This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer File: cG06u7R4t07yre-bt8QzbjQRHVE.cer (raw, json) Hash identifier: MhM5eb711Bo5bbRV6L5jl9esT7LqCLQ0s38Ag71YA7k= Subject key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F8433BD61E755E7CAFCC81EF1789288 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:22:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213819 IP: 45.92.78.0/24 IP: 45.157.139.0/24 IP: 46.175.129.0/24 IP: 62.106.81.0/24 IP: 77.75.229.0/24 IP: 79.110.224.0/24 IP: 91.246.36.0/24 IP: 109.205.187.0/24 IP: 109.234.76.0/24 IP: 146.19.29.0/24 IP: 146.19.149.0/24 IP: 176.116.10.0/24 IP: 178.211.136.0/24 IP: 185.230.246.0/24 IP: 185.252.212.0/24 IP: 188.244.125.0/24 IP: 193.243.186.0/24 IP: 194.26.119.0/24 IP: 194.150.79.0/24 IP: 212.18.119.0/24 IP: 213.173.38.0/24 IP: 217.119.132.0/24 IP: 2a11:cc0::/29 IP: 2a11:1900::/29 IP: 2a11:23c0::/29 IP: 2a11:3ac0::/29 IP: 2a11:4f40::/29 IP: 2a11:79c0::/29 IP: 2a11:8dc0::/29 IP: 2a11:9500::/29 IP: 2a11:9b80::/29 IP: 2a11:a200::/29 IP: 2a11:b7c0::/29 IP: 2a11:b800::/29 IP: 2a11:c400::/29 IP: 2a11:e500::/29 IP: 2a11:f5c0::/29 IP: 2a12:2a00::/29 IP: 2a12:3100::/29 IP: 2a12:5180::/29 IP: 2a12:7a00::/29 IP: 2a12:9a80::/29 IP: 2a12:cb00::/29 IP: 2a12:da80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:33:bd:61:e7:55:e7:ca:fc:c8:1e:f1:78:92:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:22:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c7:c1:e0:77:35:84:e0:37:45:1e:bf:c9:74: 11:6d:1d:07:35:8e:97:38:0c:34:c8:75:f0:6f:14: 56:84:7f:e5:0e:a5:50:58:1e:ca:6b:dc:c2:65:be: 2b:b4:34:32:6c:59:91:0c:df:22:f7:bf:e1:d9:37: d9:c7:69:ae:df:24:37:4a:d7:ea:0a:84:7e:96:dd: eb:5b:51:30:c4:6f:df:a9:22:05:5a:71:99:ad:6b: ff:9d:d9:96:75:72:76:05:6c:df:e2:3a:34:81:83: fa:81:29:3b:4e:2a:5d:16:b5:0c:e8:82:fd:5d:2c: e6:db:d6:bd:b8:b4:82:8e:3b:87:3e:c8:81:0f:cd: 5c:d2:a1:a4:40:2c:ee:ce:ba:17:82:e4:a4:b0:ac: 39:16:56:41:e6:12:cb:3b:03:93:71:01:9d:6c:8d: d6:f6:02:8a:79:e5:0a:14:68:b0:c1:d8:94:ce:da: d7:99:8f:07:66:42:df:53:e7:1f:50:02:1c:22:1d: 9c:2a:8c:8c:f3:39:1c:39:70:c7:6b:2e:70:cb:f7: 83:7f:06:96:3e:9d:ff:f3:d1:69:3d:9c:03:d9:2a: 95:ec:6a:70:d5:be:32:9a:04:46:d7:bd:bd:bf:12: a9:d2:c7:25:d8:83:41:d7:70:70:e4:29:a2:21:91: 80:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.92.78.0/24 45.157.139.0/24 46.175.129.0/24 62.106.81.0/24 77.75.229.0/24 79.110.224.0/24 91.246.36.0/24 109.205.187.0/24 109.234.76.0/24 146.19.29.0/24 146.19.149.0/24 176.116.10.0/24 178.211.136.0/24 185.230.246.0/24 185.252.212.0/24 188.244.125.0/24 193.243.186.0/24 194.26.119.0/24 194.150.79.0/24 212.18.119.0/24 213.173.38.0/24 217.119.132.0/24 IPv6: 2a11:cc0::/29 2a11:1900::/29 2a11:23c0::/29 2a11:3ac0::/29 2a11:4f40::/29 2a11:79c0::/29 2a11:8dc0::/29 2a11:9500::/29 2a11:9b80::/29 2a11:a200::/29 2a11:b7c0::/29 2a11:b800::/29 2a11:c400::/29 2a11:e500::/29 2a11:f5c0::/29 2a12:2a00::/29 2a12:3100::/29 2a12:5180::/29 2a12:7a00::/29 2a12:9a80::/29 2a12:cb00::/29 2a12:da80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213819 Signature Algorithm: sha256WithRSAEncryption 61:b4:ee:19:38:ce:a8:b0:f7:11:05:7e:40:67:f3:7a:44:00: b8:5f:f7:f1:7f:d1:88:22:bd:83:f1:72:4a:45:a6:b6:20:5a: 98:d2:b0:23:d3:bf:d8:82:36:69:24:39:8b:0b:42:8c:b1:21: dd:4e:cb:e9:0e:79:a1:49:0a:2a:c9:77:75:29:e2:bd:58:05: ae:ef:99:27:26:08:b7:bb:a9:74:08:17:bf:09:bc:ea:3e:41: af:99:20:f0:69:5b:73:6f:1e:bc:81:a2:36:7d:87:17:25:6e: 8e:92:47:aa:c9:ae:a7:10:91:7a:91:8c:f1:18:fc:45:90:d2: 1a:8d:95:72:2c:be:84:8e:6f:6f:ec:83:4d:71:e8:ec:da:6d: f8:07:aa:02:00:24:95:33:91:31:d0:ef:16:b2:4d:d7:c0:48: 1f:03:37:d6:67:1e:9e:a6:f1:56:1c:fd:d2:d0:d7:36:23:78: ff:3b:88:40:be:58:a7:97:80:cc:29:ab:90:b4:d3:1a:34:62: a5:e1:c7:60:5f:4f:e4:9e:f0:12:7c:fa:58:2c:ea:62:05:90: 7e:15:94:de:8f:c4:0c:5b:00:bb:74:af:4f:f6:4f:71:73:32: c7:b0:c5:52:8b:21:a9:28:ad:70:40:d2:c5:5e:fd:7b:bd:1e: 53:98:ed:cb -----BEGIN CERTIFICATE----- MIIGvjCCBaagAwIBAgISAZt/hDO9YedV58r8yB7xeJKIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMjA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDZkM2FiYmI0NzhiNzRlZjJhZGVmOWJiN2M0MzM2ZTM0MTExZDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA58fB4Hc1hOA3RR6/yXQRbR0HNY6X OAw0yHXwbxRWhH/lDqVQWB7Ka9zCZb4rtDQybFmRDN8i97/h2TfZx2mu3yQ3Stfq CoR+lt3rW1EwxG/fqSIFWnGZrWv/ndmWdXJ2BWzf4jo0gYP6gSk7TipdFrUM6IL9 XSzm29a9uLSCjjuHPsiBD81c0qGkQCzuzroXguSksKw5FlZB5hLLOwOTcQGdbI3W 9gKKeeUKFGiwwdiUztrXmY8HZkLfU+cfUAIcIh2cKoyM8zkcOXDHay5wy/eDfwaW Pp3/89FpPZwD2SqV7Gpw1b4ymgRG1729vxKp0scl2INB13Bw5CmiIZGA6QIDAQAB o4IDyjCCA8YwHQYDVR0OBBYEFHBtOru0eLdO8q3vm7fEM240ER1RMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA3LzBjNmY0 Ny00NzEzLTQ0NzEtYjA4Zi1hNDIxM2M5M2YxZjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMGM2ZjQ3 LTQ3MTMtNDQ3MS1iMDhmLWE0MjEzYzkzZjFmNy8xL2NHMDZ1N1I0dDA3eXJlLWJ0 OFF6YmpRUkhWRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBRwYIKwYB BQUHAQcBAf8EggE2MIIBMjCBiwQCAAEwgYQDBAAtXE4DBAAtnYsDBAAur4EDBAA+ alEDBABNS+UDBABPbuADBABb9iQDBABtzbsDBABt6kwDBACSEx0DBACSE5UDBACw dAoDBACy04gDBAC55vYDBAC5/NQDBAC89H0DBADB87oDBADCGncDBADClk8DBADU EncDBADVrSYDBADZd4QwgaEEAgACMIGaAwUDKhEMwAMFAyoRGQADBQMqESPAAwUD KhE6wAMFAyoRT0ADBQMqEXnAAwUDKhGNwAMFAyoRlQADBQMqEZuAAwUDKhGiAAMF AyoRt8ADBQMqEbgAAwUDKhHEAAMFAyoR5QADBQMqEfXAAwUDKhIqAAMFAyoSMQAD BQMqElGAAwUDKhJ6AAMFAyoSmoADBQMqEssAAwUDKhLagDAaBggrBgEFBQcBCAEB /wQLMAmgBzAFAgMDQzswDQYJKoZIhvcNAQELBQADggEBAGG07hk4zqiw9xEFfkBn 83pEALhf9/F/0YgivYPxckpFprYgWpjSsCPTv9iCNmkkOYsLQoyxId1Oy+kOeaFJ CirJd3Up4r1YBa7vmScmCLe7qXQIF78JvOo+Qa+ZIPBpW3NvHryBojZ9hxclbo6S R6rJrqcQkXqRjPEY/EWQ0hqNlXIsvoSOb2/sg01x6OzabfgHqgIAJJUzkTHQ7xay TdfASB8DN9ZnHp6m8VYc/dLQ1zYjeP87iEC+WKeXgMwpq5C00xo0YqXhx2BfT+Se 8BJ8+lgs6mIFkH4VlN6PxAxbALt0r0/2T3FzMsewxVKLIakorXBA0sVe/Xu9HlOY 7cs= -----END CERTIFICATE-----Generated at Wed Jan 21 16:17:17 2026 by rpki-client