This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/UrbBvwlHu4uSvs0RYok_mjpcJHQ.roa File: UrbBvwlHu4uSvs0RYok_mjpcJHQ.roa (raw, json) Hash identifier: zeDYSU9xRwUTl0+MDt61kl2HDTZsB77vtuzNNebemko= Subject key identifier: 52:B6:C1:BF:09:47:BB:8B:92:BE:CD:11:62:89:3F:9A:3A:5C:24:74 Certificate issuer: /CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc Certificate serial: 019B7DCAD0A2CB7FB36911E32E196A271294 Authority key identifier: 4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/UrbBvwlHu4uSvs0RYok_mjpcJHQ.roa Signing time: Fri 02 Jan 2026 08:20:02 +0000 ROA not before: Fri 02 Jan 2026 08:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55002 IP address blocks: 132.76.10.0/24 maxlen: 24 132.76.61.0/24 maxlen: 24 132.76.66.0/24 maxlen: 24 132.76.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.mft rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 08:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:d0:a2:cb:7f:b3:69:11:e3:2e:19:6a:27:12:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc Validity Not Before: Jan 2 08:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52b6c1bf0947bb8b92becd1162893f9a3a5c2474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:4b:6d:7d:89:07:ad:98:b8:26:8a:ae:01: 8b:f9:5b:ab:88:d6:d3:3f:ee:7f:9a:33:67:6f:11: ef:ed:0f:c0:7d:68:86:42:c5:b4:76:f8:41:99:86: 73:c6:f5:4e:48:d2:b9:c2:dc:40:73:96:02:cb:99: b5:a6:3d:2c:36:ac:c5:d0:b3:09:e9:f9:a8:69:bc: 40:7f:c4:05:4b:7a:6e:73:a6:29:f3:80:a1:17:51: 72:14:e9:19:89:4f:53:4b:13:89:64:21:7f:8d:0d: e4:80:f7:77:a4:9f:fd:31:0a:e4:43:d7:07:cc:dc: 47:00:43:d0:f7:b6:aa:d5:98:a1:dd:4c:12:ac:54: 7a:70:ae:08:d0:9f:73:c8:1c:c1:19:2b:e2:c7:61: 3a:5a:31:a4:44:45:af:ef:49:15:0b:33:a8:0e:02: da:f7:cd:eb:50:b7:46:d3:6a:0c:3c:41:04:ef:9a: 55:99:15:81:72:43:5c:25:f4:89:29:b8:26:61:c0: 01:55:6f:93:18:4e:31:d0:e6:93:d3:f3:de:c0:29: 1a:a5:31:2d:10:4d:01:9c:e7:7e:cc:ff:26:97:43: c1:14:9e:4e:a0:88:95:a8:25:ba:41:17:91:bb:7e: 24:dd:78:88:9e:33:e1:f7:77:f0:58:c0:c6:4e:18: 12:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B6:C1:BF:09:47:BB:8B:92:BE:CD:11:62:89:3F:9A:3A:5C:24:74 X509v3 Authority Key Identifier: keyid:4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/UrbBvwlHu4uSvs0RYok_mjpcJHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.76.10.0/24 132.76.61.0/24 132.76.66.0/24 132.76.150.0/24 Signature Algorithm: sha256WithRSAEncryption 94:2c:02:09:14:4c:3a:66:5b:62:73:b0:b0:0e:49:02:25:73: bf:81:bc:15:af:a6:4d:3f:7d:96:8f:9d:29:95:14:26:00:c1: 2d:6a:63:9f:8c:50:3d:5e:cd:c0:04:89:8b:3f:eb:f7:79:15: 35:7b:97:85:0a:32:fb:69:ae:11:c3:cc:c5:8c:05:c7:12:2b: cd:0d:62:43:58:24:ff:d0:3b:42:72:41:83:a3:42:01:e4:07: 00:4a:1e:22:83:4e:ef:86:ee:0a:1f:2b:bf:7e:37:f2:29:1a: c8:76:9c:68:46:33:33:39:72:fc:65:76:ae:e9:54:06:c2:f6: 49:98:a2:3d:53:b3:c1:f2:30:9b:7a:90:74:4a:20:9d:56:c9: 01:d3:fb:2f:0f:12:33:b0:03:19:0e:28:ed:4c:02:f2:23:df: 21:76:4e:9d:5a:2e:70:81:6f:f5:2d:a5:d7:b8:53:cc:08:c7: 11:1a:d7:3d:55:93:34:fd:ca:69:6c:d7:8e:7f:c1:f4:ef:8e: f4:a5:c2:fa:ca:86:08:65:43:91:84:dc:23:15:1b:f6:95:38: ba:ad:17:d8:34:7b:05:cc:bf:a6:2d:54:17:93:cc:53:d4:6e: 01:29:a0:13:fd:d6:b5:26:47:62:eb:e3:67:96:15:40:bc:de: 83:c3:79:02 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt9ytCiy3+zaRHjLhlqJxKUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMzJiOWVmZjlmMDJjN2NhYmUxOTk1YTJkYjUwOWQ4MjU4 ZDM1ZmMwHhcNMjYwMTAyMDgyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmI2YzFiZjA5NDdiYjhiOTJiZWNkMTE2Mjg5M2Y5YTNhNWMyNDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuslLbX2JB62YuCaKrgGL+VuriNbT P+5/mjNnbxHv7Q/AfWiGQsW0dvhBmYZzxvVOSNK5wtxAc5YCy5m1pj0sNqzF0LMJ 6fmoabxAf8QFS3puc6Yp84ChF1FyFOkZiU9TSxOJZCF/jQ3kgPd3pJ/9MQrkQ9cH zNxHAEPQ97aq1Zih3UwSrFR6cK4I0J9zyBzBGSvix2E6WjGkREWv70kVCzOoDgLa 983rULdG02oMPEEE75pVmRWBckNcJfSJKbgmYcABVW+TGE4x0OaT0/PewCkapTEt EE0BnOd+zP8ml0PBFJ5OoIiVqCW6QReRu34k3XiInjPh93fwWMDGThgSOwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFFK2wb8JR7uLkr7NEWKJP5o6XCR0MB8GA1UdIwQY MBaAFE8yue/58Cx8q+GZWi21CdgljTX8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHpLNTdfbndMSHlyNFpsYUxiVUoyQ1dOTmZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xNzJjNGUtNmY1ZC00NzVlLTliZTkt YzQwNzNjMTNmZjdjLzEvVXJiQnZ3bEh1NHVTdnMwUllva19tanBjSkhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xNzJjNGUtNmY1ZC00NzVlLTliZTktYzQwNzNjMTNmZjdj LzEvVHpLNTdfbndMSHlyNFpsYUxiVUoyQ1dOTmZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAhEwKAwQA hEw9AwQAhExCAwQAhEyWMA0GCSqGSIb3DQEBCwUAA4IBAQCULAIJFEw6Zltic7Cw DkkCJXO/gbwVr6ZNP32Wj50plRQmAMEtamOfjFA9Xs3ABImLP+v3eRU1e5eFCjL7 aa4Rw8zFjAXHEivNDWJDWCT/0DtCckGDo0IB5AcASh4ig07vhu4KHyu/fjfyKRrI dpxoRjMzOXL8ZXau6VQGwvZJmKI9U7PB8jCbepB0SiCdVskB0/svDxIzsAMZDijt TALyI98hdk6dWi5wgW/1LaXXuFPMCMcRGtc9VZM0/cppbNeOf8H07470pcL6yoYI ZUORhNwjFRv2lTi6rRfYNHsFzL+mLVQXk8xT1G4BKaAT/da1Jkdi6+NnlhVAvN6D w3kC -----END CERTIFICATE-----Generated at Tue Jan 20 14:13:51 2026 by rpki-client