This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uQBjLU-AFX1p71tT_mJNv4rf768.cer File: uQBjLU-AFX1p71tT_mJNv4rf768.cer (raw, json) Hash identifier: eAXaX5nEuIlk769QsUzaOHuQJDdzkCy0dM8n4Ae9Ktk= Subject key identifier: B9:00:63:2D:4F:80:15:7D:69:EF:5B:53:FE:62:4D:BF:8A:DF:EF:AF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA9124DB003B2786CB23CF1F54040B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/uQBjLU-AFX1p71tT_mJNv4rf768.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207943 IP: 185.46.71.0/24 IP: 2a12:9440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:91:24:db:00:3b:27:86:cb:23:cf:1f:54:04:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b900632d4f80157d69ef5b53fe624dbf8adfefaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8b:6f:45:3e:34:90:a7:aa:60:24:92:dd:c7: 6d:57:73:09:81:ad:a0:29:9e:d9:0c:49:e8:89:66: 70:90:89:01:c0:a0:ef:3b:0a:b4:17:c2:64:40:30: 43:db:c4:b7:e8:ec:bf:7c:ce:2f:3b:ce:a8:5b:7b: 24:2a:17:2c:41:03:a3:1d:98:41:1c:45:35:90:4d: 1b:ee:63:be:e8:bc:f5:eb:74:5f:83:16:ea:8d:cb: e6:7f:43:45:ab:06:87:2b:c5:15:39:97:42:78:fb: 8c:b5:b6:aa:1d:55:86:c7:b1:8c:ac:99:3b:b6:cc: a3:8b:44:04:68:6c:77:8a:78:59:25:08:cc:44:7e: 16:63:27:e5:bf:f3:16:80:38:fa:4f:2f:ce:cc:72: 2f:0e:31:9a:f7:17:0d:b8:45:45:2d:e0:3e:ca:58: 1c:22:64:b3:ba:f3:37:0d:36:4d:26:dc:c9:49:4f: d4:19:f7:d6:64:80:5b:ea:6d:d3:8a:de:5a:bc:7d: ab:8d:1d:19:c0:c0:66:48:7a:57:bb:8e:52:12:9f: ed:11:7c:a8:c3:94:f6:62:bc:66:a7:dc:99:64:0d: ae:9b:11:47:68:fa:c8:42:26:42:7c:ac:ce:46:0e: 90:d3:79:0b:f8:47:8b:f8:ae:f7:53:56:17:93:b3: 9f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:00:63:2D:4F:80:15:7D:69:EF:5B:53:FE:62:4D:BF:8A:DF:EF:AF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/bb548e-5c91-4658-8e01-b80ff2f1552b/1/uQBjLU-AFX1p71tT_mJNv4rf768.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.46.71.0/24 IPv6: 2a12:9440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207943 Signature Algorithm: sha256WithRSAEncryption 67:7c:4c:27:de:d9:93:32:9e:08:80:27:66:4c:a7:aa:2e:49: af:ee:49:f2:67:02:ca:9a:a3:57:21:ca:26:4a:93:4f:96:2d: 3e:26:ed:35:66:6d:29:dc:3d:a5:7b:69:38:1a:4d:70:13:70: 3d:5d:83:d3:6b:8b:20:21:b4:2d:c6:41:0b:48:97:79:cd:91: f3:4c:39:22:0e:55:11:27:2a:7b:35:04:0a:36:22:eb:4b:82: dd:ef:9c:21:28:92:24:d0:bc:c3:8d:26:76:46:6f:c6:e8:39: 95:08:1c:fe:8f:5e:bf:dd:e8:20:e9:98:93:79:b2:46:ff:85: 92:37:75:fa:ae:2d:71:91:1d:09:14:47:33:d6:39:e5:17:9f: cf:55:f8:a7:54:e9:20:05:2e:a8:13:0b:b7:6e:f8:a2:2f:f5: f6:04:88:39:3e:e7:af:6c:69:f5:45:6a:b5:ad:9b:e6:ec:00: 74:44:b5:49:8c:65:c8:45:83:a5:86:4e:eb:46:af:96:1e:5b: 9b:79:53:47:37:24:80:b6:7c:a3:ea:8c:d8:b6:66:70:ab:16: 82:f8:85:69:62:b7:d1:5b:16:c7:71:c9:43:7a:90:13:4f:4d: 8e:9e:c1:be:0c:4b:46:d2:8d:24:8d:db:a0:8a:9e:3f:fd:fb: 0d:85:09:98 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9ypEk2wA7J4bLI88fVAQLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTAwNjMyZDRmODAxNTdkNjllZjViNTNmZTYyNGRiZjhhZGZlZmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuotvRT40kKeqYCSS3cdtV3MJga2g KZ7ZDEnoiWZwkIkBwKDvOwq0F8JkQDBD28S36Oy/fM4vO86oW3skKhcsQQOjHZhB HEU1kE0b7mO+6Lz163Rfgxbqjcvmf0NFqwaHK8UVOZdCePuMtbaqHVWGx7GMrJk7 tsyji0QEaGx3inhZJQjMRH4WYyflv/MWgDj6Ty/OzHIvDjGa9xcNuEVFLeA+ylgc ImSzuvM3DTZNJtzJSU/UGffWZIBb6m3Tit5avH2rjR0ZwMBmSHpXu45SEp/tEXyo w5T2Yrxmp9yZZA2umxFHaPrIQiZCfKzORg6Q03kL+EeL+K73U1YXk7OfoQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLkAYy1PgBV9ae9bU/5iTb+K3++vMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzL2JiNTQ4 ZS01YzkxLTQ2NTgtOGUwMS1iODBmZjJmMTU1MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvYmI1NDhl LTVjOTEtNDY1OC04ZTAxLWI4MGZmMmYxNTUyYi8xL3VRQmpMVS1BRlgxcDcxdFRf bUpOdjRyZjc2OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuS5HMA0EAgACMAcDBQMqEpRAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMsRzANBgkqhkiG9w0BAQsFAAOCAQEAZ3xMJ97ZkzKe CIAnZkynqi5Jr+5J8mcCypqjVyHKJkqTT5YtPibtNWZtKdw9pXtpOBpNcBNwPV2D 02uLICG0LcZBC0iXec2R80w5Ig5VEScqezUECjYi60uC3e+cISiSJNC8w40mdkZv xug5lQgc/o9ev93oIOmYk3myRv+Fkjd1+q4tcZEdCRRHM9Y55Refz1X4p1TpIAUu qBMLt274oi/19gSIOT7nr2xp9UVqta2b5uwAdES1SYxlyEWDpYZO60avlh5bm3lT RzckgLZ8o+qM2LZmcKsWgviFaWK30VsWx3HJQ3qQE09Njp7BvgxLRtKNJI3boIqe P/37DYUJmA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:25 2026 by rpki-client