This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer (raw, json) Hash identifier: +BUoJTPgoPtV+ufH0Ig5wEDLE86moepRdqr8nG02+uo= Subject key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCB611904A0A261D9DE651E3225F8FC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211839 IP: 193.163.71.0/24 IP: 2a10:89c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:61:19:04:a0:a2:61:d9:de:65:1e:32:25:f8:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=689c68a45661f90a4059bd8c29a3c967bf92e855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:94:83:a2:fd:ca:68:9f:27:6c:10:05:ea:e4: ef:6a:ac:4d:87:1a:63:00:c7:a9:f8:2a:82:6d:3c: 3f:ed:9a:cd:ac:99:da:cb:87:a6:6f:7f:bc:4f:e8: a0:6d:d2:be:6d:af:7f:e4:b2:f9:bd:b7:29:a5:15: a6:37:75:c1:a9:75:a0:9f:cf:c5:4e:d9:c9:b9:3d: 6b:f1:d1:96:d9:99:4c:59:3b:e9:f1:7e:56:25:72: c0:12:37:8b:2e:05:ca:15:40:bb:4c:08:44:a0:bc: 3b:b8:27:98:9c:30:01:c4:93:c9:bb:67:ac:55:15: 5f:e0:3b:38:0f:30:32:aa:55:f3:be:a1:4f:2f:49: 05:74:f4:16:7d:7e:37:16:41:38:e9:03:11:ed:fd: 68:71:94:0d:26:76:5c:90:42:80:1b:6f:73:36:87: b5:e0:3f:68:7d:72:bd:6d:58:86:67:57:37:b1:59: a2:ea:e5:dd:13:16:94:3b:a6:91:11:f0:40:18:09: 5b:a9:77:df:0b:ea:7b:ea:6b:7a:6b:c0:93:b2:7d: 4c:68:38:e7:72:3f:be:fb:ef:62:93:9b:00:8b:44: a8:c5:25:ea:71:40:cc:30:c8:f2:50:4d:06:ef:b3: d6:5a:22:91:18:53:46:99:74:8a:b3:9e:ca:16:13: 5a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.71.0/24 IPv6: 2a10:89c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211839 Signature Algorithm: sha256WithRSAEncryption 1d:fa:5b:21:c1:27:b6:3c:87:87:17:87:ff:f1:63:df:08:c3: a7:ca:5c:ff:1d:b4:90:8f:97:ae:bb:ba:be:7e:a4:22:ff:15: ba:53:f9:4b:67:25:28:69:81:27:56:50:f8:32:ac:6e:ac:f3: 54:c9:1f:8d:ea:73:f9:94:4c:21:34:3e:1a:c9:94:4c:dc:8a: 87:72:f9:d2:e6:28:e5:61:87:69:db:b3:1b:c6:02:87:ca:aa: 00:f9:16:14:8f:b1:33:36:1b:23:31:3f:97:4d:3e:f8:31:a3: da:8b:e8:0b:ca:ab:8f:7b:53:80:69:7d:25:6e:17:5f:b3:e0: 84:76:81:ea:27:3b:09:ea:76:5c:b6:b5:3d:76:e4:67:8e:64: 53:ee:df:52:6c:a5:94:10:26:57:61:6d:6b:1a:bc:ba:aa:a4: 7a:9f:c5:a7:31:b6:d2:40:ae:1e:cb:86:15:f8:7b:a7:0c:66: 86:95:a4:db:e9:1f:87:ab:b3:f1:00:9b:56:6c:92:eb:33:f9: c7:d0:a6:d9:e7:a6:01:f0:55:b6:a3:c1:78:cb:50:84:78:9f: d2:d0:c8:f5:18:d3:05:bc:7b:28:28:9a:65:6f:0c:9c:05:e3: fa:31:5d:87:9c:f7:8c:23:76:c6:20:61:3a:80:e6:ca:67:24: 46:2d:78:66 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9y2EZBKCiYdneZR4yJfj8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODljNjhhNDU2NjFmOTBhNDA1OWJkOGMyOWEzYzk2N2JmOTJlODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpSDov3KaJ8nbBAF6uTvaqxNhxpj AMep+CqCbTw/7ZrNrJnay4emb3+8T+igbdK+ba9/5LL5vbcppRWmN3XBqXWgn8/F TtnJuT1r8dGW2ZlMWTvp8X5WJXLAEjeLLgXKFUC7TAhEoLw7uCeYnDABxJPJu2es VRVf4Ds4DzAyqlXzvqFPL0kFdPQWfX43FkE46QMR7f1ocZQNJnZckEKAG29zNoe1 4D9ofXK9bViGZ1c3sVmi6uXdExaUO6aREfBAGAlbqXffC+p76mt6a8CTsn1MaDjn cj++++9ik5sAi0SoxSXqcUDMMMjyUE0G77PWWiKRGFNGmXSKs57KFhNaDwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGicaKRWYfkKQFm9jCmjyWe/kuhVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkLzM5ZGFj Yy0xYzU3LTRkZWItYTIyNS1iNjIwN2Y3NTUyNjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQvMzlkYWNj LTFjNTctNGRlYi1hMjI1LWI2MjA3Zjc1NTI2Ny8xL2FKeG9wRlpoLVFwQVdiMk1L YVBKWjctUzZGVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwaNHMA0EAgACMAcDBQMqEInAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM7fzANBgkqhkiG9w0BAQsFAAOCAQEAHfpbIcEntjyH hxeH//Fj3wjDp8pc/x20kI+Xrru6vn6kIv8VulP5S2clKGmBJ1ZQ+DKsbqzzVMkf jepz+ZRMITQ+GsmUTNyKh3L50uYo5WGHaduzG8YCh8qqAPkWFI+xMzYbIzE/l00+ +DGj2ovoC8qrj3tTgGl9JW4XX7PghHaB6ic7Cep2XLa1PXbkZ45kU+7fUmyllBAm V2Ftaxq8uqqkep/FpzG20kCuHsuGFfh7pwxmhpWk2+kfh6uz8QCbVmyS6zP5x9Cm 2eemAfBVtqPBeMtQhHif0tDI9RjTBbx7KCiaZW8MnAXj+jFdh5z3jCN2xiBhOoDm ymckRi14Zg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:24 2026 by rpki-client