This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/IDKw72UDV4fBvKey2_GXU4YBDRA.roa File: IDKw72UDV4fBvKey2_GXU4YBDRA.roa (raw, json) Hash identifier: qTZQ2NPnaEey/BLWGhLNERBs92D0ttnILDap5h0iO4A= Subject key identifier: 20:32:B0:EF:65:03:57:87:C1:BC:A7:B2:DB:F1:97:53:86:01:0D:10 Certificate issuer: /CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc Certificate serial: 019C037E3BB4FF28BA286F66B0FA534E29A7 Authority key identifier: 4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/IDKw72UDV4fBvKey2_GXU4YBDRA.roa Signing time: Wed 28 Jan 2026 07:25:30 +0000 ROA not before: Wed 28 Jan 2026 07:25:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 378 IP address blocks: 132.76.0.0/15 maxlen: 24 132.76.0.0/16 maxlen: 24 132.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.mft rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 10:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:03:7e:3b:b4:ff:28:ba:28:6f:66:b0:fa:53:4e:29:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc Validity Not Before: Jan 28 07:25:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2032b0ef65035787c1bca7b2dbf1975386010d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b8:25:1e:85:b5:f1:77:37:7c:a0:c7:af:ef: 19:61:e1:89:5f:e3:83:71:36:cf:a9:14:01:d4:1a: d7:b3:95:4e:9c:45:9a:97:c5:1d:f8:f4:f8:19:b1: 89:72:af:62:7c:ea:be:51:e5:b4:90:80:2e:a0:74: e8:00:53:4e:27:06:1f:2a:1b:2e:b8:8c:7d:71:71: ba:f0:8a:bf:aa:67:a0:39:25:28:60:60:7a:59:4e: 30:d5:25:dd:7a:2f:06:3b:89:23:52:c5:3e:6b:78: b4:6d:61:36:d0:5a:4a:d8:62:bb:e4:2b:64:92:d5: 76:12:1b:05:be:1b:95:52:fe:5a:5b:4a:12:59:bf: ee:37:01:b4:6a:08:a4:ce:a2:87:ab:74:79:d6:14: e1:5b:8f:fa:29:44:93:41:0c:6e:8b:39:53:72:84: 03:9d:af:85:53:5a:ff:89:e2:bf:a4:6a:91:e9:bb: 1d:f5:91:47:51:02:3a:2c:bd:64:50:7a:0d:81:e8: 1e:5a:c7:57:ca:ad:00:7c:e8:25:e4:c4:91:b1:ed: bb:90:cb:bd:a4:2a:14:9a:33:ba:a3:46:b8:e2:55: 51:3b:60:3a:a1:69:54:b4:b9:6d:15:60:74:c1:0b: 69:ce:b4:40:ca:91:37:9e:51:1c:18:4c:b4:4e:cb: 85:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:32:B0:EF:65:03:57:87:C1:BC:A7:B2:DB:F1:97:53:86:01:0D:10 X509v3 Authority Key Identifier: keyid:4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/IDKw72UDV4fBvKey2_GXU4YBDRA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.76.0.0/15 Signature Algorithm: sha256WithRSAEncryption 44:b9:50:1b:ed:c0:6d:aa:81:eb:0e:18:08:d1:d1:bc:4e:53: ac:1b:06:77:37:ed:8c:02:e7:21:72:cd:13:d4:6f:f9:9e:70: c0:04:da:ab:b7:59:a5:ad:a1:3b:c6:7f:99:fb:26:21:b2:ba: ce:ad:15:d8:2c:40:ef:a3:57:91:bd:cc:85:0b:c4:fc:bf:3a: 3d:f0:0b:ac:4f:03:0a:90:44:1a:01:88:cb:21:6f:96:a2:c5: d9:20:b2:2d:0e:ec:e7:74:21:b0:b0:74:d1:a3:27:ce:ab:9f: a3:8f:6a:1a:e7:b6:75:7a:28:14:3c:3a:01:5b:05:cf:bc:ba: 35:f9:f1:20:e0:3f:4b:2c:da:2a:90:d0:97:1d:c4:67:31:21: 2a:a3:a4:3d:49:1e:98:67:eb:e7:d8:f1:33:15:0c:72:d5:7c: 10:b3:0f:9c:fe:ac:93:55:d4:fd:a8:03:79:6c:7f:15:02:12: 07:13:cf:c6:dd:04:f6:e0:9c:a2:26:7f:4c:5c:67:1e:e9:09: 12:32:69:ed:54:93:9a:59:07:f8:09:47:ac:43:8e:7f:ce:43: 29:dd:9d:d2:f7:c3:96:6d:ab:6c:94:56:07:c3:67:db:f9:b7: 46:7f:0e:15:df:5c:a3:1a:f3:09:1c:8a:5a:fb:96:f3:20:a6: 2c:63:dc:3c -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZwDfju0/yi6KG9msPpTTimnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMzJiOWVmZjlmMDJjN2NhYmUxOTk1YTJkYjUwOWQ4MjU4 ZDM1ZmMwHhcNMjYwMTI4MDcyNTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDMyYjBlZjY1MDM1Nzg3YzFiY2E3YjJkYmYxOTc1Mzg2MDEwZDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprglHoW18Xc3fKDHr+8ZYeGJX+OD cTbPqRQB1BrXs5VOnEWal8Ud+PT4GbGJcq9ifOq+UeW0kIAuoHToAFNOJwYfKhsu uIx9cXG68Iq/qmegOSUoYGB6WU4w1SXdei8GO4kjUsU+a3i0bWE20FpK2GK75Ctk ktV2EhsFvhuVUv5aW0oSWb/uNwG0agikzqKHq3R51hThW4/6KUSTQQxuizlTcoQD na+FU1r/ieK/pGqR6bsd9ZFHUQI6LL1kUHoNgegeWsdXyq0AfOgl5MSRse27kMu9 pCoUmjO6o0a44lVRO2A6oWlUtLltFWB0wQtpzrRAypE3nlEcGEy0TsuFqwIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFCAysO9lA1eHwbynstvxl1OGAQ0QMB8GA1UdIwQY MBaAFE8yue/58Cx8q+GZWi21CdgljTX8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHpLNTdfbndMSHlyNFpsYUxiVUoyQ1dOTmZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xNzJjNGUtNmY1ZC00NzVlLTliZTkt YzQwNzNjMTNmZjdjLzEvSURLdzcyVURWNGZCdktleTJfR1hVNFlCRFJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xNzJjNGUtNmY1ZC00NzVlLTliZTktYzQwNzNjMTNmZjdj LzEvVHpLNTdfbndMSHlyNFpsYUxiVUoyQ1dOTmZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBhEwwDQYJ KoZIhvcNAQELBQADggEBAES5UBvtwG2qgesOGAjR0bxOU6wbBnc37YwC5yFyzRPU b/mecMAE2qu3WaWtoTvGf5n7JiGyus6tFdgsQO+jV5G9zIULxPy/Oj3wC6xPAwqQ RBoBiMshb5aixdkgsi0O7Od0IbCwdNGjJ86rn6OPahrntnV6KBQ8OgFbBc+8ujX5 8SDgP0ss2iqQ0JcdxGcxISqjpD1JHphn6+fY8TMVDHLVfBCzD5z+rJNV1P2oA3ls fxUCEgcTz8bdBPbgnKImf0xcZx7pCRIyae1Uk5pZB/gJR6xDjn/OQyndndL3w5Zt q2yUVgfDZ9v5t0Z/DhXfXKMa8wkcilr7lvMgpixj3Dw= -----END CERTIFICATE-----Generated at Sat Feb 7 20:22:41 2026 by rpki-client