This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/o3oSbXhU7NVlroKXDGk_M1n4Xzc.cer File: o3oSbXhU7NVlroKXDGk_M1n4Xzc.cer (raw, json) Hash identifier: WJjvY1EitI7Yi/jFO7fVjVWSg73tUw4TaJnz8BJNtKU= Subject key identifier: A3:7A:12:6D:78:54:EC:D5:65:AE:82:97:0C:69:3F:33:59:F8:5F:37 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA8236C8582585CFA5C8FAC8BE0A26 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/834407-163d-410c-b949-786cb1296e58/1/o3oSbXhU7NVlroKXDGk_M1n4Xzc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/834407-163d-410c-b949-786cb1296e58/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.127.234.0 -- 194.127.237.255 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:82:36:c8:58:25:85:cf:a5:c8:fa:c8:be:0a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a37a126d7854ecd565ae82970c693f3359f85f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b0:bd:0e:23:b6:42:d9:9e:bb:e7:e0:16:19: 06:86:8f:70:c2:c3:7a:dd:11:76:2e:2b:d9:f0:55: 7c:9f:f7:33:34:b8:ea:6c:0d:69:c6:89:1f:8b:47: e4:ac:18:14:7e:cc:09:ba:9b:59:99:32:f9:7e:ed: fe:00:b0:2c:74:da:bd:b6:bd:52:69:15:7e:30:7f: b0:a9:0b:78:7f:f3:fd:ab:36:3a:8d:d3:c6:9a:44: 35:b3:b3:ab:c7:92:3c:21:e1:79:dc:a3:ff:ed:38: 0d:06:00:87:62:be:eb:15:d9:6b:26:9d:a8:87:ec: 81:ea:dd:d3:7d:30:8d:29:5d:80:f1:92:a3:7b:6a: a1:07:be:0a:81:da:53:0d:73:2e:bb:6b:ba:60:40: fe:63:90:8c:28:b8:45:f0:31:45:75:8f:57:71:b1: c4:be:05:77:05:7a:64:3c:36:94:05:27:d3:89:ab: 9d:01:88:df:1f:72:f3:de:f8:90:e8:a3:22:9a:d4: 9e:b1:b1:87:99:4c:b0:98:55:dd:32:9a:2f:c6:c7: be:24:3c:68:e9:a6:94:c6:7c:d3:39:57:f6:f6:e9: c8:eb:f3:d0:63:86:a9:c9:96:31:12:16:a6:00:fe: 42:de:b0:ef:58:8f:ff:0b:c3:75:da:db:54:e3:ae: 32:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:7A:12:6D:78:54:EC:D5:65:AE:82:97:0C:69:3F:33:59:F8:5F:37 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/834407-163d-410c-b949-786cb1296e58/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/834407-163d-410c-b949-786cb1296e58/1/o3oSbXhU7NVlroKXDGk_M1n4Xzc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.127.234.0-194.127.237.255 Signature Algorithm: sha256WithRSAEncryption a1:56:d0:6f:6e:69:ae:97:70:a9:e4:62:50:47:d4:53:40:8b: ca:e5:7d:8e:0d:95:82:18:de:ad:86:0b:55:67:5a:47:57:84: d8:59:f0:9b:83:65:3c:28:c0:b8:57:9b:9c:6d:d5:39:97:a0: 8a:bf:1d:9d:63:ac:f6:e0:85:a2:55:ab:2c:39:f7:67:e3:c5: 05:56:78:b5:15:20:cd:f3:5b:aa:43:d5:e9:ea:32:aa:e4:d6: 28:4e:ae:2a:b0:ee:df:11:29:ff:9b:aa:96:d4:14:da:1b:28: eb:15:89:cb:0d:c8:c0:05:ee:39:f8:b7:10:2c:ab:b1:7a:6f: 56:c9:ec:52:78:d4:8d:51:e7:48:9f:b8:bf:cd:e7:bd:86:d8: 16:5e:b6:97:ad:28:dd:c0:2d:e0:f0:eb:85:14:1a:6f:e5:7a: 60:87:d3:37:ad:b6:0f:fc:2a:5a:97:47:3f:8c:46:ed:84:4b: a9:ba:1e:a1:8b:96:25:9d:64:66:2c:c1:55:8d:b2:3e:de:7e: 1d:6f:3f:2b:10:e7:bd:aa:2a:0c:fa:25:55:ec:fe:1e:54:f3: 87:e3:b9:3d:e2:b7:e6:e7:8f:f4:00:ef:4c:71:83:b5:43:06: 52:97:a9:63:aa:68:2a:27:c6:3b:0e:c7:6c:ae:70:19:f9:6b: ff:b3:5c:77 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgISAZt9yoI2yFglhc+lyPrIvgomMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzdhMTI2ZDc4NTRlY2Q1NjVhZTgyOTcwYzY5M2YzMzU5Zjg1ZjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7C9DiO2Qtmeu+fgFhkGho9wwsN6 3RF2LivZ8FV8n/czNLjqbA1pxokfi0fkrBgUfswJuptZmTL5fu3+ALAsdNq9tr1S aRV+MH+wqQt4f/P9qzY6jdPGmkQ1s7Orx5I8IeF53KP/7TgNBgCHYr7rFdlrJp2o h+yB6t3TfTCNKV2A8ZKje2qhB74KgdpTDXMuu2u6YED+Y5CMKLhF8DFFdY9XcbHE vgV3BXpkPDaUBSfTiaudAYjfH3Lz3viQ6KMimtSesbGHmUywmFXdMpovxse+JDxo 6aaUxnzTOVf29unI6/PQY4apyZYxEhamAP5C3rDvWI//C8N12ttU464yBwIDAQAB o4ICjDCCAogwHQYDVR0OBBYEFKN6Em14VOzVZa6ClwxpPzNZ+F83MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgxLzgzNDQw Ny0xNjNkLTQxMGMtYjk0OS03ODZjYjEyOTZlNTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEvODM0NDA3 LTE2M2QtNDEwYy1iOTQ5LTc4NmNiMTI5NmU1OC8xL28zb1NiWGhVN05WbHJvS1hE R2tfTTFuNFh6Yy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUF BwEHAQH/BBgwFjAUBAIAATAOMAwDBAHCf+oDBAHCf+wwDQYJKoZIhvcNAQELBQAD ggEBAKFW0G9uaa6XcKnkYlBH1FNAi8rlfY4NlYIY3q2GC1VnWkdXhNhZ8JuDZTwo wLhXm5xt1TmXoIq/HZ1jrPbghaJVqyw592fjxQVWeLUVIM3zW6pD1enqMqrk1ihO riqw7t8RKf+bqpbUFNobKOsVicsNyMAF7jn4txAsq7F6b1bJ7FJ41I1R50ifuL/N 572G2BZetpetKN3ALeDw64UUGm/lemCH0zettg/8KlqXRz+MRu2ES6m6HqGLliWd ZGYswVWNsj7efh1vPysQ572qKgz6JVXs/h5U84fjuT3it+bnj/QA70xxg7VDBlKX qWOqaConxjsOx2yucBn5a/+zXHc= -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:48 2026 by rpki-client