2:59:9a:b3:9c:e0:97:e7:82: 40:50:23:70:a0:cb:84:d4:d3:9d:16:a5:1f:c4:42:4f:b3:16: da:63:df:fe:e3:cc:64:4f:4c:80:6f:5f:85:d5:a7:78:55:bb: 82:de:35:82:08:dc:c0:d9:d8:24:e3:28:3d:78:be:71:9b:9b: e4:da:71:20:91:74:ac:39:47:f0:16:f0:57:26:4e:b8:87:7a: 85:24:32:18:7a:d7:5e:6d:51:3e:6b:b5:10:ce:5e:f8:5e:ed: cb:8f:96:3e:11:f4:b1:71:c6:00:d2:00:f0:11:53:af:3b:3d: d3:15:c5:40:7a:b8:56:c2:86:5d:a6:ca:dd:81:72:b2:f6:79: b7:e7:87:3e:49:ee:6d:ee:4a:4b:4a:f3:33:44:34:b6:cc:62: b7:c3:f5:b5 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8Ey+o9mGGzFKqcO1kqi3OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODBkZGRiNTExNjAzZTQxYzJiN2FiYmEzZDI0OWQ1ZWY1ZWQ0ZDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2p58N0sXfaOXzf1E/PqcEGV3xkiC e+YB+sUjiMzOYa2HsJx/Q4g8/P2IcJ0cAVnZEyvhpZ+JbvnzFi14km91YfssE79d uIkres+Odb00sOkcEUyyabQNk7wQbcaRUKoX1WfU+RfrckR3CIT+03jlX2kbzgQH VHAh7chVO1j1BbOg9u8eyMNImygaR+GxEj2cMzkBmGDiX8bqzdd4fjIAPJOvdEP2 PlzT+wSFt08De4DjwU+xOtJnvfYLAvjaMJpIMislnEd6hrmD2RRTuwhVbIoiMKkr Sai6H4g+0KX2f6L8FVm5EVinvV8OACgsY9s8ZSCEUw1gMyLmGSni9BFR1QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFgN3bURYD5Bwreruj0knV717U0RMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgyL2ZjOTZh NC0zNmQxLTRjM2QtODUwYi0zY2Q0MTdhZWU5Y2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIvZmM5NmE0 LTM2ZDEtNGMzZC04NTBiLTNjZDQxN2FlZTljZS8xL1dBM2R0UkZnUGtIQ3Q2dTZQ U1NkWHZYdFRSRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCucOQMA0EAgACMAcDBQMqClvAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMRnzANBgkqhkiG9w0BAQsFAAOCAQEAMiV4kowjuf/+ CJtDuSHIaenFoBg3WKsaPpxBNPvbEVfDn3aGstNJPQY0fM1BpWMQNLZPX17aa5tU o9Am39HjxbNkREx+PFHVjU7ILCc1Ql2XxerHQt9fJygRCMoinAyW2rNe4lmas5zg l+eCQFAjcKDLhNTTnRalH8RCT7MW2mPf/uPMZE9MgG9fhdWneFW7gt41ggjcwNnY JOMoPXi+cZub5NpxIJF0rDlH8BbwVyZOuId6hSQyGHrXXm1RPmu1EM5e+F7ty4+W PhH0sXHGANIA8BFTrzs90xXFQHq4VsKGXabK3YFysvZ5t+eHPknube5KS0rzM0Q0 tsxit8P1tQ== -----END CERTIFICATE-----Generated at Mon Jan 26 15:02:52 2026 by rpki-client