This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u0CY4P3tthLyOdpSSgS14N6kxT8.cer File: u0CY4P3tthLyOdpSSgS14N6kxT8.cer (raw, json) Hash identifier: CjOodCQtkKkFvHiPPZ1VyALTR/kAalnjRHDFa6cdROI= Subject key identifier: BB:40:98:E0:FD:ED:B6:12:F2:39:DA:52:4A:04:B5:E0:DE:A4:C5:3F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BFABB431A96070F69E6BBBEF50EDE31D0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/9b733e-9839-4f6f-b4b6-ff5aa9eef4e2/1/u0CY4P3tthLyOdpSSgS14N6kxT8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/9b733e-9839-4f6f-b4b6-ff5aa9eef4e2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Mon 26 Jan 2026 14:35:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42223 IP: 45.134.241.0/24 IP: 91.233.15.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:bb:43:1a:96:07:0f:69:e6:bb:be:f5:0e:de:31:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 26 14:35:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb4098e0fdedb612f239da524a04b5e0dea4c53f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:ab:34:df:10:f3:6d:6a:08:ed:85:7a:83: 7b:18:f8:99:26:d0:85:f2:3b:af:0e:8c:ae:d4:ee: c8:20:8c:fc:66:5e:39:19:3a:d7:7f:94:ff:e3:d3: 4c:8a:4b:6e:25:58:41:41:6c:ca:cb:9c:49:49:13: 83:3f:b1:26:a0:f0:8c:e9:6e:95:92:88:53:7e:94: 5e:e4:b2:21:ca:4f:59:0a:9c:83:10:13:30:56:49: f7:7f:66:15:4a:2d:85:78:21:40:bd:e2:3a:a1:40: a4:79:1f:80:4f:13:2e:b3:be:a4:81:b5:a5:70:91: bc:2c:aa:6d:20:fd:6c:63:46:8a:e2:f4:f5:79:ce: 01:c5:a6:d7:64:be:99:40:f8:9b:2d:76:ad:2d:bd: 9b:86:bd:bb:32:1b:e3:d6:aa:04:56:11:df:74:2e: 23:53:e5:19:8b:14:50:f0:ca:13:09:c9:c9:a8:67: 9f:33:98:c5:0d:d4:91:5a:fe:60:f4:d7:3b:c1:bc: 97:27:70:7b:a3:78:61:1b:f9:63:60:c4:0f:be:51: ce:80:1a:c6:47:0e:37:c5:ec:1a:ea:41:26:bc:b0: 29:d9:d3:fe:5a:fd:c1:ec:f2:0b:4a:e5:29:73:e7: 9d:a0:86:36:47:d6:02:47:8d:da:70:c6:b4:d7:1a: a2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:40:98:E0:FD:ED:B6:12:F2:39:DA:52:4A:04:B5:E0:DE:A4:C5:3F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9b733e-9839-4f6f-b4b6-ff5aa9eef4e2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9b733e-9839-4f6f-b4b6-ff5aa9eef4e2/1/u0CY4P3tthLyOdpSSgS14N6kxT8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.134.241.0/24 91.233.15.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42223 Signature Algorithm: sha256WithRSAEncryption 83:62:d4:23:e4:6f:13:e9:0c:65:e4:8b:0b:85:a1:16:81:93: ae:4f:34:d5:26:49:42:96:86:27:94:5f:25:4a:4b:24:eb:a1: 23:29:9f:be:71:11:e0:69:c7:3c:ab:ba:bb:b3:92:f8:3a:fe: 5c:42:f4:14:1c:06:51:fd:5d:be:21:3e:8f:68:ac:ae:0e:8b: 9f:07:28:f7:f0:3c:28:89:ab:c1:c0:5d:18:08:e3:c7:67:4e: 73:68:79:66:a4:d1:78:d6:23:48:52:cd:56:da:e6:6e:53:7b: b7:dd:c6:8d:ec:bf:4f:75:c5:10:34:51:77:3b:00:b8:93:d9: a9:42:26:35:bf:28:7f:01:f9:ee:76:ad:a0:1b:ec:6b:00:54: e4:04:9d:54:17:3b:2a:30:df:74:e1:18:3f:51:ee:57:90:37: 9c:17:04:6f:38:ec:5e:c3:c4:16:a0:45:3f:1d:37:ed:99:f4: a0:67:ac:8d:d4:ef:40:7d:17:55:4d:f0:5c:bd:ed:34:92:c8: 30:d7:76:90:cc:b0:85:1a:c8:7e:dc:fe:68:8c:6d:d7:8a:77: 38:24:c9:31:b2:68:89:20:a2:ef:c0:be:f7:ea:60:19:3f:81: 53:44:2f:8c:ab:d4:d7:35:3a:bb:17:65:8c:c7:eb:32:41:b2: 07:4d:22:72 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZv6u0MalgcPaea7vvUO3jHQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTI2MTQzNTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjQwOThlMGZkZWRiNjEyZjIzOWRhNTI0YTA0YjVlMGRlYTRjNTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU+rNN8Q821qCO2FeoN7GPiZJtCF 8juvDoyu1O7IIIz8Zl45GTrXf5T/49NMiktuJVhBQWzKy5xJSRODP7EmoPCM6W6V kohTfpRe5LIhyk9ZCpyDEBMwVkn3f2YVSi2FeCFAveI6oUCkeR+ATxMus76kgbWl cJG8LKptIP1sY0aK4vT1ec4BxabXZL6ZQPibLXatLb2bhr27Mhvj1qoEVhHfdC4j U+UZixRQ8MoTCcnJqGefM5jFDdSRWv5g9Nc7wbyXJ3B7o3hhG/ljYMQPvlHOgBrG Rw43xewa6kEmvLAp2dP+Wv3B7PILSuUpc+edoIY2R9YCR43acMa01xqiKwIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFLtAmOD97bYS8jnaUkoEteDepMU/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UyLzliNzMz ZS05ODM5LTRmNmYtYjRiNi1mZjVhYTllZWY0ZTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIvOWI3MzNl LTk4MzktNGY2Zi1iNGI2LWZmNWFhOWVlZjRlMi8xL3UwQ1k0UDN0dGhMeU9kcFNT Z1MxNE42a3hUOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQALYbxAwQAW+kPMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwCk7zANBgkqhkiG9w0BAQsFAAOCAQEAg2LUI+RvE+kMZeSLC4WhFoGT rk801SZJQpaGJ5RfJUpLJOuhIymfvnER4GnHPKu6u7OS+Dr+XEL0FBwGUf1dviE+ j2isrg6Lnwco9/A8KImrwcBdGAjjx2dOc2h5ZqTReNYjSFLNVtrmblN7t93Gjey/ T3XFEDRRdzsAuJPZqUImNb8ofwH57natoBvsawBU5ASdVBc7KjDfdOEYP1HuV5A3 nBcEbzjsXsPEFqBFPx037Zn0oGesjdTvQH0XVU3wXL3tNJLIMNd2kMywhRrIftz+ aIxt14p3OCTJMbJoiSCi78C+9+pgGT+BU0QvjKvU1zU6uxdljMfrMkGyB00icg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:32 2026 by rpki-client