This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/F4LdvSuBLKoy58NMp2qP4-TZx2U.roa File: F4LdvSuBLKoy58NMp2qP4-TZx2U.roa (raw, json) Hash identifier: BFVQu+JaHlGGz8F88qjrXCmVUp4qOhDziCZpUN8E7E0= Subject key identifier: 17:82:DD:BD:2B:81:2C:AA:32:E7:C3:4C:A7:6A:8F:E3:E4:D9:C7:65 Certificate issuer: /CN=22a44566764ebb511683cb6228fa91997b559379 Certificate serial: 019B7F83646289195B43159D516F9F05F924 Authority key identifier: 22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/F4LdvSuBLKoy58NMp2qP4-TZx2U.roa Signing time: Fri 02 Jan 2026 16:21:15 +0000 ROA not before: Fri 02 Jan 2026 16:21:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215540 IP address blocks: 78.153.131.0/24 maxlen: 24 78.153.139.0/24 maxlen: 24 78.153.144.0/24 maxlen: 24 78.153.150.0/24 maxlen: 24 78.153.151.0/24 maxlen: 24 78.153.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.mft rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:64:62:89:19:5b:43:15:9d:51:6f:9f:05:f9:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a44566764ebb511683cb6228fa91997b559379 Validity Not Before: Jan 2 16:21:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1782ddbd2b812caa32e7c34ca76a8fe3e4d9c765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:e4:f3:aa:fa:a0:a8:02:35:58:15:75:2f: 65:b0:04:6b:91:e3:67:3b:a6:a5:f9:52:2a:38:f2: ea:24:38:15:6a:93:0f:fe:2c:86:f2:8a:58:ef:c1: 9a:b6:e4:02:b9:70:d4:7b:cf:c0:7c:83:d8:83:3a: 9c:6b:26:9c:31:a3:52:ab:82:e1:1d:26:74:36:4e: 64:eb:25:d2:42:61:61:d4:e9:ed:bf:ad:e8:b8:d1: ef:10:a6:9b:66:06:46:c3:70:a6:2c:e3:1d:ce:97: 56:df:b7:af:72:f3:95:16:a4:83:be:d7:06:a5:4e: f4:e6:e5:e3:72:4c:b6:e8:55:b0:d4:3b:ad:8a:2e: 4f:fe:78:08:98:61:d7:29:8f:5f:73:68:45:e4:8a: 12:35:92:7d:08:9e:9e:90:ea:9e:e6:26:41:52:2d: 72:a6:83:c4:2a:e4:c7:b9:0f:4f:6f:45:f9:3e:4f: 43:78:6f:79:c2:de:72:e7:35:b6:bf:5e:8d:de:01: 92:21:94:d0:17:6c:fd:a9:18:17:23:0b:18:c6:e2: e1:a0:3d:96:ed:22:e2:56:1e:9f:eb:8d:a3:d3:fc: 95:22:d1:f8:8a:56:9f:77:38:e4:f9:18:d9:15:b6: 24:ce:0b:eb:ae:69:22:d8:05:d1:cf:b1:bc:3b:04: e3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:82:DD:BD:2B:81:2C:AA:32:E7:C3:4C:A7:6A:8F:E3:E4:D9:C7:65 X509v3 Authority Key Identifier: keyid:22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/F4LdvSuBLKoy58NMp2qP4-TZx2U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.153.131.0/24 78.153.139.0/24 78.153.144.0/24 78.153.150.0/23 78.153.155.0/24 Signature Algorithm: sha256WithRSAEncryption 39:e0:6b:e9:09:e5:c1:61:af:53:b2:df:6b:e7:17:0f:c7:ab: d9:d3:97:6f:d3:3b:ba:a7:64:2f:72:81:1d:4b:bb:0d:d4:5f: 59:be:93:37:13:f1:81:a3:7a:d3:7e:3b:f7:4d:18:ff:0c:da: d7:b4:4a:aa:09:51:4c:87:ca:26:3c:3b:b3:06:9e:4a:2b:01: 74:6a:b4:1d:b3:86:96:62:12:9d:c4:75:c5:9f:55:0e:c7:2e: f6:f5:c8:ab:6e:3e:ce:9d:6b:7e:bc:9f:7e:da:ba:db:f6:e1: 96:e1:f3:7c:67:79:4a:6e:a8:1f:65:a4:45:a8:2d:fa:9f:d0: 69:f2:41:20:ec:de:19:ed:fe:b8:80:31:c3:4a:de:75:15:97: 3c:f4:c8:ae:99:d7:ca:d9:52:be:fb:2a:a9:e1:bd:97:9c:fc: b5:33:82:02:18:d6:f4:70:42:88:1d:47:84:e0:f1:66:4a:75: 36:e3:84:12:ae:a7:86:c2:91:24:c0:8b:91:2a:b3:3c:f2:af: 65:82:03:75:02:21:aa:b3:72:56:9d:84:cc:e2:bc:d6:df:a3: 22:a1:b5:fa:82:a0:94:58:0b:1b:eb:7e:b4:d3:c5:c2:98:24: 72:04:ab:59:c2:99:c0:59:6c:43:45:44:2c:3b:fc:af:c6:fa: f4:61:40:54 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/g2RiiRlbQxWdUW+fBfkkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTQ0NTY2NzY0ZWJiNTExNjgzY2I2MjI4ZmE5MTk5N2I1 NTkzNzkwHhcNMjYwMTAyMTYyMTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxNzgyZGRiZDJiODEyY2FhMzJlN2MzNGNhNzZhOGZlM2U0ZDljNzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8Xk86r6oKgCNVgVdS9lsARrkeNn O6al+VIqOPLqJDgVapMP/iyG8opY78GatuQCuXDUe8/AfIPYgzqcayacMaNSq4Lh HSZ0Nk5k6yXSQmFh1Ontv63ouNHvEKabZgZGw3CmLOMdzpdW37evcvOVFqSDvtcG pU705uXjcky26FWw1Dutii5P/ngImGHXKY9fc2hF5IoSNZJ9CJ6ekOqe5iZBUi1y poPEKuTHuQ9Pb0X5Pk9DeG95wt5y5zW2v16N3gGSIZTQF2z9qRgXIwsYxuLhoD2W 7SLiVh6f642j0/yVItH4ilafdzjk+RjZFbYkzgvrrmki2AXRz7G8OwTj8QIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFBeC3b0rgSyqMufDTKdqj+Pk2cdlMB8GA1UdIwQY MBaAFCKkRWZ2TrtRFoPLYij6kZl7VZN5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFSRlpuWk91MUVXZzh0aUtQcVJtWHRWazNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82YjNkZGEtNzM2OC00ZDE5LWI2MDMt MTZiODBhYTI4ZGQ2LzEvRjRMZHZTdUJMS295NThOTXAycVA0LVRaeDJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS82YjNkZGEtNzM2OC00ZDE5LWI2MDMtMTZiODBhYTI4ZGQ2 LzEvSXFSRlpuWk91MUVXZzh0aUtQcVJtWHRWazNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQATpmDAwQA TpmLAwQATpmQAwQBTpmWAwQATpmbMA0GCSqGSIb3DQEBCwUAA4IBAQA54GvpCeXB Ya9Tst9r5xcPx6vZ05dv0zu6p2QvcoEdS7sN1F9ZvpM3E/GBo3rTfjv3TRj/DNrX tEqqCVFMh8omPDuzBp5KKwF0arQds4aWYhKdxHXFn1UOxy729cirbj7OnWt+vJ9+ 2rrb9uGW4fN8Z3lKbqgfZaRFqC36n9Bp8kEg7N4Z7f64gDHDSt51FZc89MiumdfK 2VK++yqp4b2XnPy1M4ICGNb0cEKIHUeE4PFmSnU244QSrqeGwpEkwIuRKrM88q9l ggN1AiGqs3JWnYTM4rzW36MiobX6gqCUWAsb636008XCmCRyBKtZwpnAWWxDRUQs O/yvxvr0YUBU -----END CERTIFICATE-----Generated at Sun Jan 25 21:15:19 2026 by rpki-client