This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/y1YWxB7Fy5s5YzamhDItkot32uM.roa File: y1YWxB7Fy5s5YzamhDItkot32uM.roa (raw, json) Hash identifier: 8TggUtk0Rbk0S6hBWI88A8FYg1Cv2yGjFHoHN2htAJQ= Subject key identifier: CB:56:16:C4:1E:C5:CB:9B:39:63:36:A6:84:32:2D:92:8B:77:DA:E3 Certificate issuer: /CN=22a44566764ebb511683cb6228fa91997b559379 Certificate serial: 019B7F83635F0487DFD62B424D6021209300 Authority key identifier: 22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/y1YWxB7Fy5s5YzamhDItkot32uM.roa Signing time: Fri 02 Jan 2026 16:21:15 +0000 ROA not before: Fri 02 Jan 2026 16:21:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209759 IP address blocks: 78.153.146.0/24 maxlen: 24 78.153.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.mft rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 07:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:63:5f:04:87:df:d6:2b:42:4d:60:21:20:93:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a44566764ebb511683cb6228fa91997b559379 Validity Not Before: Jan 2 16:21:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cb5616c41ec5cb9b396336a684322d928b77dae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:46:dd:90:24:fa:7f:45:9f:c6:46:d6:fe: d0:2e:d2:e8:9d:b8:7f:f7:3c:32:f9:1b:01:29:06: 7d:4f:4e:92:0d:83:25:29:d0:9a:78:7a:7e:17:b2: 58:6b:60:b5:9f:12:da:e7:2c:86:83:29:25:35:67: ac:cf:29:77:27:97:a7:fc:a8:b9:79:e2:71:d0:bc: 3f:86:31:31:4a:7b:b6:af:19:b8:98:a1:90:27:c4: 01:b6:20:0e:9f:bf:76:09:a0:d1:ca:34:98:35:8a: ef:ed:a5:96:e1:13:7c:eb:5b:c5:e1:94:53:36:7f: 22:79:a5:03:73:f3:6b:4f:f5:33:4a:c9:e6:dd:3a: d0:3c:a7:7e:30:06:fd:cc:19:a4:dd:c5:2e:dd:8b: 8f:49:32:c9:49:53:9a:d6:2e:c6:77:c4:a1:25:f0: 4a:02:62:d4:ad:75:60:4f:81:7b:b9:78:1b:68:90: 75:58:1b:71:50:23:6e:11:14:5c:29:b9:47:03:7e: d7:a4:91:f5:a4:dc:e9:c2:c8:98:d9:b1:bd:55:d2: 5b:f5:a8:0a:25:42:8d:21:c9:3c:90:46:d1:d7:a5: 00:52:21:24:cc:22:cf:a3:c5:96:48:93:78:ae:93: b2:20:77:66:b1:4f:f1:91:13:12:b6:0f:7f:df:d1: 91:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:56:16:C4:1E:C5:CB:9B:39:63:36:A6:84:32:2D:92:8B:77:DA:E3 X509v3 Authority Key Identifier: keyid:22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/y1YWxB7Fy5s5YzamhDItkot32uM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.153.146.0/24 78.153.156.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:48:5a:79:ac:2d:45:af:b2:f0:18:ec:f8:bb:33:6d:22:2c: 36:ce:30:37:37:05:ff:db:8c:ea:8f:95:ac:0f:b4:73:14:9b: ea:8d:f1:aa:b1:cc:7d:02:65:6f:92:fe:b7:23:f7:7e:d5:a8: 0c:6b:64:87:7c:d7:f8:9a:9c:ff:6b:a3:12:96:2a:0e:9e:e3: 38:ee:06:45:5e:25:56:15:a2:85:66:1d:96:3d:e0:f6:13:c2: 3b:79:18:54:1f:2b:b2:80:d7:e2:95:67:87:e0:c9:e7:0c:5b: a7:22:8b:35:6f:1f:f7:f5:d8:98:36:9c:71:f4:33:62:39:01: 74:53:f0:e8:38:d6:d3:04:18:72:fe:33:0d:0f:4a:b2:35:eb: 98:b8:6e:32:61:f5:22:0a:ad:c0:7b:62:af:10:25:3e:27:2a: 68:15:d9:82:33:b5:2e:4d:51:34:8e:51:2b:56:bd:82:e1:04: 5b:c7:1e:d8:ac:e4:bb:f5:73:10:14:1c:84:c3:07:fa:6f:08: f1:ca:2d:37:c4:da:68:58:c0:a4:03:47:a3:4f:24:a3:4b:db: 61:6f:61:ed:a4:9b:21:1e:72:17:85:68:f3:32:60:2e:c7:06: 8d:3b:6a:10:d7:c5:26:61:5e:e8:53:61:b0:94:24:7a:98:f5: 83:b2:38:55 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/g2NfBIff1itCTWAhIJMAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTQ0NTY2NzY0ZWJiNTExNjgzY2I2MjI4ZmE5MTk5N2I1 NTkzNzkwHhcNMjYwMTAyMTYyMTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYjU2MTZjNDFlYzVjYjliMzk2MzM2YTY4NDMyMmQ5MjhiNzdkYWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjVG3ZAk+n9Fn8ZG1v7QLtLonbh/ 9zwy+RsBKQZ9T06SDYMlKdCaeHp+F7JYa2C1nxLa5yyGgyklNWeszyl3J5en/Ki5 eeJx0Lw/hjExSnu2rxm4mKGQJ8QBtiAOn792CaDRyjSYNYrv7aWW4RN861vF4ZRT Nn8ieaUDc/NrT/UzSsnm3TrQPKd+MAb9zBmk3cUu3YuPSTLJSVOa1i7Gd8ShJfBK AmLUrXVgT4F7uXgbaJB1WBtxUCNuERRcKblHA37XpJH1pNzpwsiY2bG9VdJb9agK JUKNIck8kEbR16UAUiEkzCLPo8WWSJN4rpOyIHdmsU/xkRMStg9/39GRGQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMtWFsQexcubOWM2poQyLZKLd9rjMB8GA1UdIwQY MBaAFCKkRWZ2TrtRFoPLYij6kZl7VZN5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFSRlpuWk91MUVXZzh0aUtQcVJtWHRWazNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82YjNkZGEtNzM2OC00ZDE5LWI2MDMt MTZiODBhYTI4ZGQ2LzEveTFZV3hCN0Z5NXM1WXphbWhESXRrb3QzMnVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS82YjNkZGEtNzM2OC00ZDE5LWI2MDMtMTZiODBhYTI4ZGQ2 LzEvSXFSRlpuWk91MUVXZzh0aUtQcVJtWHRWazNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATpmSAwQC TpmcMA0GCSqGSIb3DQEBCwUAA4IBAQBaSFp5rC1Fr7LwGOz4uzNtIiw2zjA3NwX/ 24zqj5WsD7RzFJvqjfGqscx9AmVvkv63I/d+1agMa2SHfNf4mpz/a6MSlioOnuM4 7gZFXiVWFaKFZh2WPeD2E8I7eRhUHyuygNfilWeH4MnnDFunIos1bx/39diYNpxx 9DNiOQF0U/DoONbTBBhy/jMND0qyNeuYuG4yYfUiCq3Ae2KvECU+JypoFdmCM7Uu TVE0jlErVr2C4QRbxx7YrOS79XMQFByEwwf6bwjxyi03xNpoWMCkA0ejTySjS9th b2HtpJshHnIXhWjzMmAuxwaNO2oQ18UmYV7oU2GwlCR6mPWDsjhV -----END CERTIFICATE-----Generated at Tue Jan 20 14:14:20 2026 by rpki-client