This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dLA_BQyflGvisljcSWDsCQhfwVc.cer File: dLA_BQyflGvisljcSWDsCQhfwVc.cer (raw, json) Hash identifier: /BD1dHUs+GldeyqgE2/1f5p+8Md4Hw0e5LxNEqUEFhw= Subject key identifier: 74:B0:3F:05:0C:9F:94:6B:E2:B2:58:DC:49:60:EC:09:08:5F:C1:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6A8C9A73FA46FC91BEBC75AA95A03 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/c75753-17c2-4324-8264-37c72a7ac8d1/1/dLA_BQyflGvisljcSWDsCQhfwVc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/c75753-17c2-4324-8264-37c72a7ac8d1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:17:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49070 IP: 91.215.196.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a8:c9:a7:3f:a4:6f:c9:1b:eb:c7:5a:a9:5a:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74b03f050c9f946be2b258dc4960ec09085fc157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:33:d6:cc:10:ea:32:a7:c6:cd:ba:11:61:cd: 99:b5:41:15:1c:6e:53:f5:5b:27:b3:50:46:b4:f9: fd:0c:51:ae:1e:04:79:7b:6c:37:3e:76:15:35:88: 36:99:69:20:2c:ee:25:12:10:73:80:22:7c:87:e3: 94:41:ee:e3:49:b4:58:93:8c:d1:70:bf:a0:00:2f: 36:2c:8f:15:10:aa:b5:26:df:7b:f1:0c:69:c2:10: b1:ec:75:82:a3:f6:3d:f7:7c:5c:85:c3:66:5c:44: 13:18:d0:f0:76:c5:9f:87:56:28:bb:b2:13:33:34: d7:9a:ce:a6:1f:1b:ae:76:c5:64:d8:89:11:f3:89: dc:8c:04:9f:22:c5:30:16:40:27:87:59:d6:98:55: ab:78:1b:4f:cb:3c:35:05:c2:3c:e1:7e:ac:6c:a7: 35:90:ca:3a:5a:5e:fc:c3:3c:c6:4f:70:48:72:5c: 05:9e:af:ec:5e:8d:d7:2b:4f:4c:3a:be:60:c8:37: 18:8d:b2:93:e1:7b:3c:61:56:f5:d6:a6:b8:62:81: 49:59:3b:9a:95:e0:d2:a9:61:99:e1:c4:24:77:98: c8:2c:4d:3f:54:86:44:c3:dc:f0:7d:38:31:02:6e: 2a:d6:28:f0:13:06:ed:a8:2f:72:52:e5:92:9a:04: 1a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B0:3F:05:0C:9F:94:6B:E2:B2:58:DC:49:60:EC:09:08:5F:C1:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c75753-17c2-4324-8264-37c72a7ac8d1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c75753-17c2-4324-8264-37c72a7ac8d1/1/dLA_BQyflGvisljcSWDsCQhfwVc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.215.196.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49070 Signature Algorithm: sha256WithRSAEncryption a8:f2:1e:26:a4:8b:c8:fd:74:72:b9:a0:b2:c1:60:eb:8e:8b: ea:0a:b9:c6:5c:fa:df:20:58:70:9d:7f:25:9b:6b:5c:f8:10: 50:8a:9f:c6:e8:59:61:db:95:dc:a5:3b:37:52:0d:e8:91:8a: bd:dc:32:d3:20:d2:6b:4d:f3:6e:6c:c5:80:3a:a7:e2:ed:f3: 07:77:f9:3f:78:e3:58:93:7b:5f:16:f2:ba:26:d5:d9:75:a7: e6:a5:09:dc:e3:0f:29:60:0d:e4:a7:65:27:ad:f2:f0:c7:ad: 22:14:90:8e:1a:e2:79:36:af:17:04:e5:b7:ab:d0:14:e2:56: 3b:03:44:5f:38:6c:d6:6b:b8:6c:fd:83:37:69:5b:79:a1:3b: 2c:05:b6:65:ea:b6:9a:62:a4:e6:54:7c:eb:64:26:56:ef:5b: db:0c:62:f9:5b:ba:86:4a:8f:64:7a:71:41:ae:21:e0:ab:3e: 16:04:5f:74:28:f3:71:46:6a:a3:c2:e4:50:15:ad:c0:7c:3f: 71:1e:90:c1:4d:70:af:4f:5e:f5:08:16:e3:94:55:ee:4c:5c: 4c:89:9d:b6:23:89:f6:9f:e1:f5:ae:72:d5:2d:34:41:ca:5c: c7:32:3c:62:d0:a1:0a:5d:42:4d:d9:da:51:8b:18:03:81:d8: 3d:6e:62:24 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt3xqjJpz+kb8kb68daqVoDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGIwM2YwNTBjOWY5NDZiZTJiMjU4ZGM0OTYwZWMwOTA4NWZjMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5TPWzBDqMqfGzboRYc2ZtUEVHG5T 9Vsns1BGtPn9DFGuHgR5e2w3PnYVNYg2mWkgLO4lEhBzgCJ8h+OUQe7jSbRYk4zR cL+gAC82LI8VEKq1Jt978QxpwhCx7HWCo/Y993xchcNmXEQTGNDwdsWfh1You7IT MzTXms6mHxuudsVk2IkR84ncjASfIsUwFkAnh1nWmFWreBtPyzw1BcI84X6sbKc1 kMo6Wl78wzzGT3BIclwFnq/sXo3XK09MOr5gyDcYjbKT4Xs8YVb11qa4YoFJWTua leDSqWGZ4cQkd5jILE0/VIZEw9zwfTgxAm4q1ijwEwbtqC9yUuWSmgQaQQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHSwPwUMn5Rr4rJY3Elg7AkIX8FXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJiL2M3NTc1 My0xN2MyLTQzMjQtODI2NC0zN2M3MmE3YWM4ZDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIvYzc1NzUz LTE3YzItNDMyNC04MjY0LTM3YzcyYTdhYzhkMS8xL2RMQV9CUXlmbEd2aXNsamNT V0RzQ1FoZndWYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCW9fEMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwC/rjANBgkqhkiG9w0BAQsFAAOCAQEAqPIeJqSLyP10crmgssFg646L6gq5xlz6 3yBYcJ1/JZtrXPgQUIqfxuhZYduV3KU7N1IN6JGKvdwy0yDSa03zbmzFgDqn4u3z B3f5P3jjWJN7XxbyuibV2XWn5qUJ3OMPKWAN5KdlJ63y8MetIhSQjhrieTavFwTl t6vQFOJWOwNEXzhs1mu4bP2DN2lbeaE7LAW2Zeq2mmKk5lR862QmVu9b2wxi+Vu6 hkqPZHpxQa4h4Ks+FgRfdCjzcUZqo8LkUBWtwHw/cR6QwU1wr09e9QgW45RV7kxc TImdtiOJ9p/h9a5y1S00QcpcxzI8YtChCl1CTdnaUYsYA4HYPW5iJA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:31 2026 by rpki-client