This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4RsjA22XcdG72TP2Cu5wZTif3M.cer File: b4RsjA22XcdG72TP2Cu5wZTif3M.cer (raw, json) Hash identifier: R7GqtUfJkDku4AalbrWlqeASXhvZM1vWUmCpK2ggT2A= Subject key identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5B58EBAB7797BCCAFC596FE701E82A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:18:17 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 62417 AS: 200597 IP: 185.32.76.0/22 IP: 2a00:c3e0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:58:eb:ab:77:97:bc:ca:fc:59:6f:e7:01:e8:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f846c8c0db65dc746ef64cfd82bb9c194e27f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:80:e0:d5:e6:de:2e:6f:8e:8b:03:c1:00:4d: 42:9e:87:0a:87:29:a1:b6:69:63:5b:99:85:f4:a4: 6d:56:58:6c:e2:c9:0e:46:e5:c6:47:e4:05:75:28: 44:90:b6:d7:ca:3e:60:81:bc:21:69:69:c1:98:13: dc:dc:9d:b5:5e:29:94:ec:0c:1b:ba:62:69:67:6f: 7c:93:d7:a6:6f:d3:99:5d:9f:c3:c2:bb:f9:93:c6: c6:36:fc:0b:7f:2c:42:b9:16:2f:a3:64:19:7a:1b: 78:50:17:69:a2:ef:dd:83:fb:c4:8a:1d:0b:00:bf: 19:e5:45:5c:6e:88:97:9f:c7:86:68:9e:52:db:d9: 59:3c:8a:ce:18:cb:c0:3b:53:50:f2:f0:ed:e6:9e: 4f:ac:64:06:8e:67:f7:02:f4:72:18:92:b4:76:84: f5:9f:98:e8:50:51:d7:02:d8:d6:d2:50:c1:00:4b: fd:24:20:ef:c6:6f:a4:32:db:cb:82:f2:6e:49:bb: 3e:48:7a:50:a9:e3:03:33:cf:29:f4:76:f4:42:8f: 74:9b:ab:98:b1:b3:9e:14:e7:a0:2b:41:96:4b:b5: 9a:08:ef:16:86:0d:38:f5:35:b1:3d:f6:61:e3:1d: 3e:c3:2a:d1:56:b3:cc:73:79:6e:30:ec:f3:9b:8a: 46:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:84:6C:8C:0D:B6:5D:C7:46:EF:64:CF:D8:2B:B9:C1:94:E2:7F:73 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/6a0102-417d-49bf-b193-48ba928fb1be/1/b4RsjA22XcdG72TP2Cu5wZTif3M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.32.76.0/22 IPv6: 2a00:c3e0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 62417 200597 Signature Algorithm: sha256WithRSAEncryption 66:a0:aa:e0:0e:55:f3:d6:fd:44:9b:af:4a:fa:5b:b6:f6:ac: af:1c:0c:42:67:f8:aa:77:e0:e8:10:e8:e7:c3:75:2e:0f:94: 41:cd:59:68:f0:89:af:16:41:c7:b6:5f:9c:3d:df:a0:46:89: 41:8b:d7:8f:6d:ae:20:01:22:a2:76:3f:48:f1:dd:c8:ea:f9: 18:59:44:cd:d4:09:04:cf:dc:32:b1:82:0d:2b:a0:ea:14:d9: 51:1b:32:45:0c:2a:aa:eb:2e:d2:18:fb:c3:14:14:2d:05:2e: 35:f1:b4:33:8d:a3:31:07:2c:5d:33:9a:f2:3c:db:69:bb:55: c7:38:3a:82:36:f2:b6:19:6f:59:08:14:5b:75:5f:74:20:32: 40:6c:f5:c8:7b:16:a7:6d:b2:e3:a0:05:30:17:97:8a:f1:33: 20:cb:dc:5d:b6:6c:68:88:b4:94:d3:e7:fe:46:d2:3c:f8:74: 4d:c6:42:a9:45:b4:38:65:fc:db:14:1f:ba:6b:34:2f:9a:1d: bf:a6:0c:b7:dd:e2:d6:e0:59:11:48:6c:21:80:41:a7:27:51: 31:18:4c:85:c9:87:7b:3e:e5:3d:82:b0:45:18:b2:24:f3:98: dd:d8:d2:61:51:11:45:66:b9:d0:48:5d:36:b0:12:6c:61:db: ef:66:49:96 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt9W1jrq3eXvMr8WW/nAegqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Zjg0NmM4YzBkYjY1ZGM3NDZlZjY0Y2ZkODJiYjljMTk0ZTI3ZjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIDg1ebeLm+OiwPBAE1CnocKhymh tmljW5mF9KRtVlhs4skORuXGR+QFdShEkLbXyj5ggbwhaWnBmBPc3J21XimU7Awb umJpZ298k9emb9OZXZ/Dwrv5k8bGNvwLfyxCuRYvo2QZeht4UBdpou/dg/vEih0L AL8Z5UVcboiXn8eGaJ5S29lZPIrOGMvAO1NQ8vDt5p5PrGQGjmf3AvRyGJK0doT1 n5joUFHXAtjW0lDBAEv9JCDvxm+kMtvLgvJuSbs+SHpQqeMDM88p9Hb0Qo90m6uY sbOeFOegK0GWS7WaCO8Whg049TWxPfZh4x0+wyrRVrPMc3luMOzzm4pGfQIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFG+EbIwNtl3HRu9kz9grucGU4n9zMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MxLzZhMDEw Mi00MTdkLTQ5YmYtYjE5My00OGJhOTI4ZmIxYmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEvNmEwMTAy LTQxN2QtNDliZi1iMTkzLTQ4YmE5MjhmYjFiZS8xL2I0UnNqQTIyWGNkRzcyVFAy Q3U1d1pUaWYzTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuSBMMA0EAgACMAcDBQAqAMPgMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwDz0QIDAw+VMA0GCSqGSIb3DQEBCwUAA4IBAQBmoKrg DlXz1v1Em69K+lu29qyvHAxCZ/iqd+DoEOjnw3UuD5RBzVlo8ImvFkHHtl+cPd+g RolBi9ePba4gASKidj9I8d3I6vkYWUTN1AkEz9wysYINK6DqFNlRGzJFDCqq6y7S GPvDFBQtBS418bQzjaMxByxdM5ryPNtpu1XHODqCNvK2GW9ZCBRbdV90IDJAbPXI exanbbLjoAUwF5eK8TMgy9xdtmxoiLSU0+f+RtI8+HRNxkKpRbQ4ZfzbFB+6azQv mh2/pgy33eLW4FkRSGwhgEGnJ1ExGEyFyYd7PuU9grBFGLIk85jd2NJhURFFZrnQ SF02sBJsYdvvZkmW -----END CERTIFICATE-----Generated at Mon Jan 26 11:41:59 2026 by rpki-client