This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer (raw, json) Hash identifier: Z2BIBjFLpRyy6ElAzKZPeQqSPA1W1d2Xnr/E3a5XGw4= Subject key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C713F1C12DC7C693EB4D8EE2535C4D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:14 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207899 IP: 92.119.212.0/22 IP: 2a0f:66c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:13:f1:c1:2d:c7:c6:93:eb:4d:8e:e2:53:5c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:87:ec:85:d6:ad:0c:be:fa:f8:ba:0f:80:12: c2:a8:e1:24:a1:ad:e1:c2:9a:7b:9e:29:03:3c:ee: 19:62:95:83:2b:33:63:19:6f:42:96:3d:40:07:ca: 2e:ba:63:6a:84:94:48:46:43:0c:d9:c4:30:da:4f: 33:a4:be:dd:9a:3e:66:91:59:f9:3d:5b:d3:c2:44: 97:77:af:bb:6e:67:96:12:79:37:5e:4b:40:9d:fe: f7:a8:a9:35:79:04:6b:66:7f:5d:28:9b:91:63:72: 30:08:0f:7a:7c:dc:4a:d2:cf:7c:bd:17:e1:31:40: 59:fb:c2:01:36:55:75:52:f5:b3:dc:79:02:b4:ed: 5d:30:a4:68:d3:cc:f4:d5:0d:f5:d1:20:ab:d4:ae: f4:1c:4c:26:7b:fc:3b:d8:45:4f:4d:d7:de:14:9f: cd:65:06:3c:4e:b1:56:e3:05:90:ea:85:60:80:e4: 39:c2:2e:01:80:a9:5b:63:45:e8:e4:86:86:5d:62: ae:6e:73:ef:16:f0:14:67:4e:9d:10:c8:44:2a:c3: 29:06:b0:0f:22:8f:da:3e:89:6f:ea:60:f2:bb:33: ae:0a:08:d1:69:31:45:4e:0f:eb:13:42:19:d8:41: 56:5c:c2:64:64:ca:3c:13:0a:d4:f9:c0:b2:56:a3: ca:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.119.212.0/22 IPv6: 2a0f:66c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207899 Signature Algorithm: sha256WithRSAEncryption 34:9d:30:4f:73:81:5e:d6:64:00:6c:58:ae:f8:ee:10:f9:73: 2d:8b:cb:b8:0a:08:e5:15:91:47:b7:fb:e4:10:b7:4a:40:70: 4c:08:03:69:33:e9:e7:ef:28:a8:9f:5f:cf:c2:1d:a6:a8:cc: 6e:d8:71:76:79:fb:b9:be:65:7f:2e:f6:6e:21:2a:a2:7e:ec: ea:f8:65:6b:5a:0c:91:7a:37:53:f7:02:c4:00:11:1b:31:3b: d0:00:06:d3:e5:87:fa:c9:af:b1:b8:a3:76:36:a6:3a:74:22: e3:83:88:ab:79:b0:6b:fb:1a:a7:6c:0e:c4:36:6d:81:73:58: f1:ab:65:5a:a9:a4:02:0b:bf:7e:70:bb:16:9c:53:7d:fd:47: 7f:9c:41:75:29:42:95:4f:5a:c7:0d:97:6b:54:2a:a2:0f:da: 9a:c2:ed:d7:55:7a:49:22:1c:e5:ae:ee:3f:b4:38:c1:64:40: a7:8c:47:0e:6f:a1:ed:c5:ff:b9:ee:05:1f:a6:a8:80:73:77: 7f:72:09:8d:1f:34:98:7f:2e:62:51:2e:ed:d6:9f:c3:6d:a5: 3c:8b:f3:9e:73:71:65:6f:c3:f3:c4:5b:b1:17:1d:6b:5c:b7: 57:b9:c5:4f:6a:f4:df:b6:fa:ee:3d:52:54:3b:ae:d4:e6:ce: 2c:67:db:36 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3xxPxwS3HxpPrTY7iU1xNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YmNhMGVkZjEyMmY0Y2Y5OGIwODJkZDRjYzBkODRmNWVkZTgwNGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqofshdatDL76+LoPgBLCqOEkoa3h wpp7nikDPO4ZYpWDKzNjGW9Clj1AB8ouumNqhJRIRkMM2cQw2k8zpL7dmj5mkVn5 PVvTwkSXd6+7bmeWEnk3XktAnf73qKk1eQRrZn9dKJuRY3IwCA96fNxK0s98vRfh MUBZ+8IBNlV1UvWz3HkCtO1dMKRo08z01Q310SCr1K70HEwme/w72EVPTdfeFJ/N ZQY8TrFW4wWQ6oVggOQ5wi4BgKlbY0Xo5IaGXWKubnPvFvAUZ06dEMhEKsMpBrAP Io/aPolv6mDyuzOuCgjRaTFFTg/rE0IZ2EFWXMJkZMo8EwrU+cCyVqPK1wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFIvKDt8SL0z5iwgt1MwNhPXt6AS5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRmL2FlZjBl YS05NDAzLTQ3ZmItYWQ4MC0xZWRhNTNhZWJlNTEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYvYWVmMGVh LTk0MDMtNDdmYi1hZDgwLTFlZGE1M2FlYmU1MS8xL2k4b08zeEl2VFBtTENDM1V6 QTJFOWUzb0JMay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCXHfUMA0EAgACMAcDBQAqD2bAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMsGzANBgkqhkiG9w0BAQsFAAOCAQEANJ0wT3OBXtZk AGxYrvjuEPlzLYvLuAoI5RWRR7f75BC3SkBwTAgDaTPp5+8oqJ9fz8IdpqjMbthx dnn7ub5lfy72biEqon7s6vhla1oMkXo3U/cCxAARGzE70AAG0+WH+smvsbijdjam OnQi44OIq3mwa/sap2wOxDZtgXNY8atlWqmkAgu/fnC7FpxTff1Hf5xBdSlClU9a xw2Xa1Qqog/amsLt11V6SSIc5a7uP7Q4wWRAp4xHDm+h7cX/ue4FH6aogHN3f3IJ jR80mH8uYlEu7dafw22lPIvznnNxZW/D88RbsRcda1y3V7nFT2r037b67j1SVDuu 1ObOLGfbNg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:40 2026 by rpki-client