This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer File: g1-7knspUGK30KcgR7a0qhsPmyk.cer (raw, json) Hash identifier: +dagnQ44wpiJGuxxNHL1nj+j0eAIuwe4IJ+U3U5WDSU= Subject key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C768D478CFF8A519E823AB23608701 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206909 IP: 185.172.104.0/22 IP: 2a0b:1100::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:68:d4:78:cf:f8:a5:19:e8:23:ab:23:60:87:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:a6:bb:be:0b:60:89:b0:60:ea:45:0e:7b: 0a:4d:2f:e7:29:59:62:f0:1f:a5:92:2e:66:e7:f4: 5c:bd:78:4d:d4:a2:ac:c0:ab:0b:b8:40:3d:40:c7: fe:b9:25:c0:75:1b:e7:6d:74:81:3b:16:5f:42:2f: fb:8e:98:06:60:be:42:ec:6a:a2:ce:ce:f4:ae:6c: 17:1a:42:aa:62:4a:03:5c:41:e8:3d:cc:4e:e8:ca: 9d:a5:05:13:7a:3c:59:66:24:89:ed:b1:33:4b:0b: 5c:fc:74:b4:24:7c:27:59:b3:c8:06:82:29:9e:6d: b4:7a:ac:ce:53:28:e2:e3:bf:37:2e:74:87:06:f7: 5a:b9:36:13:94:72:6e:f6:4a:cd:69:c8:9b:33:9e: ae:03:ba:64:59:bf:60:b4:c9:dd:10:54:8e:5f:c7: 3d:77:73:fc:e6:d2:9f:a9:83:1d:b1:5a:08:b2:60: 18:8e:19:8a:b2:d8:43:ac:7b:47:67:ed:7c:06:68: ee:f8:84:8f:cc:0f:ea:b8:bc:d4:49:5a:a0:b9:2b: e5:89:15:6f:87:07:ba:bb:3e:02:07:ac:74:71:de: 29:a2:29:0c:65:35:b7:0c:e6:0c:ca:df:5b:47:ed: bc:d6:80:27:33:7a:8d:2b:c7:74:7d:0a:e8:3c:f9: 69:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.104.0/22 IPv6: 2a0b:1100::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206909 Signature Algorithm: sha256WithRSAEncryption 44:5e:e1:a1:a8:39:d8:2d:92:98:76:07:da:23:04:23:3b:0a: 3f:63:6e:be:2e:04:1d:ca:b4:0f:73:54:a6:9e:6c:64:46:eb: d7:9f:ec:cc:17:17:cf:77:5b:ff:32:f3:3b:df:e4:84:46:26: 0e:91:92:ab:cf:da:20:0a:2f:8a:30:8b:a5:85:d5:9f:2c:cb: a1:b0:f5:47:19:cb:cf:27:5c:6f:1f:c5:6a:2d:74:1a:f3:50: ff:cc:18:12:ad:6f:da:14:40:01:dc:4c:b8:e8:b2:5a:24:51: f5:d5:ab:f5:49:6f:13:14:11:7c:46:db:26:2d:c2:fc:96:09: 70:20:10:19:d3:c0:c4:01:fc:43:2c:54:c4:7e:85:a1:ba:48: 3c:c4:91:8c:21:95:3c:18:8d:fc:4e:8f:09:b8:41:8e:1f:87: c1:9d:59:f5:a2:c5:7e:2e:30:d8:74:37:b1:41:cb:63:d2:0e: 82:3c:09:bd:62:8e:c4:8e:a8:b4:8a:b9:a1:83:fc:7f:ab:32: c0:ac:df:85:b6:b5:ff:82:09:d8:b3:98:d8:ad:2e:5d:23:5e: 49:4e:74:cd:37:27:9e:d9:77:86:8e:5c:f5:54:05:18:af:35: 25:26:4a:20:48:b3:de:18:88:e2:06:1c:cf:b1:32:52:1c:0c: 89:f7:a1:e1 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3x2jUeM/4pRnoI6sjYIcBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzVmYmI5MjdiMjk1MDYyYjdkMGE3MjA0N2I2YjRhYTFiMGY5YjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9+mu74LYImwYOpFDnsKTS/nKVli 8B+lki5m5/RcvXhN1KKswKsLuEA9QMf+uSXAdRvnbXSBOxZfQi/7jpgGYL5C7Gqi zs70rmwXGkKqYkoDXEHoPcxO6MqdpQUTejxZZiSJ7bEzSwtc/HS0JHwnWbPIBoIp nm20eqzOUyji4783LnSHBvdauTYTlHJu9krNacibM56uA7pkWb9gtMndEFSOX8c9 d3P85tKfqYMdsVoIsmAYjhmKsthDrHtHZ+18Bmju+ISPzA/quLzUSVqguSvliRVv hwe6uz4CB6x0cd4poikMZTW3DOYMyt9bR+281oAnM3qNK8d0fQroPPlptQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFINfu5J7KVBit9CnIEe2tKobD5spMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdhL2M2NGJm NC1jNjA1LTQ2MWEtYmI3NC1iMThmOGY3ZDkwZTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2EvYzY0YmY0 LWM2MDUtNDYxYS1iYjc0LWIxOGY4ZjdkOTBlOC8xL2cxLTdrbnNwVUdLMzBLY2dS N2EwcWhzUG15ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuaxoMA0EAgACMAcDBQMqCxEAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMoPTANBgkqhkiG9w0BAQsFAAOCAQEARF7hoag52C2S mHYH2iMEIzsKP2Nuvi4EHcq0D3NUpp5sZEbr15/szBcXz3db/zLzO9/khEYmDpGS q8/aIAovijCLpYXVnyzLobD1RxnLzydcbx/Fai10GvNQ/8wYEq1v2hRAAdxMuOiy WiRR9dWr9UlvExQRfEbbJi3C/JYJcCAQGdPAxAH8QyxUxH6FobpIPMSRjCGVPBiN /E6PCbhBjh+HwZ1Z9aLFfi4w2HQ3sUHLY9IOgjwJvWKOxI6otIq5oYP8f6sywKzf hba1/4IJ2LOY2K0uXSNeSU50zTcnntl3ho5c9VQFGK81JSZKIEiz3hiI4gYcz7Ey UhwMifeh4Q== -----END CERTIFICATE-----Generated at Tue Jan 27 00:35:27 2026 by rpki-client