This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rQ3BCLYPR7DZdygI5fzDgeqoHHg.cer File: rQ3BCLYPR7DZdygI5fzDgeqoHHg.cer (raw, json) Hash identifier: Sy65/jcL9sM31ov0Gx09NBuJ1AM63acnuQfSvFw/cwc= Subject key identifier: AD:0D:C1:08:B6:0F:47:B0:D9:77:28:08:E5:FC:C3:81:EA:A8:1C:78 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF2097A9CF2CF1F11441BF4216888D9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/0b5860-cd57-4183-b9ae-e84785894838/1/rQ3BCLYPR7DZdygI5fzDgeqoHHg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/0b5860-cd57-4183-b9ae-e84785894838/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:22:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43365 IP: 193.228.154.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:09:7a:9c:f2:cf:1f:11:44:1b:f4:21:68:88:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:22:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad0dc108b60f47b0d9772808e5fcc381eaa81c78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:56:30:a1:3a:d4:06:e5:6b:ed:3b:b5:dd:0f: 70:d6:eb:0f:e1:d6:d2:17:20:b8:33:6c:fd:9d:ca: 3b:45:86:e8:97:df:03:f5:17:5f:27:c9:dd:cc:a7: 24:f8:45:fb:81:31:66:e9:9f:ac:d5:26:8e:3e:71: 5e:9e:1e:99:97:c5:1e:bd:1d:3f:87:58:50:a9:13: 26:28:15:9c:c3:41:12:e1:ea:de:0a:6a:e3:7e:3a: 99:8a:94:d0:8f:a7:f5:83:2b:8a:84:e2:6c:f3:ce: 01:32:ce:0d:b2:92:e3:3f:d7:31:08:95:ec:68:ff: d3:88:de:9f:b7:ca:08:4f:ed:15:21:e4:4b:86:6d: 72:55:53:e5:a0:7a:4f:f7:a1:56:6d:60:43:5c:0a: 1f:cb:3d:ec:85:9f:32:1c:ec:e1:4e:78:43:32:20: e4:ad:45:19:ea:88:c8:da:c3:10:a0:2c:39:9a:ba: 46:cb:4b:d2:51:d5:81:07:2f:76:f1:a6:56:79:b8: fa:0b:28:62:a6:5d:d8:3b:3a:80:15:6b:fa:6e:d4: bd:93:59:83:25:df:24:19:25:9f:15:58:4b:13:6e: df:a4:ac:f6:7e:81:3a:3a:98:18:75:10:56:b4:7f: e2:ec:13:18:9b:da:15:7b:a0:28:3d:44:3a:b5:2f: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:0D:C1:08:B6:0F:47:B0:D9:77:28:08:E5:FC:C3:81:EA:A8:1C:78 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/0b5860-cd57-4183-b9ae-e84785894838/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/0b5860-cd57-4183-b9ae-e84785894838/1/rQ3BCLYPR7DZdygI5fzDgeqoHHg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.228.154.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43365 Signature Algorithm: sha256WithRSAEncryption 0b:33:74:fc:d8:e2:91:63:7b:f7:9f:20:d7:bb:0d:7e:69:b7: 94:ef:3a:85:10:e6:21:b2:f0:f6:76:40:fe:10:c6:ef:e5:64: 61:21:f5:89:cd:83:18:b9:6d:96:95:9e:fd:b5:07:40:25:1c: 14:11:28:d4:cc:9b:9f:a4:e4:d2:64:58:56:13:24:df:80:05: 34:ee:9d:f0:6c:89:41:96:f9:62:eb:af:7c:d8:9d:ee:94:f5: 8e:e6:e0:f0:20:f5:38:79:b4:66:c1:36:4d:2a:01:c6:3d:92: 9b:5a:36:b7:c5:17:c4:de:c9:21:26:14:bd:69:8f:d6:a3:6a: 40:35:e9:b0:6a:68:c8:91:b3:36:b1:e6:43:d3:f3:31:2a:dc: fc:5a:cf:54:36:29:91:41:ac:e6:69:fd:27:7b:6d:11:0a:f4: 33:28:a0:fa:55:bb:e7:c2:39:2d:86:46:37:64:51:f4:8f:20: 06:d8:f1:92:28:c0:ac:af:67:38:ae:60:dc:0f:19:1d:7a:a9: f2:3b:8d:54:bc:b0:19:6f:b0:cd:1e:89:16:3a:04:4a:f7:91: 24:51:17:c2:e1:9d:36:c6:fe:bc:f4:e2:aa:a4:c2:4a:77:ed: b2:48:01:ee:0d:17:27:66:29:a7:5c:1d:3d:c1:92:c7:24:17: d0:53:6e:67 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/8gl6nPLPHxFEG/QhaIjZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMjA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDBkYzEwOGI2MGY0N2IwZDk3NzI4MDhlNWZjYzM4MWVhYTgxYzc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFYwoTrUBuVr7Tu13Q9w1usP4dbS FyC4M2z9nco7RYbol98D9RdfJ8ndzKck+EX7gTFm6Z+s1SaOPnFenh6Zl8UevR0/ h1hQqRMmKBWcw0ES4ereCmrjfjqZipTQj6f1gyuKhOJs884BMs4NspLjP9cxCJXs aP/TiN6ft8oIT+0VIeRLhm1yVVPloHpP96FWbWBDXAofyz3shZ8yHOzhTnhDMiDk rUUZ6ojI2sMQoCw5mrpGy0vSUdWBBy928aZWebj6Cyhipl3YOzqAFWv6btS9k1mD Jd8kGSWfFVhLE27fpKz2foE6OpgYdRBWtH/i7BMYm9oVe6AoPUQ6tS+bLQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFK0NwQi2D0ew2XcoCOX8w4HqqBx4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcwLzBiNTg2 MC1jZDU3LTQxODMtYjlhZS1lODQ3ODU4OTQ4MzgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAvMGI1ODYw LWNkNTctNDE4My1iOWFlLWU4NDc4NTg5NDgzOC8xL3JRM0JDTFlQUjdEWmR5Z0k1 ZnpEZ2Vxb0hIZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAweSaMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCpZTANBgkqhkiG9w0BAQsFAAOCAQEACzN0/NjikWN7958g17sNfmm3lO86hRDm IbLw9nZA/hDG7+VkYSH1ic2DGLltlpWe/bUHQCUcFBEo1Mybn6Tk0mRYVhMk34AF NO6d8GyJQZb5YuuvfNid7pT1jubg8CD1OHm0ZsE2TSoBxj2Sm1o2t8UXxN7JISYU vWmP1qNqQDXpsGpoyJGzNrHmQ9PzMSrc/FrPVDYpkUGs5mn9J3ttEQr0Myig+lW7 58I5LYZGN2RR9I8gBtjxkijArK9nOK5g3A8ZHXqp8juNVLywGW+wzR6JFjoESveR JFEXwuGdNsb+vPTiqqTCSnftskgB7g0XJ2Ypp1wdPcGSxyQX0FNuZw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:05 2026 by rpki-client