This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/533416-5192-4944-ab50-813c76ff40b4/1/wkBVr3VKx8cAN-J4mgwDM9fyDIw.roa File: wkBVr3VKx8cAN-J4mgwDM9fyDIw.roa (raw, json) Hash identifier: pXEfo0mUUpTRtyfYgZ5QmNahxpHjcAC/DZR0RKo1OaY= Subject key identifier: C2:40:55:AF:75:4A:C7:C7:00:37:E2:78:9A:0C:03:33:D7:F2:0C:8C Certificate issuer: /CN=b545e434bba473706da8336fda016bb2e68b3623 Certificate serial: 019B791005774A2E0CC4FD9C308F69960C5A Authority key identifier: B5:45:E4:34:BB:A4:73:70:6D:A8:33:6F:DA:01:6B:B2:E6:8B:36:23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUXkNLukc3BtqDNv2gFrsuaLNiM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/533416-5192-4944-ab50-813c76ff40b4/1/wkBVr3VKx8cAN-J4mgwDM9fyDIw.roa Signing time: Thu 01 Jan 2026 10:17:31 +0000 ROA not before: Thu 01 Jan 2026 10:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200914 IP address blocks: 185.91.156.0/22 maxlen: 22 185.91.159.0/24 maxlen: 24 2a03:8960::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/533416-5192-4944-ab50-813c76ff40b4/1/tUXkNLukc3BtqDNv2gFrsuaLNiM.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/533416-5192-4944-ab50-813c76ff40b4/1/tUXkNLukc3BtqDNv2gFrsuaLNiM.mft rsync://rpki.ripe.net/repository/DEFAULT/tUXkNLukc3BtqDNv2gFrsuaLNiM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:05:77:4a:2e:0c:c4:fd:9c:30:8f:69:96:0c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b545e434bba473706da8336fda016bb2e68b3623 Validity Not Before: Jan 1 10:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c24055af754ac7c70037e2789a0c0333d7f20c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:37:20:5d:3c:9b:8b:49:ee:b4:0e:59:e1:5c: 06:d7:2f:49:06:87:6e:d2:5f:6a:8a:81:47:df:e6: d3:9a:db:03:86:6e:70:0e:0e:fb:86:79:7f:12:eb: 46:7d:9a:0e:c6:9a:45:67:8a:54:f6:9d:fd:b2:84: 86:24:df:c7:f0:b4:73:69:f8:35:6c:9c:32:8f:ee: 82:0a:ca:c0:0c:27:dd:bd:6e:47:6c:15:02:9a:b4: 5e:e3:97:8c:30:ce:ac:30:90:2c:34:8f:db:1d:b3: 07:81:f6:d8:51:31:76:49:04:2b:cc:3e:fd:6e:b5: 83:2b:10:94:00:63:75:bb:c2:fe:70:23:6b:3a:08: 3d:48:f8:4f:67:ed:e0:09:96:f5:d4:48:99:8f:0e: 22:79:b3:18:ab:c1:89:fe:a6:6e:10:78:e7:bb:8c: 06:db:85:ae:53:c5:3c:16:7f:36:76:78:62:5f:30: 72:6b:58:b3:b8:f2:8a:a0:53:6c:94:91:d7:99:b9: 35:94:ea:a0:68:69:27:df:4e:ed:3e:75:da:e8:67: 3b:d9:04:9c:17:29:75:61:9e:19:15:68:5f:e8:6e: 14:0e:15:dc:88:5b:d3:3b:db:e4:03:ac:10:ae:3f: aa:76:3c:87:6a:01:67:0f:ac:0b:2d:11:e5:51:d6: 60:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:40:55:AF:75:4A:C7:C7:00:37:E2:78:9A:0C:03:33:D7:F2:0C:8C X509v3 Authority Key Identifier: keyid:B5:45:E4:34:BB:A4:73:70:6D:A8:33:6F:DA:01:6B:B2:E6:8B:36:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUXkNLukc3BtqDNv2gFrsuaLNiM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/533416-5192-4944-ab50-813c76ff40b4/1/wkBVr3VKx8cAN-J4mgwDM9fyDIw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/533416-5192-4944-ab50-813c76ff40b4/1/tUXkNLukc3BtqDNv2gFrsuaLNiM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.91.156.0/22 IPv6: 2a03:8960::/32 Signature Algorithm: sha256WithRSAEncryption a0:f6:5d:d3:39:c4:14:82:84:b5:0b:a8:87:18:b6:65:f5:84: 26:ed:47:f7:9e:53:91:bc:f1:58:71:ec:13:2e:5e:6b:66:75: 68:bd:44:17:eb:6d:0c:a7:b1:1c:fa:8d:c9:40:9b:86:59:a6: 57:24:b2:9f:36:10:1a:45:dd:d9:0a:a9:66:84:ad:29:ea:24: 38:f9:27:d3:ee:19:fc:66:1a:0c:5a:b1:ed:e8:07:ca:18:c8: b8:d7:1b:84:d0:28:20:72:df:8b:64:18:52:d6:86:be:08:0a: 38:62:21:e6:76:19:fc:82:32:f1:7f:d7:3e:35:9d:23:c8:c8: 1f:04:48:be:d5:90:48:51:a9:55:11:a0:16:79:ce:39:5f:f8: 77:d3:ad:51:b0:e8:6c:ef:44:e5:f7:b0:3f:a1:b7:33:4d:5c: c7:74:8b:f7:26:43:78:38:a3:4c:f0:19:8e:10:02:8a:f2:19: 1a:bf:48:5f:07:c6:0f:15:f1:84:2d:ab:44:96:56:fe:d1:98: 0e:eb:f2:32:41:d2:e3:ef:94:54:9c:0e:27:8b:e9:6b:2c:86: 1c:3d:c6:4f:e0:ea:91:5f:55:3d:3e:99:a6:1b:98:5f:4b:1c: 4f:5b:c4:ea:5a:02:63:b0:a8:94:f0:b0:be:e5:31:af:75:d8: 37:4f:6a:5d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EAV3Si4MxP2cMI9plgxaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDVlNDM0YmJhNDczNzA2ZGE4MzM2ZmRhMDE2YmIyZTY4 YjM2MjMwHhcNMjYwMTAxMTAxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMjQwNTVhZjc1NGFjN2M3MDAzN2UyNzg5YTBjMDMzM2Q3ZjIwYzhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjcgXTybi0nutA5Z4VwG1y9JBodu 0l9qioFH3+bTmtsDhm5wDg77hnl/EutGfZoOxppFZ4pU9p39soSGJN/H8LRzafg1 bJwyj+6CCsrADCfdvW5HbBUCmrRe45eMMM6sMJAsNI/bHbMHgfbYUTF2SQQrzD79 brWDKxCUAGN1u8L+cCNrOgg9SPhPZ+3gCZb11EiZjw4iebMYq8GJ/qZuEHjnu4wG 24WuU8U8Fn82dnhiXzBya1izuPKKoFNslJHXmbk1lOqgaGkn307tPnXa6Gc72QSc Fyl1YZ4ZFWhf6G4UDhXciFvTO9vkA6wQrj+qdjyHagFnD6wLLRHlUdZg8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFMJAVa91SsfHADfieJoMAzPX8gyMMB8GA1UdIwQY MBaAFLVF5DS7pHNwbagzb9oBa7LmizYjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVYa05MdWtjM0J0cUROdjJnRnJzdWFMTmlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy81MzM0MTYtNTE5Mi00OTQ0LWFiNTAt ODEzYzc2ZmY0MGI0LzEvd2tCVnIzVkt4OGNBTi1KNG1nd0RNOWZ5REl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy81MzM0MTYtNTE5Mi00OTQ0LWFiNTAtODEzYzc2ZmY0MGI0 LzEvdFVYa05MdWtjM0J0cUROdjJnRnJzdWFMTmlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuVucMA0E AgACMAcDBQAqA4lgMA0GCSqGSIb3DQEBCwUAA4IBAQCg9l3TOcQUgoS1C6iHGLZl 9YQm7Uf3nlORvPFYcewTLl5rZnVovUQX620Mp7Ec+o3JQJuGWaZXJLKfNhAaRd3Z CqlmhK0p6iQ4+SfT7hn8ZhoMWrHt6AfKGMi41xuE0Cggct+LZBhS1oa+CAo4YiHm dhn8gjLxf9c+NZ0jyMgfBEi+1ZBIUalVEaAWec45X/h3061RsOhs70Tl97A/obcz TVzHdIv3JkN4OKNM8BmOEAKK8hkav0hfB8YPFfGELatEllb+0ZgO6/IyQdLj75RU nA4ni+lrLIYcPcZP4OqRX1U9PpmmG5hfSxxPW8TqWgJjsKiU8LC+5TGvddg3T2pd -----END CERTIFICATE-----Generated at Tue Feb 10 01:24:42 2026 by rpki-client