This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer File: oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer (raw, json) Hash identifier: WhEaH0V7M9b/F+tcCftserwgZpsimBiNcJPhcdkfvbI= Subject key identifier: A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED6910085A669882A5A7E1D68F1539 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/oz7sA-oSJxMni0Bm7PK_6qFWPA0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:12 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208933 IP: 45.15.28.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:69:10:08:5a:66:98:82:a5:a7:e1:d6:8f:15:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:92:c9:58:f5:f3:27:fa:2b:e7:23:5d:91:7c: a9:e0:c0:50:7b:b1:f8:86:cb:8c:ec:c6:de:32:76: 22:8d:b1:79:5f:2c:01:cd:9d:45:0c:a3:63:4f:60: ea:1b:07:15:b8:4c:0e:ce:72:a8:06:60:cd:ba:43: d8:3c:bf:39:b0:7d:7a:37:7d:a8:ef:0e:3b:a6:e8: 0c:d4:36:d9:c9:f9:28:d9:37:e9:f9:df:70:16:94: aa:b9:e5:85:11:6e:48:18:f4:96:62:c6:7f:25:d8: 88:68:f8:48:89:ae:0c:93:e0:26:02:92:71:a2:26: 69:13:2c:2a:43:ca:09:5e:d2:ee:cb:92:62:30:32: 20:aa:24:0f:64:b9:6f:c2:4f:02:92:49:e5:2a:f0: 07:42:9e:7c:96:48:33:47:21:27:3c:26:9c:3f:50: 03:7d:10:b1:60:1c:18:fc:6c:b3:43:79:4e:6d:0f: b3:bb:f1:2f:0f:05:1e:6e:24:95:6f:f4:77:02:6d: 1c:1c:0b:c7:c3:60:6f:78:7d:bf:ef:3b:f8:89:45: 19:db:20:2e:e3:ea:b0:d6:da:98:3a:b8:c8:bd:e4: ea:02:27:8b:1b:7f:9b:3f:b1:ab:d5:00:11:e8:ee: 99:4b:2a:62:9c:60:a0:dd:c7:e3:09:29:02:7a:aa: 57:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/oz7sA-oSJxMni0Bm7PK_6qFWPA0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.15.28.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208933 Signature Algorithm: sha256WithRSAEncryption 1a:12:a8:d2:aa:70:cb:33:6b:a2:4a:25:42:96:ea:3b:ea:ed: 8a:92:65:33:c3:ba:35:cd:67:bb:76:db:53:7e:55:f3:e9:93: d0:8d:80:9c:43:83:5a:01:e9:99:99:e0:b0:b6:56:ff:3d:eb: b7:a7:4a:51:6d:61:b8:03:33:d4:1e:e2:ec:12:f3:d3:b0:e6: 4c:46:86:b7:5b:37:cd:56:ff:e6:23:6f:d6:ed:7d:5e:ec:a2: 9c:ac:84:05:45:91:3c:91:e5:12:a2:07:bf:33:5f:77:b3:24: 49:8d:03:2d:60:23:e1:7b:69:42:a1:1b:db:7f:33:a4:b5:36: 76:c3:bc:9f:48:12:84:f9:5e:14:4f:5f:23:01:35:59:95:e4: 56:77:cf:09:77:f0:8a:06:9b:d0:de:6b:45:1f:96:3f:56:c1: ca:97:47:ec:33:52:de:44:88:c2:ce:2b:30:89:19:99:1a:39: 5c:fa:4d:69:92:cc:15:9b:15:d3:92:44:42:70:25:76:db:53: 2b:f9:00:3b:50:b9:0d:e6:d0:cb:a0:61:be:d4:02:23:34:6d: 3a:7b:ba:26:b8:7a:c0:5c:73:32:aa:54:41:dd:2b:cf:fc:c8: 4d:87:8f:f4:e7:a6:29:21:d0:b7:19:29:eb:ee:bf:18:e7:25: df:a8:7a:87 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt87WkQCFpmmIKlp+HWjxU5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzNlZWMwM2VhMTIyNzEzMjc4YjQwNjZlY2YyYmZlYWExNTYzYzBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpLJWPXzJ/or5yNdkXyp4MBQe7H4 hsuM7MbeMnYijbF5XywBzZ1FDKNjT2DqGwcVuEwOznKoBmDNukPYPL85sH16N32o 7w47pugM1DbZyfko2Tfp+d9wFpSqueWFEW5IGPSWYsZ/JdiIaPhIia4Mk+AmApJx oiZpEywqQ8oJXtLuy5JiMDIgqiQPZLlvwk8CkknlKvAHQp58lkgzRyEnPCacP1AD fRCxYBwY/GyzQ3lObQ+zu/EvDwUebiSVb/R3Am0cHAvHw2BveH2/7zv4iUUZ2yAu 4+qw1tqYOrjIveTqAieLG3+bP7Gr1QAR6O6ZSypinGCg3cfjCSkCeqpXKwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFKM+7APqEicTJ4tAZuzyv+qhVjwNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAxL2VlM2Fj MC1iZTMzLTRhMzctYTBkNy01OWE1ZWUzYWQ5YTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEvZWUzYWMw LWJlMzMtNGEzNy1hMGQ3LTU5YTVlZTNhZDlhOC8xL296N3NBLW9TSnhNbmkwQm03 UEtfNnFGV1BBMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLQ8cMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMwJTANBgkqhkiG9w0BAQsFAAOCAQEAGhKo0qpwyzNrokolQpbqO+rtipJlM8O6 Nc1nu3bbU35V8+mT0I2AnEODWgHpmZngsLZW/z3rt6dKUW1huAMz1B7i7BLz07Dm TEaGt1s3zVb/5iNv1u19XuyinKyEBUWRPJHlEqIHvzNfd7MkSY0DLWAj4XtpQqEb 238zpLU2dsO8n0gShPleFE9fIwE1WZXkVnfPCXfwigab0N5rRR+WP1bBypdH7DNS 3kSIws4rMIkZmRo5XPpNaZLMFZsV05JEQnAldttTK/kAO1C5DebQy6BhvtQCIzRt Onu6Jrh6wFxzMqpUQd0rz/zITYeP9OemKSHQtxkp6+6/GOcl36h6hw== -----END CERTIFICATE-----Generated at Mon Jan 12 13:06:16 2026 by rpki-client