This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oet7cZVO3_yjWEyF-gj7EiQv7NU.cer File: oet7cZVO3_yjWEyF-gj7EiQv7NU.cer (raw, json) Hash identifier: DhwdywtGUNmLeesreJYdk6nB6BkCO8ZYEh6f5uAUE2o= Subject key identifier: A1:EB:7B:71:95:4E:DF:FC:A3:58:4C:85:FA:08:FB:12:24:2F:EC:D5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019A9880A2DE82272C2FBE8EAF3DCD951A9F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/oet7cZVO3_yjWEyF-gj7EiQv7NU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 18 Nov 2025 19:45:58 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: IP: 64.255.40.0/24 IP: 69.5.186.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:98:80:a2:de:82:27:2c:2f:be:8e:af:3d:cd:95:1a:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Nov 18 19:45:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=a1eb7b71954edffca3584c85fa08fb12242fecd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:ab:c1:58:e5:bc:dc:03:19:ea:42:4d:61: 40:67:c5:90:1d:28:19:13:7c:2e:9c:c1:37:07:c0: b9:38:35:01:43:9e:c3:73:0d:d5:60:8c:04:30:58: 93:b5:95:24:06:f9:09:67:75:2c:19:c2:01:8f:3c: 3f:86:97:9e:ac:79:e7:b9:f5:68:cc:0b:4a:a8:ba: 28:25:01:c8:f6:33:fa:5b:74:9d:5c:44:6b:47:c1: 02:eb:5e:13:d2:da:36:fe:db:e3:36:9f:01:17:6d: b9:83:0d:93:b1:06:2b:e3:39:68:e4:0f:a0:cb:13: dd:69:ba:d2:67:bb:47:cc:84:36:29:71:02:ef:12: 2d:2e:ca:b7:b2:47:61:8c:d0:d3:55:71:56:bb:b0: ff:01:5e:eb:3f:38:0b:c2:f3:1f:e0:ac:ab:d8:bf: 6e:00:3b:3d:c2:3f:b1:72:fd:60:38:9b:46:65:4b: 12:03:c4:3b:3a:cc:a9:fc:a0:db:d1:74:4a:82:20: 4d:e1:de:3e:c7:3e:1a:d1:b9:b1:03:44:de:34:ee: 13:44:9c:98:9e:b8:7b:e9:4c:3e:8b:79:bd:5b:e0: 34:04:53:63:2e:bb:e6:dc:8a:16:12:0b:c4:c5:2b: 73:86:f7:21:09:06:ad:66:09:76:1f:dd:df:77:b6: b4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EB:7B:71:95:4E:DF:FC:A3:58:4C:85:FA:08:FB:12:24:2F:EC:D5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/oet7cZVO3_yjWEyF-gj7EiQv7NU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.255.40.0/24 69.5.186.0/24 Signature Algorithm: sha256WithRSAEncryption 97:bd:0b:ab:44:8c:4e:10:67:1d:a5:f7:77:24:2c:38:9f:59: ed:e6:df:81:04:20:87:c3:df:35:74:e8:ee:15:91:61:d9:94: 93:57:c8:80:d6:8c:28:71:a6:51:39:d0:fb:49:b6:fb:72:e0: 82:18:ae:b8:cb:da:e6:87:89:67:cb:40:73:e2:4e:14:04:62: 39:3a:cc:8b:cf:46:77:48:b0:85:14:27:54:7e:66:b1:01:a7: 80:0d:7c:23:fc:45:e7:e3:c6:ee:41:03:74:3a:36:3f:24:53: f3:7f:15:1e:84:ef:66:67:da:c6:56:ba:b6:48:51:c4:c7:73: 6d:ed:6c:90:ce:44:c4:12:68:98:46:05:c9:26:df:39:4c:68: 02:49:3b:5b:38:96:b5:5a:e1:3b:65:11:fc:27:53:1e:00:63: 9c:33:ca:50:21:df:53:1d:e0:be:06:21:4f:54:99:b2:39:3c: 20:c0:83:dd:aa:47:0b:dd:5c:1d:8e:5f:ce:80:17:30:9e:f7: 95:d6:b1:7e:5d:db:a2:d2:17:e3:cf:9a:8d:9e:14:14:c8:1e: 5a:54:42:49:c7:01:f1:b6:85:c4:f0:11:d9:b5:58:48:83:c3: 49:71:36:b9:0d:8f:3f:6d:5c:ea:2e:b4:41:5b:e7:a9:40:2e: 45:27:ad:87 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZqYgKLegicsL76Orz3NlRqfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMTE4MTk0NTU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWViN2I3MTk1NGVkZmZjYTM1ODRjODVmYTA4ZmIxMjI0MmZlY2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQOrwVjlvNwDGepCTWFAZ8WQHSgZ E3wunME3B8C5ODUBQ57Dcw3VYIwEMFiTtZUkBvkJZ3UsGcIBjzw/hpeerHnnufVo zAtKqLooJQHI9jP6W3SdXERrR8EC614T0to2/tvjNp8BF225gw2TsQYr4zlo5A+g yxPdabrSZ7tHzIQ2KXEC7xItLsq3skdhjNDTVXFWu7D/AV7rPzgLwvMf4Kyr2L9u ADs9wj+xcv1gOJtGZUsSA8Q7Osyp/KDb0XRKgiBN4d4+xz4a0bmxA0TeNO4TRJyY nrh76Uw+i3m9W+A0BFNjLrvm3IoWEgvExStzhvchCQatZgl2H93fd7a01wIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFKHre3GVTt/8o1hMhfoI+xIkL+zVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyL2I2YzUw NS1lZjQ3LTQ4MDktYjVmYy0wZWQxN2E2OTgwMGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIvYjZjNTA1 LWVmNDctNDgwOS1iNWZjLTBlZDE3YTY5ODAwZi8xL29ldDdjWlZPM195aldFeUYt Z2o3RWlRdjdOVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAQP8oAwQARQW6MA0GCSqGSIb3DQEBCwUAA4IB AQCXvQurRIxOEGcdpfd3JCw4n1nt5t+BBCCHw981dOjuFZFh2ZSTV8iA1owocaZR OdD7Sbb7cuCCGK64y9rmh4lny0Bz4k4UBGI5OsyLz0Z3SLCFFCdUfmaxAaeADXwj /EXn48buQQN0OjY/JFPzfxUehO9mZ9rGVrq2SFHEx3Nt7WyQzkTEEmiYRgXJJt85 TGgCSTtbOJa1WuE7ZRH8J1MeAGOcM8pQId9THeC+BiFPVJmyOTwgwIPdqkcL3Vwd jl/OgBcwnveV1rF+Xdui0hfjz5qNnhQUyB5aVEJJxwHxtoXE8BHZtVhIg8NJcTa5 DY8/bVzqLrRBW+epQC5FJ62H -----END CERTIFICATE-----Generated at Sat Dec 6 05:54:31 2025 by rpki-client