This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uBsD4ih1uwcLG3xY6touS7Gqvn8.cer File: uBsD4ih1uwcLG3xY6touS7Gqvn8.cer (raw, json) Hash identifier: xgeER1iXNAxx64Fr9/4oLROC5m09oPZVLEaUj6jrXqc= Subject key identifier: B8:1B:03:E2:28:75:BB:07:0B:1B:7C:58:EA:DA:2E:4B:B1:AA:BE:7F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5C5AF8106BC46FA62E80E4AA1D7401 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/uBsD4ih1uwcLG3xY6touS7Gqvn8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202377 IP: 185.255.140.0/22 IP: 2a0c:6540::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:5a:f8:10:6b:c4:6f:a6:2e:80:e4:aa:1d:74:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b81b03e22875bb070b1b7c58eada2e4bb1aabe7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c1:46:71:21:cd:36:14:87:a7:1e:36:55:e1: 4b:57:68:51:86:c7:0b:8e:0d:ac:e8:d4:bb:86:1a: 15:74:4e:41:b9:3e:b0:ed:e4:99:5b:48:7c:f9:a3: 9f:95:0c:cf:66:76:89:5e:7f:0f:48:07:f0:05:33: 31:a1:50:d4:f8:ab:02:cd:7a:5e:3b:8f:51:62:88: d5:ec:a2:84:f0:fd:ae:b5:ab:da:04:03:41:f4:bb: dd:77:74:22:fa:02:2a:d4:26:96:0a:e7:27:fd:7e: 7b:a3:7d:57:4d:ac:7e:e3:1b:ec:54:39:cf:c7:1a: ea:33:c9:16:0b:29:dc:59:02:3f:a5:16:55:16:a3: 4c:6f:90:fb:2b:b0:ef:45:58:42:6a:dd:d9:5e:c0: 7d:40:cc:3c:41:e7:e1:08:e6:53:58:46:d7:0b:15: 49:ba:30:f5:d3:17:3f:16:d7:b3:58:b8:eb:70:bf: 79:c5:09:c0:58:30:bf:b7:7e:b4:be:e5:18:6e:dd: cb:11:cb:09:b3:cf:d4:a6:59:2b:d5:4e:82:a2:24: 35:20:59:09:be:7c:23:04:cd:5f:e9:a3:07:d3:dd: 21:0e:67:ad:08:4e:9e:f0:36:7c:20:65:ac:42:5e: b6:ac:5e:71:cf:95:3a:13:23:24:45:8a:98:fb:18: b6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1B:03:E2:28:75:BB:07:0B:1B:7C:58:EA:DA:2E:4B:B1:AA:BE:7F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/e9146a-8ec9-4c31-ad9e-ad256643052b/1/uBsD4ih1uwcLG3xY6touS7Gqvn8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.255.140.0/22 IPv6: 2a0c:6540::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202377 Signature Algorithm: sha256WithRSAEncryption 80:a2:cd:46:8e:f2:1c:93:4f:d3:31:9f:75:32:91:06:e9:8b: b9:2a:f2:cc:72:78:83:58:55:e0:26:76:bf:ee:26:a0:22:97: 0f:e8:6e:46:3b:23:e9:fe:2d:48:dd:c6:2c:f5:6b:8e:b2:0a: 4d:0b:f3:32:eb:c2:9b:5f:07:af:dd:9d:a3:f1:86:5c:03:61: 3f:0f:83:b9:12:16:e2:01:4e:64:b2:fe:d6:18:9d:21:e9:6b: fc:5f:fc:63:6d:c4:4c:f2:f4:f4:a3:24:c9:34:eb:93:a4:90: 7d:58:0b:77:69:a8:d1:18:71:93:af:f7:24:e5:bc:dc:59:95: d1:f6:1f:d3:73:14:bb:5a:79:f9:a1:d3:53:6a:3e:f3:27:28: 82:8e:03:83:ca:00:16:2e:68:42:ac:4d:19:e2:2d:62:1c:3c: 63:a1:11:c5:c3:bb:1f:16:3d:53:32:52:38:81:8e:7b:22:15: f5:d5:74:e5:c9:37:40:86:8b:4c:03:ec:09:25:40:89:c9:ac: 8b:8d:22:01:6e:f9:43:19:09:d3:23:3f:31:71:19:ff:fd:36: 01:7d:89:8a:66:92:56:44:64:e0:77:fa:45:f4:cf:4a:e1:fc: a6:ea:11:b2:19:71:6e:62:80:47:fc:69:b3:4d:a2:0b:28:2d: 97:70:a4:0a -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9XFr4EGvEb6YugOSqHXQBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODFiMDNlMjI4NzViYjA3MGIxYjdjNThlYWRhMmU0YmIxYWFiZTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcFGcSHNNhSHpx42VeFLV2hRhscL jg2s6NS7hhoVdE5BuT6w7eSZW0h8+aOflQzPZnaJXn8PSAfwBTMxoVDU+KsCzXpe O49RYojV7KKE8P2utavaBANB9Lvdd3Qi+gIq1CaWCucn/X57o31XTax+4xvsVDnP xxrqM8kWCyncWQI/pRZVFqNMb5D7K7DvRVhCat3ZXsB9QMw8QefhCOZTWEbXCxVJ ujD10xc/FtezWLjrcL95xQnAWDC/t360vuUYbt3LEcsJs8/Uplkr1U6CoiQ1IFkJ vnwjBM1f6aMH090hDmetCE6e8DZ8IGWsQl62rF5xz5U6EyMkRYqY+xi2rwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLgbA+IodbsHCxt8WOraLkuxqr5/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2L2U5MTQ2 YS04ZWM5LTRjMzEtYWQ5ZS1hZDI1NjY0MzA1MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYvZTkxNDZh LThlYzktNGMzMS1hZDllLWFkMjU2NjQzMDUyYi8xL3VCc0Q0aWgxdXdjTEczeFk2 dG91UzdHcXZuOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuf+MMA0EAgACMAcDBQAqDGVAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMWiTANBgkqhkiG9w0BAQsFAAOCAQEAgKLNRo7yHJNP 0zGfdTKRBumLuSryzHJ4g1hV4CZ2v+4moCKXD+huRjsj6f4tSN3GLPVrjrIKTQvz MuvCm18Hr92do/GGXANhPw+DuRIW4gFOZLL+1hidIelr/F/8Y23ETPL09KMkyTTr k6SQfVgLd2mo0Rhxk6/3JOW83FmV0fYf03MUu1p5+aHTU2o+8ycogo4Dg8oAFi5o QqxNGeItYhw8Y6ERxcO7HxY9UzJSOIGOeyIV9dV05ck3QIaLTAPsCSVAicmsi40i AW75QxkJ0yM/MXEZ//02AX2JimaSVkRk4Hf6RfTPSuH8puoRshlxbmKAR/xps02i Cygtl3CkCg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:48 2026 by rpki-client