This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a4BhsaCMBS8LELQTqZQv1zLmXY.cer File: 7a4BhsaCMBS8LELQTqZQv1zLmXY.cer (raw, json) Hash identifier: IHnaMUmCufPRuSGFXOwf0c3ak4jcM9QQR28gENbYsSg= Subject key identifier: ED:AE:01:86:C6:82:30:14:BC:2C:42:D0:4E:A6:50:BF:5C:CB:99:76 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C762D0610DE24D47266BF82030ADF0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/7a4BhsaCMBS8LELQTqZQv1zLmXY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200319 IP: 194.48.224.0/22 IP: 2a0c:f440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:62:d0:61:0d:e2:4d:47:26:6b:f8:20:30:ad:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=edae0186c6823014bc2c42d04ea650bf5ccb9976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:94:84:45:bb:25:19:08:14:cb:c8:25:7b:15: 48:3a:cd:65:cb:9e:44:7e:a1:e2:a0:fe:e4:4d:9f: a6:e5:a4:94:b7:2a:4a:da:50:f4:a7:ca:ea:73:4d: 22:3d:05:b0:91:97:ff:c6:86:b1:89:38:a7:cc:b5: 50:16:66:c4:b1:ef:57:23:b3:ac:0b:a0:4a:0b:f6: a5:94:66:70:b0:c8:1a:e7:1d:d6:1f:fe:fc:7b:0c: 37:cb:58:aa:de:af:af:47:e6:76:21:cc:8c:ba:d8: 34:97:80:2f:35:0c:7b:53:02:88:22:87:de:e9:1e: 09:a2:a7:46:e9:61:63:c5:2d:46:a9:aa:1a:c2:0d: 8f:a6:cf:d8:c0:ff:47:0c:9a:06:ef:ed:51:a3:c9: 0b:72:ab:4e:23:b2:01:5c:82:bc:b6:18:85:b9:bb: cd:9c:b8:e0:26:92:14:7a:f9:c3:6f:87:fc:f3:6a: 8f:ef:e3:c8:bb:6a:8f:71:23:20:42:3e:e0:c5:fd: f4:7b:ef:ea:8f:d2:6c:a1:24:6b:2e:ed:57:08:e9: a6:4e:37:5e:1d:19:71:e7:2e:43:ec:0e:1a:08:47: 01:c6:0d:1c:d5:2c:c0:e4:55:dd:51:71:e2:88:d4: 76:76:f8:c0:26:1e:70:b7:e5:cb:6c:c5:ad:8f:1b: dd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AE:01:86:C6:82:30:14:BC:2C:42:D0:4E:A6:50:BF:5C:CB:99:76 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/7a4BhsaCMBS8LELQTqZQv1zLmXY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.48.224.0/22 IPv6: 2a0c:f440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200319 Signature Algorithm: sha256WithRSAEncryption 4b:20:52:ee:c5:64:ec:13:24:0e:d3:30:be:70:81:f0:39:65: 93:e9:dd:a8:20:f5:7b:e8:ec:38:98:9c:68:e0:ba:06:84:b9: 48:6b:20:23:c1:fb:7f:1a:21:b4:d5:8e:fb:e1:7f:80:78:cf: b0:70:9f:3e:e7:ee:96:c7:32:14:be:56:2d:53:77:8c:e0:e1: 8a:f2:6f:30:99:a1:8f:58:02:81:e0:0c:d7:32:b7:df:08:4a: fe:17:de:7a:e9:42:87:2d:e2:71:bd:1d:da:96:42:7b:c2:4c: f7:81:df:3f:d3:e3:a0:f5:1f:6e:e8:e0:5c:36:43:25:a5:46: 4b:f4:09:3b:3f:5a:7e:8e:89:c9:4f:bc:45:7c:75:16:17:b8: ba:12:ff:62:3b:f0:3e:52:27:c7:87:41:74:b3:85:b4:42:4f: 31:29:69:1c:cc:5c:22:62:3e:1f:75:e0:75:86:1c:4e:50:51: 28:c6:ad:fc:9c:fb:fb:a5:26:a6:4a:02:db:9e:8d:b6:2c:80: 86:f7:b6:ab:07:43:14:2d:1e:bd:1a:23:e2:5b:2c:cc:54:59: 86:ae:7c:27:30:f3:bb:49:3b:f7:3a:2b:33:a6:97:e1:de:44: 1b:05:0e:71:83:ea:fc:6d:ac:e5:52:11:5d:1c:31:5b:fd:59: 44:6b:58:a7 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3x2LQYQ3iTUcma/ggMK3wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZGFlMDE4NmM2ODIzMDE0YmMyYzQyZDA0ZWE2NTBiZjVjY2I5OTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZSERbslGQgUy8glexVIOs1ly55E fqHioP7kTZ+m5aSUtypK2lD0p8rqc00iPQWwkZf/xoaxiTinzLVQFmbEse9XI7Os C6BKC/allGZwsMga5x3WH/78eww3y1iq3q+vR+Z2IcyMutg0l4AvNQx7UwKIIofe 6R4JoqdG6WFjxS1Gqaoawg2Pps/YwP9HDJoG7+1Ro8kLcqtOI7IBXIK8thiFubvN nLjgJpIUevnDb4f882qP7+PIu2qPcSMgQj7gxf30e+/qj9JsoSRrLu1XCOmmTjde HRlx5y5D7A4aCEcBxg0c1SzA5FXdUXHiiNR2dvjAJh5wt+XLbMWtjxvddwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFO2uAYbGgjAUvCxC0E6mUL9cy5l2MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVmLzI5YTUy ZS01OGEwLTQyMzgtYWViMS04YjdhNGFiZjFjYTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWYvMjlhNTJl LTU4YTAtNDIzOC1hZWIxLThiN2E0YWJmMWNhMi8xLzdhNEJoc2FDTUJTOExFTFFU cVpRdjF6TG1YWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCwjDgMA0EAgACMAcDBQMqDPRAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMOfzANBgkqhkiG9w0BAQsFAAOCAQEASyBS7sVk7BMk DtMwvnCB8Dllk+ndqCD1e+jsOJicaOC6BoS5SGsgI8H7fxohtNWO++F/gHjPsHCf PufulscyFL5WLVN3jODhivJvMJmhj1gCgeAM1zK33whK/hfeeulChy3icb0d2pZC e8JM94HfP9PjoPUfbujgXDZDJaVGS/QJOz9afo6JyU+8RXx1Fhe4uhL/YjvwPlIn x4dBdLOFtEJPMSlpHMxcImI+H3XgdYYcTlBRKMat/Jz7+6UmpkoC256NtiyAhve2 qwdDFC0evRoj4lsszFRZhq58JzDzu0k79zorM6aX4d5EGwUOcYPq/G2s5VIRXRwx W/1ZRGtYpw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:58 2026 by rpki-client