This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/WM40dZ-t-TKjYT1JNorYoZbj-cI.roa File: WM40dZ-t-TKjYT1JNorYoZbj-cI.roa (raw, json) Hash identifier: 7smi5Aav8i2UmABrXzG2ZCoNcVpxXAhrEdFn8xMhW8g= Subject key identifier: 58:CE:34:75:9F:AD:F9:32:A3:61:3D:49:36:8A:D8:A1:96:E3:F9:C2 Certificate issuer: /CN=191b1a99358daa58e72625c4ce9d829e918efc86 Certificate serial: 019A82FF4138F3D9F72F40A5D0EFD325DAF8 Authority key identifier: 19:1B:1A:99:35:8D:AA:58:E7:26:25:C4:CE:9D:82:9E:91:8E:FC:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GRsamTWNqljnJiXEzp2CnpGO_IY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/WM40dZ-t-TKjYT1JNorYoZbj-cI.roa Signing time: Fri 14 Nov 2025 15:32:37 +0000 ROA not before: Fri 14 Nov 2025 15:32:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 212392 IP address blocks: 45.89.20.0/24 maxlen: 24 185.217.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/GRsamTWNqljnJiXEzp2CnpGO_IY.crl rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/GRsamTWNqljnJiXEzp2CnpGO_IY.mft rsync://rpki.ripe.net/repository/DEFAULT/GRsamTWNqljnJiXEzp2CnpGO_IY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:82:ff:41:38:f3:d9:f7:2f:40:a5:d0:ef:d3:25:da:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=191b1a99358daa58e72625c4ce9d829e918efc86 Validity Not Before: Nov 14 15:32:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=58ce34759fadf932a3613d49368ad8a196e3f9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c5:38:1a:9c:ec:c4:1d:26:2a:4f:c7:65:3e: 19:94:bd:8c:60:ea:c5:c1:19:55:d4:22:2d:4b:2d: 96:0f:ce:1d:87:f1:18:86:23:9a:f7:da:ca:06:9c: a5:2a:12:50:e5:7d:cc:5e:ff:f8:c4:da:37:80:b8: a6:8b:9b:77:95:71:5f:2d:e6:ff:97:d0:a1:8f:4f: a1:53:98:12:9a:51:da:e2:2e:a7:3a:b4:4e:2c:c8: 8b:9e:bc:52:19:85:b4:64:0b:31:b6:5d:8a:62:cb: a0:79:d4:84:38:da:b7:9b:a1:45:98:94:d4:1e:1d: 00:2d:29:ee:4f:62:90:9d:ae:37:8a:f3:a1:2d:c2: 39:4a:94:01:d6:fa:42:a3:e5:59:df:21:5f:01:41: af:49:43:13:d6:5a:03:d0:89:e8:11:7c:ff:c9:58: f3:7d:25:e0:5a:cd:46:ca:b5:86:50:18:70:d2:aa: 74:9b:13:bc:42:20:82:30:eb:39:e7:10:9b:10:b1: 4d:29:92:bb:d8:d4:d8:08:42:d4:96:ff:56:69:3a: a8:1c:f2:4e:c9:2d:ed:26:e9:dc:b0:84:b8:de:e0: 57:39:cd:b4:6b:73:d3:f1:3a:21:d0:20:d0:28:78: 0d:1f:3c:2a:bb:40:9c:21:5b:7f:5c:e6:12:aa:29: db:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CE:34:75:9F:AD:F9:32:A3:61:3D:49:36:8A:D8:A1:96:E3:F9:C2 X509v3 Authority Key Identifier: keyid:19:1B:1A:99:35:8D:AA:58:E7:26:25:C4:CE:9D:82:9E:91:8E:FC:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GRsamTWNqljnJiXEzp2CnpGO_IY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/WM40dZ-t-TKjYT1JNorYoZbj-cI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/GRsamTWNqljnJiXEzp2CnpGO_IY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.20.0/24 185.217.61.0/24 Signature Algorithm: sha256WithRSAEncryption 32:d3:5c:78:92:20:b0:f8:bf:f5:fd:7b:c5:74:84:e4:10:4d: 1b:fa:9f:13:4e:7e:6f:21:7a:47:9b:a9:31:38:87:3b:96:12: f7:dd:b6:e2:dc:79:d8:9e:e3:4a:70:df:cc:46:e7:19:c3:47: 96:33:d8:2b:d3:03:45:9b:7e:99:9c:f5:52:49:04:5c:f9:d8: e3:c3:45:c0:50:2d:39:85:8a:9a:35:61:e5:46:d3:2e:c2:8e: 99:8e:27:24:d3:8a:32:73:1a:9e:c3:53:44:84:f9:03:46:ac: 7f:7f:97:d2:f2:2d:26:ff:55:99:21:b0:e2:d0:ec:39:ee:2b: 8f:45:5f:28:91:1d:bc:23:1b:75:48:04:d7:36:55:4a:46:3f: fb:3d:37:96:e2:96:79:0e:7a:d4:de:e7:c4:cc:26:b9:a9:1c: 1d:35:fa:84:dd:f3:c8:1f:d8:90:94:21:1b:ba:30:45:1c:53: a6:a9:92:ea:43:3c:78:5e:53:30:e5:c5:2a:84:f3:e0:1e:dc: 2e:0f:d6:2a:a2:15:d9:0a:ed:7a:89:46:9e:6c:65:7a:95:9d: c4:59:e7:4e:c8:e1:a6:b8:c6:67:22:da:c5:96:ba:79:67:18: 2c:77:6c:ef:45:1a:52:73:9d:59:20:77:00:5e:4e:33:c4:9e: 6f:a6:16:71 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZqC/0E489n3L0Cl0O/TJdr4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5MWIxYTk5MzU4ZGFhNThlNzI2MjVjNGNlOWQ4MjllOTE4 ZWZjODYwHhcNMjUxMTE0MTUzMjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OGNlMzQ3NTlmYWRmOTMyYTM2MTNkNDkzNjhhZDhhMTk2ZTNmOWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MU4GpzsxB0mKk/HZT4ZlL2MYOrF wRlV1CItSy2WD84dh/EYhiOa99rKBpylKhJQ5X3MXv/4xNo3gLimi5t3lXFfLeb/ l9Chj0+hU5gSmlHa4i6nOrROLMiLnrxSGYW0ZAsxtl2KYsugedSEONq3m6FFmJTU Hh0ALSnuT2KQna43ivOhLcI5SpQB1vpCo+VZ3yFfAUGvSUMT1loD0InoEXz/yVjz fSXgWs1GyrWGUBhw0qp0mxO8QiCCMOs55xCbELFNKZK72NTYCELUlv9WaTqoHPJO yS3tJuncsIS43uBXOc20a3PT8Toh0CDQKHgNHzwqu0CcIVt/XOYSqinbQQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFjONHWfrfkyo2E9STaK2KGW4/nCMB8GA1UdIwQY MBaAFBkbGpk1japY5yYlxM6dgp6RjvyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1JzYW1UV05xbGpuSmlYRXpwMkNucEdPX0lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni82MTk3YzEtNzJmNC00ZTRmLWE0Yjgt OWU0ZDBjZjk1NTQ0LzEvV000MGRaLXQtVEtqWVQxSk5vcllvWmJqLWNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni82MTk3YzEtNzJmNC00ZTRmLWE0YjgtOWU0ZDBjZjk1NTQ0 LzEvR1JzYW1UV05xbGpuSmlYRXpwMkNucEdPX0lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALVkUAwQA udk9MA0GCSqGSIb3DQEBCwUAA4IBAQAy01x4kiCw+L/1/XvFdITkEE0b+p8TTn5v IXpHm6kxOIc7lhL33bbi3HnYnuNKcN/MRucZw0eWM9gr0wNFm36ZnPVSSQRc+djj w0XAUC05hYqaNWHlRtMuwo6Zjick04oycxqew1NEhPkDRqx/f5fS8i0m/1WZIbDi 0Ow57iuPRV8okR28Ixt1SATXNlVKRj/7PTeW4pZ5DnrU3ufEzCa5qRwdNfqE3fPI H9iQlCEbujBFHFOmqZLqQzx4XlMw5cUqhPPgHtwuD9YqohXZCu16iUaebGV6lZ3E WedOyOGmuMZnItrFlrp5Zxgsd2zvRRpSc51ZIHcAXk4zxJ5vphZx -----END CERTIFICATE-----Generated at Sat Dec 6 20:31:22 2025 by rpki-client