This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer File: o-boI_bdpn0oOp9BpykJkGrJqDc.cer (raw, json) Hash identifier: mLBmoIzBScBWIq2jyzmtSwRiqOr9WU/rTkxcCzzBTGk= Subject key identifier: A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35CCB5E7704D55F260246F06FCB85E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44124 IP: 78.31.136.0/21 IP: 79.124.96.0/19 IP: 81.161.104.0/22 IP: 185.15.0.0/22 IP: 185.34.236.0/22 IP: 185.189.136.0/22 IP: 193.189.116.0/23 IP: 195.20.218.0/23 IP: 195.225.244.0/22 IP: 2a03:6600::/29 IP: 2a0b:ea80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:cc:b5:e7:70:4d:55:f2:60:24:6f:06:fc:b8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3e6e823f6dda67d283a9f41a72909906ac9a837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:98:c0:d9:8a:3b:2f:7d:4b:e3:9e:d7:50: 12:ed:fd:6b:f8:03:50:85:f0:b0:4f:df:51:b5:45: a9:52:a9:10:93:61:3d:c1:54:82:01:88:80:7d:38: ab:bf:f7:fc:44:fc:71:6f:89:a4:45:3b:62:5a:cb: cf:0a:93:4b:41:9f:31:7e:5b:98:2f:17:b8:31:23: e7:c7:61:77:5b:41:93:48:30:1a:28:66:1b:39:79: 2d:64:fc:ae:16:82:99:97:a8:ac:79:da:49:ac:4b: 43:63:85:70:39:f1:dd:6e:d5:9c:7e:8c:5f:b7:5f: e5:12:83:b0:b0:d3:35:fd:bf:6b:a3:c8:e4:d8:64: f7:d3:a5:0b:c7:18:28:18:1c:39:86:e6:33:5c:69: 56:ed:95:2f:23:d3:44:13:ab:8e:33:e7:b4:cf:e4: 18:60:eb:4d:e3:a4:9f:94:2d:ce:c5:06:7c:4f:a7: 6c:10:a3:cc:2b:9a:aa:5b:79:e7:c3:f1:cd:77:b1: 62:35:6c:8a:38:d4:8a:01:b6:41:8f:78:14:e8:a6: b1:77:a6:ea:9a:71:89:56:ab:84:5b:55:ae:9a:4c: ba:14:c0:90:02:63:66:d5:d2:8f:92:de:be:60:63: b9:ae:ed:db:40:c0:f4:20:90:50:cb:25:04:67:23: 2c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.31.136.0/21 79.124.96.0/19 81.161.104.0/22 185.15.0.0/22 185.34.236.0/22 185.189.136.0/22 193.189.116.0/23 195.20.218.0/23 195.225.244.0/22 IPv6: 2a03:6600::/29 2a0b:ea80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44124 Signature Algorithm: sha256WithRSAEncryption 93:4e:ae:19:e9:a1:94:ae:d6:ed:88:5c:3f:7e:22:15:5a:d9: 4a:6f:70:30:4e:b1:09:04:10:99:43:aa:4f:92:7c:74:02:e9: f9:b9:b4:e8:2d:e3:06:bb:ec:c0:0c:25:53:13:c9:4a:97:ef: 2b:69:0d:e5:6a:68:64:fc:be:34:05:1e:93:d9:7b:70:f6:04: 8a:3f:06:9b:03:30:23:e7:7b:3a:d5:25:2e:fa:2e:81:fb:e2: 26:0f:09:8f:e3:a0:d0:f0:4a:a7:4e:d7:04:aa:80:34:bb:bb: 18:ea:ba:d8:22:bb:74:06:11:fd:ff:cd:00:67:10:87:fd:ec: 39:0b:54:3c:ed:80:d3:fe:02:3f:a6:f4:98:1c:65:26:b1:5a: 55:7d:ea:cf:cf:da:aa:47:66:1a:bf:3e:d3:f9:bb:cf:e4:e9: 97:2e:11:76:d0:bb:53:ca:73:7d:37:88:2b:13:52:b2:41:04: 06:0b:ed:0d:37:73:7e:59:67:76:f2:1d:ba:93:27:48:c5:c0: ee:78:c2:1b:3f:91:54:eb:4a:ae:39:59:1a:e0:c3:bf:38:c5: 24:fb:10:b6:2b:d7:c0:5c:af:17:6f:64:42:b1:b5:ee:02:1b: f3:97:36:d1:17:90:73:a4:5a:b6:fb:6a:82:8f:a0:24:85:b3: 70:18:65:fd -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgISAZt7Ncy153BNVfJgJG8G/LheMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2U2ZTgyM2Y2ZGRhNjdkMjgzYTlmNDFhNzI5MDk5MDZhYzlhODM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWuYwNmKOy99S+Oe11AS7f1r+ANQ hfCwT99RtUWpUqkQk2E9wVSCAYiAfTirv/f8RPxxb4mkRTtiWsvPCpNLQZ8xfluY Lxe4MSPnx2F3W0GTSDAaKGYbOXktZPyuFoKZl6isedpJrEtDY4VwOfHdbtWcfoxf t1/lEoOwsNM1/b9ro8jk2GT306ULxxgoGBw5huYzXGlW7ZUvI9NEE6uOM+e0z+QY YOtN46SflC3OxQZ8T6dsEKPMK5qqW3nnw/HNd7FiNWyKONSKAbZBj3gU6Kaxd6bq mnGJVquEW1Wumky6FMCQAmNm1dKPkt6+YGO5ru3bQMD0IJBQyyUEZyMsUQIDAQAB o4IC5jCCAuIwHQYDVR0OBBYEFKPm6CP23aZ9KDqfQacpCZBqyag3MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ2LzE4YTFi Yy05NjdjLTQ5MzEtODViNS0wMGYwMGFmMWM4ZDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYvMThhMWJj LTk2N2MtNDkzMS04NWI1LTAwZjAwYWYxYzhkNy8xL28tYm9JX2JkcG4wb09wOUJw eWtKa0dySnFEYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGCCsGAQUF BwEHAQH/BFYwVDA8BAIAATA2AwQDTh+IAwQFT3xgAwQCUaFoAwQCuQ8AAwQCuSLs AwQCub2IAwQBwb10AwQBwxTaAwQCw+H0MBQEAgACMA4DBQMqA2YAAwUAKgvqgDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMArFwwDQYJKoZIhvcNAQELBQADggEBAJNO rhnpoZSu1u2IXD9+IhVa2UpvcDBOsQkEEJlDqk+SfHQC6fm5tOgt4wa77MAMJVMT yUqX7ytpDeVqaGT8vjQFHpPZe3D2BIo/BpsDMCPnezrVJS76LoH74iYPCY/joNDw SqdO1wSqgDS7uxjqutgiu3QGEf3/zQBnEIf97DkLVDztgNP+Aj+m9JgcZSaxWlV9 6s/P2qpHZhq/PtP5u8/k6ZcuEXbQu1PKc303iCsTUrJBBAYL7Q03c35ZZ3byHbqT J0jFwO54whs/kVTrSq45WRrgw784xST7ELYr18BcrxdvZEKxte4CG/OXNtEXkHOk Wrb7aoKPoCSFs3AYZf0= -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:59 2026 by rpki-client