This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/y78xNtcYu21c47h3KufgEPgZVnE.roa File: y78xNtcYu21c47h3KufgEPgZVnE.roa (raw, json) Hash identifier: MwiDwZITS/z04aTqMBZZx2J7qe1RkzKld+egFNWQZro= Subject key identifier: CB:BF:31:36:D7:18:BB:6D:5C:E3:B8:77:2A:E7:E0:10:F8:19:56:71 Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244 Certificate serial: 019B7AC7CB5948AB5798896707CB57AAA977 Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/y78xNtcYu21c47h3KufgEPgZVnE.roa Signing time: Thu 01 Jan 2026 18:17:52 +0000 ROA not before: Thu 01 Jan 2026 18:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133199 IP address blocks: 45.144.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:cb:59:48:ab:57:98:89:67:07:cb:57:aa:a9:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244 Validity Not Before: Jan 1 18:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cbbf3136d718bb6d5ce3b8772ae7e010f8195671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4f:c5:da:bf:c7:40:59:87:0a:28:fe:2a:e4: f9:82:d1:40:be:78:dd:8f:84:e6:79:27:8d:2c:e6: 84:4c:d2:30:ab:1c:48:e0:2d:69:65:13:15:39:e7: 1f:b6:d3:59:9b:eb:56:03:eb:16:ce:03:f2:b1:8d: 16:aa:0a:e3:f4:ad:f5:bf:b4:c6:d4:81:f4:f5:da: e6:b5:cd:9c:cc:62:21:c4:87:b6:57:ba:a6:72:f4: 33:19:8f:d6:fd:d4:e8:fa:74:a0:63:a2:ba:fe:e1: c6:73:c4:eb:91:a2:7d:f9:8e:f6:74:cd:92:f5:69: b6:3d:12:eb:4f:9a:7f:91:ef:20:c2:95:22:01:96: b2:70:67:2e:b9:3f:8a:d6:cc:bb:f3:09:c1:b9:9e: d5:2e:26:8b:a1:86:e9:ac:11:ed:06:d5:70:e5:d1: 4c:0c:24:74:85:12:2f:b7:c4:60:21:01:45:d0:f8: 94:05:a3:c1:f7:43:a9:22:c7:73:fa:11:a4:89:81: 74:2a:54:07:3f:5c:ec:7c:be:1d:9d:a7:bb:cc:1e: bc:5a:b4:ea:9a:12:30:eb:fa:77:c3:c7:e0:e6:da: fb:5b:c9:49:14:c3:a1:c7:11:5d:9e:f5:73:27:e8: 23:a2:e0:73:31:6a:1e:40:01:0b:99:31:7c:75:7c: 8b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:BF:31:36:D7:18:BB:6D:5C:E3:B8:77:2A:E7:E0:10:F8:19:56:71 X509v3 Authority Key Identifier: keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/y78xNtcYu21c47h3KufgEPgZVnE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.139.0/24 Signature Algorithm: sha256WithRSAEncryption a7:11:0f:97:43:fe:4b:77:9b:ec:bf:b5:5f:19:6b:a0:8f:3e: 1d:cd:d1:b4:53:41:60:af:d4:64:6e:45:29:69:6f:e6:e2:72: 38:90:5b:f0:74:c8:a9:28:94:7b:3d:52:79:99:80:63:2d:a0: d5:4e:55:ac:7e:4d:8e:e2:ee:c8:1e:a0:9b:4f:a7:4a:51:3a: ed:50:b9:20:ed:26:fe:4c:78:c9:ae:68:c5:e1:bc:d6:f1:45: e9:04:86:25:b4:bd:6c:a2:5e:66:61:9d:10:11:aa:58:35:89: 90:89:a1:59:f4:84:8c:d2:40:0c:4a:9a:dd:53:47:9f:89:ea: c1:dc:9b:9c:cc:8c:76:ff:5c:5d:29:ef:eb:ce:eb:61:06:99: 3f:53:79:d9:84:81:85:0d:3c:53:e7:ff:b6:d0:51:22:e0:cd: f1:53:89:a6:f3:61:58:9d:83:ea:bc:8d:0f:b5:09:2c:33:80: 14:e5:08:58:ec:f4:4d:7e:be:55:c1:62:40:97:7c:b1:16:d5: 7c:6f:2d:de:22:95:ea:8c:59:ed:b4:9b:71:71:eb:ac:0d:51: 40:42:00:e3:4c:c3:f1:d1:e1:87:81:ae:65:86:56:6d:fd:94: bd:87:07:54:a3:0f:e7:2d:43:7d:c3:d7:b5:40:db:e3:4c:38: 73:2a:bb:cb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6x8tZSKtXmIlnB8tXqql3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMzcxODMzNDFhMmFiNmRmM2M1OWVjODI3ZWQ3MTIwMGI1 YTYyNDQwHhcNMjYwMTAxMTgxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYmJmMzEzNmQ3MThiYjZkNWNlM2I4NzcyYWU3ZTAxMGY4MTk1NjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6U/F2r/HQFmHCij+KuT5gtFAvnjd j4TmeSeNLOaETNIwqxxI4C1pZRMVOecfttNZm+tWA+sWzgPysY0Wqgrj9K31v7TG 1IH09drmtc2czGIhxIe2V7qmcvQzGY/W/dTo+nSgY6K6/uHGc8TrkaJ9+Y72dM2S 9Wm2PRLrT5p/ke8gwpUiAZaycGcuuT+K1sy78wnBuZ7VLiaLoYbprBHtBtVw5dFM DCR0hRIvt8RgIQFF0PiUBaPB90OpIsdz+hGkiYF0KlQHP1zsfL4dnae7zB68WrTq mhIw6/p3w8fg5tr7W8lJFMOhxxFdnvVzJ+gjouBzMWoeQAELmTF8dXyLmQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMu/MTbXGLttXOO4dyrn4BD4GVZxMB8GA1UdIwQY MBaAFIs3GDNBoqtt88WeyCftcSALWmJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXpjWU0wR2lxMjN6eFo3SUotMXhJQXRhWWtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8xYzc4ZTMtNjdkNi00ZTkwLWFlYjUt MDg1MmNiMzUzMjkzLzEveTc4eE50Y1l1MjFjNDdoM0t1ZmdFUGdaVm5FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi8xYzc4ZTMtNjdkNi00ZTkwLWFlYjUtMDg1MmNiMzUzMjkz LzEvaXpjWU0wR2lxMjN6eFo3SUotMXhJQXRhWWtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZCLMA0G CSqGSIb3DQEBCwUAA4IBAQCnEQ+XQ/5Ld5vsv7VfGWugjz4dzdG0U0Fgr9RkbkUp aW/m4nI4kFvwdMipKJR7PVJ5mYBjLaDVTlWsfk2O4u7IHqCbT6dKUTrtULkg7Sb+ THjJrmjF4bzW8UXpBIYltL1sol5mYZ0QEapYNYmQiaFZ9ISM0kAMSprdU0efierB 3JuczIx2/1xdKe/rzuthBpk/U3nZhIGFDTxT5/+20FEi4M3xU4mm82FYnYPqvI0P tQksM4AU5QhY7PRNfr5VwWJAl3yxFtV8by3eIpXqjFnttJtxceusDVFAQgDjTMPx 0eGHga5lhlZt/ZS9hwdUow/nLUN9w9e1QNvjTDhzKrvL -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:58 2026 by rpki-client