This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer (raw, json) Hash identifier: ZJJ2c+vlFDucu0Ta3ZC0Mec8bSqfLiPopi0GpmxUQGs= Subject key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5CF48523EEF76F64392B2692C2B033 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:20:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49763 IP: 193.164.196.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:f4:85:23:ee:f7:6f:64:39:2b:26:92:c2:b0:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d6:5c:6e:85:49:14:53:4e:a9:93:40:9d:a9: f4:9d:89:40:e0:e3:32:fb:95:b5:6e:14:4d:9c:c7: 49:9f:83:43:7d:d7:71:29:0a:e6:b1:74:f7:32:93: a0:3b:71:7f:ee:67:b1:25:bf:0f:5d:d1:7f:bb:fa: 11:fc:bb:6e:7e:30:dd:5b:5e:e6:ab:30:36:d2:41: bb:ab:52:65:32:db:9d:02:59:77:25:08:9d:73:8f: 8c:6c:0a:f5:ae:57:d7:04:6b:9a:c5:5e:49:66:96: 12:8e:a4:39:5f:4e:a5:19:00:ba:98:fe:82:b3:23: 2e:73:ce:6b:b6:27:2c:fc:be:69:b3:3e:34:4b:f6: 32:54:7d:f0:a7:44:cf:b3:f0:e7:db:b5:1c:19:5d: 3e:e1:ae:97:4e:91:80:a5:45:5b:c9:59:eb:86:d3: 13:02:97:f0:6c:5b:7c:0c:0a:f3:5a:57:02:cc:54: 23:66:d3:62:da:f9:cc:74:06:2a:71:25:1f:ba:91: 2f:b3:40:f3:a1:7b:f8:4a:b4:2a:b5:e3:e0:22:fb: 9b:94:40:67:9b:f3:1d:ca:0e:60:52:54:3f:8e:08: 3e:92:db:2f:b6:f7:3a:c5:f5:50:b0:7a:bb:5d:87: 99:4c:d0:27:57:b8:71:12:8e:63:3d:d5:7f:16:c5: 4d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.164.196.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49763 Signature Algorithm: sha256WithRSAEncryption 96:7e:ba:be:5e:66:39:23:22:bb:31:87:39:e0:93:d3:07:70: de:af:8b:ff:2a:8f:a0:b1:3a:1b:bf:30:a0:63:44:b8:64:03: 5b:9c:c9:9d:b7:41:df:80:ad:96:8a:17:f6:ae:b1:57:d4:3f: c2:84:0a:7f:96:cc:ed:57:b5:47:63:41:57:2b:0c:3c:b9:79: 0a:58:05:f7:cd:93:72:c1:e2:23:9d:81:46:45:66:03:8a:6c: 71:26:80:ef:66:6a:f5:dc:30:ef:04:54:c1:47:24:9c:f6:5a: a4:23:59:af:1f:e4:d7:9e:fc:4a:5a:50:1a:6e:8e:ed:e1:9b: 43:b1:8a:f4:dc:38:85:a6:e3:b1:08:69:a8:56:df:ba:49:8f: a4:dd:a2:00:f2:62:c5:b9:a8:e8:5b:eb:d9:47:16:de:f2:55: d6:ba:8a:3f:6b:4f:64:08:83:aa:03:23:36:db:76:ff:c0:0c: aa:fd:8e:38:47:76:b3:62:98:94:11:f7:4b:f7:e3:5a:35:a0: ce:bf:60:07:56:a2:c8:8c:04:bd:fe:50:81:9b:a9:78:0c:e7: 68:08:7d:0d:b5:d2:77:66:48:d4:a2:bc:f2:09:c2:d6:9c:b4: 46:e4:44:35:f1:54:df:c4:43:e0:d5:be:ff:3d:e5:84:d0:9e: 58:dc:18:73 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9XPSFI+73b2Q5KyaSwrAzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYTg4NjFlMTdlYmVkNTc5NTBmZjMyYzdiMzc3ZmM0MzA0MTNkYmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidZcboVJFFNOqZNAnan0nYlA4OMy +5W1bhRNnMdJn4NDfddxKQrmsXT3MpOgO3F/7mexJb8PXdF/u/oR/LtufjDdW17m qzA20kG7q1JlMtudAll3JQidc4+MbAr1rlfXBGuaxV5JZpYSjqQ5X06lGQC6mP6C syMuc85rtics/L5psz40S/YyVH3wp0TPs/Dn27UcGV0+4a6XTpGApUVbyVnrhtMT ApfwbFt8DArzWlcCzFQjZtNi2vnMdAYqcSUfupEvs0DzoXv4SrQqtePgIvublEBn m/Mdyg5gUlQ/jgg+ktsvtvc6xfVQsHq7XYeZTNAnV7hxEo5jPdV/FsVNKQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFLqIYeF+vtV5UP8yx7N3/EMEE9vkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNiLzEwZDE1 My1jM2MzLTQwMTEtOTdjZi0xMGZkY2EzODVlYTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2IvMTBkMTUz LWMzYzMtNDAxMS05N2NmLTEwZmRjYTM4NWVhNC8xL3VvaGg0WDYtMVhsUV96TEhz M2Y4UXdRVDItUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBwaTEMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDCYzANBgkqhkiG9w0BAQsFAAOCAQEAln66vl5mOSMiuzGHOeCT0wdw3q+L/yqP oLE6G78woGNEuGQDW5zJnbdB34CtlooX9q6xV9Q/woQKf5bM7Ve1R2NBVysMPLl5 ClgF982TcsHiI52BRkVmA4pscSaA72Zq9dww7wRUwUcknPZapCNZrx/k1578SlpQ Gm6O7eGbQ7GK9Nw4habjsQhpqFbfukmPpN2iAPJixbmo6Fvr2UcW3vJV1rqKP2tP ZAiDqgMjNtt2/8AMqv2OOEd2s2KYlBH3S/fjWjWgzr9gB1aiyIwEvf5QgZupeAzn aAh9DbXSd2ZI1KK88gnC1py0RuRENfFU38RD4NW+/z3lhNCeWNwYcw== -----END CERTIFICATE-----Generated at Sat Jan 10 07:02:53 2026 by rpki-client