This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BYc3rBvKjBQos5aVRvGXTwaU5AA.cer File: BYc3rBvKjBQos5aVRvGXTwaU5AA.cer (raw, json) Hash identifier: BaSEMZGVHNkNal0TtNg4RUPOE391TllfT8ARYA3yPE4= Subject key identifier: 05:87:37:AC:1B:CA:8C:14:28:B3:96:95:46:F1:97:4F:06:94:E4:00 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA3A1B9721E6C0E352CC77C7D3AF2FE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/BYc3rBvKjBQos5aVRvGXTwaU5AA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.163.108.0/24 IP: 2a10:b940::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:a1:b9:72:1e:6c:0e:35:2c:c7:7c:7d:3a:f2:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=058737ac1bca8c1428b3969546f1974f0694e400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:01:7f:ab:e0:2a:71:6d:4d:11:08:b4:53:17: d8:6e:84:2a:96:80:32:3e:21:f4:df:17:41:b4:33: 9a:d2:68:b2:39:85:7d:06:71:c7:82:7d:0a:8c:7c: 6a:e9:7b:be:84:92:57:60:19:3a:5d:99:88:27:7f: f7:57:8d:a1:83:67:40:af:7b:af:bf:b6:1b:01:48: 10:ed:77:d3:ed:ad:3a:cf:c0:58:e4:f2:05:e7:02: 96:af:7c:38:b0:97:95:9f:83:65:a0:98:94:72:d2: d6:23:8b:77:a0:a3:66:d5:20:6a:74:68:e4:12:fb: c5:9e:3e:30:d6:eb:96:a1:65:33:9e:9f:42:97:0a: 69:f7:2e:a5:9e:a8:ac:87:b3:27:9a:dc:12:65:79: 86:20:a1:ef:0a:f1:31:c3:e3:7e:db:e5:20:e3:f0: 5b:2b:76:0e:39:0f:eb:a8:1a:74:99:ac:03:99:ef: a7:e0:43:de:9c:c9:bb:49:f9:97:39:a1:1a:7c:14: 1a:63:eb:ac:c7:b8:7a:f7:9f:4a:08:91:db:ce:3d: 4c:bc:b8:7c:c6:54:69:5b:02:19:6e:42:11:57:f7: f5:c1:f1:4f:1d:92:4e:1c:b1:d0:92:a7:84:db:49: 9b:04:54:a1:3f:65:9e:e7:90:cc:ea:f3:11:bf:aa: 03:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:87:37:AC:1B:CA:8C:14:28:B3:96:95:46:F1:97:4F:06:94:E4:00 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/69327a-68de-4585-acfb-501257590de7/1/BYc3rBvKjBQos5aVRvGXTwaU5AA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.108.0/24 IPv6: 2a10:b940::/29 Signature Algorithm: sha256WithRSAEncryption 20:65:1e:54:58:62:6e:4f:2d:76:a9:eb:99:f4:36:9b:f7:ea: ba:1f:ea:b7:bc:2b:b0:cf:33:30:a3:5c:d7:15:8b:d9:9c:a0: 93:56:44:2b:b0:d8:31:9a:08:95:3f:14:98:01:f6:61:74:49: 03:94:43:a2:a5:fd:2f:9f:3f:63:b9:1e:97:31:e2:a7:db:e0: 45:b0:0f:4b:c2:0f:5a:37:65:ed:2b:ab:67:cc:aa:fe:3d:1b: 4a:4e:4a:29:06:79:6b:99:2e:04:99:1d:b1:3f:fe:f2:75:4b: b5:f4:c1:04:5e:97:19:ef:47:04:32:d8:a4:f7:39:f3:e1:86: 72:ac:51:41:9e:96:00:49:b5:6b:91:19:39:d8:8b:70:cd:43: f6:48:52:e5:5a:db:96:6e:d3:8c:92:10:48:ff:7d:ab:0f:e9: e9:7a:cf:35:32:d9:75:f7:4c:ab:fa:80:cd:ee:bc:5e:ad:5e: 8c:0a:91:8b:1e:45:40:ac:29:dd:6d:fa:29:3e:b4:d2:d9:ca: 8d:74:1d:e1:33:6d:0e:59:e4:4f:61:a3:77:f1:a7:83:ab:58: 34:6c:cd:a3:cd:41:42:82:37:32:3e:7c:cb:0b:2e:3a:a2:0a: de:45:da:de:1b:1a:02:9c:57:19:39:61:bf:d6:2f:d5:ec:1f: 90:28:45:00 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt7o6G5ch5sDjUsx3x9OvL+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTg3MzdhYzFiY2E4YzE0MjhiMzk2OTU0NmYxOTc0ZjA2OTRlNDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwF/q+AqcW1NEQi0UxfYboQqloAy PiH03xdBtDOa0miyOYV9BnHHgn0KjHxq6Xu+hJJXYBk6XZmIJ3/3V42hg2dAr3uv v7YbAUgQ7XfT7a06z8BY5PIF5wKWr3w4sJeVn4NloJiUctLWI4t3oKNm1SBqdGjk EvvFnj4w1uuWoWUznp9Clwpp9y6lnqish7MnmtwSZXmGIKHvCvExw+N+2+Ug4/Bb K3YOOQ/rqBp0mawDme+n4EPenMm7SfmXOaEafBQaY+usx7h6959KCJHbzj1MvLh8 xlRpWwIZbkIRV/f1wfFPHZJOHLHQkqeE20mbBFShP2We55DM6vMRv6oDEQIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFAWHN6wbyowUKLOWlUbxl08GlOQAMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5LzY5MzI3 YS02OGRlLTQ1ODUtYWNmYi01MDEyNTc1OTBkZTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvNjkzMjdh LTY4ZGUtNDU4NS1hY2ZiLTUwMTI1NzU5MGRlNy8xL0JZYzNyQnZLakJRb3M1YVZS dkdYVHdhVTVBQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwaNsMA0EAgACMAcDBQMqELlAMA0GCSqGSIb3 DQEBCwUAA4IBAQAgZR5UWGJuTy12qeuZ9Dab9+q6H+q3vCuwzzMwo1zXFYvZnKCT VkQrsNgxmgiVPxSYAfZhdEkDlEOipf0vnz9juR6XMeKn2+BFsA9Lwg9aN2XtK6tn zKr+PRtKTkopBnlrmS4EmR2xP/7ydUu19MEEXpcZ70cEMtik9znz4YZyrFFBnpYA SbVrkRk52ItwzUP2SFLlWtuWbtOMkhBI/32rD+npes81Mtl190yr+oDN7rxerV6M CpGLHkVArCndbfopPrTS2cqNdB3hM20OWeRPYaN38aeDq1g0bM2jzUFCgjcyPnzL Cy46ogreRdreGxoCnFcZOWG/1i/V7B+QKEUA -----END CERTIFICATE-----Generated at Mon Jan 26 06:58:37 2026 by rpki-client