This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OWTN7uNGEWy5ZBukgA9VuZBtw6U.cer File: OWTN7uNGEWy5ZBukgA9VuZBtw6U.cer (raw, json) Hash identifier: 6VnN4XWReiW5aM2PN/lEAFn2OSfmz0fwKyEtd0aYqBM= Subject key identifier: 39:64:CD:EE:E3:46:11:6C:B9:64:1B:A4:80:0F:55:B9:90:6D:C3:A5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEDDEEA90101E64D2868FAC4B4269C4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/a018a7-6b5c-4239-89b7-2a0247fbb6d5/1/OWTN7uNGEWy5ZBukgA9VuZBtw6U.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/a018a7-6b5c-4239-89b7-2a0247fbb6d5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215574 IP: 2001:67c:ddc::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:de:ea:90:10:1e:64:d2:86:8f:ac:4b:42:69:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3964cdeee346116cb9641ba4800f55b9906dc3a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9c:6e:74:d6:29:1e:54:49:bc:70:72:55:3a: 3e:1e:12:cd:24:11:c7:33:d3:ec:4c:f3:9f:41:03: 9d:f3:f5:a2:c3:62:c1:71:b7:71:ec:88:55:17:ee: e5:89:04:72:22:21:e9:0a:ca:c2:c6:88:9d:7f:b4: 68:93:5e:46:3b:a3:38:29:78:62:7e:79:bd:71:67: 5f:7b:af:b6:5e:8a:ff:cb:c9:3c:47:ce:d7:22:39: 9d:ae:9c:c3:e3:08:0f:3a:9a:22:65:38:9d:9c:59: 98:5c:70:71:98:23:55:f8:ff:25:b5:67:46:63:c3: f4:8e:64:c4:64:84:fc:0a:50:42:0d:23:38:f6:53: 90:20:45:a0:57:1d:f4:0c:a9:4d:75:12:fc:99:6f: 13:ca:21:4c:a2:4c:41:96:52:af:95:4c:0f:7a:d6: d1:59:aa:88:cd:ea:61:5c:5a:d5:5d:3c:8f:d5:99: 1f:83:2a:aa:1b:ae:6a:03:01:76:0c:23:6f:03:9b: 12:7d:84:2e:b6:71:13:fb:64:2c:86:a9:10:9e:cb: c8:72:8a:51:21:84:78:ca:f9:41:c7:7c:6c:e2:6e: a5:13:7b:cb:b6:3e:12:ed:a8:21:8a:f2:d6:34:31: 33:1f:4b:31:b4:37:f5:20:49:c6:b7:b3:c9:29:fd: 78:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:64:CD:EE:E3:46:11:6C:B9:64:1B:A4:80:0F:55:B9:90:6D:C3:A5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/a018a7-6b5c-4239-89b7-2a0247fbb6d5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/a018a7-6b5c-4239-89b7-2a0247fbb6d5/1/OWTN7uNGEWy5ZBukgA9VuZBtw6U.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:ddc::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215574 Signature Algorithm: sha256WithRSAEncryption 0a:cd:fe:13:87:93:92:cf:c3:b0:34:4e:16:19:ce:ff:0d:26: 8f:6e:1b:ce:46:fa:f3:81:5f:7b:69:df:13:c2:be:67:be:85: 12:7b:a5:83:29:ab:e3:2e:25:ce:f0:83:b6:13:25:8d:9e:c0: c1:ae:a3:7a:8f:26:e5:78:69:37:e8:e5:59:b7:32:e7:03:5c: 53:5d:95:2b:5e:bd:eb:b3:86:ca:34:2f:ff:fb:7e:8f:9d:6e: 50:b5:dd:d5:b6:69:d1:85:08:d1:1c:e7:3c:a7:af:9d:21:9d: 2e:48:89:e8:b3:63:ee:0a:11:e5:c2:aa:d2:db:57:00:b2:87: 24:f2:fa:50:fb:da:b5:e1:b5:6f:7c:30:c5:9f:fc:f8:15:d5: c5:06:a2:81:43:c1:2e:3b:4f:4c:02:09:02:7a:0e:93:ac:c8: 2a:ff:43:94:2f:25:de:25:b7:82:71:20:85:98:37:5b:41:c0: 29:44:8d:6b:f2:02:07:97:51:e2:dc:af:e8:2d:09:53:a6:ac: 43:15:fd:27:4a:87:41:f9:75:b6:fc:4a:1c:cc:c2:40:58:31: 8a:1b:a6:9b:c3:e3:bf:86:54:d1:1d:6b:23:da:33:aa:9d:97: 82:98:bc:33:a8:80:15:4a:1f:3a:62:3d:26:be:35:80:c6:ee: ec:39:a7:ab -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt87d7qkBAeZNKGj6xLQmnEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzOTY0Y2RlZWUzNDYxMTZjYjk2NDFiYTQ4MDBmNTViOTkwNmRjM2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZxudNYpHlRJvHByVTo+HhLNJBHH M9PsTPOfQQOd8/Wiw2LBcbdx7IhVF+7liQRyIiHpCsrCxoidf7Rok15GO6M4KXhi fnm9cWdfe6+2Xor/y8k8R87XIjmdrpzD4wgPOpoiZTidnFmYXHBxmCNV+P8ltWdG Y8P0jmTEZIT8ClBCDSM49lOQIEWgVx30DKlNdRL8mW8TyiFMokxBllKvlUwPetbR WaqIzephXFrVXTyP1ZkfgyqqG65qAwF2DCNvA5sSfYQutnET+2QshqkQnsvIcopR IYR4yvlBx3xs4m6lE3vLtj4S7aghivLWNDEzH0sxtDf1IEnGt7PJKf143QIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFDlkze7jRhFsuWQbpIAPVbmQbcOlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0L2EwMThh Ny02YjVjLTQyMzktODliNy0yYTAyNDdmYmI2ZDUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQvYTAxOGE3 LTZiNWMtNDIzOS04OWI3LTJhMDI0N2ZiYjZkNS8xL09XVE43dU5HRVd5NVpCdWtn QTlWdVpCdHc2VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA3cMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNKFjANBgkqhkiG9w0BAQsFAAOCAQEACs3+E4eTks/DsDROFhnO/w0mj24b zkb684Ffe2nfE8K+Z76FEnulgymr4y4lzvCDthMljZ7Awa6jeo8m5XhpN+jlWbcy 5wNcU12VK16967OGyjQv//t+j51uULXd1bZp0YUI0RznPKevnSGdLkiJ6LNj7goR 5cKq0ttXALKHJPL6UPvateG1b3wwxZ/8+BXVxQaigUPBLjtPTAIJAnoOk6zIKv9D lC8l3iW3gnEghZg3W0HAKUSNa/ICB5dR4tyv6C0JU6asQxX9J0qHQfl1tvxKHMzC QFgxihumm8Pjv4ZU0R1rI9ozqp2Xgpi8M6iAFUofOmI9Jr41gMbu7Dmnqw== -----END CERTIFICATE-----Generated at Sun Jan 25 17:36:50 2026 by rpki-client