This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WROOPbd2QL6t8dpbFRlLk4ShRE4.cer File: WROOPbd2QL6t8dpbFRlLk4ShRE4.cer (raw, json) Hash identifier: ytYo3XFuYCC1FGR2L67OAO8xBnoujv4+txL+36/VX8U= Subject key identifier: 59:13:8E:3D:B7:76:40:BE:AD:F1:DA:5B:15:19:4B:93:84:A1:44:4E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15ED8A09AD3E75ABF684F236FC31D9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/WROOPbd2QL6t8dpbFRlLk4ShRE4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41878 IP: 217.29.224.0/20 IP: 2a0d:79c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ed:8a:09:ad:3e:75:ab:f6:84:f2:36:fc:31:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59138e3db77640beadf1da5b15194b9384a1444e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:29:1a:5f:60:22:bf:bd:89:b6:3f:8f:be:7a: 92:d8:d0:b7:75:1f:a8:e4:0c:d4:98:8e:57:76:7d: 62:56:bf:4f:02:a8:b7:2b:aa:71:c0:3c:a3:81:2a: 6c:f3:e9:5d:ae:59:5a:50:cd:a6:10:b3:94:3b:d8: d8:dd:48:07:f1:2a:2a:56:5e:d5:6f:02:9d:73:b9: 95:5e:19:ca:0c:0e:22:44:b4:ba:2a:8b:fa:cb:33: ae:87:a9:a9:6d:20:67:5c:54:85:74:84:d8:66:69: 4f:c4:63:0a:86:9a:26:70:65:10:5c:da:eb:e1:95: 6c:d7:f2:47:07:40:40:b3:d1:71:ba:25:48:21:a3: 23:a3:67:7e:df:a0:4b:b7:9d:5e:b5:9d:9e:0d:b0: 7c:cc:2e:af:ec:26:70:21:ad:f1:e9:94:c1:83:58: ce:16:95:25:e9:18:fb:fc:f7:a6:9e:32:f3:0e:b6: 56:1e:bd:26:dd:6d:97:92:f5:e6:ac:9b:60:5a:21: c9:3c:66:45:bf:02:87:d0:c8:06:6e:23:9f:cf:a4: c0:60:12:e7:ca:06:b3:dc:cc:38:e2:62:e3:74:b2: 4c:b8:ee:9c:3c:22:a1:7b:8a:3b:19:be:8a:39:67: 54:f4:88:8f:de:d0:02:2f:07:a6:e5:6d:9f:dc:66: 08:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:13:8E:3D:B7:76:40:BE:AD:F1:DA:5B:15:19:4B:93:84:A1:44:4E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/f4d345-5ff3-4b0a-8dd9-7a4e3340a491/1/WROOPbd2QL6t8dpbFRlLk4ShRE4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.29.224.0/20 IPv6: 2a0d:79c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41878 Signature Algorithm: sha256WithRSAEncryption 98:f0:43:26:a3:1a:22:83:bf:45:3d:6d:cc:11:7e:ee:67:b9: 3d:af:24:cf:3e:4a:11:ed:0a:a3:a0:fa:40:d3:8e:6f:d3:4f: 93:49:14:36:27:cf:9b:9a:cd:e4:e1:69:c6:2d:62:a9:4e:df: 14:1d:bf:78:c4:df:4b:58:16:19:49:62:a8:83:39:0e:6a:e7: ff:fe:5d:33:1d:07:1a:c9:bc:c2:f6:91:58:c2:f2:7a:f1:2f: e2:22:7c:b2:9a:9c:9e:5c:54:f9:9c:13:7d:cc:b5:11:b7:a8: 2f:a6:da:fb:bb:dc:61:c1:f4:53:e6:2c:e9:22:f3:9d:ea:dc: a7:3a:f4:11:b6:a6:75:cb:54:a3:90:a4:67:ab:35:b7:c9:c8: ae:c2:46:ae:87:9e:fa:12:46:0e:b2:7a:85:f5:84:d2:c2:2b: a2:dc:df:84:c4:97:69:7d:17:de:8c:24:6f:cb:cf:56:6d:1f: 43:ac:cb:ab:3c:47:c1:3f:8e:02:25:df:80:f8:1d:8d:ce:3a: 11:d5:77:b8:86:ae:63:bf:f6:12:07:66:31:6f:ce:11:27:59: 53:d3:f6:85:37:69:7c:7b:de:9c:ae:2d:a8:c8:d5:a2:71:08: ef:24:a6:e7:19:f7:0b:58:b7:08:8f:61:41:8e:6f:35:52:8f: 62:45:c6:4d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/Fe2KCa0+dav2hPI2/DHZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OTEzOGUzZGI3NzY0MGJlYWRmMWRhNWIxNTE5NGI5Mzg0YTE0NDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCkaX2Aiv72Jtj+PvnqS2NC3dR+o 5AzUmI5Xdn1iVr9PAqi3K6pxwDyjgSps8+ldrllaUM2mELOUO9jY3UgH8SoqVl7V bwKdc7mVXhnKDA4iRLS6Kov6yzOuh6mpbSBnXFSFdITYZmlPxGMKhpomcGUQXNrr 4ZVs1/JHB0BAs9FxuiVIIaMjo2d+36BLt51etZ2eDbB8zC6v7CZwIa3x6ZTBg1jO FpUl6Rj7/PemnjLzDrZWHr0m3W2XkvXmrJtgWiHJPGZFvwKH0MgGbiOfz6TAYBLn ygaz3Mw44mLjdLJMuO6cPCKhe4o7Gb6KOWdU9IiP3tACLwem5W2f3GYI/QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFkTjj23dkC+rfHaWxUZS5OEoUROMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q5L2Y0ZDM0 NS01ZmYzLTRiMGEtOGRkOS03YTRlMzM0MGE0OTEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkvZjRkMzQ1 LTVmZjMtNGIwYS04ZGQ5LTdhNGUzMzQwYTQ5MS8xL1dST09QYmQyUUw2dDhkcGJG UmxMazRTaFJFNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQE2R3gMA0EAgACMAcDBQAqDXnAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCjljANBgkqhkiG9w0BAQsFAAOCAQEAmPBDJqMaIoO/ RT1tzBF+7me5Pa8kzz5KEe0Ko6D6QNOOb9NPk0kUNifPm5rN5OFpxi1iqU7fFB2/ eMTfS1gWGUliqIM5Dmrn//5dMx0HGsm8wvaRWMLyevEv4iJ8spqcnlxU+ZwTfcy1 EbeoL6ba+7vcYcH0U+Ys6SLznercpzr0EbamdctUo5CkZ6s1t8nIrsJGroee+hJG DrJ6hfWE0sIrotzfhMSXaX0X3owkb8vPVm0fQ6zLqzxHwT+OAiXfgPgdjc46EdV3 uIauY7/2EgdmMW/OESdZU9P2hTdpfHvenK4tqMjVonEI7ySm5xn3C1i3CI9hQY5v NVKPYkXGTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:24 2026 by rpki-client