This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l8S83VMS-KfDPeS311wVtMu8Hdo.cer File: l8S83VMS-KfDPeS311wVtMu8Hdo.cer (raw, json) Hash identifier: eWdmRZsilJOOgWysmzSG4wa4WkCD/m2c27fUkMmFJPs= Subject key identifier: 97:C4:BC:DD:53:12:F8:A7:C3:3D:E4:B7:D7:5C:15:B4:CB:BC:1D:DA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA3CCC12BAD375242261D6497B9E51F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/l8S83VMS-KfDPeS311wVtMu8Hdo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207255 IP: 185.161.204.0/22 IP: 2a07:c7c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:cc:c1:2b:ad:37:52:42:26:1d:64:97:b9:e5:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97c4bcdd5312f8a7c33de4b7d75c15b4cbbc1dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:c4:cb:2d:6e:9e:b4:80:08:5f:23:78:81: 30:9e:c7:96:56:88:d8:ea:65:24:1f:f4:98:89:af: 10:e3:0a:4c:58:90:e3:83:36:8b:4e:fc:86:89:30: 72:cd:9e:ed:4d:91:8a:5c:0b:53:3a:03:6c:49:36: f5:4d:0d:60:0a:dc:fa:10:5d:5c:b6:45:38:37:7c: 52:fd:07:e8:4e:78:67:d7:40:ca:ac:8a:9c:3a:9a: 8f:e7:38:6b:61:d2:c0:ee:05:70:76:66:68:a2:07: 3e:5f:81:e1:6b:d5:e2:6b:19:ba:84:b3:7c:e0:4b: 18:78:23:30:74:ca:a9:c9:dd:7d:2b:c3:ae:0d:e5: c1:ce:15:fd:4e:2c:b5:3f:e3:14:fb:0d:dd:6d:3c: 59:e4:4f:c2:50:fb:00:dc:fa:53:97:54:63:5f:67: 64:70:e4:d5:e1:68:d2:fd:f8:e1:6b:ce:ce:95:89: ad:59:a4:5e:11:22:ed:f7:09:18:a4:d0:c5:a3:ee: 52:e0:a5:4f:b2:1f:29:dc:35:87:4e:f0:c9:7d:52: 28:80:92:6e:f2:4d:aa:cd:8e:63:d1:b0:61:55:e6: 28:27:b4:42:4e:c3:6a:51:59:61:d4:95:48:4e:1d: 27:e1:d6:9e:19:4a:f2:fb:a9:20:da:75:28:0a:95: c7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C4:BC:DD:53:12:F8:A7:C3:3D:E4:B7:D7:5C:15:B4:CB:BC:1D:DA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/l8S83VMS-KfDPeS311wVtMu8Hdo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.161.204.0/22 IPv6: 2a07:c7c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207255 Signature Algorithm: sha256WithRSAEncryption 05:11:3c:44:6f:c0:3f:db:9e:79:26:c0:1f:53:0e:6b:53:a8: 00:0e:1c:36:a9:1c:fb:06:16:3c:f4:13:17:f5:a8:e8:4e:f4: 7c:c9:4a:11:9a:49:f8:77:3e:96:7c:e0:f2:50:3b:24:34:81: 10:b3:f9:71:34:df:7a:aa:27:e7:85:78:a9:11:08:2a:2a:85: 6d:dc:57:39:3f:c1:50:1b:e9:7c:62:47:63:26:08:a8:f1:ed: 10:ed:64:24:a5:20:41:a8:0e:5b:49:93:7c:26:56:18:f0:13: c4:64:e0:bd:2b:cd:da:f4:7c:98:82:99:58:97:46:1d:da:7a: 0c:20:ba:4f:bb:e1:85:01:04:77:0e:01:8c:91:b5:99:23:66: 3b:9a:b8:19:63:f7:9b:f1:cc:c5:0b:1c:54:0c:12:e2:77:b3: 5d:b0:9f:34:fd:f5:c6:b3:9e:a7:8b:96:83:28:20:a2:96:bc: c8:18:7d:41:a6:5a:9e:7e:de:9e:20:cf:c4:10:45:b5:42:f2: 81:f5:6f:c9:c0:bc:71:69:1e:97:27:b9:83:24:99:8d:ed:cf: a3:7e:85:56:41:3b:41:40:f0:8e:18:d3:0e:de:04:0b:ba:bc: 02:da:eb:d7:0d:62:7a:09:6a:c9:81:ac:37:d4:2e:b5:80:b3: a4:13:a4:12 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt7o8zBK603UkImHWSXueUfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2M0YmNkZDUzMTJmOGE3YzMzZGU0YjdkNzVjMTViNGNiYmMxZGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0HEyy1unrSACF8jeIEwnseWVojY 6mUkH/SYia8Q4wpMWJDjgzaLTvyGiTByzZ7tTZGKXAtTOgNsSTb1TQ1gCtz6EF1c tkU4N3xS/QfoTnhn10DKrIqcOpqP5zhrYdLA7gVwdmZoogc+X4Hha9Xiaxm6hLN8 4EsYeCMwdMqpyd19K8OuDeXBzhX9Tiy1P+MU+w3dbTxZ5E/CUPsA3PpTl1RjX2dk cOTV4WjS/fjha87OlYmtWaReESLt9wkYpNDFo+5S4KVPsh8p3DWHTvDJfVIogJJu 8k2qzY5j0bBhVeYoJ7RCTsNqUVlh1JVITh0n4daeGUry+6kg2nUoCpXHqQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFJfEvN1TEvinwz3kt9dcFbTLvB3aMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M0LzQ0Nzc1 Zi0zN2E2LTRhODYtOWZlNS1lOTNiZGI4ZDljODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQvNDQ3NzVm LTM3YTYtNGE4Ni05ZmU1LWU5M2JkYjhkOWM4NS8xL2w4UzgzVk1TLUtmRFBlUzMx MXdWdE11OEhkby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuaHMMA0EAgACMAcDBQMqB8fAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMplzANBgkqhkiG9w0BAQsFAAOCAQEABRE8RG/AP9ue eSbAH1MOa1OoAA4cNqkc+wYWPPQTF/Wo6E70fMlKEZpJ+Hc+lnzg8lA7JDSBELP5 cTTfeqon54V4qREIKiqFbdxXOT/BUBvpfGJHYyYIqPHtEO1kJKUgQagOW0mTfCZW GPATxGTgvSvN2vR8mIKZWJdGHdp6DCC6T7vhhQEEdw4BjJG1mSNmO5q4GWP3m/HM xQscVAwS4nezXbCfNP31xrOep4uWgyggopa8yBh9QaZann7eniDPxBBFtULygfVv ycC8cWkelye5gySZje3Po36FVkE7QUDwjhjTDt4EC7q8Atrr1w1ieglqyYGsN9Qu tYCzpBOkEg== -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:35 2026 by rpki-client