This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.cer File: AWKKQV4fpyzh0DzXYhnOG3fGVcQ.cer (raw, json) Hash identifier: +P8S6hdsW0NovPZ0UQvUHZXZrWaPIGL9FZeRAaTBLkw= Subject key identifier: 01:62:8A:41:5E:1F:A7:2C:E1:D0:3C:D7:62:19:CE:1B:77:C6:55:C4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED0E973A7462521652A4B70DAFFCCE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202021 IP: 185.56.64.0/22 IP: 2a02:51e0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:0e:97:3a:74:62:52:16:52:a4:b7:0d:af:fc:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=01628a415e1fa72ce1d03cd76219ce1b77c655c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:72:12:2c:cf:6d:b0:32:58:1b:3a:ad:0b:44: a0:6b:e6:63:fb:1b:3e:6b:9e:f6:34:ef:c2:ae:43: bb:4d:a9:af:60:a2:94:49:42:9a:6d:0b:71:78:c6: 7b:b9:82:3d:97:14:d0:1b:6d:42:6c:56:d6:3e:30: 96:a4:e9:50:c0:9e:7e:7c:a5:ca:9e:64:b9:a2:f0: 50:41:08:ff:37:d1:60:9e:8b:de:74:31:08:99:54: 67:d6:14:8d:89:92:ae:d8:c2:60:06:81:d5:b3:c8: 5f:3c:70:31:b1:85:52:f2:e5:33:4b:ed:ca:c4:6a: 9b:db:f4:09:83:fb:b8:50:35:e0:9b:64:c9:5a:95: 1f:04:65:f6:f9:f4:e5:8f:9c:46:00:2a:ba:80:a1: 89:93:5c:44:58:e7:fb:3d:c4:99:08:f6:97:f8:be: 5f:1e:e0:93:15:96:0a:42:aa:62:80:a4:b7:e2:7b: f4:8f:36:17:3e:c6:1a:bb:32:d8:d9:48:0b:59:0a: e9:b6:3a:70:3f:b3:2d:fd:f2:ea:d8:42:cf:a7:bc: 32:99:2b:7c:91:83:66:05:13:f2:d8:03:80:18:51: a2:fe:93:b5:20:ba:d4:fb:d1:b7:e5:ee:60:36:7d: f1:de:38:50:98:0f:01:07:99:a0:25:e9:4a:d3:7b: a0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:62:8A:41:5E:1F:A7:2C:E1:D0:3C:D7:62:19:CE:1B:77:C6:55:C4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/81ce36-f952-429c-8fbb-7ff92f6dc3a4/1/AWKKQV4fpyzh0DzXYhnOG3fGVcQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.64.0/22 IPv6: 2a02:51e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202021 Signature Algorithm: sha256WithRSAEncryption 5f:ab:3e:0d:a6:30:bb:45:fb:30:ec:40:3f:8c:9e:b0:ec:2a: 52:10:77:c9:6a:28:65:9a:57:8d:2f:dc:16:ed:de:94:7d:4e: f2:0a:0b:e3:85:8f:c8:64:9c:2a:69:0c:9f:b9:b2:62:39:a1: 2a:6a:11:72:c8:be:2e:ef:7e:7e:fb:f9:ab:9d:d1:1f:af:19: e7:5e:39:2a:a9:57:20:54:15:cc:c1:01:95:f9:43:63:02:8b: 57:30:c2:93:55:9c:e3:c9:ba:cf:d1:24:57:53:3a:79:f8:98: 53:03:7c:47:ed:1e:6f:35:10:f6:76:6d:5e:72:40:1d:dc:16: b2:9d:d6:e3:92:43:be:76:b5:67:01:cd:4d:28:91:e1:81:57: 76:ed:b6:56:fe:b4:8e:c0:3d:18:44:41:ec:c8:b8:a6:5d:8d: df:7c:9d:f4:43:52:46:6f:e8:29:e0:69:f6:49:b5:0b:18:3e: 2d:77:db:7e:45:ba:da:b2:6c:bc:7e:4f:a1:7f:74:ed:70:69: 03:42:b2:4d:48:7d:d0:9e:c4:e6:e6:4c:c0:2d:78:b5:9a:a0: 97:64:4f:ec:62:0f:8b:a8:54:9b:e6:d1:02:0d:c1:ce:7b:67: cf:42:35:da:a0:ae:a3:2e:2e:d5:c8:c1:5b:0d:55:3e:d6:4e: 8e:b6:f0:fd -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt57Q6XOnRiUhZSpLcNr/zOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTYyOGE0MTVlMWZhNzJjZTFkMDNjZDc2MjE5Y2UxYjc3YzY1NWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHISLM9tsDJYGzqtC0Sga+Zj+xs+ a572NO/CrkO7TamvYKKUSUKabQtxeMZ7uYI9lxTQG21CbFbWPjCWpOlQwJ5+fKXK nmS5ovBQQQj/N9FgnovedDEImVRn1hSNiZKu2MJgBoHVs8hfPHAxsYVS8uUzS+3K xGqb2/QJg/u4UDXgm2TJWpUfBGX2+fTlj5xGACq6gKGJk1xEWOf7PcSZCPaX+L5f HuCTFZYKQqpigKS34nv0jzYXPsYauzLY2UgLWQrptjpwP7Mt/fLq2ELPp7wymSt8 kYNmBRPy2AOAGFGi/pO1ILrU+9G35e5gNn3x3jhQmA8BB5mgJelK03ugPwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFAFiikFeH6cs4dA812IZzht3xlXEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcwLzgxY2Uz Ni1mOTUyLTQyOWMtOGZiYi03ZmY5MmY2ZGMzYTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAvODFjZTM2 LWY5NTItNDI5Yy04ZmJiLTdmZjkyZjZkYzNhNC8xL0FXS0tRVjRmcHl6aDBEelhZ aG5PRzNmR1ZjUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuThAMA0EAgACMAcDBQAqAlHgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMVJTANBgkqhkiG9w0BAQsFAAOCAQEAX6s+DaYwu0X7 MOxAP4yesOwqUhB3yWooZZpXjS/cFu3elH1O8goL44WPyGScKmkMn7myYjmhKmoR csi+Lu9+fvv5q53RH68Z5145KqlXIFQVzMEBlflDYwKLVzDCk1Wc48m6z9EkV1M6 efiYUwN8R+0ebzUQ9nZtXnJAHdwWsp3W45JDvna1ZwHNTSiR4YFXdu22Vv60jsA9 GERB7Mi4pl2N33yd9ENSRm/oKeBp9km1Cxg+LXfbfkW62rJsvH5PoX907XBpA0Ky TUh90J7E5uZMwC14tZqgl2RP7GIPi6hUm+bRAg3Bzntnz0I12qCuoy4u1cjBWw1V PtZOjrbw/Q== -----END CERTIFICATE-----Generated at Mon Jan 26 03:29:51 2026 by rpki-client