This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer File: gswXHj3IRnEeBW4uNiQdrJlKYA0.cer (raw, json) Hash identifier: f0IwaaMZcVc5gECh0a/zSlDodGu9Fi1hUBo8valBY98= Subject key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A37B28F06B6C48281CADB9EDCBADEA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59579 IP: 193.41.44.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:7b:28:f0:6b:6c:48:28:1c:ad:b9:ed:cb:ad:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82cc171e3dc846711e056e2e36241dac994a600d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ea:d8:66:d1:bf:a9:0e:95:63:ed:58:f5:01: 65:d0:ca:a3:91:77:2e:a0:25:ad:aa:0d:f5:f3:59: d1:50:40:f6:6e:db:de:1b:05:bd:6f:ba:f9:af:96: 42:98:44:61:ea:6a:e6:7d:30:a3:1e:39:29:39:a1: 33:92:79:4a:df:f6:4f:5e:a2:d7:48:e4:f8:c4:5d: 74:f5:4d:92:36:01:90:54:ee:aa:4d:1f:10:1e:c0: b3:e5:d2:2a:e0:bf:4e:51:46:a9:b0:39:05:f1:0c: 33:91:49:70:73:8a:37:13:33:d9:ef:96:00:ab:f4: e7:84:34:73:cd:cb:fd:82:29:fc:30:ee:a8:f9:56: 28:e8:48:7b:61:f6:76:6c:44:10:3f:09:ba:8d:84: 46:6d:18:f5:72:c6:48:ab:44:5d:4d:e8:2e:09:f2: 16:38:a8:d2:6e:53:65:08:ab:02:62:1b:63:24:f5: 26:51:85:25:db:0e:97:b6:43:51:08:63:b9:6d:34: 9b:a8:00:35:ac:d9:c8:f0:b1:f7:f2:d3:62:53:e1: 5c:94:40:99:52:83:54:01:f2:51:93:f9:6c:6a:2f: dc:70:9e:fe:94:02:d9:08:3a:86:01:75:23:25:84: 9a:fd:17:c2:cc:4e:f5:c7:ff:03:a4:1f:06:59:fb: bf:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.41.44.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59579 Signature Algorithm: sha256WithRSAEncryption 4f:25:97:15:62:e5:be:8a:b7:75:b8:d4:59:a0:59:14:df:a6: a0:d3:31:27:02:8a:c0:ef:77:30:d5:b1:52:9b:0a:07:47:22: f9:9e:43:e3:42:1e:4b:ab:90:e2:6e:b4:db:38:5a:88:b6:3a: 4d:0f:36:2c:84:db:37:f0:fe:49:53:2e:ba:0f:fa:3a:91:93: 32:ca:39:f7:73:2d:0a:30:24:b6:84:55:fe:c7:5d:75:28:46: a9:b1:d0:71:4f:24:9e:a7:ef:73:a8:49:10:45:7c:d5:fe:c9: b7:62:e4:35:f4:43:78:f0:c4:92:95:cf:97:69:49:8e:00:b8: 4f:7a:d2:28:e5:00:f8:40:ac:07:bc:1a:c0:a3:78:f0:8b:3a: d8:b9:59:18:8d:18:a8:57:e6:e3:5a:24:32:46:1d:5e:f5:29: 68:d3:15:9b:50:9a:d7:d6:b9:61:07:e7:0d:a4:18:c2:e6:73: 45:ea:13:35:84:3c:d5:f6:9e:40:e5:8f:da:50:b5:93:f0:7e: 17:a2:ef:d0:c0:9b:7d:b5:06:8e:af:40:4a:23:aa:b9:f9:b9: 76:e4:b0:05:e5:86:28:b5:cb:c5:4c:5c:9b:07:18:45:3f:5f: d6:31:2f:be:bf:99:66:15:47:df:34:20:ea:6d:8a:f7:2b:a1: ad:02:bb:18 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4o3so8GtsSCgcrbnty63qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmNjMTcxZTNkYzg0NjcxMWUwNTZlMmUzNjI0MWRhYzk5NGE2MDBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOrYZtG/qQ6VY+1Y9QFl0MqjkXcu oCWtqg3181nRUED2btveGwW9b7r5r5ZCmERh6mrmfTCjHjkpOaEzknlK3/ZPXqLX SOT4xF109U2SNgGQVO6qTR8QHsCz5dIq4L9OUUapsDkF8QwzkUlwc4o3EzPZ75YA q/TnhDRzzcv9gin8MO6o+VYo6Eh7YfZ2bEQQPwm6jYRGbRj1csZIq0RdTeguCfIW OKjSblNlCKsCYhtjJPUmUYUl2w6XtkNRCGO5bTSbqAA1rNnI8LH38tNiU+FclECZ UoNUAfJRk/lsai/ccJ7+lALZCDqGAXUjJYSa/RfCzE71x/8DpB8GWfu/HQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFILMFx49yEZxHgVuLjYkHayZSmANMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI4LzIyMTBj Ny05OTU5LTQ0ZjctYWRhNi1lZmQzYWU5ODVlZTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjgvMjIxMGM3 LTk5NTktNDRmNy1hZGE2LWVmZDNhZTk4NWVlNC8xL2dzd1hIajNJUm5FZUJXNHVO aVFkckpsS1lBMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwSksMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDouzANBgkqhkiG9w0BAQsFAAOCAQEATyWXFWLlvoq3dbjUWaBZFN+moNMxJwKK wO93MNWxUpsKB0ci+Z5D40IeS6uQ4m602zhaiLY6TQ82LITbN/D+SVMuug/6OpGT Mso593MtCjAktoRV/sdddShGqbHQcU8knqfvc6hJEEV81f7Jt2LkNfRDePDEkpXP l2lJjgC4T3rSKOUA+ECsB7wawKN48Is62LlZGI0YqFfm41okMkYdXvUpaNMVm1Ca 19a5YQfnDaQYwuZzReoTNYQ81faeQOWP2lC1k/B+F6Lv0MCbfbUGjq9ASiOqufm5 duSwBeWGKLXLxUxcmwcYRT9f1jEvvr+ZZhVH3zQg6m2K9yuhrQK7GA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:16 2026 by rpki-client