This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tV4uctf_3mvOtzzibxhcZ4ojiS0.cer File: tV4uctf_3mvOtzzibxhcZ4ojiS0.cer (raw, json) Hash identifier: bD4L4APF0dAiAXv6QMe7qYD5z6tcIT9lzYSOVtzdQZk= Subject key identifier: B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7800CB3B2C53C8DD49B62E566B41FF88 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.mft caRepository: rsync://rpki.owl.net/rrdp/owl/1/ Notify URL: https://rpki.owl.net/rrdp/notification.xml Certificate not before: Thu 01 Jan 2026 05:21:16 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 43357 IP: 194.127.164.0/22 IP: 2a07:d880::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:00:cb:3b:2c:53:c8:dd:49:b6:2e:56:6b:41:ff:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 05:21:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b55e2e72d7ffde6bceb73ce26f185c678a23892d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:64:4d:16:fb:84:28:c0:91:fb:12:82:38:39: 62:39:63:ea:21:10:bf:8b:e1:c6:f0:d5:c5:47:45: c0:e5:46:39:57:09:5f:db:59:be:43:d2:fb:0b:eb: 4b:62:0f:67:1b:6a:d7:d8:38:af:05:3e:4c:bf:bb: c7:d2:de:1f:2a:3f:68:6a:da:25:cc:e9:8d:63:71: 25:17:92:e4:ba:80:37:3b:88:dd:bd:f5:d8:ae:e7: 0d:99:d8:f1:20:1c:6a:7a:33:97:d0:1b:4b:60:72: c9:42:7d:eb:c8:7b:a3:94:d8:f5:70:21:0a:3d:47: f7:77:95:bb:bd:8e:ed:2e:d1:53:9a:22:5d:2c:83: 20:af:2f:c4:63:da:f7:79:52:b5:a0:cf:85:ab:a8: 79:fb:55:73:a6:6a:b3:53:1e:d5:54:0f:53:6e:30: 7c:83:a0:71:1a:73:6c:53:80:c4:31:da:6f:99:64: 5f:9a:49:16:9e:fa:f7:c3:3c:25:ab:75:e0:00:0e: 2f:e4:b2:0d:7a:e7:29:b0:2b:fe:ff:8e:59:42:c3: 70:bd:09:7b:40:03:41:4d:d6:36:a2:3e:41:7e:e3: 24:91:9e:07:63:aa:d7:66:c0:38:e5:65:5d:2e:73: 1e:d7:19:9d:f4:fb:bc:7b:bd:ce:d1:a3:a9:b8:90: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5E:2E:72:D7:FF:DE:6B:CE:B7:3C:E2:6F:18:5C:67:8A:23:89:2D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.owl.net/rrdp/owl/1/ RPKI Manifest - URI:rsync://rpki.owl.net/rrdp/owl/1/B55E2E72D7FFDE6BCEB73CE26F185C678A23892D.mft RPKI Notify - URI:https://rpki.owl.net/rrdp/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.127.164.0/22 IPv6: 2a07:d880::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 43357 Signature Algorithm: sha256WithRSAEncryption 22:a4:5c:84:ae:c7:3d:80:24:4f:55:21:64:04:3b:1d:aa:90: 80:dc:05:d4:de:38:d5:65:0c:99:9e:07:f4:4f:c5:3c:59:ee: cc:47:b3:15:9f:04:ae:2d:a1:54:ee:76:dd:71:7b:73:7f:30: 4e:8f:68:83:a6:d2:9c:c2:84:ff:90:4f:6b:08:c1:8c:f5:49: 66:99:21:d7:53:47:0d:97:d0:6c:5f:dd:5f:d7:1c:17:a4:bb: 3e:23:81:22:9f:9e:0f:3d:b9:0f:37:b3:3e:94:c3:29:17:2b: 6a:c3:e2:ff:42:06:b6:6f:32:a8:9d:78:b5:00:5c:2b:a2:95: fd:17:d8:e8:43:f8:e6:95:50:4f:40:73:e5:f2:28:e6:eb:52: 75:67:bb:09:99:b1:7e:d9:3c:9f:54:52:28:13:57:e3:29:01: a9:af:e4:66:73:32:44:c9:1a:cb:69:a0:eb:5c:82:ab:3d:3f: 92:87:e2:4e:b4:0a:8d:0d:73:1b:17:f9:62:c8:c4:2e:f4:f5: 3a:56:9d:a9:9d:de:d2:99:bc:45:e5:11:b9:0d:d2:68:75:dd: 09:40:80:a8:8c:cd:c6:17:f3:a2:eb:b1:65:f9:aa:3c:fc:41: 91:e7:8e:5c:01:ba:ea:a0:bb:85:ff:a6:71:f4:4d:80:82:76: b7:7a:3d:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgISAZt4AMs7LFPI3Um2LlZrQf+IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDUyMTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTVlMmU3MmQ3ZmZkZTZiY2ViNzNjZTI2ZjE4NWM2NzhhMjM4OTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+mRNFvuEKMCR+xKCODliOWPqIRC/ i+HG8NXFR0XA5UY5Vwlf21m+Q9L7C+tLYg9nG2rX2DivBT5Mv7vH0t4fKj9oatol zOmNY3ElF5LkuoA3O4jdvfXYrucNmdjxIBxqejOX0BtLYHLJQn3ryHujlNj1cCEK PUf3d5W7vY7tLtFTmiJdLIMgry/EY9r3eVK1oM+Fq6h5+1VzpmqzUx7VVA9TbjB8 g6BxGnNsU4DEMdpvmWRfmkkWnvr3wzwlq3XgAA4v5LINeucpsCv+/45ZQsNwvQl7 QANBTdY2oj5BfuMkkZ4HY6rXZsA45WVdLnMe1xmd9Pu8e73O0aOpuJCwzQIDAQAB o4ICWzCCAlcwHQYDVR0OBBYEFLVeLnLX/95rzrc84m8YXGeKI4ktMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwgdAGCCsGAQUFBwELBIHDMIHAMCwGCCsGAQUFBzAFhiByc3lu YzovL3Jwa2kub3dsLm5ldC9ycmRwL293bC8xLzBYBggrBgEFBQcwCoZMcnN5bmM6 Ly9ycGtpLm93bC5uZXQvcnJkcC9vd2wvMS9CNTVFMkU3MkQ3RkZERTZCQ0VCNzND RTI2RjE4NUM2NzhBMjM4OTJELm1mdDA2BggrBgEFBQcwDYYqaHR0cHM6Ly9ycGtp Lm93bC5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqG SHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNW Vks1d0VISUpuSEMyUUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCwn+kMA0EAgACMAcDBQMq B9iAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCpXTANBgkqhkiG9w0BAQsFAAOC AQEAIqRchK7HPYAkT1UhZAQ7HaqQgNwF1N441WUMmZ4H9E/FPFnuzEezFZ8Eri2h VO523XF7c38wTo9og6bSnMKE/5BPawjBjPVJZpkh11NHDZfQbF/dX9ccF6S7PiOB Ip+eDz25DzezPpTDKRcrasPi/0IGtm8yqJ14tQBcK6KV/RfY6EP45pVQT0Bz5fIo 5utSdWe7CZmxftk8n1RSKBNX4ykBqa/kZnMyRMkay2mg61yCqz0/kofiTrQKjQ1z Gxf5YsjELvT1OladqZ3e0pm8ReURuQ3SaHXdCUCAqIzNxhfzouuxZfmqPPxBkeeO XAG66qC7hf+mcfRNgIJ2t3o9JA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:44:08 2026 by rpki-client