This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sJJCWrfWa6txH7qiJ1c3eAeDQVk.cer File: sJJCWrfWa6txH7qiJ1c3eAeDQVk.cer (raw, json) Hash identifier: HVskQM3z9sS/S3/J8GOYZqOFgocakRlx4k/PtP0yFGc= Subject key identifier: B0:92:42:5A:B7:D6:6B:AB:71:1F:BA:A2:27:57:37:78:07:83:41:59 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA351649439053B2556DF002916E321 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/4da2ea-abc0-4bf4-9e06-075e83dd3356/1/sJJCWrfWa6txH7qiJ1c3eAeDQVk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/4da2ea-abc0-4bf4-9e06-075e83dd3356/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44410 IP: 193.3.255.0/24 IP: 2a10:60c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:51:64:94:39:05:3b:25:56:df:00:29:16:e3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b092425ab7d66bab711fbaa22757377807834159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c5:59:8d:c5:c2:8a:da:b8:19:cb:f7:54:c2: 7e:e3:38:d3:42:26:44:b3:eb:f9:c4:28:26:df:6a: a4:67:73:8e:ed:fa:57:24:93:79:48:89:f4:60:ad: 69:42:b2:89:b1:f8:36:41:5f:c1:8a:72:31:13:7b: 84:28:47:24:be:ea:2a:ca:ed:e1:eb:2a:5e:29:40: ea:c8:23:be:32:fa:b9:8b:da:38:4b:ab:13:90:28: 0b:aa:36:92:c8:f4:8e:de:fe:a6:8a:4b:a8:cc:ad: ac:83:96:25:f0:08:f8:5d:df:69:11:aa:94:10:07: 3d:b4:64:b3:b8:e3:07:43:07:c6:bf:f5:82:82:6e: 0c:2e:03:57:05:71:1c:2d:2f:d7:01:f5:18:69:93: 62:23:6a:08:a6:44:1b:65:0a:7d:df:86:cc:e5:4b: 80:f1:f5:50:19:76:6d:0f:88:20:8d:73:4a:ff:dc: d4:fa:bf:e4:5a:61:01:dc:43:4d:ff:30:3c:16:3b: 44:88:ff:98:1f:6d:b6:ad:a9:eb:b8:57:ef:6b:eb: 1c:17:ab:2f:f0:2d:8e:5e:1b:0e:4d:7a:74:2b:f5: 7d:be:4d:cf:fe:43:99:ee:f4:a5:28:3f:35:e6:55: 3d:b5:ed:8b:c2:a4:2d:54:86:21:d8:34:69:ec:8b: 60:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:92:42:5A:B7:D6:6B:AB:71:1F:BA:A2:27:57:37:78:07:83:41:59 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4da2ea-abc0-4bf4-9e06-075e83dd3356/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4da2ea-abc0-4bf4-9e06-075e83dd3356/1/sJJCWrfWa6txH7qiJ1c3eAeDQVk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.3.255.0/24 IPv6: 2a10:60c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44410 Signature Algorithm: sha256WithRSAEncryption 5b:0f:0b:14:d5:1f:8c:e2:50:7a:df:ab:3f:b4:cd:14:43:a0: 11:c2:b1:b7:07:0b:0d:ea:3c:94:45:30:a6:5c:86:47:69:75: a9:98:74:c8:e4:e6:21:af:64:5f:23:09:96:1c:02:49:c8:45: 9e:e5:4a:b0:fe:bf:74:97:35:de:08:a0:5f:16:0e:e9:d2:c8: d7:ac:d4:e3:1c:51:27:42:cd:d6:5e:80:10:3f:0a:80:32:b2: 5d:e2:07:bd:18:8d:b1:e1:f7:16:a4:f3:4f:61:07:0c:74:d5: c8:62:99:33:73:c9:3b:b3:19:a6:49:86:fd:10:a9:93:39:40: 6f:ba:a1:53:89:43:4f:ee:76:05:6b:d7:ca:0b:e4:de:0a:4e: db:01:82:fd:ff:10:35:52:6d:85:f2:b0:7d:89:4c:db:62:46: ea:c7:0e:09:be:cf:67:64:cb:86:3a:02:ad:5f:35:57:67:f1: df:b2:13:12:0d:39:bd:3a:69:15:42:51:27:a2:f7:9f:b3:d6: 92:c4:16:cf:3a:5f:b0:67:79:46:4e:9e:e7:22:eb:b4:ec:ee: 94:7f:0a:d2:88:36:ce:db:db:94:79:30:9a:3b:06:5f:ea:8a: 15:43:c7:7a:b9:5d:a0:47:dd:d7:8c:66:49:27:3c:8e:af:2d: 4e:4d:b8:45 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt7o1FklDkFOyVW3wApFuMhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDkyNDI1YWI3ZDY2YmFiNzExZmJhYTIyNzU3Mzc3ODA3ODM0MTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2MVZjcXCitq4Gcv3VMJ+4zjTQiZE s+v5xCgm32qkZ3OO7fpXJJN5SIn0YK1pQrKJsfg2QV/BinIxE3uEKEckvuoqyu3h 6ypeKUDqyCO+Mvq5i9o4S6sTkCgLqjaSyPSO3v6mikuozK2sg5Yl8Aj4Xd9pEaqU EAc9tGSzuOMHQwfGv/WCgm4MLgNXBXEcLS/XAfUYaZNiI2oIpkQbZQp934bM5UuA 8fVQGXZtD4ggjXNK/9zU+r/kWmEB3ENN/zA8FjtEiP+YH222ranruFfva+scF6sv 8C2OXhsOTXp0K/V9vk3P/kOZ7vSlKD815lU9te2LwqQtVIYh2DRp7ItgowIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLCSQlq31murcR+6oidXN3gHg0FZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzRkYTJl YS1hYmMwLTRiZjQtOWUwNi0wNzVlODNkZDMzNTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvNGRhMmVh LWFiYzAtNGJmNC05ZTA2LTA3NWU4M2RkMzM1Ni8xL3NKSkNXcmZXYTZ0eEg3cWlK MWMzZUFlRFFWay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwQP/MA0EAgACMAcDBQMqEGDAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCtejANBgkqhkiG9w0BAQsFAAOCAQEAWw8LFNUfjOJQ et+rP7TNFEOgEcKxtwcLDeo8lEUwplyGR2l1qZh0yOTmIa9kXyMJlhwCSchFnuVK sP6/dJc13gigXxYO6dLI16zU4xxRJ0LN1l6AED8KgDKyXeIHvRiNseH3FqTzT2EH DHTVyGKZM3PJO7MZpkmG/RCpkzlAb7qhU4lDT+52BWvXygvk3gpO2wGC/f8QNVJt hfKwfYlM22JG6scOCb7PZ2TLhjoCrV81V2fx37ITEg05vTppFUJRJ6L3n7PWksQW zzpfsGd5Rk6e5yLrtOzulH8K0og2ztvblHkwmjsGX+qKFUPHerldoEfd14xmSSc8 jq8tTk24RQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:22 2026 by rpki-client