This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eci_aFCnp-KvNMwWI23QgwlODO4.cer File: eci_aFCnp-KvNMwWI23QgwlODO4.cer (raw, json) Hash identifier: 5jp4C6U+uws9ewcd5g6RjEV4QHKIAXg5iPrPuyfMsuI= Subject key identifier: 79:C8:BF:68:50:A7:A7:E2:AF:34:CC:16:23:6D:D0:83:09:4E:0C:EE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A364B82BBFAB5EFFD9BA710CD2D6E5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/aa/74fe2c-87d1-468d-a121-d1095be7c48f/1/eci_aFCnp-KvNMwWI23QgwlODO4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/aa/74fe2c-87d1-468d-a121-d1095be7c48f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208742 IP: 45.84.248.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:64:b8:2b:bf:ab:5e:ff:d9:ba:71:0c:d2:d6:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=79c8bf6850a7a7e2af34cc16236dd083094e0cee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:db:54:da:0c:2c:71:46:b4:ca:f1:b5:88:7d: 47:ed:4d:e5:1b:e1:ee:84:ed:58:13:7f:07:5c:90: 59:54:1f:e4:f3:dc:b2:3d:6e:b0:20:e6:c7:89:20: 06:5a:2c:da:19:6d:91:74:c2:bc:30:4d:0d:72:30: d3:b2:8c:ab:25:b8:fb:d1:85:cc:f6:ff:44:d5:db: d6:9e:38:1e:6a:c9:a9:5f:6e:fb:32:3d:9d:30:77: 5b:ed:c9:b3:9e:0f:30:23:f3:fd:16:32:bb:b9:a4: d3:64:b8:4e:42:5e:90:ec:3b:2e:f0:94:75:6a:f5: 1d:0f:df:01:15:2b:cf:e8:50:d6:86:91:6f:e3:ec: af:c0:fa:d8:36:6c:5b:60:26:9d:78:85:7b:55:6e: f7:7f:2b:d8:62:d7:b7:12:63:b2:83:91:7f:5f:29: ad:95:0b:04:62:df:2e:62:ae:8a:86:11:bf:2a:61: 99:76:08:8f:99:4d:f4:9e:91:93:d2:26:56:e5:df: 0d:29:3e:aa:21:c9:4c:0a:59:74:08:d7:87:57:90: 16:4b:87:75:b1:3d:24:f1:4e:bc:58:94:0c:d0:6e: 44:30:36:9b:d3:29:14:f2:9e:c7:24:1b:19:0e:08: 06:1d:6e:42:7b:fd:db:17:fc:3d:72:7d:5e:a0:89: 0e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C8:BF:68:50:A7:A7:E2:AF:34:CC:16:23:6D:D0:83:09:4E:0C:EE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/74fe2c-87d1-468d-a121-d1095be7c48f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/74fe2c-87d1-468d-a121-d1095be7c48f/1/eci_aFCnp-KvNMwWI23QgwlODO4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.84.248.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208742 Signature Algorithm: sha256WithRSAEncryption 94:a1:f3:44:b9:9d:6e:20:17:0d:98:47:74:b6:fd:3c:18:8b: 30:e2:10:b9:3c:a8:71:4c:3e:1b:73:aa:5b:22:30:6a:cb:41: b9:cf:7c:eb:b1:e8:50:d5:9a:89:7b:20:e3:b2:a3:e9:39:52: 35:e8:20:53:11:ff:98:81:3e:69:e4:55:fc:a4:36:89:c2:56: f1:a5:f0:40:a7:16:c1:de:5d:94:df:69:3e:0d:f6:94:91:94: c0:96:c3:a5:da:80:c2:da:c0:10:02:50:eb:18:72:ea:a4:d4: 33:0d:4e:38:2d:73:ef:4c:6f:c9:66:2b:f5:ca:61:20:55:3a: e8:82:6e:21:4b:5d:e1:13:0e:1d:d3:ea:39:7b:d0:4a:38:d6: 7b:90:7c:32:e5:4d:11:43:9e:e6:4b:f7:af:95:79:e8:72:ed: ea:f9:07:6b:59:70:b6:df:ff:2a:3e:6a:d5:68:e8:a9:da:e0: 79:ba:11:25:65:32:ad:d3:d6:eb:fb:e7:7f:0e:17:68:7d:d4: ed:6b:f6:67:72:db:54:98:ff:50:25:df:66:ff:d7:31:38:0d: c3:e4:af:b4:ed:97:fc:46:c8:07:e0:71:ab:13:b5:1b:72:d3: 2c:e1:3d:b6:fd:5a:a8:4a:17:06:dd:33:6c:b6:81:a4:dd:45: 90:29:3d:e8 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4o2S4K7+rXv/ZunEM0tblMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OWM4YmY2ODUwYTdhN2UyYWYzNGNjMTYyMzZkZDA4MzA5NGUwY2VlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9tU2gwscUa0yvG1iH1H7U3lG+Hu hO1YE38HXJBZVB/k89yyPW6wIObHiSAGWizaGW2RdMK8ME0NcjDTsoyrJbj70YXM 9v9E1dvWnjgeasmpX277Mj2dMHdb7cmzng8wI/P9FjK7uaTTZLhOQl6Q7Dsu8JR1 avUdD98BFSvP6FDWhpFv4+yvwPrYNmxbYCadeIV7VW73fyvYYte3EmOyg5F/Xymt lQsEYt8uYq6KhhG/KmGZdgiPmU30npGT0iZW5d8NKT6qIclMCll0CNeHV5AWS4d1 sT0k8U68WJQM0G5EMDab0ykU8p7HJBsZDggGHW5Ce/3bF/w9cn1eoIkOvwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHnIv2hQp6firzTMFiNt0IMJTgzuMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FhLzc0ZmUy Yy04N2QxLTQ2OGQtYTEyMS1kMTA5NWJlN2M0OGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEvNzRmZTJj LTg3ZDEtNDY4ZC1hMTIxLWQxMDk1YmU3YzQ4Zi8xL2VjaV9hRkNucC1Ldk5Nd1dJ MjNRZ3dsT0RPNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLVT4MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMvZjANBgkqhkiG9w0BAQsFAAOCAQEAlKHzRLmdbiAXDZhHdLb9PBiLMOIQuTyo cUw+G3OqWyIwastBuc9867HoUNWaiXsg47Kj6TlSNeggUxH/mIE+aeRV/KQ2icJW 8aXwQKcWwd5dlN9pPg32lJGUwJbDpdqAwtrAEAJQ6xhy6qTUMw1OOC1z70xvyWYr 9cphIFU66IJuIUtd4RMOHdPqOXvQSjjWe5B8MuVNEUOe5kv3r5V56HLt6vkHa1lw tt//Kj5q1WjoqdrgeboRJWUyrdPW6/vnfw4XaH3U7Wv2Z3LbVJj/UCXfZv/XMTgN w+SvtO2X/EbIB+BxqxO1G3LTLOE9tv1aqEoXBt0zbLaBpN1FkCk96A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:18 2026 by rpki-client