This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer File: gaaIASwSJngYX8634QN_Dh7ReGE.cer (raw, json) Hash identifier: l2Z4BSyoxy1Fki+hbtt0VwgrUBnwv9Sta0Zl1Z5vPBU= Subject key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA37CD8E44D82C71CAB6F0FF2974D9B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:50 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51877 IP: 91.220.162.0/24 IP: 2001:67c:37c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:7c:d8:e4:4d:82:c7:1c:ab:6f:0f:f2:97:4d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=81a688012c122678185fceb7e1037f0e1ed17861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a1:40:58:fb:68:fc:77:ed:78:ce:00:e2:dd: cf:32:9b:71:91:1c:e0:cb:75:6b:ca:37:56:19:ab: bd:82:ba:61:a2:2a:1e:74:e1:4c:5d:f0:41:61:ee: 83:d2:cf:ba:c8:be:e0:24:46:9d:4b:46:dd:98:69: 7b:9b:70:89:42:6e:53:e1:10:0c:1f:e7:c2:5a:63: ac:f2:41:4f:85:02:4a:66:9c:30:88:d4:b8:2f:d4: 58:1b:c7:4e:72:a3:53:d5:46:91:e2:bc:d0:8d:46: 12:90:d6:5e:73:c3:3b:41:5c:f2:a8:d0:18:dd:e5: ab:ea:5a:61:34:70:28:3d:49:7c:bc:50:43:ed:57: da:48:cc:96:60:42:2f:91:35:ac:d9:67:0e:b7:40: bc:e7:d4:04:3e:0d:01:95:65:cf:01:8e:44:d2:86: 99:cd:50:a8:05:85:3b:01:b8:cc:8d:73:eb:d5:d5: 3e:33:3a:1f:3b:c4:17:13:d6:15:e9:22:de:26:2a: ce:74:42:8d:b7:9f:40:00:8a:34:a6:67:ff:c4:2d: da:56:31:dc:22:97:9b:cd:80:3d:29:7f:1f:2a:27: 18:42:e8:4b:0f:8c:24:2d:03:fd:60:37:40:f8:3f: 84:32:49:68:ec:16:5f:87:49:c2:87:aa:16:26:55: e3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.162.0/24 IPv6: 2001:67c:37c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51877 Signature Algorithm: sha256WithRSAEncryption 3d:30:30:53:db:e1:fc:e8:37:0b:57:93:19:0b:dc:35:e2:f0: 4f:83:2f:b2:c3:a4:07:aa:73:67:21:5d:de:2f:5a:1e:89:98: 15:68:b2:32:cc:b4:fa:65:f8:b2:ec:20:0f:c8:08:f1:34:16: 0b:f1:fa:e8:02:94:87:d6:5b:bb:7d:49:82:9a:0c:aa:ac:ed: aa:d7:be:9e:80:35:31:3b:47:95:dd:f0:8f:42:8e:17:be:77: b8:a6:d7:73:3d:1f:0a:8c:b1:20:6c:a2:ca:43:5b:77:96:1c: 55:b1:7b:d7:ac:49:a2:e6:76:5b:91:c7:ec:72:37:b6:a8:be: 08:78:95:48:84:ca:88:73:e1:10:c8:b4:7d:65:a4:b0:c9:7d: 9a:62:90:a2:fe:42:6e:6d:dc:62:0e:53:02:8b:6a:e9:cc:fd: 37:c3:d4:39:8d:14:27:71:20:7a:64:2b:11:f4:a9:d9:c7:56: a5:0a:c7:18:f6:b0:c5:4e:9f:52:f6:ca:68:0c:70:86:1d:92: 12:20:70:c7:fe:1f:1e:be:2f:59:63:54:3e:19:01:1e:b7:bc: 13:fa:b9:f3:5b:4c:51:53:a4:d5:64:d2:f6:b0:62:07:c5:d4: 5a:5d:75:32:c4:d7:3b:e2:8a:ed:f8:24:34:1b:f5:51:64:78: f6:86:ed:1c -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt7o3zY5E2Cxxyrbw/yl02bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MWE2ODgwMTJjMTIyNjc4MTg1ZmNlYjdlMTAzN2YwZTFlZDE3ODYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3aFAWPto/HfteM4A4t3PMptxkRzg y3VryjdWGau9grphoioedOFMXfBBYe6D0s+6yL7gJEadS0bdmGl7m3CJQm5T4RAM H+fCWmOs8kFPhQJKZpwwiNS4L9RYG8dOcqNT1UaR4rzQjUYSkNZec8M7QVzyqNAY 3eWr6lphNHAoPUl8vFBD7VfaSMyWYEIvkTWs2WcOt0C859QEPg0BlWXPAY5E0oaZ zVCoBYU7AbjMjXPr1dU+MzofO8QXE9YV6SLeJirOdEKNt59AAIo0pmf/xC3aVjHc IpebzYA9KX8fKicYQuhLD4wkLQP9YDdA+D+EMklo7BZfh0nCh6oWJlXj4wIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFIGmiAEsEiZ4GF/Ot+EDfw4e0XhhMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E3L2M3YzIw Ny1hM2JhLTQ5YzgtYTg5NC0wODRkNDc0OGMzODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcvYzdjMjA3 LWEzYmEtNDljOC1hODk0LTA4NGQ0NzQ4YzM4NS8xL2dhYUlBU3dTSm5nWVg4NjM0 UU5fRGg3UmVHRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAW9yiMA8EAgACMAkDBwAgAQZ8A3wwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAMqlMA0GCSqGSIb3DQEBCwUAA4IBAQA9MDBT2+H8 6DcLV5MZC9w14vBPgy+yw6QHqnNnIV3eL1oeiZgVaLIyzLT6Zfiy7CAPyAjxNBYL 8froApSH1lu7fUmCmgyqrO2q176egDUxO0eV3fCPQo4Xvne4ptdzPR8KjLEgbKLK Q1t3lhxVsXvXrEmi5nZbkcfscje2qL4IeJVIhMqIc+EQyLR9ZaSwyX2aYpCi/kJu bdxiDlMCi2rpzP03w9Q5jRQncSB6ZCsR9KnZx1alCscY9rDFTp9S9spoDHCGHZIS IHDH/h8evi9ZY1Q+GQEet7wT+rnzW0xRU6TVZNL2sGIHxdRaXXUyxNc74ort+CQ0 G/VRZHj2hu0c -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:38 2026 by rpki-client