This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer File: nS2GwCi_w46HVFXPgmiaNiZTAsI.cer (raw, json) Hash identifier: pjxFid8DUQDg95FAADx0qdaesZv8iMF5hbETfzyb8oc= Subject key identifier: 9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15208953526502F880803450BAC993 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:20:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205321 IP: 185.217.248.0/22 IP: 2a0c:af00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:20:89:53:52:65:02:f8:80:80:34:50:ba:c9:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:20:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9d2d86c028bfc38e875455cf82689a36265302c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1c:ad:60:a1:a6:23:42:69:d5:36:4a:b0:65: 0a:d9:6d:07:8e:f2:e5:30:28:59:01:fa:a4:41:54: f2:a5:94:e4:88:b2:6f:25:5e:89:c5:dd:79:a6:31: 96:ee:2c:82:2f:98:c8:3c:2b:94:d8:ea:cb:87:39: 15:10:31:67:de:61:2b:6b:7d:91:be:b3:f2:98:3b: 65:71:77:a3:32:7c:9d:ab:8b:0e:1e:5c:30:ac:92: a4:1c:5a:c3:56:43:3a:c7:a6:37:05:02:04:8a:cd: ba:3f:cc:66:a0:49:d4:8a:22:9f:06:d3:24:41:9e: 63:c7:ce:0f:46:8a:2e:93:eb:d1:07:43:26:f7:74: 34:87:81:ed:65:3e:bf:f4:11:77:52:9f:04:6b:e7: 23:7a:bc:30:37:b9:d9:f9:78:2b:e7:cc:93:09:03: bd:29:e0:65:0a:06:a5:0d:09:14:2e:15:dd:07:54: b1:e4:0f:13:33:8b:ef:9a:5c:66:17:b4:d9:d7:3c: 2c:c3:f8:b8:c9:50:14:ab:9b:af:ca:54:b8:a1:9f: 6b:a6:9a:5b:5d:a9:ef:95:17:a2:0c:96:39:46:cd: fe:97:4b:40:4e:ac:36:ac:f1:b7:ff:85:1d:5f:f9: 12:fc:14:64:dc:ea:ce:6f:51:5c:98:24:05:78:96: 62:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.217.248.0/22 IPv6: 2a0c:af00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205321 Signature Algorithm: sha256WithRSAEncryption 85:eb:e9:b6:b6:61:98:e8:e8:74:38:87:6a:76:52:ca:fb:0e: 28:f2:1a:0c:6a:72:30:17:5f:e1:60:8f:93:b3:b1:78:2f:8f: 1d:98:01:f2:d9:15:71:e0:cc:b6:13:a1:74:10:c5:17:4e:47: 83:88:98:7c:1d:be:d8:62:50:d1:14:cd:06:4c:a6:f0:a2:69: e9:6c:79:5d:18:ff:ce:65:c6:14:08:2d:f9:02:72:33:31:f1: 05:7f:e7:2c:d9:7a:e4:81:0b:75:8c:3d:3f:9e:3d:25:5d:ed: 2c:a1:d3:eb:b1:88:a2:0d:69:cd:cc:5b:ec:28:e7:02:bf:f6: 5b:4d:b9:8e:ac:29:23:28:f4:0d:4a:72:20:8e:e8:6f:79:c1: 7e:3b:44:e5:24:e4:f8:e6:1d:24:40:bc:33:fb:70:52:9c:d7: aa:3b:8f:bb:4f:1d:b2:ac:61:6b:ee:8e:dd:30:53:9f:15:e9: cf:0a:9f:65:7f:0e:fa:db:70:0d:81:37:3c:ae:d6:42:a2:7a: 75:48:10:31:43:2f:98:4a:b1:0e:77:52:85:6f:75:ce:4b:dd: 04:24:58:b3:53:bf:41:cc:82:8a:b0:a3:bd:2e:7b:ea:d4:4a: 7d:fa:41:b2:5e:63:87:e6:50:67:40:60:fd:4b:33:5e:a6:ac: e0:97:37:ef -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/FSCJU1JlAviAgDRQusmTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMDQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZDJkODZjMDI4YmZjMzhlODc1NDU1Y2Y4MjY4OWEzNjI2NTMwMmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BytYKGmI0Jp1TZKsGUK2W0HjvLl MChZAfqkQVTypZTkiLJvJV6Jxd15pjGW7iyCL5jIPCuU2OrLhzkVEDFn3mEra32R vrPymDtlcXejMnydq4sOHlwwrJKkHFrDVkM6x6Y3BQIEis26P8xmoEnUiiKfBtMk QZ5jx84PRoouk+vRB0Mm93Q0h4HtZT6/9BF3Up8Ea+cjerwwN7nZ+Xgr58yTCQO9 KeBlCgalDQkULhXdB1Sx5A8TM4vvmlxmF7TZ1zwsw/i4yVAUq5uvylS4oZ9rpppb XanvlReiDJY5Rs3+l0tATqw2rPG3/4UdX/kS/BRk3OrOb1FcmCQFeJZi8wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFJ0thsAov8OOh1RVz4JomjYmUwLCMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I2L2MwNzhm ZC1kMmI2LTQ2YmEtYTZiYS00NGMzYjc1ZDNmMzMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYvYzA3OGZk LWQyYjYtNDZiYS1hNmJhLTQ0YzNiNzVkM2YzMy8xL25TMkd3Q2lfdzQ2SFZGWFBn bWlhTmlaVEFzSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCudn4MA0EAgACMAcDBQMqDK8AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMiCTANBgkqhkiG9w0BAQsFAAOCAQEAhevptrZhmOjo dDiHanZSyvsOKPIaDGpyMBdf4WCPk7OxeC+PHZgB8tkVceDMthOhdBDFF05Hg4iY fB2+2GJQ0RTNBkym8KJp6Wx5XRj/zmXGFAgt+QJyMzHxBX/nLNl65IELdYw9P549 JV3tLKHT67GIog1pzcxb7CjnAr/2W025jqwpIyj0DUpyII7ob3nBfjtE5STk+OYd JEC8M/twUpzXqjuPu08dsqxha+6O3TBTnxXpzwqfZX8O+ttwDYE3PK7WQqJ6dUgQ MUMvmEqxDndShW91zkvdBCRYs1O/QcyCirCjvS576tRKffpBsl5jh+ZQZ0Bg/Usz Xqas4Jc37w== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:40 2026 by rpki-client