This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Certificate

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pN15cHEksgZy5pw44Xtma3-ufB0.cer
File:                     pN15cHEksgZy5pw44Xtma3-ufB0.cer (raw, json)
Hash identifier:          jfRh/uleZ/ipSPFxZBTfG4uW3dEV908WrakhQLmhVPQ=
Subject key identifier:   A4:DD:79:70:71:24:B2:06:72:E6:9C:38:E1:7B:66:6B:7F:AE:7C:1D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer:       /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial:       0199A54DAC3C3F2AD2FBD1F6588181C09BA5
Authority info access:    rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest:                 rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/pN15cHEksgZy5pw44Xtma3-ufB0.mft
caRepository:             rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/
Notify URL:               https://rrdp.ripe.net/notification.xml
Certificate not before:   Thu 02 Oct 2025 14:22:35 +0000
Certificate not after:    Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources:    AS: 51933
                          IP: 2a0b:2a00::/29
Validation:               Failed, certificate revoked on Mon 06 Oct 2025 07:34:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:a5:4d:ac:3c:3f:2a:d2:fb:d1:f6:58:81:81:c0:9b:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
        Validity
            Not Before: Oct  2 14:22:35 2025 GMT
            Not After : Jul  1 00:00:00 2026 GMT
        Subject: CN=a4dd79707124b20672e69c38e17b666b7fae7c1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:51:d0:eb:e9:c7:8f:7b:c0:66:2e:e4:ec:7c:
                    6c:4d:36:1a:71:9f:3d:6b:eb:e6:ee:5e:b4:1d:8f:
                    86:cb:49:7d:bf:7c:8e:10:18:f7:c6:f3:e7:ad:76:
                    09:6b:c3:a6:e7:b5:cb:a4:8e:13:6c:2f:80:85:34:
                    4f:59:ae:f5:d2:ee:b3:b8:bd:79:ca:98:08:0c:e5:
                    04:bd:a9:f8:71:ac:13:63:44:d0:f3:77:0f:9e:8d:
                    e6:d4:77:d4:bb:67:ac:99:13:20:ba:16:e9:79:1f:
                    7c:27:cf:f6:8e:80:b9:35:50:98:ea:77:27:72:4e:
                    50:83:86:51:05:63:e6:fb:60:ef:ca:85:bb:19:a6:
                    6a:82:c1:1b:7f:42:2a:53:71:89:46:50:88:56:2c:
                    7a:51:88:6d:c9:04:0e:b3:8c:a2:20:f2:6a:c2:c4:
                    71:c3:1c:9e:52:23:1e:01:58:50:06:d0:ad:ff:f7:
                    46:d1:36:02:18:5d:43:75:db:68:cb:b1:e4:ba:66:
                    15:5a:de:1a:69:41:6d:fe:84:16:06:95:35:e4:75:
                    c5:51:9d:bb:04:08:fc:28:1a:f3:58:68:34:27:d6:
                    34:f2:12:33:c2:b9:75:fc:07:bd:c1:1e:60:20:33:
                    71:24:1d:9e:4e:4e:b6:39:0d:91:c6:05:7f:23:69:
                    7d:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:DD:79:70:71:24:B2:06:72:E6:9C:38:E1:7B:66:6B:7F:AE:7C:1D
            X509v3 Authority Key Identifier:
                keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer

            Subject Information Access:
                CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/
                RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/8d1cea-4d9d-4906-98d7-7188d91a6ca9/1/pN15cHEksgZy5pw44Xtma3-ufB0.mft
                RPKI Notify - URI:https://rrdp.ripe.net/notification.xml

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:2a00::/29

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  51933

    Signature Algorithm: sha256WithRSAEncryption
         ac:de:f9:78:ea:31:6a:77:31:ef:42:81:9a:a4:b4:71:9b:e5:
         6b:5a:01:ad:7e:02:c2:93:14:b2:87:ab:eb:6f:2b:bb:8d:e3:
         dc:4e:2f:7a:aa:22:2c:36:7e:8d:b4:19:4c:06:a0:0c:e9:5c:
         9e:ea:9e:a2:3d:a0:ce:79:89:8d:10:5c:8b:e2:d5:a2:02:5f:
         f1:b1:56:9c:1f:34:d8:aa:53:d8:ff:ac:bb:71:e2:8c:95:f0:
         20:af:94:2f:33:21:0f:7d:a3:da:51:d3:e0:49:3a:af:0d:17:
         17:c7:63:ef:dd:dc:11:85:df:c5:c7:3d:7d:09:5a:b5:50:e1:
         8b:cf:f8:38:1f:d0:a4:e5:50:9f:d1:92:20:ca:e5:e7:4f:55:
         27:b3:11:98:96:99:c1:c7:85:8b:d4:8f:0d:e5:5b:ba:28:ad:
         18:1b:8e:20:8c:02:16:9d:ec:06:86:d7:ab:bb:46:bd:90:0a:
         6f:64:12:29:da:84:6a:8d:2f:c4:3c:23:79:a6:89:ec:2e:d0:
         b0:42:de:e0:b1:0d:7b:d6:7b:2a:e7:a9:50:df:35:5f:a8:56:
         33:2a:9b:37:b7:eb:49:1c:3b:ef:41:ba:d0:a9:57:35:44:05:
         f1:fa:15:85:a7:10:5e:9d:ec:23:94:03:35:be:82:6b:e3:be:
         20:8f:db:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----