This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ews7OUhl5LhbaGo59V7UvmU2pII.cer File: ews7OUhl5LhbaGo59V7UvmU2pII.cer (raw, json) Hash identifier: tqOHT1RxjptmroX0HdveqA5W0cTPw/dam0sJEojMrt0= Subject key identifier: 7B:0B:3B:39:48:65:E4:B8:5B:68:6A:39:F5:5E:D4:BE:65:36:A4:82 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B775923DB13551DEE6893721C52D2A338 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25017 AS: 25020 IP: 193.201.101.0/24 IP: 195.234.137.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:23:db:13:55:1d:ee:68:93:72:1c:52:d2:a3:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b0b3b394865e4b85b686a39f55ed4be6536a482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:99:10:b3:96:b9:ed:e6:8b:1e:f8:be:2d: 77:3c:b1:93:2f:42:28:5e:ef:e4:6b:ae:f3:25:d1: a7:98:73:e7:fe:48:a3:27:d1:89:f5:00:84:f1:85: fe:31:23:64:ce:9c:3d:1a:92:67:08:8a:88:cf:76: 6a:6f:2f:3c:21:b1:35:c2:b9:95:0c:d0:8c:bf:8d: d3:aa:31:7f:36:ad:2d:fa:24:b6:46:98:e4:b2:2c: 3b:11:0e:0b:f5:ad:09:46:38:ce:5a:1a:de:11:c9: 27:10:22:02:d1:7e:66:3a:6c:ec:1c:81:7c:7d:cc: 94:bb:f3:a9:63:bd:23:c1:59:21:b7:b8:54:27:2a: fa:45:b1:d4:b0:08:f1:1c:03:eb:43:a8:cf:06:da: b0:49:fb:7a:87:16:dd:25:36:8e:e8:47:55:fe:a1: 93:99:91:02:9c:5b:f4:3a:0e:f5:33:c4:b6:8f:0c: 93:f3:62:01:a8:74:11:fa:78:fb:61:37:be:bd:36: fd:01:a1:a5:b1:60:af:dd:0e:07:cb:39:f3:9b:e2: 07:73:0d:df:4b:34:b6:37:5d:d4:34:a6:19:04:cf: 2e:00:b4:c2:df:1f:d7:6a:60:16:89:af:f9:ba:e3: 50:de:65:f9:9b:d3:04:6b:05:32:6d:57:22:44:8f: f3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0B:3B:39:48:65:E4:B8:5B:68:6A:39:F5:5E:D4:BE:65:36:A4:82 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.201.101.0/24 195.234.137.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25017 25020 Signature Algorithm: sha256WithRSAEncryption 6f:ca:92:12:22:94:bb:57:4c:dd:5c:de:8f:fa:dd:c3:61:99: b6:40:11:8b:b3:84:8e:7a:b2:47:0a:ec:d2:e0:05:be:d7:ab: 59:c0:67:96:82:98:44:e8:6d:38:2f:a3:c7:b9:76:e5:e9:a5: ed:ed:5e:4e:53:b3:9c:87:d3:fa:03:1b:b4:97:72:de:be:4c: 5d:7a:b7:35:9b:bf:d1:7a:c2:04:50:6c:a7:16:54:c7:8c:8b: e4:db:1d:15:f8:6e:31:f2:ef:55:0e:09:a7:f9:33:af:05:25: 71:67:25:a8:fd:9a:80:b6:ab:4b:0d:27:74:4b:35:52:bb:9a: 2d:a7:40:76:91:e0:97:8a:57:6e:35:d4:76:d4:21:c1:17:20: 1a:67:30:92:08:52:c0:f0:9e:63:45:22:da:5a:1e:7e:2a:14: 97:51:5c:1f:03:bc:9e:87:6c:8a:7f:1c:09:38:c3:20:08:e3: f3:41:c3:8b:91:7d:4e:9c:29:f9:25:dd:42:15:01:86:e8:f7: 58:6a:00:c4:c6:7b:ee:67:58:a8:27:b6:40:4f:6c:53:b2:21: 5e:c0:06:87:8d:ae:5d:cc:87:08:75:8c:bf:f7:8f:cd:c9:d9: ee:07:2a:14:2e:bc:5e:ed:46:a0:c7:33:44:a7:51:d0:66:0b: e2:b8:44:e4 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgISAZt3WSPbE1Ud7miTchxS0qM4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjBiM2IzOTQ4NjVlNGI4NWI2ODZhMzlmNTVlZDRiZTY1MzZhNDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7yZELOWue3mix74vi13PLGTL0Io Xu/ka67zJdGnmHPn/kijJ9GJ9QCE8YX+MSNkzpw9GpJnCIqIz3Zqby88IbE1wrmV DNCMv43TqjF/Nq0t+iS2Rpjksiw7EQ4L9a0JRjjOWhreEcknECIC0X5mOmzsHIF8 fcyUu/OpY70jwVkht7hUJyr6RbHUsAjxHAPrQ6jPBtqwSft6hxbdJTaO6EdV/qGT mZECnFv0Og71M8S2jwyT82IBqHQR+nj7YTe+vTb9AaGlsWCv3Q4Hyznzm+IHcw3f SzS2N13UNKYZBM8uALTC3x/XamAWia/5uuNQ3mX5m9MEawUybVciRI/zQwIDAQAB o4ICqTCCAqUwHQYDVR0OBBYEFHsLOzlIZeS4W2hqOfVe1L5lNqSCMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JkL2RiMzhh Yi1jM2NmLTQ2MjItODdmNi0yYzhkMDAxMWU4OGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQvZGIzOGFi LWMzY2YtNDYyMi04N2Y2LTJjOGQwMDExZTg4YS8xL2V3czdPVWhsNUxoYmFHbzU5 VjdVdm1VMnBJSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAwcllAwQAw+qJMB0GCCsGAQUFBwEIAQH/BA4w DKAKMAgCAmG5AgJhvDANBgkqhkiG9w0BAQsFAAOCAQEAb8qSEiKUu1dM3Vzej/rd w2GZtkARi7OEjnqyRwrs0uAFvterWcBnloKYROhtOC+jx7l25eml7e1eTlOznIfT +gMbtJdy3r5MXXq3NZu/0XrCBFBspxZUx4yL5NsdFfhuMfLvVQ4Jp/kzrwUlcWcl qP2agLarSw0ndEs1UruaLadAdpHgl4pXbjXUdtQhwRcgGmcwkghSwPCeY0Ui2loe fioUl1FcHwO8nodsin8cCTjDIAjj80HDi5F9Tpwp+SXdQhUBhuj3WGoAxMZ77mdY qCe2QE9sU7IhXsAGh42uXcyHCHWMv/ePzcnZ7gcqFC68Xu1GoMczRKdR0GYL4rhE 5A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:40 2026 by rpki-client