This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/_RZuuIaoVL4ZscSmM6g3r1ENz24.roa File: _RZuuIaoVL4ZscSmM6g3r1ENz24.roa (raw, json) Hash identifier: zMhyfHJFmTEDKBoGH1NxoszfVQGyNpzD0AyGR7LdRGQ= Subject key identifier: FD:16:6E:B8:86:A8:54:BE:19:B1:C4:A6:33:A8:37:AF:51:0D:CF:6E Certificate issuer: /CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc Certificate serial: 019B7DCACF515292ABC623658AA58089D5B0 Authority key identifier: 4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/_RZuuIaoVL4ZscSmM6g3r1ENz24.roa Signing time: Fri 02 Jan 2026 08:20:01 +0000 ROA not before: Fri 02 Jan 2026 08:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 378 IP address blocks: 132.76.0.0/15 maxlen: 15 132.76.0.0/16 maxlen: 16 132.77.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.mft rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:cf:51:52:92:ab:c6:23:65:8a:a5:80:89:d5:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc Validity Not Before: Jan 2 08:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd166eb886a854be19b1c4a633a837af510dcf6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:51:4f:4e:d2:a8:83:22:d4:ad:bf:05:da:22: 38:a2:5a:88:60:bc:98:15:86:41:a3:23:c3:06:25: 78:b8:cc:d2:63:b5:97:33:a0:12:1b:a2:d8:bd:9a: 82:e3:0d:cd:6d:87:98:b6:43:5a:e9:11:5e:33:57: 08:df:91:83:e0:3e:c6:a2:c7:06:8c:55:ee:f0:6a: 32:60:89:e6:ae:36:63:61:09:44:c4:c2:c6:77:03: a5:c4:52:16:57:2c:5c:d5:64:57:69:85:f7:38:75: a8:6e:b0:4a:ec:19:36:71:4a:29:72:25:14:e1:3f: 9b:9a:35:af:33:3e:5d:70:dd:bc:f3:d0:2f:4f:f8: c3:05:06:aa:e9:b0:da:1e:a9:c2:88:64:de:59:41: 29:b3:4e:dd:e6:d0:43:a2:bf:21:2c:0a:10:28:9c: ba:3c:43:63:5f:be:58:2e:0d:d0:6f:b8:51:64:1f: d6:39:04:d4:7a:c0:d5:d6:b4:e1:11:aa:6d:be:46: 10:7e:8a:32:df:56:b3:df:d7:d3:1e:92:ee:36:d6: 99:ef:7a:04:db:9d:3c:8c:59:39:de:f0:10:4e:8c: 07:04:37:33:3e:76:b3:d8:35:03:5a:36:c9:e9:7e: 06:27:ae:fe:4e:fb:fb:a9:59:60:ac:7c:1b:97:4b: 38:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:16:6E:B8:86:A8:54:BE:19:B1:C4:A6:33:A8:37:AF:51:0D:CF:6E X509v3 Authority Key Identifier: keyid:4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/_RZuuIaoVL4ZscSmM6g3r1ENz24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.76.0.0/15 Signature Algorithm: sha256WithRSAEncryption 10:2a:be:63:44:55:90:8c:45:bb:56:a4:ac:f2:c7:9a:12:dd: d9:31:5c:35:fe:54:85:68:e9:e3:fc:98:79:4e:9f:8e:13:f1: be:20:b5:bf:7a:20:e0:02:45:de:96:0b:a5:60:e7:b6:eb:25: 0a:e8:7c:53:41:1b:1a:d5:23:c6:9c:22:cd:de:79:59:91:0a: 88:ee:a6:11:e3:d5:41:57:10:2d:76:ba:be:05:3c:63:fd:30: 1f:8a:1b:97:40:7b:84:3b:b3:2c:35:4b:8c:36:41:a7:6f:2f: e8:b6:f4:a1:8b:3c:ae:ea:19:88:e7:0b:43:b2:70:58:07:87: 3f:a8:7a:16:11:4f:31:4c:b3:f3:9b:4b:9a:19:c1:92:ef:56: c6:fc:a4:88:05:25:92:03:ca:fd:8b:e6:06:89:47:4f:10:0a: 11:51:9a:5e:5e:c5:5b:65:56:2c:62:53:34:79:50:f3:fa:05: 78:43:3f:98:9b:a4:c9:17:da:b9:cf:18:34:4d:39:a6:3a:6f: 9f:ee:e5:3b:c1:5c:d1:9a:08:5d:2b:96:4e:ec:36:1e:6a:97: c6:12:4b:05:40:1a:59:8f:8d:5b:19:ef:34:e7:d3:dc:03:c8: ab:3f:09:49:1f:5e:f0:3b:8d:c8:86:87:4d:4d:cf:89:b2:72: ad:46:07:a7 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt9ys9RUpKrxiNliqWAidWwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMzJiOWVmZjlmMDJjN2NhYmUxOTk1YTJkYjUwOWQ4MjU4 ZDM1ZmMwHhcNMjYwMTAyMDgyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDE2NmViODg2YTg1NGJlMTliMWM0YTYzM2E4MzdhZjUxMGRjZjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolFPTtKogyLUrb8F2iI4olqIYLyY FYZBoyPDBiV4uMzSY7WXM6ASG6LYvZqC4w3NbYeYtkNa6RFeM1cI35GD4D7GoscG jFXu8GoyYInmrjZjYQlExMLGdwOlxFIWVyxc1WRXaYX3OHWobrBK7Bk2cUopciUU 4T+bmjWvMz5dcN2889AvT/jDBQaq6bDaHqnCiGTeWUEps07d5tBDor8hLAoQKJy6 PENjX75YLg3Qb7hRZB/WOQTUesDV1rThEaptvkYQfooy31az39fTHpLuNtaZ73oE 2508jFk53vAQTowHBDczPnaz2DUDWjbJ6X4GJ67+Tvv7qVlgrHwbl0s4LwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFP0WbriGqFS+GbHEpjOoN69RDc9uMB8GA1UdIwQY MBaAFE8yue/58Cx8q+GZWi21CdgljTX8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHpLNTdfbndMSHlyNFpsYUxiVUoyQ1dOTmZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xNzJjNGUtNmY1ZC00NzVlLTliZTkt YzQwNzNjMTNmZjdjLzEvX1JadXVJYW9WTDRac2NTbU02ZzNyMUVOejI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xNzJjNGUtNmY1ZC00NzVlLTliZTktYzQwNzNjMTNmZjdj LzEvVHpLNTdfbndMSHlyNFpsYUxiVUoyQ1dOTmZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBhEwwDQYJ KoZIhvcNAQELBQADggEBABAqvmNEVZCMRbtWpKzyx5oS3dkxXDX+VIVo6eP8mHlO n44T8b4gtb96IOACRd6WC6Vg57brJQrofFNBGxrVI8acIs3eeVmRCojuphHj1UFX EC12ur4FPGP9MB+KG5dAe4Q7syw1S4w2QadvL+i29KGLPK7qGYjnC0OycFgHhz+o ehYRTzFMs/ObS5oZwZLvVsb8pIgFJZIDyv2L5gaJR08QChFRml5exVtlVixiUzR5 UPP6BXhDP5ibpMkX2rnPGDRNOaY6b5/u5TvBXNGaCF0rlk7sNh5ql8YSSwVAGlmP jVsZ7zTn09wDyKs/CUkfXvA7jciGh01Nz4mycq1GB6c= -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:05 2026 by rpki-client