This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/mlJz0jAjXSbwKoBR591-5IstuJM.roa File: mlJz0jAjXSbwKoBR591-5IstuJM.roa (raw, json) Hash identifier: 2XZpPqD+ykYjyZg4D1aiqzw/ZhMry8rNdzsEz73FgnY= Subject key identifier: 9A:52:73:D2:30:23:5D:26:F0:2A:80:51:E7:DD:7E:E4:8B:2D:B8:93 Certificate issuer: /CN=efa5b62347a1b64cea49a2ab3ab4983c34861fb2 Certificate serial: 019BE578617CD9A0F105A9417B094305CE49 Authority key identifier: EF:A5:B6:23:47:A1:B6:4C:EA:49:A2:AB:3A:B4:98:3C:34:86:1F:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/mlJz0jAjXSbwKoBR591-5IstuJM.roa Signing time: Thu 22 Jan 2026 11:30:30 +0000 ROA not before: Thu 22 Jan 2026 11:30:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216416 IP address blocks: 157.173.16.0/21 maxlen: 21 157.173.25.0/24 maxlen: 24 157.173.26.0/24 maxlen: 24 185.207.136.0/24 maxlen: 24 185.207.137.0/24 maxlen: 24 185.207.138.0/24 maxlen: 24 185.207.139.0/24 maxlen: 24 188.137.152.0/24 maxlen: 24 188.137.153.0/24 maxlen: 24 188.137.154.0/24 maxlen: 24 188.137.155.0/24 maxlen: 24 188.137.156.0/24 maxlen: 24 188.137.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.mft rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e5:78:61:7c:d9:a0:f1:05:a9:41:7b:09:43:05:ce:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=efa5b62347a1b64cea49a2ab3ab4983c34861fb2 Validity Not Before: Jan 22 11:30:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a5273d230235d26f02a8051e7dd7ee48b2db893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ae:67:b1:50:dd:32:e1:5f:a2:34:84:0a:b5: 27:25:99:77:98:c5:0c:86:d7:9d:70:09:ac:65:0d: 0a:44:24:34:0b:53:a9:bf:f5:c7:b9:ad:a7:6d:d9: 56:6d:a1:6f:0d:72:c1:37:01:df:01:11:b1:6b:ac: 72:41:ce:5d:91:21:30:a7:22:ad:f5:70:6a:3a:92: ad:7d:39:f2:98:69:2a:9c:48:e7:93:5c:da:f5:07: e7:63:0d:5a:a5:f8:39:38:35:1f:80:dc:43:7d:ae: 5c:14:ed:21:a5:d0:f8:d8:5e:5c:26:2e:db:13:41: 3c:6c:b5:be:05:15:be:fa:74:ed:fe:bc:54:48:d9: d1:df:fa:9f:04:fc:6a:59:a2:33:83:cb:28:26:6a: aa:d3:07:41:28:50:d2:54:34:ab:05:0d:5b:78:bc: 79:fe:54:0d:bd:7e:7c:98:97:e7:94:79:97:e6:23: df:b1:94:2f:45:f5:8a:41:cf:77:02:35:14:2b:e0: 98:41:2b:b0:3a:54:1d:29:a4:8f:7a:89:5b:dc:c5: c1:48:91:2b:61:b6:ef:72:f4:3e:ef:6b:9c:e1:52: c8:49:25:94:d3:0a:f4:5e:bc:aa:12:0a:3c:b9:84: a1:4f:c5:87:52:0b:32:64:c3:e7:7d:b9:fd:9e:67: 5d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:52:73:D2:30:23:5D:26:F0:2A:80:51:E7:DD:7E:E4:8B:2D:B8:93 X509v3 Authority Key Identifier: keyid:EF:A5:B6:23:47:A1:B6:4C:EA:49:A2:AB:3A:B4:98:3C:34:86:1F:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76W2I0ehtkzqSaKrOrSYPDSGH7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/mlJz0jAjXSbwKoBR591-5IstuJM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/24db21-efb9-407e-96ad-013d2a11c0a5/1/76W2I0ehtkzqSaKrOrSYPDSGH7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.173.16.0/21 157.173.25.0-157.173.26.255 185.207.136.0/22 188.137.152.0-188.137.157.255 Signature Algorithm: sha256WithRSAEncryption 2e:f8:e4:cc:27:a9:5a:e0:dd:0e:e3:e1:29:ad:9b:00:ad:ea: 76:4c:be:65:69:21:4b:3e:49:72:7b:93:56:0f:a3:2e:16:ab: de:ea:07:9f:19:2c:d1:34:e1:20:d3:ce:5e:2e:f1:45:9d:12: 69:5a:57:ee:60:f7:a7:05:8f:c3:76:34:da:a1:8a:01:b2:11: 5d:97:cb:ce:ba:97:6e:bb:8d:5b:9c:09:b4:86:98:6d:e3:3b: 24:85:33:85:77:60:59:f5:1c:e2:07:f9:49:68:ea:8c:d1:34: dd:8c:0c:4d:ef:89:1c:84:6f:91:9c:be:75:58:c7:27:0f:9b: 05:33:72:9f:49:b8:85:05:e0:ce:7a:75:29:af:a8:9c:57:24: a2:a1:6d:48:b7:fb:a9:11:03:82:f0:f7:f5:1b:84:2f:aa:e8: 3f:08:22:44:3b:27:18:85:a9:74:63:1b:1f:fd:5b:97:81:a7: 69:ea:b4:7b:ac:53:91:bb:cd:18:64:4e:01:cd:28:4a:1e:0a: bf:b6:a8:06:90:a2:70:87:d5:1c:7d:5e:d5:e0:6b:e8:de:5b: ac:2e:d9:79:53:51:f1:2f:ee:62:36:4a:ca:36:e3:2b:28:ab: fa:95:e5:c7:01:11:ca:6e:ff:49:db:ab:d0:05:a7:9f:18:23: 9f:85:84:55 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZvleGF82aDxBalBewlDBc5JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmYTViNjIzNDdhMWI2NGNlYTQ5YTJhYjNhYjQ5ODNjMzQ4 NjFmYjIwHhcNMjYwMTIyMTEzMDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTUyNzNkMjMwMjM1ZDI2ZjAyYTgwNTFlN2RkN2VlNDhiMmRiODkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7a5nsVDdMuFfojSECrUnJZl3mMUM htedcAmsZQ0KRCQ0C1Opv/XHua2nbdlWbaFvDXLBNwHfARGxa6xyQc5dkSEwpyKt 9XBqOpKtfTnymGkqnEjnk1za9QfnYw1apfg5ODUfgNxDfa5cFO0hpdD42F5cJi7b E0E8bLW+BRW++nTt/rxUSNnR3/qfBPxqWaIzg8soJmqq0wdBKFDSVDSrBQ1beLx5 /lQNvX58mJfnlHmX5iPfsZQvRfWKQc93AjUUK+CYQSuwOlQdKaSPeolb3MXBSJEr YbbvcvQ+72uc4VLISSWU0wr0XryqEgo8uYShT8WHUgsyZMPnfbn9nmddYQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFJpSc9IwI10m8CqAUefdfuSLLbiTMB8GA1UdIwQY MBaAFO+ltiNHobZM6kmiqzq0mDw0hh+yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzZXMkkwZWh0a3pxU2FLck9yU1lQRFNHSDdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yNGRiMjEtZWZiOS00MDdlLTk2YWQt MDEzZDJhMTFjMGE1LzEvbWxKejBqQWpYU2J3S29CUjU5MS01SXN0dUpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8yNGRiMjEtZWZiOS00MDdlLTk2YWQtMDEzZDJhMTFjMGE1 LzEvNzZXMkkwZWh0a3pxU2FLck9yU1lQRFNHSDdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQDna0QMAwD BACdrRkDBACdrRoDBAK5z4gwDAMEA7yJmAMEAbyJnDANBgkqhkiG9w0BAQsFAAOC AQEALvjkzCepWuDdDuPhKa2bAK3qdky+ZWkhSz5JcnuTVg+jLhar3uoHnxks0TTh INPOXi7xRZ0SaVpX7mD3pwWPw3Y02qGKAbIRXZfLzrqXbruNW5wJtIaYbeM7JIUz hXdgWfUc4gf5SWjqjNE03YwMTe+JHIRvkZy+dVjHJw+bBTNyn0m4hQXgznp1Ka+o nFckoqFtSLf7qREDgvD39RuEL6roPwgiRDsnGIWpdGMbH/1bl4Gnaeq0e6xTkbvN GGROAc0oSh4Kv7aoBpCicIfVHH1e1eBr6N5brC7ZeVNR8S/uYjZKyjbjKyir+pXl xwERym7/Sdur0AWnnxgjn4WEVQ== -----END CERTIFICATE-----Generated at Sun Jan 25 10:21:05 2026 by rpki-client