This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer File: ogAYZIx6-hREZNR7seLLK6eG67E.cer (raw, json) Hash identifier: BG0Eb7PnWhrFKOS5+vkJreISFHhwvzDIp6RcTQIeMHA= Subject key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78346E4CFDB65721DA8475DD607D1995 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25245 IP: 195.234.216.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:6e:4c:fd:b6:57:21:da:84:75:dd:60:7d:19:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c1:ad:db:4a:94:2a:4d:1d:44:f3:83:f9:26: 51:5a:26:6f:48:af:72:2c:72:fe:1a:d5:c0:bd:e3: 64:3d:3f:87:08:48:ec:d0:0e:0a:8b:f1:4e:13:c6: 6e:4f:8d:2e:f1:cc:df:57:0d:e1:78:e8:eb:f0:90: 32:1d:23:e4:68:ee:8d:3b:7a:47:77:75:cd:f1:cb: 73:4c:93:13:7a:e9:06:4e:21:dc:4d:20:d8:41:64: e3:03:82:39:5e:17:33:15:72:0e:1a:61:0f:54:f2: 04:7a:6b:33:1b:34:a9:57:75:3f:ca:10:11:14:ef: 3d:4e:cc:16:51:23:cb:a1:76:f5:9f:61:15:6e:4e: 54:b0:cd:6a:79:31:f0:b3:01:5f:08:5b:3b:98:bc: 37:22:b8:f2:d6:33:5c:07:17:c2:f3:ba:ba:e8:73: 8e:3a:c2:7c:a5:41:bb:3a:4d:ea:e3:7d:44:e9:7e: 8c:cc:bd:f0:9e:d3:9a:91:3d:9b:20:cd:ed:07:81: 17:0c:98:82:9d:27:b6:96:6a:48:2c:5e:f8:64:1e: b2:52:1d:4f:4f:0f:8d:42:d7:cf:80:46:53:d1:40: 77:67:a7:45:94:8e:4f:1b:81:45:6d:04:99:5a:4e: 87:eb:05:a5:28:37:73:77:9f:9d:96:f2:66:40:71: 82:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.234.216.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25245 Signature Algorithm: sha256WithRSAEncryption 38:15:d2:7e:e1:80:48:38:ad:84:04:57:29:11:e7:e6:49:58: 57:ec:e2:97:15:84:11:12:86:86:73:6b:f4:0e:8b:94:2f:c7: df:af:85:51:03:6a:27:1e:9d:6e:45:4e:05:ea:e8:9e:43:58: 4f:7e:b8:0e:c4:fc:7d:2f:e4:b6:27:ee:58:8d:1d:2a:38:e0: 92:28:6d:7c:fe:ed:8e:c3:03:47:b4:7f:f1:2a:d7:b1:a2:c9: 94:dc:2e:07:c5:dd:4c:29:90:6c:c8:3b:d0:a8:44:3d:6c:94: 5d:82:1f:7d:6b:ef:d7:42:94:7a:0f:dc:c1:51:36:98:b3:5f: 43:78:5e:8f:0b:8e:d8:a5:af:7e:b0:56:82:46:1b:dd:06:10: d0:cf:d1:ae:92:d0:8c:5d:45:e8:49:26:cf:e2:27:e5:23:24: d1:75:de:01:9c:40:b0:ae:fc:eb:94:d4:1e:55:90:5e:b3:ba: a9:3a:85:56:3d:a4:71:d3:57:94:9f:06:f2:f1:30:46:60:f2: 85:26:b3:07:08:1f:f3:ac:b9:fc:9c:65:32:c7:7d:49:7f:2f: 69:87:0a:64:ea:82:1b:f4:e6:73:aa:e6:19:e0:1a:fd:2a:a7: 9f:96:2c:5d:12:0a:dd:d4:7d:c3:38:71:f6:65:21:1d:13:d2: 3f:07:58:53 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt4NG5M/bZXIdqEdd1gfRmVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjAwMTg2NDhjN2FmYTE0NDQ2NGQ0N2JiMWUyY2IyYmE3ODZlYmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4MGt20qUKk0dRPOD+SZRWiZvSK9y LHL+GtXAveNkPT+HCEjs0A4Ki/FOE8ZuT40u8czfVw3heOjr8JAyHSPkaO6NO3pH d3XN8ctzTJMTeukGTiHcTSDYQWTjA4I5XhczFXIOGmEPVPIEemszGzSpV3U/yhAR FO89TswWUSPLoXb1n2EVbk5UsM1qeTHwswFfCFs7mLw3Irjy1jNcBxfC87q66HOO OsJ8pUG7Ok3q431E6X6MzL3wntOakT2bIM3tB4EXDJiCnSe2lmpILF74ZB6yUh1P Tw+NQtfPgEZT0UB3Z6dFlI5PG4FFbQSZWk6H6wWlKDdzd5+dlvJmQHGC/QIDAQAB o4ICnzCCApswHQYDVR0OBBYEFKIAGGSMevoURGTUe7HiyyunhuuxMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q5LzgzYTc3 ZC05Y2FkLTQwZGUtYWJlZC1jNGQ0MmI3ZjYyNzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkvODNhNzdk LTljYWQtNDBkZS1hYmVkLWM0ZDQyYjdmNjI3MC8xL29nQVlaSXg2LWhSRVpOUjdz ZUxMSzZlRzY3RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCw+rYMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AmKdMA0GCSqGSIb3DQEBCwUAA4IBAQA4FdJ+4YBIOK2EBFcpEefmSVhX7OKXFYQR EoaGc2v0DouUL8ffr4VRA2onHp1uRU4F6uieQ1hPfrgOxPx9L+S2J+5YjR0qOOCS KG18/u2OwwNHtH/xKtexosmU3C4Hxd1MKZBsyDvQqEQ9bJRdgh99a+/XQpR6D9zB UTaYs19DeF6PC47Ypa9+sFaCRhvdBhDQz9GuktCMXUXoSSbP4iflIyTRdd4BnECw rvzrlNQeVZBes7qpOoVWPaRx01eUnwby8TBGYPKFJrMHCB/zrLn8nGUyx31Jfy9p hwpk6oIb9OZzquYZ4Br9KqeflixdEgrd1H3DOHH2ZSEdE9I/B1hT -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:27 2026 by rpki-client