This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZqL-k07R3vdfBjaufPAZjIHTSLQ.cer File: ZqL-k07R3vdfBjaufPAZjIHTSLQ.cer (raw, json) Hash identifier: h4c/zBAHlDWvqRgy3DYjyx1IMnoH39D5m1Zlvv77mSU= Subject key identifier: 66:A2:FE:93:4E:D1:DE:F7:5F:06:36:AE:7C:F0:19:8C:81:D3:48:B4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C12321957C4A6C958761971D8DAF035 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ZqL-k07R3vdfBjaufPAZjIHTSLQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204897 IP: 217.26.218.0/24 IP: 2a13:4cc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:32:19:57:c4:a6:c9:58:76:19:71:d8:da:f0:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=66a2fe934ed1def75f0636ae7cf0198c81d348b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:08:68:8f:1b:a9:b4:ca:b4:d5:ae:25:d2:0d: 1e:a3:46:19:ce:3a:f9:7e:81:b1:c3:b4:5f:6e:1e: ba:86:70:b8:5b:91:ba:2e:d5:7e:a3:e1:ec:83:70: 13:2e:4f:32:38:f1:2d:df:53:ec:18:2a:63:d4:42: 06:4c:ef:09:da:61:ef:a5:e3:b7:21:81:7b:ea:43: 8d:70:bd:02:e0:76:19:ce:cc:46:a7:f8:e6:19:ef: 5f:e6:cc:b4:e6:ad:50:28:a5:a6:e9:6a:a7:42:0e: 87:a6:d2:5e:31:14:1f:10:63:e5:8d:a1:13:c0:a4: 74:76:32:ad:89:15:db:db:b4:76:bc:b9:60:00:dd: 34:28:83:01:54:09:11:d4:8c:82:09:70:55:c3:ab: 57:31:8d:b9:ec:44:a2:62:21:43:2e:e4:73:a7:8a: e6:36:35:3f:31:b1:64:02:b7:f7:b0:f4:5b:c1:c3: 80:77:b2:5e:14:7b:ea:0e:44:98:44:b4:c1:c5:ef: f1:bf:53:18:30:76:c0:cb:69:f8:ef:10:bc:6b:3c: 09:26:c2:94:71:2d:4f:4c:0f:b6:06:24:3d:47:7e: ec:8d:29:3e:ec:2a:a5:aa:e4:b6:a2:6d:c6:77:1c: c0:5e:d2:ed:99:84:07:62:1f:04:ac:cf:a6:8a:7b: b9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A2:FE:93:4E:D1:DE:F7:5F:06:36:AE:7C:F0:19:8C:81:D3:48:B4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ZqL-k07R3vdfBjaufPAZjIHTSLQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.26.218.0/24 IPv6: 2a13:4cc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204897 Signature Algorithm: sha256WithRSAEncryption 4b:bb:47:24:39:16:2b:ec:95:71:68:75:47:f0:de:64:af:21: 8c:d1:c8:9d:a2:14:86:1a:2b:ac:2c:12:e9:42:da:ed:46:df: fe:3b:90:f3:20:a4:51:c9:3e:19:ac:3a:17:21:09:f6:29:e4: 88:54:86:33:1f:d5:42:e4:e3:eb:eb:e1:ae:61:d8:2b:76:fd: eb:43:50:c9:ba:0d:a8:dc:04:99:16:d5:d0:8e:f9:d6:40:64: 1f:20:10:fa:b7:2f:91:b8:87:0f:e8:a6:46:8f:7e:4f:b6:5f: 01:e4:01:f4:a1:e1:36:df:05:c4:5c:63:d7:e4:db:af:03:ed: ce:ca:17:0a:fb:b2:5b:b8:d9:42:18:f5:7e:e1:b3:af:6b:c9: 31:25:32:43:8c:03:4c:70:37:b4:4c:3a:2d:2e:bb:45:42:84: 0d:13:81:c9:8d:90:b5:f4:0c:8d:41:60:f9:66:ba:88:60:48: 37:b1:b6:8a:6b:1d:34:f7:ae:b3:bb:10:11:5c:0c:e0:ab:90: d0:39:16:ef:50:3e:f7:6d:02:4e:7a:55:37:f9:85:82:b7:31: c4:00:58:33:ac:da:6e:c5:28:14:66:b3:ef:41:21:a4:73:94: f8:98:20:06:41:e2:e2:5c:62:74:37:76:ae:cb:70:3b:ea:79: 78:01:29:cc -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8EjIZV8SmyVh2GXHY2vA1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NmEyZmU5MzRlZDFkZWY3NWYwNjM2YWU3Y2YwMTk4YzgxZDM0OGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAhojxuptMq01a4l0g0eo0YZzjr5 foGxw7Rfbh66hnC4W5G6LtV+o+Hsg3ATLk8yOPEt31PsGCpj1EIGTO8J2mHvpeO3 IYF76kONcL0C4HYZzsxGp/jmGe9f5sy05q1QKKWm6WqnQg6HptJeMRQfEGPljaET wKR0djKtiRXb27R2vLlgAN00KIMBVAkR1IyCCXBVw6tXMY257ESiYiFDLuRzp4rm NjU/MbFkArf3sPRbwcOAd7JeFHvqDkSYRLTBxe/xv1MYMHbAy2n47xC8azwJJsKU cS1PTA+2BiQ9R37sjSk+7CqlquS2om3GdxzAXtLtmYQHYh8ErM+minu5/wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGai/pNO0d73XwY2rnzwGYyB00i0MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcxL2NlOGU1 OS1lMDYyLTQyMWEtOWY0Ni00ZWRmMTliMzVlY2EvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzEvY2U4ZTU5 LWUwNjItNDIxYS05ZjQ2LTRlZGYxOWIzNWVjYS8xL1pxTC1rMDdSM3ZkZkJqYXVm UEFaaklIVFNMUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQA2RraMA0EAgACMAcDBQMqE0zAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMgYTANBgkqhkiG9w0BAQsFAAOCAQEAS7tHJDkWK+yV cWh1R/DeZK8hjNHInaIUhhorrCwS6ULa7Ubf/juQ8yCkUck+Gaw6FyEJ9inkiFSG Mx/VQuTj6+vhrmHYK3b960NQyboNqNwEmRbV0I751kBkHyAQ+rcvkbiHD+imRo9+ T7ZfAeQB9KHhNt8FxFxj1+TbrwPtzsoXCvuyW7jZQhj1fuGzr2vJMSUyQ4wDTHA3 tEw6LS67RUKEDROByY2QtfQMjUFg+Wa6iGBIN7G2imsdNPeus7sQEVwM4KuQ0DkW 71A+920CTnpVN/mFgrcxxABYM6zabsUoFGaz70EhpHOU+JggBkHi4lxidDd2rstw O+p5eAEpzA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:16 2026 by rpki-client