This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oet7cZVO3_yjWEyF-gj7EiQv7NU.cer File: oet7cZVO3_yjWEyF-gj7EiQv7NU.cer (raw, json) Hash identifier: 8umsq9XvVminmQxEIqp566OL+2AeZCZI1KKuF8soDH8= Subject key identifier: A1:EB:7B:71:95:4E:DF:FC:A3:58:4C:85:FA:08:FB:12:24:2F:EC:D5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EC9351CB7AF76BE5A60EBC20486AF2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/oet7cZVO3_yjWEyF-gj7EiQv7NU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 64.255.40.0/24 IP: 69.5.186.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:93:51:cb:7a:f7:6b:e5:a6:0e:bc:20:48:6a:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1eb7b71954edffca3584c85fa08fb12242fecd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:ab:c1:58:e5:bc:dc:03:19:ea:42:4d:61: 40:67:c5:90:1d:28:19:13:7c:2e:9c:c1:37:07:c0: b9:38:35:01:43:9e:c3:73:0d:d5:60:8c:04:30:58: 93:b5:95:24:06:f9:09:67:75:2c:19:c2:01:8f:3c: 3f:86:97:9e:ac:79:e7:b9:f5:68:cc:0b:4a:a8:ba: 28:25:01:c8:f6:33:fa:5b:74:9d:5c:44:6b:47:c1: 02:eb:5e:13:d2:da:36:fe:db:e3:36:9f:01:17:6d: b9:83:0d:93:b1:06:2b:e3:39:68:e4:0f:a0:cb:13: dd:69:ba:d2:67:bb:47:cc:84:36:29:71:02:ef:12: 2d:2e:ca:b7:b2:47:61:8c:d0:d3:55:71:56:bb:b0: ff:01:5e:eb:3f:38:0b:c2:f3:1f:e0:ac:ab:d8:bf: 6e:00:3b:3d:c2:3f:b1:72:fd:60:38:9b:46:65:4b: 12:03:c4:3b:3a:cc:a9:fc:a0:db:d1:74:4a:82:20: 4d:e1:de:3e:c7:3e:1a:d1:b9:b1:03:44:de:34:ee: 13:44:9c:98:9e:b8:7b:e9:4c:3e:8b:79:bd:5b:e0: 34:04:53:63:2e:bb:e6:dc:8a:16:12:0b:c4:c5:2b: 73:86:f7:21:09:06:ad:66:09:76:1f:dd:df:77:b6: b4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EB:7B:71:95:4E:DF:FC:A3:58:4C:85:FA:08:FB:12:24:2F:EC:D5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/b6c505-ef47-4809-b5fc-0ed17a69800f/1/oet7cZVO3_yjWEyF-gj7EiQv7NU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.255.40.0/24 69.5.186.0/24 Signature Algorithm: sha256WithRSAEncryption 51:7d:69:e9:b2:db:f9:fe:7c:e0:51:88:57:17:bc:e6:e4:76: 62:1f:d5:05:13:70:c2:a6:15:7c:b0:9e:dc:40:48:ec:94:06: 75:d5:66:df:9d:0e:dc:61:34:58:2c:3d:f5:5c:ad:3a:97:52: d9:fa:5c:e5:ac:4f:08:1b:da:de:d1:b6:2f:c5:87:52:e3:07: 56:66:36:8d:95:71:79:92:3d:7c:4a:7c:0e:bc:b4:23:6e:4f: 27:56:33:09:69:7f:98:61:e0:f4:9d:0b:46:ee:a3:54:07:44: 59:a5:41:77:6e:11:a9:bb:37:99:44:87:02:af:85:0e:39:28: a2:e7:e5:39:01:dc:26:78:2b:2e:ac:c6:a0:92:c2:9d:2d:89: 9e:ab:65:71:e7:e7:cf:ab:6c:e8:59:8a:fb:6e:c9:79:fc:fd: e4:29:ca:e7:d1:bd:b7:50:d1:4e:3a:28:35:72:cc:35:e0:13: 9a:c6:bf:d6:db:7c:fd:0a:31:72:4a:f4:c9:d2:77:c8:4d:19: 03:66:5a:6c:aa:dd:9b:00:de:83:7e:cc:5c:2d:4e:c3:5b:61: bf:55:f2:46:56:24:b4:27:25:90:93:5b:97:94:e3:4d:2a:b2: ea:54:aa:fe:c1:18:44:e8:3c:96:dd:2c:4e:8d:9f:85:40:d9: b1:f5:fe:66 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZt57JNRy3r3a+WmDrwgSGryMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWViN2I3MTk1NGVkZmZjYTM1ODRjODVmYTA4ZmIxMjI0MmZlY2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQOrwVjlvNwDGepCTWFAZ8WQHSgZ E3wunME3B8C5ODUBQ57Dcw3VYIwEMFiTtZUkBvkJZ3UsGcIBjzw/hpeerHnnufVo zAtKqLooJQHI9jP6W3SdXERrR8EC614T0to2/tvjNp8BF225gw2TsQYr4zlo5A+g yxPdabrSZ7tHzIQ2KXEC7xItLsq3skdhjNDTVXFWu7D/AV7rPzgLwvMf4Kyr2L9u ADs9wj+xcv1gOJtGZUsSA8Q7Osyp/KDb0XRKgiBN4d4+xz4a0bmxA0TeNO4TRJyY nrh76Uw+i3m9W+A0BFNjLrvm3IoWEgvExStzhvchCQatZgl2H93fd7a01wIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFKHre3GVTt/8o1hMhfoI+xIkL+zVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkyL2I2YzUw NS1lZjQ3LTQ4MDktYjVmYy0wZWQxN2E2OTgwMGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIvYjZjNTA1 LWVmNDctNDgwOS1iNWZjLTBlZDE3YTY5ODAwZi8xL29ldDdjWlZPM195aldFeUYt Z2o3RWlRdjdOVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAQP8oAwQARQW6MA0GCSqGSIb3DQEBCwUAA4IB AQBRfWnpstv5/nzgUYhXF7zm5HZiH9UFE3DCphV8sJ7cQEjslAZ11WbfnQ7cYTRY LD31XK06l1LZ+lzlrE8IG9re0bYvxYdS4wdWZjaNlXF5kj18SnwOvLQjbk8nVjMJ aX+YYeD0nQtG7qNUB0RZpUF3bhGpuzeZRIcCr4UOOSii5+U5AdwmeCsurMagksKd LYmeq2Vx5+fPq2zoWYr7bsl5/P3kKcrn0b23UNFOOig1csw14BOaxr/W23z9CjFy SvTJ0nfITRkDZlpsqt2bAN6DfsxcLU7DW2G/VfJGViS0JyWQk1uXlONNKrLqVKr+ wRhE6DyW3SxOjZ+FQNmx9f5m -----END CERTIFICATE-----Generated at Mon Jan 26 01:08:37 2026 by rpki-client