This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/518VnmWEZJr-2jIg-KfLeD0sgyw.roa File: 518VnmWEZJr-2jIg-KfLeD0sgyw.roa (raw, json) Hash identifier: RD8VTa6kOTjrS6BBwfqOb6Pf/nOPIp0PRJRApQ+XhVw= Subject key identifier: E7:5F:15:9E:65:84:64:9A:FE:DA:32:20:F8:A7:CB:78:3D:2C:83:2C Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019AD9A04439BA87CFDDC2E4459BD7D7DE3A Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/518VnmWEZJr-2jIg-KfLeD0sgyw.roa Signing time: Mon 01 Dec 2025 11:15:50 +0000 ROA not before: Mon 01 Dec 2025 11:15:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 25198 IP address blocks: 151.240.152.0/24 maxlen: 24 151.240.226.0/24 maxlen: 24 151.242.128.0/24 maxlen: 24 151.243.223.0/24 maxlen: 24 151.245.165.0/24 maxlen: 24 151.247.145.0/24 maxlen: 24 151.247.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d9:a0:44:39:ba:87:cf:dd:c2:e4:45:9b:d7:d7:de:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Dec 1 11:15:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=e75f159e6584649afeda3220f8a7cb783d2c832c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:40:07:a1:40:73:e0:60:2c:ad:b1:ab:66:48: 6a:9c:1c:73:b5:09:de:29:47:6b:6b:34:f0:8d:65: 15:f6:0c:2b:1c:eb:5a:a7:36:8a:9a:c4:7f:29:c9: 79:f0:7e:ff:ef:d2:57:34:35:b0:30:52:93:bc:a4: ff:6c:2c:ad:a2:4f:ea:34:8b:84:12:cc:73:6a:33: 65:1c:00:e7:6a:42:78:4e:ac:04:0a:0a:78:06:e4: 95:f5:4c:c2:2d:2f:1c:8f:4d:9b:10:0a:7b:57:17: d7:d6:3c:38:1a:5f:43:9d:77:d9:b7:a3:54:a5:9e: 26:0d:e3:cc:90:8b:ec:3b:19:e1:5a:c4:5f:4f:6b: af:c3:0f:42:98:91:22:6c:51:b9:77:3e:29:3d:37: cc:0d:16:ca:6d:6d:cf:e4:68:ca:b4:a2:57:b6:f2: a8:24:7f:5f:31:85:e7:30:89:9a:24:42:51:bf:ba: 48:94:77:be:1c:21:02:e4:30:0f:2d:d8:d9:f8:fb: 79:8e:7a:5a:2f:d5:e7:51:76:ef:3b:90:53:5a:4a: 81:5f:23:31:33:13:2f:4e:b8:02:68:88:8f:fc:ac: 49:49:b3:38:b9:e1:f7:6e:a0:e4:70:88:67:ec:76: 97:72:7f:a6:0c:5e:b4:05:0e:a9:0d:d6:41:f0:b8: d0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5F:15:9E:65:84:64:9A:FE:DA:32:20:F8:A7:CB:78:3D:2C:83:2C X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/518VnmWEZJr-2jIg-KfLeD0sgyw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.240.152.0/24 151.240.226.0/24 151.242.128.0/24 151.243.223.0/24 151.245.165.0/24 151.247.145.0/24 151.247.238.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:1d:97:57:96:3c:ea:9d:7a:e6:1d:0a:fa:f7:3e:4c:58:da: 88:5d:41:19:f5:54:41:a1:d3:23:ad:b6:2e:05:4e:e0:16:4f: 29:fa:09:16:9a:c3:a9:f5:62:34:77:66:99:45:cd:61:08:06: 35:0a:da:f8:62:60:51:ab:e5:1a:9f:ab:d8:03:55:9a:dd:fa: 00:a0:f4:f7:bc:d5:fc:ca:b7:d3:f6:6e:43:f8:e2:fa:e5:3e: 53:92:dc:40:e9:5c:31:41:86:1a:10:4b:54:d7:54:01:e2:7a: 21:ef:4d:ca:29:ad:d9:af:2e:1e:95:ab:c1:ba:37:82:ce:43: 41:1a:35:f0:ac:c6:d9:73:7a:6d:9a:b1:0b:01:a7:97:e6:68: ec:25:30:df:df:25:e2:dc:83:e8:81:fd:93:4c:70:6a:0c:f9: fa:95:77:5c:e3:4e:7c:57:3a:5b:03:c9:d3:4b:a3:83:bd:6f: 08:81:ba:36:cf:ca:ac:d8:70:9e:49:65:18:59:4e:84:4a:df: 74:96:c9:ee:7e:49:2c:de:3a:ea:f6:ad:0e:be:07:f7:37:93: 58:2e:3e:d0:cc:6c:e3:bb:af:19:6c:97:a7:bf:2b:a1:2c:13: 00:76:f2:d2:f7:31:8e:33:c8:d3:f4:13:5d:17:2e:89:b4:37: 2a:02:5e:cc -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZrZoEQ5uofP3cLkRZvX1946MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMjAxMTExNTUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzVmMTU5ZTY1ODQ2NDlhZmVkYTMyMjBmOGE3Y2I3ODNkMmM4MzJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0AHoUBz4GAsrbGrZkhqnBxztQne KUdrazTwjWUV9gwrHOtapzaKmsR/Kcl58H7/79JXNDWwMFKTvKT/bCytok/qNIuE EsxzajNlHADnakJ4TqwECgp4BuSV9UzCLS8cj02bEAp7VxfX1jw4Gl9DnXfZt6NU pZ4mDePMkIvsOxnhWsRfT2uvww9CmJEibFG5dz4pPTfMDRbKbW3P5GjKtKJXtvKo JH9fMYXnMImaJEJRv7pIlHe+HCEC5DAPLdjZ+Pt5jnpaL9XnUXbvO5BTWkqBXyMx MxMvTrgCaIiP/KxJSbM4ueH3bqDkcIhn7HaXcn+mDF60BQ6pDdZB8LjQEwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFOdfFZ5lhGSa/toyIPiny3g9LIMsMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvNTE4Vm5tV0VaSnItMmpJZy1LZkxlRDBzZ3l3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAl/CYAwQA l/DiAwQAl/KAAwQAl/PfAwQAl/WlAwQAl/eRAwQAl/fuMA0GCSqGSIb3DQEBCwUA A4IBAQA/HZdXljzqnXrmHQr69z5MWNqIXUEZ9VRBodMjrbYuBU7gFk8p+gkWmsOp 9WI0d2aZRc1hCAY1Ctr4YmBRq+Uan6vYA1Wa3foAoPT3vNX8yrfT9m5D+OL65T5T ktxA6VwxQYYaEEtU11QB4noh703KKa3Zry4elavBujeCzkNBGjXwrMbZc3ptmrEL AaeX5mjsJTDf3yXi3IPogf2TTHBqDPn6lXdc4058VzpbA8nTS6ODvW8Igbo2z8qs 2HCeSWUYWU6ESt90lsnufkks3jrq9q0Ovgf3N5NYLj7QzGzju68ZbJenvyuhLBMA dvLS9zGOM8jT9BNdFy6JtDcqAl7M -----END CERTIFICATE-----Generated at Wed Dec 3 09:41:55 2025 by rpki-client