This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ukoNHYD_HuzTZZB0pJe_voxVQ_Y.cer File: ukoNHYD_HuzTZZB0pJe_voxVQ_Y.cer (raw, json) Hash identifier: k57h6/tJq6adwuJXb3ofhdLBMh09K3DqJT8O8UiPZz8= Subject key identifier: BA:4A:0D:1D:80:FF:1E:EC:D3:65:90:74:A4:97:BF:BE:8C:55:43:F6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7A2919B2DA771C01D7D67ECF3E3DA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/ukoNHYD_HuzTZZB0pJe_voxVQ_Y.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.53.204.0/22 IP: 2a04:cf40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:a2:91:9b:2d:a7:71:c0:1d:7d:67:ec:f3:e3:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba4a0d1d80ff1eecd3659074a497bfbe8c5543f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ba:f3:1a:82:33:d7:4b:9c:e6:2b:33:2b:1f: 03:50:16:ef:40:15:26:79:48:d6:86:01:f7:1f:7b: 06:1e:20:d7:21:f5:15:44:65:ef:6d:51:09:83:a3: f6:98:ca:9f:df:5c:a3:45:d5:e9:5a:5e:1b:02:aa: 5e:a2:75:5b:65:33:44:35:f2:de:35:27:67:a9:bd: f3:1a:ef:5a:15:aa:04:bd:c1:a7:c2:aa:89:83:f4: d9:72:1f:06:4b:6d:d0:b7:fd:df:a5:2d:16:b1:5a: c0:2e:36:3b:22:82:31:45:54:fb:ea:50:d4:27:d4: d4:7d:ba:b8:5c:54:fe:61:8a:28:54:24:40:64:19: 70:ce:d7:c9:34:26:87:ad:e4:2e:15:99:e8:d8:ce: 61:a4:cc:cd:1d:49:e9:71:bb:85:cf:4f:03:60:72: 0c:43:da:8b:07:dc:d9:31:5c:e9:12:a7:09:dc:fe: db:52:39:bd:3f:39:be:a0:f1:33:92:4e:44:6f:d2: 18:72:8b:75:2f:09:f1:5a:64:56:e5:06:6c:d3:10: b7:6e:9e:07:c8:d0:7e:74:b0:d1:22:cf:b0:90:64: 7f:01:87:c2:7f:0c:60:a7:d0:e1:93:d3:e4:15:09: d8:69:a9:6e:e7:51:95:2a:ac:c0:0f:1e:07:5c:54: 27:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4A:0D:1D:80:FF:1E:EC:D3:65:90:74:A4:97:BF:BE:8C:55:43:F6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/b5fa3e-a218-4a91-bf88-cc8ec6f3d875/1/ukoNHYD_HuzTZZB0pJe_voxVQ_Y.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.53.204.0/22 IPv6: 2a04:cf40::/29 Signature Algorithm: sha256WithRSAEncryption ab:c2:e1:03:1b:e2:57:98:b3:fb:1d:4b:94:f8:3c:3e:e9:06: f0:f9:01:51:b0:30:ec:46:c4:4b:9b:9e:d0:41:b4:48:af:76: 92:69:a7:d4:fa:13:2a:68:9e:a2:5d:e1:eb:a3:4d:31:3a:48: 75:ab:16:89:d1:76:8d:2e:85:38:0a:d4:d7:44:da:1c:9b:93: 64:63:d9:04:a0:6e:84:96:f7:a1:d5:f0:b2:df:34:71:c1:44: 25:ae:6d:52:91:98:67:4c:a0:4d:3e:a6:18:26:2f:81:3d:b0: 10:92:a2:a4:a7:47:21:50:a2:b1:4f:e6:ff:d2:5a:2b:bd:1b: 7f:1b:b0:8d:40:fd:18:4b:0d:ed:06:1a:07:8b:99:32:2a:5b: e4:84:5e:69:5e:2f:23:f0:db:97:2e:d6:2d:1f:87:85:70:1c: 74:ec:0a:7a:2a:5e:86:7e:5d:be:2a:18:2f:31:8d:bd:3b:a6: f1:54:d3:6a:10:59:bd:33:45:27:60:6f:3f:65:20:d5:ee:c2: 4f:30:8f:86:75:0b:35:73:e6:04:a3:06:95:91:74:2a:ec:0b: db:07:c4:62:78:a4:b1:2e:8f:e8:2e:f6:a9:ed:29:1d:50:a1: 06:ae:ce:97:de:ee:fa:95:da:f2:be:be:ff:19:1c:c5:5b:c4: 30:34:d4:80 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt6x6KRmy2nccAdfWfs8+PaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTRhMGQxZDgwZmYxZWVjZDM2NTkwNzRhNDk3YmZiZThjNTU0M2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLrzGoIz10uc5iszKx8DUBbvQBUm eUjWhgH3H3sGHiDXIfUVRGXvbVEJg6P2mMqf31yjRdXpWl4bAqpeonVbZTNENfLe NSdnqb3zGu9aFaoEvcGnwqqJg/TZch8GS23Qt/3fpS0WsVrALjY7IoIxRVT76lDU J9TUfbq4XFT+YYooVCRAZBlwztfJNCaHreQuFZno2M5hpMzNHUnpcbuFz08DYHIM Q9qLB9zZMVzpEqcJ3P7bUjm9Pzm+oPEzkk5Eb9IYcot1LwnxWmRW5QZs0xC3bp4H yNB+dLDRIs+wkGR/AYfCfwxgp9Dhk9PkFQnYaalu51GVKqzADx4HXFQnWQIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFLpKDR2A/x7s02WQdKSXv76MVUP2MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2I1ZmEz ZS1hMjE4LTRhOTEtYmY4OC1jYzhlYzZmM2Q4NzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvYjVmYTNl LWEyMTgtNGE5MS1iZjg4LWNjOGVjNmYzZDg3NS8xL3Vrb05IWURfSHV6VFpaQjBw SmVfdm94VlFfWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuTXMMA0EAgACMAcDBQMqBM9AMA0GCSqGSIb3 DQEBCwUAA4IBAQCrwuEDG+JXmLP7HUuU+Dw+6Qbw+QFRsDDsRsRLm57QQbRIr3aS aafU+hMqaJ6iXeHro00xOkh1qxaJ0XaNLoU4CtTXRNocm5NkY9kEoG6Elveh1fCy 3zRxwUQlrm1SkZhnTKBNPqYYJi+BPbAQkqKkp0chUKKxT+b/0lorvRt/G7CNQP0Y Sw3tBhoHi5kyKlvkhF5pXi8j8NuXLtYtH4eFcBx07Ap6Kl6Gfl2+KhgvMY29O6bx VNNqEFm9M0UnYG8/ZSDV7sJPMI+GdQs1c+YEowaVkXQq7AvbB8RieKSxLo/oLvap 7SkdUKEGrs6X3u76ldryvr7/GRzFW8QwNNSA -----END CERTIFICATE-----Generated at Mon Jan 26 21:08:06 2026 by rpki-client