This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cOEuvY__KmsFTe2d49j2XqY1-4M.cer File: cOEuvY__KmsFTe2d49j2XqY1-4M.cer (raw, json) Hash identifier: u+riJFrwobwSD/ONvsHv/6RJyNMgob/nBoZht/5V6Xo= Subject key identifier: 70:E1:2E:BD:8F:FF:2A:6B:05:4D:ED:9D:E3:D8:F6:5E:A6:35:FB:83 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED590110B2282C35897264AD6D5753 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/cOEuvY__KmsFTe2d49j2XqY1-4M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202621 IP: 185.159.16.0/22 IP: 2a07:b140::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:59:01:10:b2:28:2c:35:89:72:64:ad:6d:57:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=70e12ebd8fff2a6b054ded9de3d8f65ea635fb83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6d:b1:8f:44:36:4a:60:23:59:ed:32:b9:87: 83:1a:58:dd:fc:b0:c8:16:9a:1a:1b:b8:34:b1:3d: 3c:e8:41:f6:e6:7e:81:fe:17:33:7a:16:61:b6:2c: a3:a4:6b:7e:83:d0:e7:bc:e8:86:1d:1b:df:a3:70: dc:3a:60:7d:71:77:43:d0:78:f8:7f:0a:b7:77:79: 0e:d7:a1:03:cb:2c:ae:26:52:45:c0:45:d9:3c:27: f9:dd:c9:25:7a:6c:ae:80:40:01:2d:83:6c:1e:88: dd:60:af:72:0d:4d:09:c1:93:a8:f5:40:88:9b:6b: 51:74:7c:4c:77:d3:85:06:83:b0:d8:31:3e:b9:f6: 14:85:7a:4e:a1:50:1a:55:78:2d:6f:94:b2:c9:a8: f2:92:05:de:01:83:e1:f8:70:6d:1f:0c:7b:b9:02: 38:5a:af:c5:19:95:29:d8:e2:d5:ab:a1:76:6f:46: 6d:d7:04:f5:4c:c7:f9:0d:48:7a:a5:e7:ef:c3:07: b1:6f:2b:c2:51:39:85:6f:f5:0b:7b:7e:54:1e:f6: d7:6e:89:e7:6d:6f:9f:e3:7c:e5:4a:61:89:16:57: 4c:14:89:cc:1c:8e:fc:5b:89:04:25:0f:ad:d5:56: a5:71:eb:0a:00:af:1f:7e:fb:ac:5b:e3:6f:81:07: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E1:2E:BD:8F:FF:2A:6B:05:4D:ED:9D:E3:D8:F6:5E:A6:35:FB:83 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/50a526-c90e-4a39-8247-542d3aa7655e/1/cOEuvY__KmsFTe2d49j2XqY1-4M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.159.16.0/22 IPv6: 2a07:b140::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202621 Signature Algorithm: sha256WithRSAEncryption 98:9a:ce:19:aa:50:e0:98:01:8b:f1:4c:1b:f4:d4:df:8e:52: be:97:5d:87:3d:5e:71:cb:1c:4d:35:04:f2:bb:e8:9a:44:04: 8f:9a:9f:bc:74:0e:96:4d:23:7f:06:73:bf:80:54:d3:53:6f: 0e:a9:f1:e9:51:33:ed:1e:9f:8b:9a:03:2f:6b:16:df:e0:f4: 8e:d9:3f:7f:61:40:8a:31:f5:0a:02:de:4a:34:b6:b7:a9:c9: 7e:7f:91:48:71:71:ae:b7:7e:b8:f5:dc:bd:91:4a:e3:41:9b: 20:12:ed:99:eb:ec:9d:fb:14:3c:04:1f:9a:e5:44:50:24:d8: 1b:39:8f:8c:0b:7e:17:cc:c9:46:5c:0d:ff:65:6b:16:27:d7: 70:35:7c:c8:9e:4c:f0:91:a7:9c:94:cb:b7:95:97:c5:b7:e0: 1f:84:a0:27:88:9f:96:58:ce:e2:e5:ec:b6:c4:05:c1:af:0b: b9:3f:81:6b:a9:26:70:39:2d:2f:25:1d:f1:e7:64:3f:3e:ec: a3:96:0f:91:47:e1:22:b9:5c:35:c4:fe:33:59:a6:1f:94:66: 4d:b6:4a:29:9e:80:06:9c:62:cf:1d:00:eb:16:3d:9d:0d:84: 60:bc:8e:34:6e:0d:a4:7d:fa:8c:f7:79:35:13:33:25:10:61: c7:eb:2b:37 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87VkBELIoLDWJcmStbVdTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MGUxMmViZDhmZmYyYTZiMDU0ZGVkOWRlM2Q4ZjY1ZWE2MzVmYjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApW2xj0Q2SmAjWe0yuYeDGljd/LDI FpoaG7g0sT086EH25n6B/hczehZhtiyjpGt+g9DnvOiGHRvfo3DcOmB9cXdD0Hj4 fwq3d3kO16EDyyyuJlJFwEXZPCf53cklemyugEABLYNsHojdYK9yDU0JwZOo9UCI m2tRdHxMd9OFBoOw2DE+ufYUhXpOoVAaVXgtb5SyyajykgXeAYPh+HBtHwx7uQI4 Wq/FGZUp2OLVq6F2b0Zt1wT1TMf5DUh6pefvwwexbyvCUTmFb/ULe35UHvbXbonn bW+f43zlSmGJFldMFInMHI78W4kEJQ+t1ValcesKAK8ffvusW+NvgQf3VQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHDhLr2P/yprBU3tnePY9l6mNfuDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkwLzUwYTUy Ni1jOTBlLTRhMzktODI0Ny01NDJkM2FhNzY1NWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAvNTBhNTI2 LWM5MGUtNGEzOS04MjQ3LTU0MmQzYWE3NjU1ZS8xL2NPRXV2WV9fS21zRlRlMmQ0 OWoyWHFZMS00TS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuZ8QMA0EAgACMAcDBQMqB7FAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMXfTANBgkqhkiG9w0BAQsFAAOCAQEAmJrOGapQ4JgB i/FMG/TU345Svpddhz1eccscTTUE8rvomkQEj5qfvHQOlk0jfwZzv4BU01NvDqnx 6VEz7R6fi5oDL2sW3+D0jtk/f2FAijH1CgLeSjS2t6nJfn+RSHFxrrd+uPXcvZFK 40GbIBLtmevsnfsUPAQfmuVEUCTYGzmPjAt+F8zJRlwN/2VrFifXcDV8yJ5M8JGn nJTLt5WXxbfgH4SgJ4iflljO4uXstsQFwa8LuT+Ba6kmcDktLyUd8edkPz7so5YP kUfhIrlcNcT+M1mmH5RmTbZKKZ6ABpxizx0A6xY9nQ2EYLyONG4NpH36jPd5NRMz JRBhx+srNw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:43 2026 by rpki-client