This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZU2WZypZ7DiV_BWEesobKdt5EkQ.cer File: ZU2WZypZ7DiV_BWEesobKdt5EkQ.cer (raw, json) Hash identifier: WOlJeMVhmDWiIghloZ4be4zvicOYJ++MVjGz924Y5Zs= Subject key identifier: 65:4D:96:67:2A:59:EC:38:95:FC:15:84:7A:CA:1B:29:DB:79:12:44 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79100FBF1DA80CFED003550576E05B71 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ZU2WZypZ7DiV_BWEesobKdt5EkQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215128 IP: 193.151.244.0/24 IP: 2a13:6040::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:0f:bf:1d:a8:0c:fe:d0:03:55:05:76:e0:5b:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=654d96672a59ec3895fc15847aca1b29db791244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c9:a0:e1:66:f7:b2:c7:88:fa:ae:cf:93:17: ef:b9:2d:9b:f5:98:0c:77:e5:e1:c1:3f:16:47:b5: 05:f9:3f:12:e9:bf:1b:10:38:50:cf:d4:8b:7d:ce: 05:cf:99:ac:a9:da:b3:94:8d:f4:88:de:68:59:3c: bc:2b:9d:05:23:78:31:4b:a0:90:24:dc:23:75:fb: aa:a7:92:24:6f:96:2a:cf:47:61:6f:33:79:a9:68: 42:2f:79:4f:ba:4d:d7:50:cc:af:f3:5c:9b:76:3d: bc:c1:0b:ee:6c:47:77:50:c1:a6:f9:8c:0d:a0:d6: 2f:1b:7b:d3:70:72:9d:2b:9e:da:2d:6f:8a:94:2d: ce:9e:96:83:0b:42:0d:f0:e5:5a:6b:de:f8:2e:6a: d3:6a:69:53:c1:4d:31:92:a0:5b:4f:5b:d8:75:b8: 49:99:68:15:aa:27:36:3f:f7:35:49:03:f3:6c:42: 62:84:e6:35:32:91:c7:72:b3:b6:e1:19:64:88:7d: 37:5c:b7:44:a0:0c:6c:c3:9f:30:d3:34:6b:c6:7f: 0b:a4:69:e1:d9:fe:83:d5:2b:33:ca:26:7c:f0:84: a7:2f:0c:0f:12:46:88:8a:2e:9c:4a:0d:19:1a:84: 08:1c:aa:de:fe:b0:7d:b4:9c:c6:a9:dc:cb:dd:c2: a9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:4D:96:67:2A:59:EC:38:95:FC:15:84:7A:CA:1B:29:DB:79:12:44 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3ebe30-ee89-48de-874c-b469db10b68a/1/ZU2WZypZ7DiV_BWEesobKdt5EkQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.151.244.0/24 IPv6: 2a13:6040::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215128 Signature Algorithm: sha256WithRSAEncryption 95:46:bf:58:49:23:24:13:21:2d:ac:4b:ac:b6:66:13:b6:73: fa:9d:a1:e2:4c:0a:65:78:5e:4b:5d:2b:43:eb:8b:b6:d2:3b: 09:6d:c1:88:fd:35:b1:6e:85:df:ea:c7:35:27:9d:ed:fc:e5: 71:c2:bc:eb:59:3f:1c:01:d5:bc:d1:0b:25:e6:71:9c:32:fc: 91:12:a2:78:3c:38:87:8b:0d:6a:3e:32:e1:00:03:2f:84:6f: f4:8f:fe:58:83:04:e5:70:43:66:0b:da:b2:c7:b6:e0:a9:7a: c6:6c:9b:02:eb:16:a9:8f:2e:4f:82:cf:60:6e:f2:66:d1:7b: 8b:48:0c:51:c2:b7:64:b0:ca:4e:bf:35:a2:7f:00:43:e4:7b: 25:58:98:c5:fc:ef:ec:66:16:35:73:c0:06:8a:8a:7d:2b:e9: 5d:2a:71:e2:8a:c9:9e:1f:72:1e:e2:24:b7:20:ef:cd:b7:83: 03:f8:4d:81:2f:9c:64:92:57:b1:60:04:c9:6e:ab:0d:a1:f0: 00:3c:e3:e9:98:d4:59:ea:07:e4:2b:e2:a6:05:d2:3c:25:43: 65:37:64:e3:27:c2:94:0e:b6:7b:87:ec:8a:97:dd:68:f1:cc: 68:5b:bd:54:c5:af:e5:b8:7b:6e:c6:75:30:21:ca:eb:63:9d: f9:e3:46:9f -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5EA+/HagM/tADVQV24FtxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTRkOTY2NzJhNTllYzM4OTVmYzE1ODQ3YWNhMWIyOWRiNzkxMjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcmg4Wb3sseI+q7PkxfvuS2b9ZgM d+XhwT8WR7UF+T8S6b8bEDhQz9SLfc4Fz5msqdqzlI30iN5oWTy8K50FI3gxS6CQ JNwjdfuqp5Ikb5Yqz0dhbzN5qWhCL3lPuk3XUMyv81ybdj28wQvubEd3UMGm+YwN oNYvG3vTcHKdK57aLW+KlC3OnpaDC0IN8OVaa974LmrTamlTwU0xkqBbT1vYdbhJ mWgVqic2P/c1SQPzbEJihOY1MpHHcrO24RlkiH03XLdEoAxsw58w0zRrxn8LpGnh 2f6D1SszyiZ88ISnLwwPEkaIii6cSg0ZGoQIHKre/rB9tJzGqdzL3cKpkwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGVNlmcqWew4lfwVhHrKGynbeRJEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1LzNlYmUz MC1lZTg5LTQ4ZGUtODc0Yy1iNDY5ZGIxMGI2OGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvM2ViZTMw LWVlODktNDhkZS04NzRjLWI0NjlkYjEwYjY4YS8xL1pVMldaeXBaN0RpVl9CV0Vl c29iS2R0NUVrUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwZf0MA0EAgACMAcDBQMqE2BAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNIWDANBgkqhkiG9w0BAQsFAAOCAQEAlUa/WEkjJBMh LaxLrLZmE7Zz+p2h4kwKZXheS10rQ+uLttI7CW3BiP01sW6F3+rHNSed7fzlccK8 61k/HAHVvNELJeZxnDL8kRKieDw4h4sNaj4y4QADL4Rv9I/+WIME5XBDZgvasse2 4Kl6xmybAusWqY8uT4LPYG7yZtF7i0gMUcK3ZLDKTr81on8AQ+R7JViYxfzv7GYW NXPABoqKfSvpXSpx4orJnh9yHuIktyDvzbeDA/hNgS+cZJJXsWAEyW6rDaHwADzj 6ZjUWeoH5CvipgXSPCVDZTdk4yfClA62e4fsipfdaPHMaFu9VMWv5bh7bsZ1MCHK 62Od+eNGnw== -----END CERTIFICATE-----Generated at Sun Jan 25 05:39:30 2026 by rpki-client