This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/mjm_jL6FnCZyLJAmMfTaUZL_DF4.roa File: mjm_jL6FnCZyLJAmMfTaUZL_DF4.roa (raw, json) Hash identifier: 7TBTThhJXxwuqJMKV3smo+3dSUEAzVVTW36ntOu96Wo= Subject key identifier: 9A:39:BF:8C:BE:85:9C:26:72:2C:90:26:31:F4:DA:51:92:FF:0C:5E Certificate issuer: /CN=53b1a8ebc3ecf7f5db7f6cacd00e920af85ae8b4 Certificate serial: 019B7F150DE35951E930629877DC235FFB6D Authority key identifier: 53:B1:A8:EB:C3:EC:F7:F5:DB:7F:6C:AC:D0:0E:92:0A:F8:5A:E8:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/mjm_jL6FnCZyLJAmMfTaUZL_DF4.roa Signing time: Fri 02 Jan 2026 14:20:44 +0000 ROA not before: Fri 02 Jan 2026 14:20:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31078 IP address blocks: 31.220.136.0/21 maxlen: 21 193.34.24.0/22 maxlen: 22 217.115.0.0/20 maxlen: 20 2a00:1328::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.mft rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:0d:e3:59:51:e9:30:62:98:77:dc:23:5f:fb:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53b1a8ebc3ecf7f5db7f6cacd00e920af85ae8b4 Validity Not Before: Jan 2 14:20:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9a39bf8cbe859c26722c902631f4da5192ff0c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f9:91:b0:fc:00:6c:3e:b1:7a:81:4c:65:0b: 60:a1:65:30:46:de:53:e2:6b:0f:a6:82:2a:6d:0c: a1:69:56:c2:f9:81:90:52:7c:69:85:18:99:bd:c7: d2:13:80:6a:a0:a0:bc:60:e0:0e:d7:69:0e:ac:67: f1:3a:48:c8:8e:21:77:a4:fe:68:e8:1f:f7:b3:08: e4:0c:64:49:f9:57:c4:a9:73:5f:70:0c:2f:59:cf: 47:d2:ad:4f:9e:14:50:ce:52:4e:eb:de:09:c4:49: 72:49:db:57:8b:a9:4a:da:dd:ca:3d:07:d7:6c:43: ba:f4:5f:95:4e:23:47:80:8f:b8:fe:df:e2:54:ae: 9b:db:97:9c:36:95:ba:53:1a:82:9e:23:8d:90:c9: 32:f7:7c:22:03:57:f8:5d:e6:38:8a:0b:06:b7:7c: b8:6a:54:09:42:bb:4c:a4:67:e6:82:2c:5e:94:bb: b4:10:7f:f9:c6:b8:21:86:ad:fd:13:9f:70:91:6f: ee:38:43:c0:52:21:59:d5:36:ed:3e:e9:e4:dc:31: 01:f1:47:bf:91:89:d8:01:05:b5:04:37:67:e4:cc: d4:fc:dd:59:ef:e4:2b:b1:c3:7e:f0:52:68:ea:2b: 27:97:92:1e:20:1b:2c:af:d2:ee:f3:db:f3:c0:22: 16:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:39:BF:8C:BE:85:9C:26:72:2C:90:26:31:F4:DA:51:92:FF:0C:5E X509v3 Authority Key Identifier: keyid:53:B1:A8:EB:C3:EC:F7:F5:DB:7F:6C:AC:D0:0E:92:0A:F8:5A:E8:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/mjm_jL6FnCZyLJAmMfTaUZL_DF4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.136.0/21 193.34.24.0/22 217.115.0.0/20 IPv6: 2a00:1328::/32 Signature Algorithm: sha256WithRSAEncryption 7c:33:b4:5c:a8:63:54:15:21:7d:38:11:49:fc:2f:36:c0:01: 24:51:37:0d:b6:6f:ee:dc:94:11:31:d6:3a:b2:55:00:a5:ae: 0d:5e:47:f4:0f:3f:5d:9f:6d:1b:6d:4e:0f:f4:5a:fc:c5:ad: af:d3:40:ef:95:4b:53:8e:d9:92:ea:26:bf:75:61:98:e2:dd: 29:3e:12:27:1a:c4:1d:9f:05:b8:8b:03:db:ee:55:9b:1c:35: 8a:dd:f3:43:e1:de:59:86:c8:a2:e1:54:06:a3:09:c0:5e:1f: ef:50:ad:e6:7d:95:41:c7:17:e9:bf:78:8d:51:d9:67:6f:72: 7a:cd:44:97:fb:50:1e:89:41:63:d9:84:c4:fc:29:aa:00:75: 49:32:08:ae:a0:e1:cb:bd:96:85:1c:dd:e3:d8:51:69:99:35: b5:e2:af:99:60:9f:ad:46:eb:db:7d:3a:76:6c:99:f5:07:e6: fa:d9:fa:0f:ca:82:e4:b3:19:c1:b0:e1:f1:c1:0f:d6:cd:27: 6c:bc:cc:43:13:8c:5a:f8:c5:50:a1:21:7b:3f:95:a5:13:35: 80:0c:c8:ca:6d:cc:e6:2b:ca:b9:fb:ab:f6:2f:41:02:8e:f5: ee:89:3e:5b:df:67:fd:3a:ce:80:51:66:95:b1:5b:52:b7:bc: b8:77:27:ec -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt/FQ3jWVHpMGKYd9wjX/ttMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYjFhOGViYzNlY2Y3ZjVkYjdmNmNhY2QwMGU5MjBhZjg1 YWU4YjQwHhcNMjYwMTAyMTQyMDQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YTM5YmY4Y2JlODU5YzI2NzIyYzkwMjYzMWY0ZGE1MTkyZmYwYzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/mRsPwAbD6xeoFMZQtgoWUwRt5T 4msPpoIqbQyhaVbC+YGQUnxphRiZvcfSE4BqoKC8YOAO12kOrGfxOkjIjiF3pP5o 6B/3swjkDGRJ+VfEqXNfcAwvWc9H0q1PnhRQzlJO694JxElySdtXi6lK2t3KPQfX bEO69F+VTiNHgI+4/t/iVK6b25ecNpW6UxqCniONkMky93wiA1f4XeY4igsGt3y4 alQJQrtMpGfmgixelLu0EH/5xrghhq39E59wkW/uOEPAUiFZ1TbtPunk3DEB8Ue/ kYnYAQW1BDdn5MzU/N1Z7+QrscN+8FJo6isnl5IeIBssr9Lu89vzwCIWsQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFJo5v4y+hZwmciyQJjH02lGS/wxeMB8GA1UdIwQY MBaAFFOxqOvD7Pf1239srNAOkgr4Wui0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTdHbzY4UHM5X1hiZjJ5czBBNlNDdmhhNkxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8wNzA2MzAtNTIzNC00OWM0LTg0ZmUt MTViZGE2Yjg2N2NiLzEvbWptX2pMNkZuQ1p5TEpBbU1mVGFVWkxfREY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8wNzA2MzAtNTIzNC00OWM0LTg0ZmUtMTViZGE2Yjg2N2Ni LzEvVTdHbzY4UHM5X1hiZjJ5czBBNlNDdmhhNkxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQDH9yIAwQC wSIYAwQE2XMAMA0EAgACMAcDBQAqABMoMA0GCSqGSIb3DQEBCwUAA4IBAQB8M7Rc qGNUFSF9OBFJ/C82wAEkUTcNtm/u3JQRMdY6slUApa4NXkf0Dz9dn20bbU4P9Fr8 xa2v00DvlUtTjtmS6ia/dWGY4t0pPhInGsQdnwW4iwPb7lWbHDWK3fND4d5Zhsii 4VQGownAXh/vUK3mfZVBxxfpv3iNUdlnb3J6zUSX+1AeiUFj2YTE/CmqAHVJMgiu oOHLvZaFHN3j2FFpmTW14q+ZYJ+tRuvbfTp2bJn1B+b62foPyoLksxnBsOHxwQ/W zSdsvMxDE4xa+MVQoSF7P5WlEzWADMjKbczmK8q5+6v2L0ECjvXuiT5b32f9Os6A UWaVsVtSt7y4dyfs -----END CERTIFICATE-----Generated at Mon Jan 26 06:33:29 2026 by rpki-client