This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p-LOMQlICu57P9KEbsj4ZGiFzbo.cer File: p-LOMQlICu57P9KEbsj4ZGiFzbo.cer (raw, json) Hash identifier: mf3lQEyX6mgFxWuEMWCxMuKrNOr4Ec8KidSczde5VDk= Subject key identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA3AD62455D25FF68824ED704AB12F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 13193 AS: 34659 AS: 50796 IP: 5.23.40.0/21 IP: 5.104.192.0/21 IP: 37.32.56.0/21 IP: 62.212.96.0/19 IP: 77.247.104.0/22 IP: 78.40.48.0/21 IP: 79.170.216.0/21 IP: 80.65.224.0/20 IP: 80.248.208.0/20 IP: 83.136.160.0/21 IP: 85.31.168.0/22 IP: 93.184.32.0/20 IP: 171.25.208.0/22 IP: 178.21.176.0/21 IP: 178.22.0.0/21 IP: 178.132.16.0/20 IP: 185.3.196.0/22 IP: 185.33.40.0/22 IP: 185.43.68.0/22 IP: 185.45.228.0/22 IP: 185.83.236.0/22 IP: 185.96.156.0/22 IP: 185.153.96.0/22 IP: 185.185.4.0 -- 185.185.11.255 IP: 192.166.204.0/22 IP: 193.36.52.0/22 IP: 194.79.128.0/18 IP: 194.104.16.0/22 IP: 194.146.224.0/22 IP: 194.169.176.0/22 IP: 194.180.116.0/22 IP: 194.242.112.0/22 IP: 195.5.192.0/18 IP: 213.41.128.0/17 IP: 213.215.0.0/18 IP: 2001:7a8::/32 IP: 2a00:1db8::/29 IP: 2a00:1e30::/32 IP: 2a01:68::/32 IP: 2a01:6460::/32 IP: 2a07:8580::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:3a:d6:24:55:d2:5f:f6:88:24:ed:70:4a:b1:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7e2ce3109480aee7b3fd2846ec8f8646885cdba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:89:c6:56:ea:23:8a:45:06:31:34:7f:ad:61: c8:df:80:cf:2d:15:e4:ab:d9:76:39:c6:32:13:f7: 12:7d:fc:6a:ea:c8:f1:42:9c:6c:89:83:23:1f:44: 49:38:85:d1:a4:6e:d9:07:28:4f:52:d3:4e:87:96: 18:d0:ab:48:b1:85:fb:b8:a7:65:36:27:d6:7e:4a: 1d:ac:33:45:98:85:d4:06:71:c7:58:37:5f:3f:6d: e4:47:50:0f:22:41:11:40:87:1b:31:4e:54:12:f7: 8f:38:21:d4:79:e5:4b:29:1d:f9:56:97:8c:95:ea: 3e:9a:a5:ee:1c:ea:e4:85:69:60:57:41:7a:2e:4e: 8e:bf:e6:54:9f:d1:c2:46:f6:fc:5e:cf:3e:f7:80: d9:36:65:7b:2f:5c:70:a1:1f:77:c4:0a:74:2a:31: 5f:52:32:9c:fd:aa:b7:cc:2d:b5:5e:54:2e:0a:3c: 6d:d9:65:12:36:6a:03:0d:e3:18:d0:ef:1d:88:6b: 9f:f2:06:77:6b:de:a6:95:f7:54:e5:f0:bb:ef:5a: 5b:87:62:1a:a3:aa:be:9d:a5:f7:97:aa:30:7a:1f: 27:64:a9:57:4d:b4:38:0d:0a:e7:4a:cb:c0:cc:06: 29:91:44:73:69:50:00:3c:10:30:76:fe:60:81:54: 42:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E2:CE:31:09:48:0A:EE:7B:3F:D2:84:6E:C8:F8:64:68:85:CD:BA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/b61add-32f0-42f4-a301-7818a89456cb/1/p-LOMQlICu57P9KEbsj4ZGiFzbo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.23.40.0/21 5.104.192.0/21 37.32.56.0/21 62.212.96.0/19 77.247.104.0/22 78.40.48.0/21 79.170.216.0/21 80.65.224.0/20 80.248.208.0/20 83.136.160.0/21 85.31.168.0/22 93.184.32.0/20 171.25.208.0/22 178.21.176.0/21 178.22.0.0/21 178.132.16.0/20 185.3.196.0/22 185.33.40.0/22 185.43.68.0/22 185.45.228.0/22 185.83.236.0/22 185.96.156.0/22 185.153.96.0/22 185.185.4.0-185.185.11.255 192.166.204.0/22 193.36.52.0/22 194.79.128.0/18 194.104.16.0/22 194.146.224.0/22 194.169.176.0/22 194.180.116.0/22 194.242.112.0/22 195.5.192.0/18 213.41.128.0/17 213.215.0.0/18 IPv6: 2001:7a8::/32 2a00:1db8::/29 2a00:1e30::/32 2a01:68::/32 2a01:6460::/32 2a07:8580::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 13193 34659 50796 Signature Algorithm: sha256WithRSAEncryption 2d:69:e9:53:9d:d4:d1:7e:0c:21:eb:a5:00:cd:91:9f:7e:f4: 84:2e:6d:cc:ea:80:13:6c:16:c6:a1:c4:b4:0d:ef:43:a7:b1: cc:5d:6a:47:c7:d9:dd:8b:30:b0:3e:2a:35:bf:c7:de:99:a7: 37:91:c6:0e:20:af:56:20:5e:ec:a8:3d:2e:64:89:f2:78:b7: e4:9a:22:e2:7b:b9:17:44:17:f2:1f:72:0f:b0:e6:bb:08:8b: a0:80:48:6e:89:be:ea:f9:d4:c9:52:5b:97:80:41:31:a6:ab: 57:9f:cd:4f:cd:f4:bf:a5:7b:e9:39:4f:27:b1:9e:00:3a:1c: 71:a5:b9:32:1a:a1:83:9d:62:f8:f2:21:42:59:f4:be:03:f0: 80:67:86:bc:6f:a7:4c:ab:cc:a9:47:d0:4a:6a:1f:91:ac:32: 51:f3:7b:fc:e0:ce:9e:0b:69:ca:16:21:3c:92:94:6e:f2:0b: f9:03:d8:a8:de:c5:d1:10:03:fa:44:5e:96:d3:9b:aa:61:6f: 22:3b:30:b3:d7:7a:3a:09:ef:59:b4:bf:15:73:99:a5:47:46: b0:8b:fa:6c:e7:75:ef:d4:e3:78:ad:58:24:e9:b9:bf:94:bd: 00:31:33:48:4e:c3:15:8c:3b:f3:82:99:6a:37:7b:d4:f2:9a: 55:51:5f:99 -----BEGIN CERTIFICATE----- MIIGqzCCBZOgAwIBAgISAZt9yjrWJFXSX/aIJO1wSrEvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2UyY2UzMTA5NDgwYWVlN2IzZmQyODQ2ZWM4Zjg2NDY4ODVjZGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4nGVuojikUGMTR/rWHI34DPLRXk q9l2OcYyE/cSffxq6sjxQpxsiYMjH0RJOIXRpG7ZByhPUtNOh5YY0KtIsYX7uKdl NifWfkodrDNFmIXUBnHHWDdfP23kR1APIkERQIcbMU5UEvePOCHUeeVLKR35VpeM leo+mqXuHOrkhWlgV0F6Lk6Ov+ZUn9HCRvb8Xs8+94DZNmV7L1xwoR93xAp0KjFf UjKc/aq3zC21XlQuCjxt2WUSNmoDDeMY0O8diGuf8gZ3a96mlfdU5fC771pbh2Ia o6q+naX3l6oweh8nZKlXTbQ4DQrnSsvAzAYpkURzaVAAPBAwdv5ggVRCBQIDAQAB o4IDtzCCA7MwHQYDVR0OBBYEFKfizjEJSAruez/ShG7I+GRohc26MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IyL2I2MWFk ZC0zMmYwLTQyZjQtYTMwMS03ODE4YTg5NDU2Y2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIvYjYxYWRk LTMyZjAtNDJmNC1hMzAxLTc4MThhODk0NTZjYi8xL3AtTE9NUWxJQ3U1N1A5S0Vi c2o0WkdpRnpiby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBKwYIKwYB BQUHAQcBAf8EggEaMIIBFjCB4QQCAAEwgdoDBAMFFygDBAMFaMADBAMlIDgDBAU+ 1GADBAJN92gDBANOKDADBANPqtgDBARQQeADBARQ+NADBANTiKADBAJVH6gDBARd uCADBAKrGdADBAOyFbADBAOyFgADBASyhBADBAK5A8QDBAK5ISgDBAK5K0QDBAK5 LeQDBAK5U+wDBAK5YJwDBAK5mWAwDAMEArm5BAMEArm5CAMEAsCmzAMEAsEkNAME BsJPgAMEAsJoEAMEAsKS4AMEAsKpsAMEAsK0dAMEAsLycAMEBsMFwAMEB9UpgAME BtXXADAwBAIAAjAqAwUAIAEHqAMFAyoAHbgDBQAqAB4wAwUAKgEAaAMFACoBZGAD BQMqB4WAMCMGCCsGAQUFBwEIAQH/BBQwEqAQMA4CAjOJAgMAh2MCAwDGbDANBgkq hkiG9w0BAQsFAAOCAQEALWnpU53U0X4MIeulAM2Rn370hC5tzOqAE2wWxqHEtA3v Q6exzF1qR8fZ3YswsD4qNb/H3pmnN5HGDiCvViBe7Kg9LmSJ8ni35Joi4nu5F0QX 8h9yD7DmuwiLoIBIbom+6vnUyVJbl4BBMaarV5/NT830v6V76TlPJ7GeADoccaW5 Mhqhg51i+PIhQln0vgPwgGeGvG+nTKvMqUfQSmofkawyUfN7/ODOngtpyhYhPJKU bvIL+QPYqN7F0RAD+kReltObqmFvIjsws9d6OgnvWbS/FXOZpUdGsIv6bOd179Tj eK1YJOm5v5S9ADEzSE7DFYw784KZajd71PKaVVFfmQ== -----END CERTIFICATE-----Generated at Wed Jan 7 06:37:48 2026 by rpki-client