This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/8d6c33-b2c1-48da-a609-8217a929fd8d/1/WCA0B9M68iSK-689JNNQ3x_gaaQ.roa File: WCA0B9M68iSK-689JNNQ3x_gaaQ.roa (raw, json) Hash identifier: mIL2rvF2fj48OLmmFlBKTID0LzN8VFC9HV5FYjZjf+Q= Subject key identifier: 58:20:34:07:D3:3A:F2:24:8A:FB:AF:3D:24:D3:50:DF:1F:E0:69:A4 Certificate issuer: /CN=b11a1f9770bab077515b7712cb8d49550b3138a1 Certificate serial: 019B7CED567C676A8EDFC99FF8B94FEFD9B1 Authority key identifier: B1:1A:1F:97:70:BA:B0:77:51:5B:77:12:CB:8D:49:55:0B:31:38:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRofl3C6sHdRW3cSy41JVQsxOKE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/8d6c33-b2c1-48da-a609-8217a929fd8d/1/WCA0B9M68iSK-689JNNQ3x_gaaQ.roa Signing time: Fri 02 Jan 2026 04:18:07 +0000 ROA not before: Fri 02 Jan 2026 04:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30742 IP address blocks: 185.48.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/8d6c33-b2c1-48da-a609-8217a929fd8d/1/sRofl3C6sHdRW3cSy41JVQsxOKE.crl rsync://rpki.ripe.net/repository/DEFAULT/61/8d6c33-b2c1-48da-a609-8217a929fd8d/1/sRofl3C6sHdRW3cSy41JVQsxOKE.mft rsync://rpki.ripe.net/repository/DEFAULT/sRofl3C6sHdRW3cSy41JVQsxOKE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:56:7c:67:6a:8e:df:c9:9f:f8:b9:4f:ef:d9:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b11a1f9770bab077515b7712cb8d49550b3138a1 Validity Not Before: Jan 2 04:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=58203407d33af2248afbaf3d24d350df1fe069a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:97:3c:94:03:a3:f9:f4:54:9b:eb:2c:0d:4a: 92:62:dd:3e:28:ff:9d:fe:1b:7d:05:f2:c0:2f:83: 28:59:a5:db:f1:02:a8:2f:38:8e:7b:38:1a:35:43: 9a:75:58:e3:71:8a:3f:21:46:14:d8:98:03:77:53: 10:9f:50:ed:30:4f:03:c3:a6:ab:eb:d9:39:ad:e8: 9c:37:df:0f:e1:df:e4:89:21:8d:ea:ad:a1:2c:a9: bd:86:83:5f:bd:75:44:03:c8:d5:5a:90:4f:81:1b: a0:45:62:40:52:68:fc:6b:ae:92:8b:01:25:92:91: 23:5d:59:71:25:bc:d9:6d:93:1a:2d:d1:0a:29:e7: 04:20:65:35:bb:b7:0a:74:41:2f:0b:9e:be:f3:8c: 69:1a:a9:f7:fb:7a:d2:ff:d3:3c:ce:fc:c7:f0:94: eb:64:71:5d:4d:d5:5d:bc:c2:7a:3f:52:95:02:53: 42:f9:5d:60:16:66:09:78:6a:59:b7:72:28:e6:fd: 1c:37:ac:6a:ba:01:91:ba:06:7a:3b:5e:e2:c9:da: 92:d5:33:90:21:64:bc:7a:e0:38:f1:ac:aa:8f:33: 99:e8:30:42:54:86:5c:03:35:4e:3a:a8:4d:8c:22: 5c:b5:a9:9c:3f:a5:5b:6a:fd:e3:6f:ee:80:cd:1f: 98:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:20:34:07:D3:3A:F2:24:8A:FB:AF:3D:24:D3:50:DF:1F:E0:69:A4 X509v3 Authority Key Identifier: keyid:B1:1A:1F:97:70:BA:B0:77:51:5B:77:12:CB:8D:49:55:0B:31:38:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRofl3C6sHdRW3cSy41JVQsxOKE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d6c33-b2c1-48da-a609-8217a929fd8d/1/WCA0B9M68iSK-689JNNQ3x_gaaQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d6c33-b2c1-48da-a609-8217a929fd8d/1/sRofl3C6sHdRW3cSy41JVQsxOKE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.48.216.0/22 Signature Algorithm: sha256WithRSAEncryption ce:aa:81:22:fb:df:a3:81:dd:16:0d:da:a5:cd:ba:7f:6c:03: 7a:f9:b8:96:83:6c:48:42:28:03:69:c4:2f:e9:a8:26:92:d3: 80:0e:47:22:83:36:41:09:d7:79:9c:d1:04:14:90:ce:52:e1: 78:25:71:bb:3c:5f:a0:6e:cf:07:1a:9a:1e:3c:03:a0:f8:92: 48:f6:e1:60:39:77:8b:5c:aa:29:2d:42:38:86:e6:ab:72:55: 34:86:ed:8a:2a:86:43:9b:c4:e1:be:91:cd:0f:ea:66:9d:2a: c3:95:11:10:4d:a8:89:55:83:bb:82:85:88:22:dd:07:e9:c6: b5:ef:ae:27:2f:3f:14:0a:43:e1:4e:4b:10:57:d6:ea:11:fc: c5:7e:64:ca:9e:36:4b:0f:61:6c:7f:c2:d8:58:8f:73:ec:3d: 74:a9:2d:da:5f:e4:0e:dc:49:de:84:a8:23:ed:9c:1d:58:a2: fc:22:eb:6b:e9:10:43:c6:1d:a7:48:28:65:9f:0d:d8:98:79: 5c:43:64:16:92:f6:85:c6:d7:5a:7e:48:ee:70:79:7b:e0:05: a4:de:c1:42:b4:e9:7e:43:8d:a3:98:9f:33:a9:27:e6:0e:27: 83:34:e0:bb:42:0d:02:0c:f7:d6:6a:c4:c3:e8:6d:0b:66:72: 25:84:7c:da -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87VZ8Z2qO38mf+LlP79mxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMWExZjk3NzBiYWIwNzc1MTViNzcxMmNiOGQ0OTU1MGIz MTM4YTEwHhcNMjYwMTAyMDQxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODIwMzQwN2QzM2FmMjI0OGFmYmFmM2QyNGQzNTBkZjFmZTA2OWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJc8lAOj+fRUm+ssDUqSYt0+KP+d /ht9BfLAL4MoWaXb8QKoLziOezgaNUOadVjjcYo/IUYU2JgDd1MQn1DtME8Dw6ar 69k5reicN98P4d/kiSGN6q2hLKm9hoNfvXVEA8jVWpBPgRugRWJAUmj8a66SiwEl kpEjXVlxJbzZbZMaLdEKKecEIGU1u7cKdEEvC56+84xpGqn3+3rS/9M8zvzH8JTr ZHFdTdVdvMJ6P1KVAlNC+V1gFmYJeGpZt3Io5v0cN6xqugGRugZ6O17iydqS1TOQ IWS8euA48ayqjzOZ6DBCVIZcAzVOOqhNjCJctamcP6Vbav3jb+6AzR+YGQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFggNAfTOvIkivuvPSTTUN8f4GmkMB8GA1UdIwQY MBaAFLEaH5dwurB3UVt3EsuNSVULMTihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1JvZmwzQzZzSGRSVzNjU3k0MUpWUXN4T0tFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS84ZDZjMzMtYjJjMS00OGRhLWE2MDkt ODIxN2E5MjlmZDhkLzEvV0NBMEI5TTY4aVNLLTY4OUpOTlEzeF9nYWFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS84ZDZjMzMtYjJjMS00OGRhLWE2MDktODIxN2E5MjlmZDhk LzEvc1JvZmwzQzZzSGRSVzNjU3k0MUpWUXN4T0tFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTDYMA0G CSqGSIb3DQEBCwUAA4IBAQDOqoEi+9+jgd0WDdqlzbp/bAN6+biWg2xIQigDacQv 6agmktOADkcigzZBCdd5nNEEFJDOUuF4JXG7PF+gbs8HGpoePAOg+JJI9uFgOXeL XKopLUI4huarclU0hu2KKoZDm8ThvpHND+pmnSrDlREQTaiJVYO7goWIIt0H6ca1 764nLz8UCkPhTksQV9bqEfzFfmTKnjZLD2Fsf8LYWI9z7D10qS3aX+QO3EnehKgj 7ZwdWKL8Iutr6RBDxh2nSChlnw3YmHlcQ2QWkvaFxtdafkjucHl74AWk3sFCtOl+ Q42jmJ8zqSfmDieDNOC7Qg0CDPfWasTD6G0LZnIlhHza -----END CERTIFICATE-----Generated at Mon Jan 26 15:17:42 2026 by rpki-client