This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a-pT2WLWegFI5je0tGib5NCEqeU.cer File: a-pT2WLWegFI5je0tGib5NCEqeU.cer (raw, json) Hash identifier: qGkhlGVLz+08+gWv7LM8VRDT/bRMEMb7rPu3Gd922kU= Subject key identifier: 6B:EA:53:D9:62:D6:7A:01:48:E6:37:B4:B4:68:9B:E4:D0:84:A9:E5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB3CFBD032E4FB0CDE1F2787B97D69 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/a-pT2WLWegFI5je0tGib5NCEqeU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201060 IP: 185.36.103.0/24 IP: 2a10:7c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:3c:fb:d0:32:e4:fb:0c:de:1f:27:87:b9:7d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6bea53d962d67a0148e637b4b4689be4d084a9e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c9:31:b9:a5:cc:11:fa:06:c1:9d:80:58:cb: 2c:91:b1:b1:83:fe:b2:a4:ec:f7:67:b6:81:b5:14: 02:7f:76:f3:93:61:6e:bc:92:e7:28:43:10:58:4a: e2:2c:8b:28:e0:d9:67:bb:9a:16:a8:f3:0b:6c:1b: 5b:11:c7:61:4d:0f:e1:d9:ef:ad:e4:ec:d5:e8:4e: 97:ea:71:2a:51:67:88:ed:51:9d:79:a7:48:41:17: 38:3c:ce:ec:29:65:1e:51:22:5a:66:8f:8f:8b:38: 39:e3:5e:86:23:81:0b:c5:78:73:ca:27:91:b3:f9: 60:5d:94:da:a0:a0:b7:b9:96:7d:98:0e:c5:51:d3: 0b:43:22:01:b1:1f:17:e9:09:00:0c:16:d1:42:0b: 88:8f:0c:29:39:e6:f9:7b:96:87:9d:f1:27:8a:44: 47:a3:a7:f4:91:c4:7b:b9:c8:c6:de:69:73:3d:bb: 93:20:41:93:cb:c1:4e:9d:84:7a:e8:e9:5a:07:7e: 96:1e:01:25:e3:02:6b:6d:37:95:a0:65:83:54:74: ed:1e:3b:6c:3d:ac:8c:cf:1a:18:2e:25:e3:f0:e1: 08:54:f0:47:05:11:df:79:11:c4:dc:1e:9c:11:f4: 7f:89:8b:29:65:8d:94:fc:d0:ea:3a:ef:99:ca:ac: ae:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EA:53:D9:62:D6:7A:01:48:E6:37:B4:B4:68:9B:E4:D0:84:A9:E5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/a-pT2WLWegFI5je0tGib5NCEqeU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.36.103.0/24 IPv6: 2a10:7c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201060 Signature Algorithm: sha256WithRSAEncryption a6:b3:ae:b0:63:b7:dc:fa:2c:5e:c9:5f:97:6e:54:53:df:42: e6:6d:5b:7e:78:93:47:f7:33:bc:3f:76:6e:fe:72:e1:21:10: 80:16:57:4d:2b:c7:2b:b7:f7:45:1f:d5:88:cf:7c:3a:bb:44: b2:5a:80:6a:46:70:7d:56:fc:8a:bd:87:59:db:69:14:97:7b: ad:b2:61:c5:bc:4d:05:56:fb:ce:85:1d:4e:89:a9:07:78:d6: f3:c3:25:39:51:4c:cb:6f:57:c0:fe:27:15:9c:dd:10:00:59: 63:42:05:60:97:dd:5b:21:67:66:86:0a:88:2c:47:c8:32:07: be:f4:47:97:cb:a5:e8:d9:b8:a9:ea:42:fd:b5:8b:9d:b0:c2: 42:62:7a:8e:0b:26:91:98:cb:23:2e:9b:d3:a8:34:8e:c1:6d: 4a:78:d0:d2:99:8b:69:91:60:7b:a2:d8:12:c3:ab:fa:06:1c: 5f:3a:0c:01:69:77:f0:b3:dd:95:6a:6c:e4:0c:5f:03:ea:b2: bf:03:3b:da:15:95:62:46:93:6a:c7:9c:7b:96:93:af:b8:77: 66:b4:9b:35:bc:bc:8f:b7:dc:c2:7d:d0:61:7b:35:ee:c6:f9: 1a:00:d4:cd:20:3e:c3:79:29:64:91:5c:24:60:56:8d:83:d4: 24:3f:49:c0 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt26zz70DLk+wzeHyeHuX1pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YmVhNTNkOTYyZDY3YTAxNDhlNjM3YjRiNDY4OWJlNGQwODRhOWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMkxuaXMEfoGwZ2AWMsskbGxg/6y pOz3Z7aBtRQCf3bzk2FuvJLnKEMQWEriLIso4Nlnu5oWqPMLbBtbEcdhTQ/h2e+t 5OzV6E6X6nEqUWeI7VGdeadIQRc4PM7sKWUeUSJaZo+Pizg5416GI4ELxXhzyieR s/lgXZTaoKC3uZZ9mA7FUdMLQyIBsR8X6QkADBbRQguIjwwpOeb5e5aHnfEnikRH o6f0kcR7ucjG3mlzPbuTIEGTy8FOnYR66OlaB36WHgEl4wJrbTeVoGWDVHTtHjts PayMzxoYLiXj8OEIVPBHBRHfeRHE3B6cEfR/iYspZY2U/NDqOu+ZyqyuGwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGvqU9li1noBSOY3tLRom+TQhKnlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRiLzljODU3 MS1jOWQ3LTQ1NTAtODg0MS1lMjBiN2U2Nzk2MjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIvOWM4NTcx LWM5ZDctNDU1MC04ODQxLWUyMGI3ZTY3OTYyMi8xL2EtcFQyV0xXZWdGSTVqZTB0 R2liNU5DRXFlVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuSRnMA0EAgACMAcDBQMqEAfAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMRZDANBgkqhkiG9w0BAQsFAAOCAQEAprOusGO33Pos Xslfl25UU99C5m1bfniTR/czvD92bv5y4SEQgBZXTSvHK7f3RR/ViM98OrtEslqA akZwfVb8ir2HWdtpFJd7rbJhxbxNBVb7zoUdTompB3jW88MlOVFMy29XwP4nFZzd EABZY0IFYJfdWyFnZoYKiCxHyDIHvvRHl8ul6Nm4qepC/bWLnbDCQmJ6jgsmkZjL Iy6b06g0jsFtSnjQ0pmLaZFge6LYEsOr+gYcXzoMAWl38LPdlWps5AxfA+qyvwM7 2hWVYkaTasece5aTr7h3ZrSbNby8j7fcwn3QYXs17sb5GgDUzSA+w3kpZJFcJGBW jYPUJD9JwA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:55 2026 by rpki-client