This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sL-w_CmJZUdrwQ9YeSvyhsFNn_E.cer File: sL-w_CmJZUdrwQ9YeSvyhsFNn_E.cer (raw, json) Hash identifier: DaPbzMPplbQjGnsVVjjxcjGsQBnwIbcoBI0tApvzB8E= Subject key identifier: B0:BF:B0:FC:29:89:65:47:6B:C1:0F:58:79:2B:F2:86:C1:4D:9F:F1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5CD7C7AA653C48FA30C4ABB4D65D8C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/sL-w_CmJZUdrwQ9YeSvyhsFNn_E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203904 IP: 185.118.44.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:d7:c7:aa:65:3c:48:fa:30:c4:ab:b4:d6:5d:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0bfb0fc298965476bc10f58792bf286c14d9ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c8:30:2f:01:6c:d4:98:8c:10:ba:82:10:86: 95:af:bc:33:4d:45:c5:e4:43:03:e3:70:c4:f2:bc: 4f:f0:bd:a5:87:a5:80:84:b9:66:30:16:a8:1e:d6: 02:95:0d:8b:92:10:b8:73:b0:1a:45:41:66:6a:e4: 85:dc:cd:20:28:c4:0a:ee:a0:90:13:b3:c3:78:34: 74:10:1a:0b:02:8c:aa:af:b6:85:21:fc:22:f9:7e: 4e:44:7f:aa:e2:aa:18:19:81:70:4a:11:a1:0c:ad: 9b:4b:9d:70:b6:27:f6:ac:c5:2d:b8:72:11:43:c9: d5:e6:fb:06:1f:fd:a8:cf:b2:00:66:d8:79:6a:99: c2:10:b0:c8:ca:e5:be:14:88:c4:f8:32:57:af:13: 54:1d:4d:96:c0:1a:f1:64:3b:ad:07:e6:7c:e0:fa: d6:f5:78:86:0b:51:1b:01:67:bd:f4:a0:48:ed:75: d4:05:f4:4b:01:17:9e:80:89:60:81:ba:d2:64:c5: 52:34:54:6b:ad:0c:92:74:37:21:ac:e9:f3:2d:34: 92:d3:04:36:95:d8:34:20:d0:00:ad:e8:32:68:fc: 38:0e:70:ba:08:22:28:ae:cf:4d:77:4c:f3:40:79: 0b:93:d7:19:90:1b:36:0e:e4:ce:36:f8:19:81:44: ff:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BF:B0:FC:29:89:65:47:6B:C1:0F:58:79:2B:F2:86:C1:4D:9F:F1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/7e67d0-ecb7-4c66-99b8-85b0e7478856/1/sL-w_CmJZUdrwQ9YeSvyhsFNn_E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.44.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203904 Signature Algorithm: sha256WithRSAEncryption 82:ba:d8:47:bc:fa:e5:53:bf:e7:8d:bb:05:5a:b2:e9:dd:a7: a0:6b:9f:27:f0:af:4b:d8:54:bf:f0:56:36:dc:b5:11:41:4e: 29:e9:ea:52:a0:df:6a:2f:b9:af:1b:2b:24:d5:4d:39:bd:8c: d5:6b:42:4a:9e:9a:07:ce:af:6d:30:26:e2:5c:5c:bf:6e:e8: 4c:e3:73:49:4a:2e:07:26:f3:b6:74:c3:f6:d7:47:62:c9:79: 1f:f6:38:df:bb:87:b1:e8:9a:aa:1f:9b:ce:e8:5b:18:42:0d: 27:c0:10:db:ab:b7:6e:05:eb:5e:04:4e:d6:5d:5f:32:a8:6c: 2c:6b:3a:f7:9f:40:9a:b5:a1:49:75:f4:ae:63:a9:96:88:6b: 0f:f5:c6:c2:3f:0d:54:e3:4a:07:46:26:e7:ad:70:99:39:f9: 8f:45:08:8f:cc:78:b8:04:0f:07:f1:3f:be:26:3b:78:65:7c: 8e:1d:27:75:0d:76:c7:cb:e3:e2:62:a1:b5:8f:a4:d4:b5:5d: 48:cd:3c:bf:32:07:f8:9a:15:45:1d:24:4c:50:72:29:38:08: 95:24:00:d2:37:74:4d:67:03:f7:54:5c:38:64:46:7f:4c:e9: 83:64:14:5a:bf:48:d6:ad:ce:76:b1:cd:bb:4f:1e:84:db:60: df:82:ff:d8 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9XNfHqmU8SPowxKu01l2MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGJmYjBmYzI5ODk2NTQ3NmJjMTBmNTg3OTJiZjI4NmMxNGQ5ZmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sgwLwFs1JiMELqCEIaVr7wzTUXF 5EMD43DE8rxP8L2lh6WAhLlmMBaoHtYClQ2LkhC4c7AaRUFmauSF3M0gKMQK7qCQ E7PDeDR0EBoLAoyqr7aFIfwi+X5ORH+q4qoYGYFwShGhDK2bS51wtif2rMUtuHIR Q8nV5vsGH/2oz7IAZth5apnCELDIyuW+FIjE+DJXrxNUHU2WwBrxZDutB+Z84PrW 9XiGC1EbAWe99KBI7XXUBfRLAReegIlggbrSZMVSNFRrrQySdDchrOnzLTSS0wQ2 ldg0INAAregyaPw4DnC6CCIors9Nd0zzQHkLk9cZkBs2DuTONvgZgUT/jQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFLC/sPwpiWVHa8EPWHkr8obBTZ/xMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZiLzdlNjdk MC1lY2I3LTRjNjYtOTliOC04NWIwZTc0Nzg4NTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIvN2U2N2Qw LWVjYjctNGM2Ni05OWI4LTg1YjBlNzQ3ODg1Ni8xL3NMLXdfQ21KWlVkcndROVll U3Z5aHNGTm5fRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCuXYsMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMcgDANBgkqhkiG9w0BAQsFAAOCAQEAgrrYR7z65VO/5427BVqy6d2noGufJ/Cv S9hUv/BWNty1EUFOKenqUqDfai+5rxsrJNVNOb2M1WtCSp6aB86vbTAm4lxcv27o TONzSUouBybztnTD9tdHYsl5H/Y437uHseiaqh+bzuhbGEINJ8AQ26u3bgXrXgRO 1l1fMqhsLGs6959AmrWhSXX0rmOplohrD/XGwj8NVONKB0Ym561wmTn5j0UIj8x4 uAQPB/E/viY7eGV8jh0ndQ12x8vj4mKhtY+k1LVdSM08vzIH+JoVRR0kTFByKTgI lSQA0jd0TWcD91RcOGRGf0zpg2QUWr9I1q3OdrHNu08ehNtg34L/2A== -----END CERTIFICATE-----Generated at Tue Jan 27 07:15:43 2026 by rpki-client