This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer File: goIekswnAHYZMDmOI4DCOqR1XxY.cer (raw, json) Hash identifier: jVUjS9JJkD1SZD82FZoOni4qCM54NwIJd19ySJHF93Q= Subject key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35DC7773299FFEADB32A25704E909C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204136 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:dc:77:73:29:9f:fe:ad:b3:2a:25:70:4e:90:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82821e92cc2700761930398e2380c23aa4755f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:e8:53:c6:d0:a0:e5:5e:09:50:01:97:8d: 77:68:e1:d1:6c:9f:9e:c1:21:11:70:8b:c0:cb:a3: fa:11:ed:02:99:8e:27:19:44:8d:73:ab:78:0b:a7: 81:e6:b9:ff:87:37:a2:eb:e1:e0:b9:7f:db:86:5a: 40:b6:8e:fb:a2:b3:40:f7:56:7c:d4:21:29:76:f5: 90:3a:a3:17:2b:0e:f3:18:96:ca:87:4b:3f:ee:c6: 1d:2f:d4:0b:b3:e3:91:f7:45:7b:e6:65:87:e0:f4: af:85:ee:a8:b5:ad:aa:0c:d4:a0:89:0a:e3:70:44: fb:a7:d6:88:fa:b6:a4:3e:2e:c0:fc:2e:a9:c7:f0: 6f:e4:6f:9c:4e:e0:02:30:a7:09:d9:b1:f0:a4:fe: 90:c2:a7:44:6b:06:5d:07:37:c9:38:05:e5:1c:ce: 7b:91:26:f5:e7:ab:3c:8b:e1:93:c8:04:1d:50:8e: 03:bb:b8:44:27:8d:b1:03:de:c1:19:78:91:ad:a4: a8:03:02:80:d4:67:55:fd:74:0b:e3:29:91:26:45: 0c:8a:fc:72:bf:d7:f7:ed:8e:2c:b2:9a:37:f1:d3: b1:a5:43:c2:ca:e9:d2:72:06:df:63:2e:40:68:e2: 28:7d:54:cc:83:8c:ce:2d:32:1e:6e:37:88:ec:db: 08:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 204136 Signature Algorithm: sha256WithRSAEncryption 76:a2:f3:27:fb:02:f2:ec:f0:46:3a:a5:5c:85:bb:ec:27:a5: 20:c8:ec:b5:b5:49:e2:6f:87:b0:7e:79:e5:40:eb:6c:0a:f7: f4:f6:a9:1a:20:c6:f0:0a:30:ea:5b:00:78:96:d3:48:02:80: a3:b3:4a:d5:55:fd:ab:b9:9c:77:7f:2f:67:95:32:22:d5:70: 89:26:d7:cd:a8:c9:96:26:07:1a:03:56:bb:1e:71:a9:ca:9e: 19:b5:78:3d:3c:b6:77:86:a8:0c:ec:0e:a3:6b:bb:a5:c9:93: cd:74:f9:7e:4d:db:79:b5:4a:90:7e:50:7f:13:06:42:78:bc: 79:72:02:c8:2c:47:8a:95:55:64:1d:bd:df:06:47:f3:9e:5a: f3:9d:42:62:ec:bd:21:40:46:15:27:0c:1d:d1:87:55:11:94: 47:40:0e:3c:57:f6:fa:29:d9:07:22:d9:de:aa:98:28:ad:95: 77:d8:ff:b6:52:f9:02:64:c5:ea:b4:e6:ed:d2:32:95:b2:cf: 4d:dd:6a:3f:d2:e2:66:ad:1a:84:e1:82:03:fd:13:f6:42:a0: 8f:d2:0a:e7:f7:a7:86:6f:66:22:45:57:df:da:6d:4e:e0:d3: b4:32:28:66:c4:73:98:d1:ea:37:a9:77:6c:9e:f8:d0:66:5c: 01:aa:15:4a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt7Ndx3cymf/q2zKiVwTpCcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjgyMWU5MmNjMjcwMDc2MTkzMDM5OGUyMzgwYzIzYWE0NzU1ZjE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOvoU8bQoOVeCVABl413aOHRbJ+e wSERcIvAy6P6Ee0CmY4nGUSNc6t4C6eB5rn/hzei6+HguX/bhlpAto77orNA91Z8 1CEpdvWQOqMXKw7zGJbKh0s/7sYdL9QLs+OR90V75mWH4PSvhe6ota2qDNSgiQrj cET7p9aI+rakPi7A/C6px/Bv5G+cTuACMKcJ2bHwpP6QwqdEawZdBzfJOAXlHM57 kSb156s8i+GTyAQdUI4Du7hEJ42xA97BGXiRraSoAwKA1GdV/XQL4ymRJkUMivxy v9f37Y4sspo38dOxpUPCyunScgbfYy5AaOIofVTMg4zOLTIebjeI7NsIOwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFIKCHpLMJwB2GTA5jiOAwjqkdV8WMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBmLzFiM2Jj MC1mYWVkLTQ4ZmItYjNmMC0wOGI2MmI4ZWZlNzEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGYvMWIzYmMw LWZhZWQtNDhmYi1iM2YwLTA4YjYyYjhlZmU3MS8xL2dvSWVrc3duQUhZWk1EbU9J NERDT3FSMVh4WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMdaDANBgkqhkiG9w0BAQsFAAOCAQEAdqLzJ/sC8uzw RjqlXIW77CelIMjstbVJ4m+HsH555UDrbAr39PapGiDG8Aow6lsAeJbTSAKAo7NK 1VX9q7mcd38vZ5UyItVwiSbXzajJliYHGgNWux5xqcqeGbV4PTy2d4aoDOwOo2u7 pcmTzXT5fk3bebVKkH5QfxMGQni8eXICyCxHipVVZB293wZH855a851CYuy9IUBG FScMHdGHVRGUR0AOPFf2+inZByLZ3qqYKK2Vd9j/tlL5AmTF6rTm7dIylbLPTd1q P9LiZq0ahOGCA/0T9kKgj9IK5/enhm9mIkVX39ptTuDTtDIoZsRzmNHqN6l3bJ74 0GZcAaoVSg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:07 2026 by rpki-client