This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer File: uwoTocnh3YTt5DKDSQvng4d1SpQ.cer (raw, json) Hash identifier: thZuBdRGGuRviZ21lruvVj67klq3K4sKaK31n9xPG+0= Subject key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A231346B7183609146C0B069F333E0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208642 IP: 85.116.144.0/22 IP: 185.202.244.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:31:34:6b:71:83:60:91:46:c0:b0:69:f3:33:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb0a13a1c9e1dd84ede43283490be78387754a94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:83:73:19:56:83:82:eb:d4:69:de:39:33:b2: 1a:7d:01:b0:c5:ad:51:4b:90:b0:03:f2:c1:0a:56: ed:e4:71:a2:cc:58:80:5a:7b:2a:ab:2c:d3:94:fc: c6:14:57:d9:83:87:6f:1f:7b:0f:cb:fd:cb:29:6f: 4f:05:5d:cd:7f:2c:89:3b:91:a2:12:6a:6d:2f:75: c1:76:4f:6c:36:26:d0:9a:f1:21:40:04:66:1e:df: e0:74:c6:18:ef:23:97:5c:d8:ae:34:cc:e9:48:ba: dc:34:16:9a:b7:62:b2:73:71:e5:55:ae:e0:56:59: e9:7c:13:c6:7f:50:c7:08:03:b4:d6:a1:ee:07:a8: c7:c5:2c:d9:1b:9f:ab:64:ad:bf:ac:89:53:82:ad: b0:69:c4:d7:8c:3c:40:55:fc:82:53:3e:24:39:dc: 07:5b:f0:2e:d0:a3:39:a7:9c:16:16:ef:7f:52:37: e5:78:31:3b:de:26:86:34:b5:24:27:2b:02:79:7c: 9f:23:da:45:69:49:ee:1c:0b:84:ed:27:93:43:a1: 93:8a:2c:5e:c1:9d:d3:43:07:fb:b1:b8:87:db:89: 55:5d:e5:31:9b:1b:0f:a7:75:b4:55:da:1e:7a:33: 0d:03:e7:3c:82:d5:9b:d5:a6:6b:60:a0:81:4f:22: 12:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.116.144.0/22 185.202.244.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208642 Signature Algorithm: sha256WithRSAEncryption 37:c2:d5:c9:50:db:bf:33:f0:6f:bd:01:58:dc:07:bc:4f:ef: 70:27:66:b0:58:76:c7:2c:8f:ac:82:99:2b:0b:1e:d5:26:57: 23:59:48:d2:5e:0d:3f:86:c3:6b:6b:aa:7a:a7:11:64:78:13: 0b:f7:31:bc:f3:f7:e8:dd:84:f7:c2:a2:30:cf:08:cb:4e:76: 7a:e0:27:5b:f4:a0:b3:a0:97:0f:8c:b1:54:28:a4:e4:56:6d: e8:38:09:d2:8c:03:c5:d6:71:13:1e:0d:12:d4:13:0a:52:a8: 4b:b7:64:c5:2f:1a:d9:6d:89:4d:8f:c2:22:03:53:d1:1c:0e: fa:d6:7a:9d:3b:b8:16:88:89:46:1d:de:c0:cd:b9:97:db:ad: 2b:d8:35:87:8d:db:06:cc:4e:b2:a1:59:52:b1:e6:f0:81:2c: f8:00:ff:5d:95:c6:e7:54:31:e8:56:fa:d1:c6:ff:c3:f4:08: ac:47:30:16:20:6e:9f:56:6d:47:6e:cc:0d:9d:bf:68:43:78: a0:87:66:de:e2:bf:8e:af:4e:24:bc:83:59:63:b9:a5:70:57: c5:48:b4:b9:c2:aa:66:62:c4:fd:45:f2:51:2c:f2:01:09:e3: a1:57:9b:da:46:f3:a6:b4:f0:19:74:1f:6a:fa:16:df:05:5b: 43:b4:ab:96 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt4ojE0a3GDYJFGwLBp8zPgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjBhMTNhMWM5ZTFkZDg0ZWRlNDMyODM0OTBiZTc4Mzg3NzU0YTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi4NzGVaDguvUad45M7IafQGwxa1R S5CwA/LBClbt5HGizFiAWnsqqyzTlPzGFFfZg4dvH3sPy/3LKW9PBV3NfyyJO5Gi EmptL3XBdk9sNibQmvEhQARmHt/gdMYY7yOXXNiuNMzpSLrcNBaat2Kyc3HlVa7g VlnpfBPGf1DHCAO01qHuB6jHxSzZG5+rZK2/rIlTgq2wacTXjDxAVfyCUz4kOdwH W/Au0KM5p5wWFu9/UjfleDE73iaGNLUkJysCeXyfI9pFaUnuHAuE7SeTQ6GTiixe wZ3TQwf7sbiH24lVXeUxmxsPp3W0VdoeejMNA+c8gtWb1aZrYKCBTyISIwIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFLsKE6HJ4d2E7eQyg0kL54OHdUqUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU3LzNmOGNj YS02YjFkLTRhZTYtYmMyYS1mNDJlN2M0NTkzNWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcvM2Y4Y2Nh LTZiMWQtNGFlNi1iYzJhLWY0MmU3YzQ1OTM1YS8xL3V3b1RvY25oM1lUdDVES0RT UXZuZzRkMVNwUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQCVXSQAwQCucr0MBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwMvAjANBgkqhkiG9w0BAQsFAAOCAQEAN8LVyVDbvzPwb70BWNwHvE/v cCdmsFh2xyyPrIKZKwse1SZXI1lI0l4NP4bDa2uqeqcRZHgTC/cxvPP36N2E98Ki MM8Iy052euAnW/Sgs6CXD4yxVCik5FZt6DgJ0owDxdZxEx4NEtQTClKoS7dkxS8a 2W2JTY/CIgNT0RwO+tZ6nTu4FoiJRh3ewM25l9utK9g1h43bBsxOsqFZUrHm8IEs +AD/XZXG51Qx6Fb60cb/w/QIrEcwFiBun1ZtR27MDZ2/aEN4oIdm3uK/jq9OJLyD WWO5pXBXxUi0ucKqZmLE/UXyUSzyAQnjoVeb2kbzprTwGXQfavoW3wVbQ7Srlg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:09 2026 by rpki-client