This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rOSXY9L9uQmGRpQDBmy15qeCXww.cer File: rOSXY9L9uQmGRpQDBmy15qeCXww.cer (raw, json) Hash identifier: Ay3eYskOqzJ9a793VsfDRBLzy3hBW+u20CFw0fX0jbQ= Subject key identifier: AC:E4:97:63:D2:FD:B9:09:86:46:94:03:06:6C:B5:E6:A7:82:5F:0C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78346B80F412622AAA009D82944BC580 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/rOSXY9L9uQmGRpQDBmy15qeCXww.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 25521 IP: 193.0.220.0/23 IP: 195.20.100.0/24 IP: 2a13:8f40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:6b:80:f4:12:62:2a:aa:00:9d:82:94:4b:c5:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ace49763d2fdb90986469403066cb5e6a7825f0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dd:0a:72:30:a6:5a:80:1e:d0:31:d6:10:4b: ac:38:7f:cd:ae:7c:75:b3:9a:51:3b:1d:41:ca:77: d3:f5:63:bf:f7:4b:08:11:bc:69:3b:2d:9c:4b:71: 12:b9:f2:09:0e:6e:bc:ab:40:19:dc:c7:67:ba:95: b2:34:c6:75:ed:a0:55:59:42:8e:69:80:07:8f:0d: 10:12:46:2f:6d:cb:60:b8:61:0f:68:62:2a:de:b5: 40:fe:b9:de:b3:ab:4a:35:30:3b:09:0a:ce:c9:2a: 41:ed:01:d9:aa:1d:90:c7:b4:81:dd:f6:67:06:ed: a2:08:9f:d0:b2:68:1e:ca:59:42:71:9b:b4:3d:8f: 89:b6:cf:18:22:e5:27:6a:52:61:af:a7:7c:e6:84: 8d:c8:a9:7a:ca:69:12:97:29:ed:d7:7a:47:d3:47: 40:52:5a:9f:78:4b:78:7d:f1:13:58:2b:dd:e2:63: db:e1:4f:76:7a:66:73:f7:ed:3a:b9:a3:07:08:24: 07:81:75:10:45:6b:9e:40:9f:7e:02:3b:fa:ab:c9: 63:c7:c2:62:58:58:fb:b7:ee:3f:ec:03:98:a0:fc: 36:c0:5e:3a:04:2f:99:34:50:4b:08:b0:a1:01:a6: ff:8b:f6:c6:cd:b3:27:03:6c:41:95:77:3c:b8:d4: 37:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E4:97:63:D2:FD:B9:09:86:46:94:03:06:6C:B5:E6:A7:82:5F:0C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4630fd-a0ca-48a0-bcab-90a8c6e785c9/1/rOSXY9L9uQmGRpQDBmy15qeCXww.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.0.220.0/23 195.20.100.0/24 IPv6: 2a13:8f40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 25521 Signature Algorithm: sha256WithRSAEncryption 15:1d:41:f2:26:be:19:d8:40:e6:34:22:20:b9:c9:09:e7:e3: 34:ad:19:ca:ef:58:9c:ef:e7:c6:9c:64:47:72:40:2a:14:1c: 80:4b:53:2d:9a:85:90:b1:0a:0e:ac:5b:1d:af:9c:1b:3e:91: 4b:41:da:78:28:12:98:58:cc:13:82:45:9e:b6:b6:d0:e7:4c: 53:a8:b1:a0:84:f3:99:35:cb:22:e0:95:1c:d8:cc:09:8d:86: 6d:d4:45:56:bc:e8:7b:52:1b:59:7b:15:69:e3:a7:c3:f9:53: 08:35:6e:71:d2:23:81:49:59:22:c5:1f:86:54:f7:9d:f0:4b: 94:7e:b7:5a:45:23:1e:d0:17:ea:a9:0f:ed:58:3a:33:aa:63: 74:7a:a2:8b:12:fa:59:21:de:c6:b9:c6:2a:6d:ef:2e:f4:13: ce:22:af:71:92:26:90:09:0a:0d:7e:51:a1:da:fa:3e:db:ef: 69:0f:f3:a5:81:06:54:39:75:e8:b6:15:6d:bf:43:a9:e9:9d: 55:9f:c1:2b:d0:16:ed:bc:0c:45:61:50:23:b4:27:42:ba:5e: 90:d8:6a:aa:b5:3c:45:e1:87:bc:c0:58:52:b4:b4:c4:44:29: 2e:61:7c:51:f8:cc:a8:17:0c:79:4d:b8:b3:19:0d:c2:eb:77: 17:11:f7:08 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt4NGuA9BJiKqoAnYKUS8WAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2U0OTc2M2QyZmRiOTA5ODY0Njk0MDMwNjZjYjVlNmE3ODI1ZjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1N0KcjCmWoAe0DHWEEusOH/Nrnx1 s5pROx1BynfT9WO/90sIEbxpOy2cS3ESufIJDm68q0AZ3MdnupWyNMZ17aBVWUKO aYAHjw0QEkYvbctguGEPaGIq3rVA/rnes6tKNTA7CQrOySpB7QHZqh2Qx7SB3fZn Bu2iCJ/QsmgeyllCcZu0PY+Jts8YIuUnalJhr6d85oSNyKl6ymkSlynt13pH00dA UlqfeEt4ffETWCvd4mPb4U92emZz9+06uaMHCCQHgXUQRWueQJ9+Ajv6q8ljx8Ji WFj7t+4/7AOYoPw2wF46BC+ZNFBLCLChAab/i/bGzbMnA2xBlXc8uNQ3mwIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFKzkl2PS/bkJhkaUAwZsteangl8MMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NlLzQ2MzBm ZC1hMGNhLTQ4YTAtYmNhYi05MGE4YzZlNzg1YzkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2UvNDYzMGZk LWEwY2EtNDhhMC1iY2FiLTkwYThjNmU3ODVjOS8xL3JPU1hZOUw5dVFtR1JwUURC bXkxNXFlQ1h3dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQBwQDcAwQAwxRkMA0EAgACMAcDBQMqE49AMBkG CCsGAQUFBwEIAQH/BAowCKAGMAQCAmOxMA0GCSqGSIb3DQEBCwUAA4IBAQAVHUHy Jr4Z2EDmNCIguckJ5+M0rRnK71ic7+fGnGRHckAqFByAS1MtmoWQsQoOrFsdr5wb PpFLQdp4KBKYWMwTgkWetrbQ50xTqLGghPOZNcsi4JUc2MwJjYZt1EVWvOh7UhtZ exVp46fD+VMINW5x0iOBSVkixR+GVPed8EuUfrdaRSMe0BfqqQ/tWDozqmN0eqKL EvpZId7GucYqbe8u9BPOIq9xkiaQCQoNflGh2vo+2+9pD/OlgQZUOXXothVtv0Op 6Z1Vn8Er0BbtvAxFYVAjtCdCul6Q2GqqtTxF4Ye8wFhStLTERCkuYXxR+MyoFwx5 TbizGQ3C63cXEfcI -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:48 2026 by rpki-client