This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/WTKoWWB90SKzANQsqVX8mgeTR5o.roa File: WTKoWWB90SKzANQsqVX8mgeTR5o.roa (raw, json) Hash identifier: a2tURJf08zfaWHMEmDfP4vkTP1SrHxX+U3kkJ9RC68o= Subject key identifier: 59:32:A8:59:60:7D:D1:22:B3:00:D4:2C:A9:55:FC:9A:07:93:47:9A Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe Certificate serial: 019B78A2CAC5ECAAE4DDEA7F19E9F51B3FB3 Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/WTKoWWB90SKzANQsqVX8mgeTR5o.roa Signing time: Thu 01 Jan 2026 08:18:13 +0000 ROA not before: Thu 01 Jan 2026 08:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58061 IP address blocks: 109.72.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.mft rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 13:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ca:c5:ec:aa:e4:dd:ea:7f:19:e9:f5:1b:3f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe Validity Not Before: Jan 1 08:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5932a859607dd122b300d42ca955fc9a0793479a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0d:d4:55:c8:95:2c:51:3c:10:f3:0a:19:66: 5f:21:87:f9:60:29:17:f9:6d:2c:b1:dc:eb:cf:b8: 8f:fc:f5:2d:47:c0:42:88:2f:cb:8c:de:5d:bd:d7: ea:4f:83:ad:4f:7e:48:b3:0d:12:5e:7c:e7:d4:a2: 90:90:be:29:7a:db:4b:f8:e9:85:f3:d3:f2:e2:60: cc:70:84:a8:f9:70:8c:91:48:df:27:24:b8:97:94: 04:63:ec:61:a2:c7:6d:1f:85:79:47:99:db:0f:35: 57:35:a2:cc:26:6e:99:ef:d6:f5:07:e0:25:1a:82: bd:c9:69:6c:10:02:04:d0:99:7e:7f:94:61:4d:0d: 4e:95:29:2c:05:29:d1:b4:50:5c:a5:90:ba:38:cb: 2b:98:6b:31:1b:8a:3f:17:63:9d:bf:92:33:c7:dc: 14:c7:8b:2c:8b:ea:79:28:de:2b:be:6c:6b:d8:d6: 77:69:0d:dc:07:4b:c2:c4:ae:4b:91:21:64:98:1b: 29:a9:f3:04:79:38:6b:40:f8:71:f8:fc:18:05:26: 2b:67:7e:e2:e4:30:c3:a7:ea:9c:3e:33:88:23:a8: c9:3c:57:51:d2:62:24:c8:23:3a:72:3b:62:0e:29: 35:14:b0:6d:e8:31:87:29:00:e4:41:c8:4c:7e:3e: 2b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:32:A8:59:60:7D:D1:22:B3:00:D4:2C:A9:55:FC:9A:07:93:47:9A X509v3 Authority Key Identifier: keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/WTKoWWB90SKzANQsqVX8mgeTR5o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.118.0/24 Signature Algorithm: sha256WithRSAEncryption 08:39:61:7c:9a:17:26:7b:5c:c7:42:1f:51:79:ec:cf:89:97: e4:ca:20:8b:b1:b5:ad:86:1a:df:0b:2e:de:f6:61:45:5d:56: da:4e:29:bd:9a:df:93:73:0a:cd:18:3e:f3:33:c2:26:b5:39: a4:b1:c7:85:88:2c:c3:33:c2:e5:2a:52:ba:45:22:8c:d2:4c: 0e:6c:12:a4:1c:5b:78:f5:e0:44:ac:7f:4e:fd:4c:33:2a:4c: 0b:af:ff:13:81:0e:f7:b9:ae:31:ca:06:65:59:cf:c4:fc:99: 8e:f4:60:d1:09:59:f6:29:dc:06:b0:cb:14:8e:12:66:ba:8b: ee:9f:81:34:57:6c:41:b9:99:8e:c4:36:82:1b:58:2d:28:af: d4:be:7f:63:bb:71:46:18:48:ed:73:77:3e:f0:7c:d3:41:c4: 50:af:49:a6:f9:0c:60:ef:05:d3:df:7e:64:e0:cb:97:51:99: d4:e0:ed:4d:34:2d:ac:0b:bb:6c:0b:ce:38:13:ae:08:7f:a4: 93:a5:8b:d3:50:ca:aa:5a:1d:83:42:bb:ee:aa:a7:41:41:72: 1f:04:bc:5c:be:9a:9c:d4:c3:a0:19:eb:d3:69:ff:78:67:98: c2:fb:24:6d:eb:6d:bf:08:1d:cb:ad:7d:16:4f:25:ba:f8:73: 53:47:12:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4osrF7Krk3ep/Gen1Gz+zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk OGRhYmUwHhcNMjYwMTAxMDgxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OTMyYTg1OTYwN2RkMTIyYjMwMGQ0MmNhOTU1ZmM5YTA3OTM0NzlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvA3UVciVLFE8EPMKGWZfIYf5YCkX +W0ssdzrz7iP/PUtR8BCiC/LjN5dvdfqT4OtT35Isw0SXnzn1KKQkL4pettL+OmF 89Py4mDMcISo+XCMkUjfJyS4l5QEY+xhosdtH4V5R5nbDzVXNaLMJm6Z79b1B+Al GoK9yWlsEAIE0Jl+f5RhTQ1OlSksBSnRtFBcpZC6OMsrmGsxG4o/F2Odv5Izx9wU x4ssi+p5KN4rvmxr2NZ3aQ3cB0vCxK5LkSFkmBspqfMEeThrQPhx+PwYBSYrZ37i 5DDDp+qcPjOII6jJPFdR0mIkyCM6cjtiDik1FLBt6DGHKQDkQchMfj4rUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFkyqFlgfdEiswDULKlV/JoHk0eaMB8GA1UdIwQY MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt ODJhZDE0NTU1ZWFhLzEvV1RLb1dXQjkwU0t6QU5Rc3FWWDhtZ2VUUjVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUh2MA0G CSqGSIb3DQEBCwUAA4IBAQAIOWF8mhcme1zHQh9ReezPiZfkyiCLsbWthhrfCy7e 9mFFXVbaTim9mt+TcwrNGD7zM8ImtTmksceFiCzDM8LlKlK6RSKM0kwObBKkHFt4 9eBErH9O/UwzKkwLr/8TgQ73ua4xygZlWc/E/JmO9GDRCVn2KdwGsMsUjhJmuovu n4E0V2xBuZmOxDaCG1gtKK/Uvn9ju3FGGEjtc3c+8HzTQcRQr0mm+Qxg7wXT335k 4MuXUZnU4O1NNC2sC7tsC844E64If6STpYvTUMqqWh2DQrvuqqdBQXIfBLxcvpqc 1MOgGevTaf94Z5jC+yRt622/CB3LrX0WTyW6+HNTRxLz -----END CERTIFICATE-----Generated at Thu Jan 22 21:38:18 2026 by rpki-client