This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WCOdtVv9-x4W_ukwiSsdh3l5PQM.roa File: WCOdtVv9-x4W_ukwiSsdh3l5PQM.roa (raw, json) Hash identifier: JUqDanIV0zh/lAexx082Vc5K2CeiAKEiETwg6kxQBLg= Subject key identifier: 58:23:9D:B5:5B:FD:FB:1E:16:FE:E9:30:89:2B:1D:87:79:79:3D:03 Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Certificate serial: 019B7C8010770AA56060010552EE751C1052 Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WCOdtVv9-x4W_ukwiSsdh3l5PQM.roa Signing time: Fri 02 Jan 2026 02:18:46 +0000 ROA not before: Fri 02 Jan 2026 02:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 45.67.136.0/24 maxlen: 24 45.92.218.0/24 maxlen: 24 45.134.36.0/24 maxlen: 24 45.137.202.0/24 maxlen: 24 45.141.116.0/22 maxlen: 22 45.142.105.0/24 maxlen: 24 45.151.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:10:77:0a:a5:60:60:01:05:52:ee:75:1c:10:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Validity Not Before: Jan 2 02:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58239db55bfdfb1e16fee930892b1d8779793d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e2:4b:57:15:26:4a:7b:8d:86:90:87:3c:b1: c9:f6:bd:f4:08:b9:3c:30:bd:f4:14:3a:58:f1:8a: e0:3e:dc:a7:80:a4:e7:5e:fa:45:1e:35:90:0e:3d: bd:8e:6f:16:98:cb:ff:14:78:02:ad:f1:a1:4b:7e: fb:f9:dd:68:e3:26:83:e1:c5:df:9c:e6:ca:1e:99: 64:54:73:e0:87:33:07:c7:7e:32:6d:5d:8c:da:6f: ae:ba:9b:59:6d:f8:91:f8:33:f6:9f:1c:e4:40:76: a7:4e:8f:3c:49:bb:1d:ff:30:c8:d4:16:14:09:f3: 77:fd:75:c3:47:56:a4:ed:5d:f6:de:15:6d:54:96: df:cc:91:b4:51:86:2b:7f:e8:ef:3d:b7:bb:50:69: b1:f4:9c:74:15:50:9c:78:6a:da:f7:23:52:ea:55: e4:fa:64:aa:a8:f5:31:7c:38:82:fc:08:37:0b:1b: c6:99:7a:38:dd:05:ae:49:16:55:e5:82:23:4e:0f: cf:ed:49:69:1c:27:41:81:4a:3c:e9:41:ef:93:54: f8:8d:52:35:a1:4a:2c:5c:f0:a8:56:ed:31:99:af: 23:18:45:ae:f2:b9:8a:4d:24:09:48:9b:44:bb:21: 48:48:e6:51:8e:57:42:38:c2:6c:54:fc:c0:8b:12: cf:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:23:9D:B5:5B:FD:FB:1E:16:FE:E9:30:89:2B:1D:87:79:79:3D:03 X509v3 Authority Key Identifier: keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WCOdtVv9-x4W_ukwiSsdh3l5PQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.136.0/24 45.92.218.0/24 45.134.36.0/24 45.137.202.0/24 45.141.116.0/22 45.142.105.0/24 45.151.56.0/24 Signature Algorithm: sha256WithRSAEncryption 15:87:0b:a5:7a:7c:35:e4:e9:c8:73:60:95:e7:a7:10:13:8a: c8:3e:40:a1:a2:5d:a7:27:f0:97:96:8f:af:82:a8:2b:2c:d6: 88:b4:8e:a4:e7:f3:ad:8d:ba:ff:bc:f0:2b:be:aa:27:4f:4e: 36:7d:ee:9c:74:98:41:62:d1:b4:1f:7d:1b:da:57:ff:34:62: 83:06:e1:c1:23:1e:fc:69:d0:ee:eb:31:ab:50:ef:ae:64:34: 15:d8:f7:4e:cd:33:7e:52:3b:89:ed:ec:78:b9:e4:0c:2f:6c: 03:ee:5b:82:6f:6a:9c:6b:b5:70:da:5c:6a:da:70:29:64:44: de:f1:7d:af:fe:0a:f4:5c:61:c2:47:56:ac:2b:f4:e1:3c:49: 97:21:dd:23:0b:38:89:0e:9d:fa:8a:9e:39:94:c2:0d:f0:87: 8e:6f:2c:1e:fb:70:c6:59:cf:d8:dd:57:9a:7b:67:8d:2d:61: 71:57:57:a5:13:af:47:f0:78:fd:4a:f0:5a:48:28:20:e2:63: 77:74:2c:ba:5d:d2:38:8b:99:e3:ad:22:12:b8:7a:bc:c8:91: 2f:a5:5b:a9:f7:e5:eb:ea:9d:67:0a:6e:ce:35:47:9d:d8:79: 5e:6f:af:11:82:45:ce:10:76:f2:70:48:e0:96:c2:37:e2:e1: ef:05:a4:09 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt8gBB3CqVgYAEFUu51HBBSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3 NTJmZGUwHhcNMjYwMTAyMDIxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODIzOWRiNTViZmRmYjFlMTZmZWU5MzA4OTJiMWQ4Nzc5NzkzZDAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+JLVxUmSnuNhpCHPLHJ9r30CLk8 ML30FDpY8YrgPtyngKTnXvpFHjWQDj29jm8WmMv/FHgCrfGhS377+d1o4yaD4cXf nObKHplkVHPghzMHx34ybV2M2m+uuptZbfiR+DP2nxzkQHanTo88Sbsd/zDI1BYU CfN3/XXDR1ak7V323hVtVJbfzJG0UYYrf+jvPbe7UGmx9Jx0FVCceGra9yNS6lXk +mSqqPUxfDiC/Ag3CxvGmXo43QWuSRZV5YIjTg/P7UlpHCdBgUo86UHvk1T4jVI1 oUosXPCoVu0xma8jGEWu8rmKTSQJSJtEuyFISOZRjldCOMJsVPzAixLPAwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFFgjnbVb/fseFv7pMIkrHYd5eT0DMB8GA1UdIwQY MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt YTNjYTBkYjgzMjU0LzEvV0NPZHRWdjkteDRXX3Vrd2lTc2RoM2w1UFFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0 LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQALUOIAwQA LVzaAwQALYYkAwQALYnKAwQCLY10AwQALY5pAwQALZc4MA0GCSqGSIb3DQEBCwUA A4IBAQAVhwulenw15OnIc2CV56cQE4rIPkChol2nJ/CXlo+vgqgrLNaItI6k5/Ot jbr/vPArvqonT042fe6cdJhBYtG0H30b2lf/NGKDBuHBIx78adDu6zGrUO+uZDQV 2PdOzTN+UjuJ7ex4ueQML2wD7luCb2qca7Vw2lxq2nApZETe8X2v/gr0XGHCR1as K/ThPEmXId0jCziJDp36ip45lMIN8IeObywe+3DGWc/Y3Veae2eNLWFxV1elE69H 8Hj9SvBaSCgg4mN3dCy6XdI4i5njrSISuHq8yJEvpVup9+Xr6p1nCm7ONUed2Hle b68RgkXOEHbycEjglsI34uHvBaQJ -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:48 2026 by rpki-client