This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/VB5KYuasiChi-RXnXqGvu7PonwQ.roa File: VB5KYuasiChi-RXnXqGvu7PonwQ.roa (raw, json) Hash identifier: VqeblRCO0egL6OvDxAhiaevh8nyNHfhppy+6uCfBGbw= Subject key identifier: 54:1E:4A:62:E6:AC:88:28:62:F9:15:E7:5E:A1:AF:BB:B3:E8:9F:04 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019ACF3292F14504C6D0CCF5F4E65FDDEB88 Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/VB5KYuasiChi-RXnXqGvu7PonwQ.roa Signing time: Sat 29 Nov 2025 10:39:49 +0000 ROA not before: Sat 29 Nov 2025 10:39:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 174 IP address blocks: 151.240.205.0/24 maxlen: 24 151.241.119.0/24 maxlen: 24 151.241.122.0/24 maxlen: 24 151.241.123.0/24 maxlen: 24 151.241.125.0/24 maxlen: 24 151.243.227.0/24 maxlen: 24 151.243.235.0/24 maxlen: 24 151.243.241.0/24 maxlen: 24 151.245.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:cf:32:92:f1:45:04:c6:d0:cc:f5:f4:e6:5f:dd:eb:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Nov 29 10:39:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=541e4a62e6ac882862f915e75ea1afbbb3e89f04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:42:57:04:1e:a8:93:a3:f1:1f:8f:42:3f:92: 8d:85:c1:59:65:f7:fe:d6:7d:79:b7:72:bb:b0:da: 19:d2:42:06:55:b5:c4:bc:8f:b0:6e:82:dc:94:f3: 0b:42:1c:bb:bf:47:57:89:b0:f2:2f:5d:ac:a1:a3: 3b:62:70:e4:73:97:9e:13:6e:ad:c0:43:fa:c6:3e: a0:c3:af:9e:e6:9c:4e:a7:32:6f:c5:84:cc:83:aa: 66:7d:61:ba:87:d4:4d:30:e4:48:df:ae:81:f0:23: b0:60:72:09:ee:24:5c:39:c6:e7:c9:03:bb:b0:1f: e1:b0:57:0c:8b:11:35:ac:d7:b8:18:8e:bb:74:99: 6d:74:8a:05:b1:d9:a7:a3:a4:2a:84:20:74:19:b4: f7:aa:7a:c5:41:9b:fb:e5:cb:31:ed:62:04:8d:20: a6:51:ba:e1:0b:30:c7:e2:44:5b:a9:40:3f:b1:2c: 63:05:66:a9:ae:d0:91:7f:da:57:d4:9b:2d:1b:3c: 14:b4:0d:61:34:2b:0f:d2:60:6a:ad:d9:2e:2c:7a: e4:95:30:57:75:5f:0d:fe:1a:da:7f:49:82:12:19: 0a:26:a5:57:3f:dc:f9:e5:f4:a6:7b:b5:5f:82:85: 04:b1:de:62:df:aa:88:aa:ae:26:ea:aa:61:8d:f3: bd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:1E:4A:62:E6:AC:88:28:62:F9:15:E7:5E:A1:AF:BB:B3:E8:9F:04 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/VB5KYuasiChi-RXnXqGvu7PonwQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.240.205.0/24 151.241.119.0/24 151.241.122.0/23 151.241.125.0/24 151.243.227.0/24 151.243.235.0/24 151.243.241.0/24 151.245.120.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:c3:9f:21:3f:b8:71:61:43:a6:ae:96:bc:38:35:ff:1f:92: 43:3d:fb:66:29:b4:f7:fd:4b:f8:f8:c4:8e:d9:04:ae:3f:0e: 13:81:b8:20:c3:fd:3f:07:8c:75:e9:24:6d:62:d5:e3:ad:57: 19:f2:bc:f1:10:01:92:39:9c:76:89:db:87:20:68:65:d8:af: b8:8f:66:58:ee:d3:21:a2:88:c2:7d:f4:72:b6:70:c8:d7:e2: 07:76:19:eb:9f:4f:30:2c:35:07:c8:1d:15:81:a3:cc:da:06: 71:d1:4f:a8:51:a2:c8:8d:15:d8:d3:fb:d8:5f:ac:2a:3a:40: 6e:db:b7:77:77:c4:f9:30:52:cf:73:4f:ea:e7:fb:a9:83:b6: 77:ba:d4:b0:51:a8:bc:d2:f7:f6:58:76:e9:69:16:37:88:f3: ce:59:a8:bd:3e:8d:a6:47:e9:66:ac:5d:41:1f:21:d6:fd:cd: b0:26:a3:1a:88:73:d9:4b:05:56:51:2b:9d:cc:20:59:ec:20: 19:26:63:75:d9:0f:b0:4f:94:d2:82:a6:df:ab:a2:1f:3f:59: 5a:ed:56:66:28:68:44:1e:53:c0:de:cf:10:7a:7c:c7:68:a1: 31:0c:21:02:b6:ed:eb:2d:cd:57:ed:ff:20:ce:e9:29:2e:77: 1a:f3:1b:09 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZrPMpLxRQTG0Mz19OZf3euIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMTI5MTAzOTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NDFlNGE2MmU2YWM4ODI4NjJmOTE1ZTc1ZWExYWZiYmIzZTg5ZjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2kJXBB6ok6PxH49CP5KNhcFZZff+ 1n15t3K7sNoZ0kIGVbXEvI+wboLclPMLQhy7v0dXibDyL12soaM7YnDkc5eeE26t wEP6xj6gw6+e5pxOpzJvxYTMg6pmfWG6h9RNMORI366B8COwYHIJ7iRcOcbnyQO7 sB/hsFcMixE1rNe4GI67dJltdIoFsdmno6QqhCB0GbT3qnrFQZv75csx7WIEjSCm UbrhCzDH4kRbqUA/sSxjBWaprtCRf9pX1JstGzwUtA1hNCsP0mBqrdkuLHrklTBX dV8N/hraf0mCEhkKJqVXP9z55fSme7VfgoUEsd5i36qIqq4m6qphjfO9BwIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFFQeSmLmrIgoYvkV516hr7uz6J8EMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvVkI1S1l1YXNpQ2hpLVJYblhxR3Z1N1BvbndRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAl/DNAwQA l/F3AwQBl/F6AwQAl/F9AwQAl/PjAwQAl/PrAwQAl/PxAwQBl/V4MA0GCSqGSIb3 DQEBCwUAA4IBAQBMw58hP7hxYUOmrpa8ODX/H5JDPftmKbT3/Uv4+MSO2QSuPw4T gbggw/0/B4x16SRtYtXjrVcZ8rzxEAGSOZx2iduHIGhl2K+4j2ZY7tMhoojCffRy tnDI1+IHdhnrn08wLDUHyB0VgaPM2gZx0U+oUaLIjRXY0/vYX6wqOkBu27d3d8T5 MFLPc0/q5/upg7Z3utSwUai80vf2WHbpaRY3iPPOWai9Po2mR+lmrF1BHyHW/c2w JqMaiHPZSwVWUSudzCBZ7CAZJmN12Q+wT5TSgqbfq6IfP1la7VZmKGhEHlPA3s8Q enzHaKExDCECtu3rLc1X7f8gzukpLnca8xsJ -----END CERTIFICATE-----Generated at Wed Dec 3 09:42:32 2025 by rpki-client