This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/WC38MON2Sz_AB5wf_NsQMkN9osM.roa File: WC38MON2Sz_AB5wf_NsQMkN9osM.roa (raw, json) Hash identifier: HH1/PrUG0hWfLCoiBjU9kt0jiSEmnUOFN0Vf1sHQlwU= Subject key identifier: 58:2D:FC:30:E3:76:4B:3F:C0:07:9C:1F:FC:DB:10:32:43:7D:A2:C3 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019AA9FFAC84ED35C05895D3DE4139B2D77D Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/WC38MON2Sz_AB5wf_NsQMkN9osM.roa Signing time: Sat 22 Nov 2025 05:18:16 +0000 ROA not before: Sat 22 Nov 2025 05:18:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 151.240.128.0/21 maxlen: 24 151.240.136.0/21 maxlen: 24 151.240.145.0/24 maxlen: 24 151.240.171.0/24 maxlen: 24 151.241.105.0/24 maxlen: 24 151.241.106.0/24 maxlen: 24 151.241.107.0/24 maxlen: 24 151.241.132.0/22 maxlen: 22 151.242.56.0/24 maxlen: 24 151.242.70.0/24 maxlen: 24 151.242.71.0/24 maxlen: 24 151.242.135.0/24 maxlen: 24 151.243.8.0/23 maxlen: 23 151.243.204.0/23 maxlen: 23 151.244.56.0/24 maxlen: 24 151.245.2.0/24 maxlen: 24 151.245.22.0/24 maxlen: 24 151.245.56.0/22 maxlen: 22 151.245.185.0/24 maxlen: 24 151.245.187.0/24 maxlen: 24 151.245.188.0/24 maxlen: 24 151.246.8.0/21 maxlen: 24 151.247.133.0/24 maxlen: 24 151.247.134.0/24 maxlen: 24 151.247.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a9:ff:ac:84:ed:35:c0:58:95:d3:de:41:39:b2:d7:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Nov 22 05:18:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=582dfc30e3764b3fc0079c1ffcdb1032437da2c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:67:dc:eb:c1:ea:b7:fc:99:1b:e2:b4:df:fd: e6:93:63:3e:fd:7c:e7:83:ab:1f:5a:ea:2f:cd:ce: bd:d1:ba:f8:16:0c:90:5c:76:b0:2c:b6:68:7d:05: e6:bc:a1:b4:31:2f:09:d7:36:f3:c8:b0:ff:30:b2: b5:5a:fb:d1:62:6a:ad:79:c6:fd:dc:0d:4d:87:0b: 0e:f8:83:19:45:08:e9:11:a6:25:3b:52:24:d1:21: 74:57:b5:45:19:a0:7b:a7:58:fc:54:85:26:cb:32: c0:96:c5:98:12:e5:e6:7e:80:0a:b2:e8:35:0d:31: 10:96:06:86:de:60:77:39:44:e3:9f:4e:ba:82:2c: 63:5d:64:19:a9:fb:b8:34:e3:dd:f3:6c:07:e0:22: c4:42:ac:05:c6:66:20:9b:e7:ee:11:b7:27:6b:e5: 94:76:80:43:d0:f6:a4:f9:6d:87:a7:93:bb:40:9b: 52:ee:d9:e2:3c:4b:c3:81:71:db:bc:3a:5c:97:fe: 92:f7:86:ec:61:ea:a2:94:06:cd:6a:68:e1:e3:af: bb:d3:03:e8:8e:5e:85:2e:0d:55:64:b8:2d:8d:28: f9:05:b7:8d:51:11:0b:27:ef:dc:c7:9f:19:43:6d: ae:0e:fc:8d:31:68:e1:73:2c:55:99:55:fd:84:5f: 70:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2D:FC:30:E3:76:4B:3F:C0:07:9C:1F:FC:DB:10:32:43:7D:A2:C3 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/WC38MON2Sz_AB5wf_NsQMkN9osM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.240.128.0/20 151.240.145.0/24 151.240.171.0/24 151.241.105.0-151.241.107.255 151.241.132.0/22 151.242.56.0/24 151.242.70.0/23 151.242.135.0/24 151.243.8.0/23 151.243.204.0/23 151.244.56.0/24 151.245.2.0/24 151.245.22.0/24 151.245.56.0/22 151.245.185.0/24 151.245.187.0-151.245.188.255 151.246.8.0/21 151.247.133.0-151.247.135.255 Signature Algorithm: sha256WithRSAEncryption 94:4e:99:62:26:45:f2:be:e7:e6:70:9d:9b:02:cf:4d:a9:ed: 4c:67:62:40:f6:b8:06:f1:9e:4d:c3:98:41:fe:25:b2:47:75: eb:ef:ef:88:1c:92:d0:f3:81:d8:e7:b2:47:6b:ee:43:13:c0: 95:17:bd:ff:2d:6c:15:a8:d7:c9:4c:ce:26:6b:75:6b:fe:e2: 4b:44:ca:a3:61:f2:09:8d:7e:61:13:41:88:4f:c2:b9:dc:27: cb:4a:db:97:8c:3d:62:fd:5b:57:13:c0:39:bb:7d:b2:3d:6c: 7f:1a:6e:fc:73:0f:e3:4f:e7:2d:a4:0f:b3:c1:7d:81:34:75: f0:5a:30:57:e4:d0:d7:d7:94:fb:2f:75:83:99:58:e6:b4:7f: b4:c3:e3:5f:05:3b:d1:65:11:1f:a5:88:2b:7b:f2:32:8d:ab: dc:21:5f:47:b5:07:1e:5f:fb:17:f1:13:ac:87:a5:d2:de:82: 49:e7:6e:b2:83:34:39:00:1d:89:c6:fe:35:44:88:05:50:a4: 1c:29:69:9c:5c:33:7e:04:dc:11:84:b5:ac:5f:1e:52:c4:ba: 0c:d8:03:81:0f:94:d2:b2:a1:b2:01:94:b3:c0:84:ca:f1:ee: 75:27:7f:24:c8:4c:48:2a:5a:f9:ac:6a:a5:fa:4d:cf:80:68: 87:7e:b2:ed -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgISAZqp/6yE7TXAWJXT3kE5std9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMTIyMDUxODE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1ODJkZmMzMGUzNzY0YjNmYzAwNzljMWZmY2RiMTAzMjQzN2RhMmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGfc68Hqt/yZG+K03/3mk2M+/Xzn g6sfWuovzc690br4FgyQXHawLLZofQXmvKG0MS8J1zbzyLD/MLK1WvvRYmqtecb9 3A1NhwsO+IMZRQjpEaYlO1Ik0SF0V7VFGaB7p1j8VIUmyzLAlsWYEuXmfoAKsug1 DTEQlgaG3mB3OUTjn066gixjXWQZqfu4NOPd82wH4CLEQqwFxmYgm+fuEbcna+WU doBD0Pak+W2Hp5O7QJtS7tniPEvDgXHbvDpcl/6S94bsYeqilAbNamjh46+70wPo jl6FLg1VZLgtjSj5BbeNURELJ+/cx58ZQ22uDvyNMWjhcyxVmVX9hF9w/wIDAQAB o4ICjDCCAogwHQYDVR0OBBYEFFgt/DDjdks/wAecH/zbEDJDfaLDMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvV0MzOE1PTjJTel9BQjV3Zl9Oc1FNa045b3NNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIGhBggrBgEFBQcBBwEB/wSBkTCBjjCBiwQCAAEwgYQDBASX 8IADBACX8JEDBACX8KswDAMEAJfxaQMEApfxaAMEApfxhAMEAJfyOAMEAZfyRgME AJfyhwMEAZfzCAMEAZfzzAMEAJf0OAMEAJf1AgMEAJf1FgMEApf1OAMEAJf1uTAM AwQAl/W7AwQAl/W8AwQDl/YIMAwDBACX94UDBAOX94AwDQYJKoZIhvcNAQELBQAD ggEBAJROmWImRfK+5+ZwnZsCz02p7UxnYkD2uAbxnk3DmEH+JbJHdevv74gcktDz gdjnskdr7kMTwJUXvf8tbBWo18lMziZrdWv+4ktEyqNh8gmNfmETQYhPwrncJ8tK 25eMPWL9W1cTwDm7fbI9bH8abvxzD+NP5y2kD7PBfYE0dfBaMFfk0NfXlPsvdYOZ WOa0f7TD418FO9FlER+liCt78jKNq9whX0e1Bx5f+xfxE6yHpdLegknnbrKDNDkA HYnG/jVEiAVQpBwpaZxcM34E3BGEtaxfHlLEugzYA4EPlNKyobIBlLPAhMrx7nUn fyTITEgqWvmsaqX6Tc+AaId+su0= -----END CERTIFICATE-----Generated at Sat Nov 22 21:29:47 2025 by rpki-client