This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sGG9PMo9M2RaJ24PMiT_ie7kSFc.cer File: sGG9PMo9M2RaJ24PMiT_ie7kSFc.cer (raw, json) Hash identifier: F4FRC3KZ08zyaoENdzhfsAEKjcWwk9QC7pRfIAF8CxY= Subject key identifier: B0:61:BD:3C:CA:3D:33:64:5A:27:6E:0F:32:24:FF:89:EE:E4:48:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A375BA775880C66456A0C07838ED63 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/sGG9PMo9M2RaJ24PMiT_ie7kSFc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200034 IP: 81.30.110.0/24 IP: 2a13:ee00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:75:ba:77:58:80:c6:64:56:a0:c0:78:38:ed:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b061bd3cca3d33645a276e0f3224ff89eee44857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:47:4f:c0:6e:b1:5e:3f:53:b9:09:65:23:60: 99:cc:c6:af:86:09:d1:0b:28:94:5f:95:cf:78:21: 52:cc:db:05:83:6c:43:19:90:cd:ed:8f:b8:e9:06: 23:cb:e2:9b:4c:6a:f5:2a:28:3d:fa:6d:5e:df:8e: 34:d5:00:12:ee:3a:0f:fb:cc:98:bb:fe:71:88:8e: de:49:2f:51:4d:12:56:69:c2:32:75:b2:e1:54:91: 2b:00:f7:1d:4b:84:3c:41:09:1e:62:66:24:ac:28: 73:fb:63:53:d3:c2:88:34:10:ad:06:00:e3:ec:aa: 3f:0c:35:68:53:42:75:b6:e1:48:c6:8c:96:1e:84: 4f:13:79:84:de:71:a4:2d:f3:06:e0:69:f3:78:df: cb:93:9b:03:76:36:0b:01:be:ea:3c:a8:11:68:af: 2b:16:0d:fb:72:d1:80:da:de:bb:99:21:2e:96:7d: 90:eb:08:b3:9b:fa:22:13:df:00:7b:0d:ad:fc:85: d6:8a:fe:91:10:02:f0:3d:42:65:ef:00:06:5a:41: 5f:8f:33:9a:e8:aa:6e:45:72:d7:3a:e9:02:99:0f: 6d:3f:b8:a7:1f:d2:08:54:86:fe:a8:d0:f8:bd:f4: 06:39:57:0d:f0:d0:34:04:84:8c:00:11:5a:2d:fd: 11:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:61:BD:3C:CA:3D:33:64:5A:27:6E:0F:32:24:FF:89:EE:E4:48:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/sGG9PMo9M2RaJ24PMiT_ie7kSFc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.30.110.0/24 IPv6: 2a13:ee00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200034 Signature Algorithm: sha256WithRSAEncryption 35:88:b0:dd:26:9e:04:78:ab:9e:4e:9c:8f:a9:70:d5:23:a0: f7:b0:13:3e:fd:61:59:ed:d9:b1:a1:bb:c3:63:dc:9d:28:0d: 42:c4:74:bb:48:c5:dc:1d:0d:f6:8e:ef:d8:b2:98:f5:ae:b2: 85:f0:dd:b4:d6:03:d5:11:fb:88:b2:bd:e1:b1:f9:d0:81:18: 37:c3:af:8b:63:c9:6a:dd:1b:18:71:89:2a:4b:3c:8e:44:a6: f9:25:32:ec:7c:90:58:79:42:32:7b:90:c3:b8:49:cd:89:f0: 39:45:e2:8e:8a:d7:43:7d:74:c1:d0:6e:c2:4e:5c:ae:b4:d1: 5f:91:08:0a:3e:39:7c:5f:ae:f8:aa:32:96:49:03:7c:cc:31: 67:ce:92:5e:15:47:ce:ee:d9:61:ab:d8:52:fd:3a:4d:0d:cc: 0f:d6:12:a8:65:28:cb:e0:f6:da:8f:da:a9:7c:17:6b:3d:08: e2:ae:e1:38:c3:7b:37:38:c8:a1:4d:92:07:68:e3:2d:ef:60: bc:d0:33:13:32:45:24:76:78:27:03:ed:1b:c3:60:f1:bf:e0: c0:87:2b:0a:f4:de:c1:f2:49:bd:0d:b9:df:95:f1:ea:1d:00: ff:d4:36:be:30:a4:d1:31:77:d8:19:91:00:89:8d:21:88:a0: b9:f7:92:e7 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt4o3W6d1iAxmRWoMB4OO1jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDYxYmQzY2NhM2QzMzY0NWEyNzZlMGYzMjI0ZmY4OWVlZTQ0ODU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0dPwG6xXj9TuQllI2CZzMavhgnR CyiUX5XPeCFSzNsFg2xDGZDN7Y+46QYjy+KbTGr1Kig9+m1e34401QAS7joP+8yY u/5xiI7eSS9RTRJWacIydbLhVJErAPcdS4Q8QQkeYmYkrChz+2NT08KINBCtBgDj 7Ko/DDVoU0J1tuFIxoyWHoRPE3mE3nGkLfMG4GnzeN/Lk5sDdjYLAb7qPKgRaK8r Fg37ctGA2t67mSEuln2Q6wizm/oiE98Aew2t/IXWiv6REALwPUJl7wAGWkFfjzOa 6KpuRXLXOukCmQ9tP7inH9IIVIb+qND4vfQGOVcN8NA0BISMABFaLf0RBwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLBhvTzKPTNkWiduDzIk/4nu5EhXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU5LzY1NzUz My0xMWVjLTQ4NGItYmU2YS0zMmZkYTMxMTg2ZWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkvNjU3NTMz LTExZWMtNDg0Yi1iZTZhLTMyZmRhMzExODZlZi8xL3NHRzlQTW85TTJSYUoyNFBN aVRfaWU3a1NGYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAUR5uMA0EAgACMAcDBQMqE+4AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMNYjANBgkqhkiG9w0BAQsFAAOCAQEANYiw3SaeBHir nk6cj6lw1SOg97ATPv1hWe3ZsaG7w2PcnSgNQsR0u0jF3B0N9o7v2LKY9a6yhfDd tNYD1RH7iLK94bH50IEYN8Ovi2PJat0bGHGJKks8jkSm+SUy7HyQWHlCMnuQw7hJ zYnwOUXijorXQ310wdBuwk5crrTRX5EICj45fF+u+KoylkkDfMwxZ86SXhVHzu7Z YavYUv06TQ3MD9YSqGUoy+D22o/aqXwXaz0I4q7hOMN7NzjIoU2SB2jjLe9gvNAz EzJFJHZ4JwPtG8Ng8b/gwIcrCvTewfJJvQ2535Xx6h0A/9Q2vjCk0TF32BmRAImN IYigufeS5w== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:11 2026 by rpki-client