This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer File: orzYisPgLP-tPADeRrXaM2vWRwI.cer (raw, json) Hash identifier: 3BoGvAVVbt8/YlhjVumvYgj7PJxKT2EhBW+tBnCD9KQ= Subject key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1551FD19088FD88A1DFE94134FF573 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25143 IP: 91.239.48.0/22 IP: 193.19.228.0/22 IP: 193.238.20.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:51:fd:19:08:8f:d8:8a:1d:fe:94:13:4f:f5:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e0:2f:ad:79:c7:4e:60:86:a6:fb:a8:63:88: ad:da:a4:5e:9c:5a:a3:9e:f5:9b:69:ca:f8:49:24: 0e:98:80:52:89:c0:b7:ef:99:4b:3c:44:c4:c7:4c: ce:a1:f2:99:0f:44:9c:3f:f5:fe:ab:21:cc:a0:73: f5:35:4e:69:5f:3f:ce:ef:89:55:c1:13:57:17:b7: 2d:13:4a:06:c4:c5:14:ef:6d:50:38:25:e0:8b:49: ed:c2:d6:b7:b1:2e:a6:dc:64:c0:b2:a7:77:da:84: 15:04:07:fe:4f:3f:02:d9:b2:35:d2:65:38:e4:2e: 6a:8b:e5:62:10:c0:12:d8:6b:68:c0:0f:96:5d:98: 1e:bf:ad:49:11:56:fb:0d:4b:46:62:d9:07:98:44: 0d:91:13:c3:03:ca:77:55:5c:6c:5e:d9:42:39:b8: b0:27:7f:ed:10:1b:5a:bc:05:cb:0b:5b:f0:66:da: 66:52:24:b8:38:2f:b6:66:11:a8:21:58:6c:98:37: 26:ae:48:9c:b6:d6:0d:5e:cb:01:e2:9f:80:b0:27: cf:c8:36:bd:31:d9:68:8a:67:90:97:71:2b:ca:89: 49:39:dc:63:81:3b:04:a3:1f:ef:52:4c:09:c1:27: c6:6d:1f:b0:6f:a1:5f:c8:10:bb:43:18:92:18:29: 35:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.239.48.0/22 193.19.228.0/22 193.238.20.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25143 Signature Algorithm: sha256WithRSAEncryption 03:55:61:2f:a0:78:e8:9a:0e:45:dc:82:99:a7:1e:76:77:20: e1:07:fc:93:dd:15:e6:55:95:68:8e:70:9e:fa:c4:46:5c:b1: 5a:5b:e5:c2:fe:13:2e:a4:2b:1a:f8:45:e3:63:ad:2d:76:62: 64:ef:d2:87:18:05:35:22:69:c9:25:1f:24:4a:49:4e:bd:02: 7c:03:20:83:ee:e5:64:b9:f7:4c:21:93:d4:3f:f9:c3:60:eb: d2:44:fc:08:ba:d9:0c:29:bb:c1:5e:c2:a1:25:5b:61:e1:d9: 75:f0:88:24:9a:7f:6a:78:36:fb:7e:fc:34:e6:22:5d:01:71: db:e0:3f:71:83:47:00:8b:a4:75:54:4c:be:77:5e:07:43:4b: 9b:aa:7b:cc:73:22:37:ca:c7:6b:4b:d8:52:35:ac:64:74:73: 8a:dd:65:4d:62:ec:5c:71:4d:1d:9f:d3:b8:13:84:cd:b4:ef: 21:08:11:dc:85:b5:78:b5:53:b6:6a:d3:cf:7d:d3:ce:27:6a: 41:05:31:a1:21:0b:f4:09:69:23:06:07:4c:42:2c:cc:7b:f4: c7:21:9b:91:28:18:c3:03:2c:68:0b:6f:d9:ef:0e:28:0a:d8: e2:93:5c:76:79:bc:d5:23:f3:8c:b7:94:b3:1d:42:82:6c:4c: 7d:88:8c:99 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt/FVH9GQiP2Iod/pQTT/VzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmJjZDg4YWMzZTAyY2ZmYWQzYzAwZGU0NmI1ZGEzMzZiZDY0NzAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuAvrXnHTmCGpvuoY4it2qRenFqj nvWbacr4SSQOmIBSicC375lLPETEx0zOofKZD0ScP/X+qyHMoHP1NU5pXz/O74lV wRNXF7ctE0oGxMUU721QOCXgi0ntwta3sS6m3GTAsqd32oQVBAf+Tz8C2bI10mU4 5C5qi+ViEMAS2GtowA+WXZgev61JEVb7DUtGYtkHmEQNkRPDA8p3VVxsXtlCObiw J3/tEBtavAXLC1vwZtpmUiS4OC+2ZhGoIVhsmDcmrkicttYNXssB4p+AsCfPyDa9 MdloimeQl3EryolJOdxjgTsEox/vUkwJwSfGbR+wb6FfyBC7QxiSGCk1owIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFKK82IrD4Cz/rTwA3ka12jNr1kcCMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA2L2NmNGRi NS1mYjI5LTRiMmEtYTIxNS1hYWI4NjI4NjFhMDkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYvY2Y0ZGI1 LWZiMjktNGIyYS1hMjE1LWFhYjg2Mjg2MWEwOS8xL29yellpc1BnTFAtdFBBRGVS clhhTTJ2V1J3SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAATASAwQCW+8wAwQCwRPkAwQCwe4UMBkGCCsGAQUFBwEI AQH/BAowCKAGMAQCAmI3MA0GCSqGSIb3DQEBCwUAA4IBAQADVWEvoHjomg5F3IKZ px52dyDhB/yT3RXmVZVojnCe+sRGXLFaW+XC/hMupCsa+EXjY60tdmJk79KHGAU1 ImnJJR8kSklOvQJ8AyCD7uVkufdMIZPUP/nDYOvSRPwIutkMKbvBXsKhJVth4dl1 8Igkmn9qeDb7fvw05iJdAXHb4D9xg0cAi6R1VEy+d14HQ0ubqnvMcyI3ysdrS9hS NaxkdHOK3WVNYuxccU0dn9O4E4TNtO8hCBHchbV4tVO2atPPfdPOJ2pBBTGhIQv0 CWkjBgdMQizMe/THIZuRKBjDAyxoC2/Z7w4oCtjik1x2ebzVI/OMt5SzHUKCbEx9 iIyZ -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:28 2026 by rpki-client