This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/iy1_X0xP3SRiEMK6QLdiKo6wonY.roa File: iy1_X0xP3SRiEMK6QLdiKo6wonY.roa (raw, json) Hash identifier: LJI0kIDEGIotcCj26me/ey1uUUCG+0yACL6vQDJHUvI= Subject key identifier: 8B:2D:7F:5F:4C:4F:DD:24:62:10:C2:BA:40:B7:62:2A:8E:B0:A2:76 Certificate issuer: /CN=db99f330be3147b4da90d114a3cf4205fa451103 Certificate serial: 019C0E55321F40647F943ED9EC304A5E691D Authority key identifier: DB:99:F3:30:BE:31:47:B4:DA:90:D1:14:A3:CF:42:05:FA:45:11:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25nzML4xR7TakNEUo89CBfpFEQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/iy1_X0xP3SRiEMK6QLdiKo6wonY.roa Signing time: Fri 30 Jan 2026 09:56:30 +0000 ROA not before: Fri 30 Jan 2026 09:56:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20738 IP address blocks: 79.170.40.0/21 maxlen: 21 79.170.40.0/24 maxlen: 24 79.170.41.0/24 maxlen: 24 79.170.42.0/24 maxlen: 24 79.170.43.0/24 maxlen: 24 79.170.44.0/24 maxlen: 24 79.170.45.0/24 maxlen: 24 79.170.46.0/24 maxlen: 24 79.170.47.0/24 maxlen: 24 2a01:e840:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/25nzML4xR7TakNEUo89CBfpFEQM.crl rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/25nzML4xR7TakNEUo89CBfpFEQM.mft rsync://rpki.ripe.net/repository/DEFAULT/25nzML4xR7TakNEUo89CBfpFEQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0e:55:32:1f:40:64:7f:94:3e:d9:ec:30:4a:5e:69:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db99f330be3147b4da90d114a3cf4205fa451103 Validity Not Before: Jan 30 09:56:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b2d7f5f4c4fdd246210c2ba40b7622a8eb0a276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f5:e7:13:93:1f:97:a8:31:88:04:ad:b9:39: f0:51:90:05:ca:6e:7e:3c:bc:93:63:7d:74:17:58: 81:79:34:aa:78:ba:65:8b:73:7a:6d:90:20:b1:fb: 52:ce:65:4e:90:c9:cb:f9:b7:e9:87:e2:64:3e:25: 7a:d7:87:a1:e9:c8:c9:f2:e0:f8:31:0c:d0:10:1c: 19:f8:86:7c:75:18:8a:70:7a:c5:b0:f4:5d:06:8b: 72:44:da:ff:43:a9:a1:82:48:38:3d:fc:08:e7:4a: 75:a9:0c:30:42:8d:eb:7c:12:8a:20:c7:68:79:fa: 2e:58:24:92:e4:13:79:9e:54:22:43:6c:55:df:64: 15:d9:de:f9:ec:14:c1:0e:02:11:45:66:2a:a9:54: 8e:a0:e1:cf:dc:0e:d3:f8:24:bf:7c:c2:79:1f:1d: d5:88:c5:7a:f9:36:a6:24:31:95:e7:f9:70:85:42: e0:94:fb:34:76:c6:06:87:67:e8:37:bd:30:9e:0b: 51:2a:f2:46:80:bd:c6:d9:1c:b5:a6:a1:c6:d8:ab: c8:2a:74:48:3f:b1:6b:ad:a2:fc:8f:4c:6e:c5:f0: 7e:1e:f6:45:27:1b:3c:7d:f5:22:9e:4c:00:3e:6a: 80:1b:3d:9d:f5:f1:06:b5:a8:07:25:c2:14:34:d1: f6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2D:7F:5F:4C:4F:DD:24:62:10:C2:BA:40:B7:62:2A:8E:B0:A2:76 X509v3 Authority Key Identifier: keyid:DB:99:F3:30:BE:31:47:B4:DA:90:D1:14:A3:CF:42:05:FA:45:11:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25nzML4xR7TakNEUo89CBfpFEQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/iy1_X0xP3SRiEMK6QLdiKo6wonY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/308c09-0034-4486-8274-d4dbd5e204f7/1/25nzML4xR7TakNEUo89CBfpFEQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.170.40.0/21 IPv6: 2a01:e840:3::/48 Signature Algorithm: sha256WithRSAEncryption 1f:c7:5d:84:6c:4e:88:b9:fc:5b:10:da:be:8e:e1:6a:f0:70: 49:0b:3f:e5:52:5a:a8:3b:d7:5a:58:a7:c8:90:5c:c9:e2:f2: 8f:7c:57:ae:e4:16:89:43:2b:d0:ed:23:ba:33:35:df:22:cf: 88:83:84:e2:75:43:d9:10:5c:85:dd:56:b7:14:eb:d9:51:33: 3b:68:16:76:9c:08:14:4a:3c:7d:d2:34:11:75:f7:84:d8:0a: 2d:7d:32:68:3d:d8:08:06:dc:4b:92:66:12:f0:47:9e:50:84: 9b:8b:0b:e9:d6:11:ed:6a:da:fd:c3:60:80:1b:f9:14:de:f7: cf:e9:15:c0:07:14:05:10:8e:73:2c:47:cc:db:7b:00:38:c5: 0e:03:2d:37:10:89:86:8f:11:ea:4c:cc:b1:c7:80:61:6a:c0: f7:24:5a:b4:ba:43:6e:9e:ca:0a:54:79:7f:68:86:29:00:70: 3e:c4:ee:32:e2:83:94:a1:c0:ad:73:7b:f5:19:37:eb:56:9f: b9:6f:48:c3:f0:85:e1:42:80:fc:ba:56:1b:1d:01:c3:4b:da: cd:0a:e7:a0:30:05:6e:df:7d:9c:86:ae:26:94:54:07:69:4c: 85:fc:0e:22:42:a0:5f:58:e8:97:bb:7a:d0:9e:1c:f6:24:f6: e4:bd:66:25 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZwOVTIfQGR/lD7Z7DBKXmkdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiOTlmMzMwYmUzMTQ3YjRkYTkwZDExNGEzY2Y0MjA1ZmE0 NTExMDMwHhcNMjYwMTMwMDk1NjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjJkN2Y1ZjRjNGZkZDI0NjIxMGMyYmE0MGI3NjIyYThlYjBhMjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/XnE5Mfl6gxiAStuTnwUZAFym5+ PLyTY310F1iBeTSqeLpli3N6bZAgsftSzmVOkMnL+bfph+JkPiV614eh6cjJ8uD4 MQzQEBwZ+IZ8dRiKcHrFsPRdBotyRNr/Q6mhgkg4PfwI50p1qQwwQo3rfBKKIMdo efouWCSS5BN5nlQiQ2xV32QV2d757BTBDgIRRWYqqVSOoOHP3A7T+CS/fMJ5Hx3V iMV6+TamJDGV5/lwhULglPs0dsYGh2foN70wngtRKvJGgL3G2Ry1pqHG2KvIKnRI P7FrraL8j0xuxfB+HvZFJxs8ffUinkwAPmqAGz2d9fEGtagHJcIUNNH2bQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIstf19MT90kYhDCukC3YiqOsKJ2MB8GA1UdIwQY MBaAFNuZ8zC+MUe02pDRFKPPQgX6RREDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjVuek1MNHhSN1Rha05FVW84OUNCZnBGRVFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8zMDhjMDktMDAzNC00NDg2LTgyNzQt ZDRkYmQ1ZTIwNGY3LzEvaXkxX1gweFAzU1JpRU1LNlFMZGlLbzZ3b25ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My8zMDhjMDktMDAzNC00NDg2LTgyNzQtZDRkYmQ1ZTIwNGY3 LzEvMjVuek1MNHhSN1Rha05FVW84OUNCZnBGRVFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDT6ooMA8E AgACMAkDBwAqAehAAAMwDQYJKoZIhvcNAQELBQADggEBAB/HXYRsToi5/FsQ2r6O 4WrwcEkLP+VSWqg711pYp8iQXMni8o98V67kFolDK9DtI7ozNd8iz4iDhOJ1Q9kQ XIXdVrcU69lRMztoFnacCBRKPH3SNBF194TYCi19Mmg92AgG3EuSZhLwR55QhJuL C+nWEe1q2v3DYIAb+RTe98/pFcAHFAUQjnMsR8zbewA4xQ4DLTcQiYaPEepMzLHH gGFqwPckWrS6Q26eygpUeX9ohikAcD7E7jLig5ShwK1ze/UZN+tWn7lvSMPwheFC gPy6VhsdAcNL2s0K56AwBW7ffZyGriaUVAdpTIX8DiJCoF9Y6Je7etCeHPYk9uS9 ZiU= -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:30 2026 by rpki-client