This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lELO0S17sEnNHN-N97palXZVOGw.cer File: lELO0S17sEnNHN-N97palXZVOGw.cer (raw, json) Hash identifier: ZEQxdM6/FY0eiBb1FXV6VJq+UBSiDKBMfOVMjHRFJmw= Subject key identifier: 94:42:CE:D1:2D:7B:B0:49:CD:1C:DF:8D:F7:BA:5A:95:76:55:38:6C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B783481D808982E9A5EB4C80BE571359F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/9f2ffa-237b-474b-8880-46fd46d6b547/1/lELO0S17sEnNHN-N97palXZVOGw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/9f2ffa-237b-474b-8880-46fd46d6b547/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.164.180.0/22 IP: 2a0b:4c00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:81:d8:08:98:2e:9a:5e:b4:c8:0b:e5:71:35:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9442ced12d7bb049cd1cdf8df7ba5a957655386c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f6:07:40:f0:df:89:6d:94:f1:a6:00:4d:7d: 2e:03:00:71:57:d2:b6:c7:03:82:c2:76:98:7e:6e: ff:19:35:19:31:cf:99:76:24:8d:a1:b5:91:bf:6b: 0d:58:bd:fb:ff:22:0c:0e:6f:01:c4:c5:26:7e:46: ed:37:4e:dc:7e:98:2b:a8:15:dd:96:8b:58:9a:dd: ff:c7:e7:46:89:c3:7e:f8:ec:16:ec:ed:0b:ef:c7: 89:c2:2a:19:95:88:28:ab:b4:a8:a3:e3:92:8e:d9: d5:c5:a2:eb:ee:16:7e:ca:e0:bd:19:d8:24:d6:db: 60:b7:fe:00:50:9f:b0:c5:ff:9c:c6:5c:c0:f9:4a: 7b:e1:c4:1b:02:ac:01:8a:7f:cf:bd:76:7a:ba:5a: ac:04:08:aa:4b:22:3d:c1:ec:a0:63:40:b5:17:5f: 4a:2c:82:80:b8:10:f5:ec:2d:8f:da:7a:cb:e2:b8: 65:27:e5:c3:02:52:95:01:91:03:85:43:18:4c:dd: ff:9f:bd:cf:16:0f:b2:f7:69:9c:ed:c0:f0:dc:33: fa:7e:b3:ce:c2:8c:ac:b4:60:78:75:07:a8:65:26: 03:47:b5:ea:df:01:9a:8d:40:d6:b4:57:7f:a9:08: b2:c5:64:ca:c9:a0:85:41:b7:84:50:bd:54:ba:7f: 3a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:42:CE:D1:2D:7B:B0:49:CD:1C:DF:8D:F7:BA:5A:95:76:55:38:6C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/9f2ffa-237b-474b-8880-46fd46d6b547/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/9f2ffa-237b-474b-8880-46fd46d6b547/1/lELO0S17sEnNHN-N97palXZVOGw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.164.180.0/22 IPv6: 2a0b:4c00::/29 Signature Algorithm: sha256WithRSAEncryption 0d:02:0a:0b:83:53:d8:ce:fc:91:9b:ef:36:96:ca:62:bb:55: 3f:2d:f4:b7:d2:1d:4b:4f:93:4d:90:8e:70:70:a6:4a:77:f4: 5e:aa:18:0d:1e:81:13:11:d8:6e:02:0b:69:c1:a9:27:5e:74: 3b:ce:e5:94:66:44:cd:e7:b2:b6:cf:b8:ea:a9:2b:3a:49:bb: a5:90:b3:4e:43:e9:21:f0:a8:8a:01:92:be:8a:11:21:4f:17: 6d:72:09:67:da:d5:f4:54:d9:46:9a:04:c9:ad:f0:fa:4f:86: 65:18:75:f6:e3:62:c6:5f:e8:19:2c:87:e5:cc:24:45:63:e5: 40:84:a7:09:62:c6:8d:10:fd:b9:f6:95:a4:d3:2f:5e:62:6c: 9e:32:9f:2a:8d:0d:26:b2:0f:1e:94:b3:d1:87:c9:56:ad:65: d2:2d:98:59:6e:16:44:4e:e3:bb:45:2f:06:40:1f:c8:10:f2: 53:f7:e9:d2:44:99:d1:02:8b:98:98:6d:2d:96:37:75:28:ad: 5a:34:5c:a1:35:56:1a:b9:eb:bf:96:8d:2e:8a:8d:f2:62:2e: 05:eb:4a:aa:57:1b:6d:12:5a:3a:83:0e:1e:02:67:20:28:ef: 89:cc:c0:25:7d:48:78:f3:44:1a:7f:bc:85:2a:31:e4:5f:97: 5c:d4:81:63 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt4NIHYCJguml60yAvlcTWfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NDQyY2VkMTJkN2JiMDQ5Y2QxY2RmOGRmN2JhNWE5NTc2NTUzODZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPYHQPDfiW2U8aYATX0uAwBxV9K2 xwOCwnaYfm7/GTUZMc+ZdiSNobWRv2sNWL37/yIMDm8BxMUmfkbtN07cfpgrqBXd lotYmt3/x+dGicN++OwW7O0L78eJwioZlYgoq7Soo+OSjtnVxaLr7hZ+yuC9Gdgk 1ttgt/4AUJ+wxf+cxlzA+Up74cQbAqwBin/PvXZ6ulqsBAiqSyI9weygY0C1F19K LIKAuBD17C2P2nrL4rhlJ+XDAlKVAZEDhUMYTN3/n73PFg+y92mc7cDw3DP6frPO woystGB4dQeoZSYDR7Xq3wGajUDWtFd/qQiyxWTKyaCFQbeEUL1Uun86AwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFJRCztEte7BJzRzfjfe6WpV2VThsMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZmLzlmMmZm YS0yMzdiLTQ3NGItODg4MC00NmZkNDZkNmI1NDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmYvOWYyZmZh LTIzN2ItNDc0Yi04ODgwLTQ2ZmQ0NmQ2YjU0Ny8xL2xFTE8wUzE3c0VuTkhOLU45 N3BhbFhaVk9Hdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuaS0MA0EAgACMAcDBQMqC0wAMA0GCSqGSIb3 DQEBCwUAA4IBAQANAgoLg1PYzvyRm+82lspiu1U/LfS30h1LT5NNkI5wcKZKd/Re qhgNHoETEdhuAgtpwaknXnQ7zuWUZkTN57K2z7jqqSs6SbulkLNOQ+kh8KiKAZK+ ihEhTxdtcgln2tX0VNlGmgTJrfD6T4ZlGHX242LGX+gZLIflzCRFY+VAhKcJYsaN EP259pWk0y9eYmyeMp8qjQ0msg8elLPRh8lWrWXSLZhZbhZETuO7RS8GQB/IEPJT 9+nSRJnRAouYmG0tljd1KK1aNFyhNVYaueu/lo0uio3yYi4F60qqVxttElo6gw4e AmcgKO+JzMAlfUh480Qaf7yFKjHkX5dc1IFj -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:59 2026 by rpki-client