This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vJ9arpo3Z27gp3Ev8xDdCwpvIsY.cer File: vJ9arpo3Z27gp3Ev8xDdCwpvIsY.cer (raw, json) Hash identifier: jPmZw7IWGkqeM9SKQMyG5wXXHuKYcnb+DB9XcxWv5JQ= Subject key identifier: BC:9F:5A:AE:9A:37:67:6E:E0:A7:71:2F:F3:10:DD:0B:0A:6F:22:C6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA59135B0D474AE07870B333DB8244A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cb081-8a7d-4024-ae85-9c4cb3bd925e/1/vJ9arpo3Z27gp3Ev8xDdCwpvIsY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cb081-8a7d-4024-ae85-9c4cb3bd925e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:18:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.147.70.0/24 IP: 2001:678:4c4::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:91:35:b0:d4:74:ae:07:87:0b:33:3d:b8:24:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc9f5aae9a37676ee0a7712ff310dd0b0a6f22c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:24:d5:f7:2f:db:f6:2f:05:f8:c8:1d:b6:5e: cb:c1:7a:25:a4:b5:bd:ba:eb:97:d5:fc:fd:58:20: bc:ba:b3:0e:16:b8:e4:1b:76:16:8e:10:ec:e8:7e: 57:1f:c2:00:c5:4f:90:9c:5a:5f:40:e8:61:50:2c: 41:b3:d7:4e:02:2c:57:db:b4:da:36:84:7d:87:b3: 6e:db:85:ce:9f:14:67:7d:c4:03:b0:17:83:08:40: 4b:20:6c:48:5f:51:4e:0d:85:06:fe:ca:e4:25:b4: b3:39:b6:ee:75:26:b7:82:c0:ba:87:6a:22:43:56: 15:37:10:ad:77:59:f0:19:46:41:5a:75:39:31:83: ed:67:81:87:90:69:cb:db:1c:3d:7b:07:37:2f:61: cb:1c:d7:a9:a5:0d:b6:a3:4b:77:49:7a:f1:89:7d: 39:2b:b2:6e:df:7c:8b:c5:c7:bf:69:36:05:44:b5: 58:10:09:86:16:7e:9d:63:5e:1e:37:47:54:74:b3: fa:49:64:ee:38:50:84:6c:d7:22:80:7f:96:c7:cd: a7:b1:4e:dc:66:f2:4c:b1:d9:02:78:0e:95:ea:f5: 5b:b2:26:b1:84:98:81:dd:49:3e:23:c5:8a:2b:5a: e4:96:a9:1b:c4:5f:8c:3b:cb:8a:99:fb:63:f1:7d: 82:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:9F:5A:AE:9A:37:67:6E:E0:A7:71:2F:F3:10:DD:0B:0A:6F:22:C6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cb081-8a7d-4024-ae85-9c4cb3bd925e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cb081-8a7d-4024-ae85-9c4cb3bd925e/1/vJ9arpo3Z27gp3Ev8xDdCwpvIsY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.70.0/24 IPv6: 2001:678:4c4::/48 Signature Algorithm: sha256WithRSAEncryption 6b:ad:19:16:f4:31:3f:0e:6f:23:78:20:70:90:e8:03:9e:b9: 6e:7e:ae:e0:a6:a2:04:08:d5:4a:b3:6a:1f:dd:b9:43:c6:bd: ca:92:0e:8d:6d:93:95:53:4a:8b:4d:cb:78:f6:fb:5d:ee:19: e0:ba:5a:6c:27:f4:85:05:4e:2f:e9:d9:76:8a:7d:3c:08:fd: fe:da:51:10:57:01:ab:20:1c:fc:06:81:88:e5:68:0c:5f:93: 43:24:3c:14:e6:cf:84:7f:df:51:b8:91:51:4e:07:49:25:bc: 21:8c:d1:90:92:99:37:fb:7f:35:06:8e:58:ac:64:4b:e5:22: ba:45:aa:05:d5:0b:98:ef:07:af:0a:29:4a:92:63:a7:3f:f8: 38:e4:00:54:6c:8b:0a:f0:d7:f7:10:74:ec:1c:4e:6a:f4:6e: 7d:c6:5c:7e:7f:c4:b5:20:dd:c3:22:cd:a1:87:9a:4a:68:e5: 69:80:54:70:e3:5c:af:f4:88:61:c7:0e:49:77:1f:08:48:99: 99:85:7b:42:db:41:b9:1d:46:26:32:0c:77:98:6c:e1:5b:fd: 68:22:8a:20:e6:b2:87:db:21:84:da:68:7a:a3:98:a1:67:18: ec:53:1d:91:65:33:4c:fb:07:77:38:18:33:89:45:b4:5f:f9: 8b:25:39:f8 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgISAZt+pZE1sNR0rgeHCzM9uCRKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzlmNWFhZTlhMzc2NzZlZTBhNzcxMmZmMzEwZGQwYjBhNmYyMmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1iTV9y/b9i8F+Mgdtl7LwXolpLW9 uuuX1fz9WCC8urMOFrjkG3YWjhDs6H5XH8IAxU+QnFpfQOhhUCxBs9dOAixX27Ta NoR9h7Nu24XOnxRnfcQDsBeDCEBLIGxIX1FODYUG/srkJbSzObbudSa3gsC6h2oi Q1YVNxCtd1nwGUZBWnU5MYPtZ4GHkGnL2xw9ewc3L2HLHNeppQ22o0t3SXrxiX05 K7Ju33yLxce/aTYFRLVYEAmGFn6dY14eN0dUdLP6SWTuOFCEbNcigH+Wx82nsU7c ZvJMsdkCeA6V6vVbsiaxhJiB3Uk+I8WKK1rklqkbxF+MO8uKmftj8X2CQQIDAQAB o4IClTCCApEwHQYDVR0OBBYEFLyfWq6aN2du4KdxL/MQ3QsKbyLGMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QxLzZjYjA4 MS04YTdkLTQwMjQtYWU4NS05YzRjYjNiZDkyNWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDEvNmNiMDgx LThhN2QtNDAyNC1hZTg1LTljNGNiM2JkOTI1ZS8xL3ZKOWFycG8zWjI3Z3AzRXY4 eERkQ3dwdklzWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAwpNGMA8EAgACMAkDBwAgAQZ4BMQwDQYJKoZI hvcNAQELBQADggEBAGutGRb0MT8ObyN4IHCQ6AOeuW5+ruCmogQI1Uqzah/duUPG vcqSDo1tk5VTSotNy3j2+13uGeC6Wmwn9IUFTi/p2XaKfTwI/f7aURBXAasgHPwG gYjlaAxfk0MkPBTmz4R/31G4kVFOB0klvCGM0ZCSmTf7fzUGjlisZEvlIrpFqgXV C5jvB68KKUqSY6c/+DjkAFRsiwrw1/cQdOwcTmr0bn3GXH5/xLUg3cMizaGHmkpo 5WmAVHDjXK/0iGHHDkl3HwhImZmFe0LbQbkdRiYyDHeYbOFb/WgiiiDmsofbIYTa aHqjmKFnGOxTHZFlM0z7B3c4GDOJRbRf+YslOfg= -----END CERTIFICATE-----Generated at Mon Feb 9 15:03:51 2026 by rpki-client