This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/YDnfJOnMu6Si-gAesSWrjXLpap4.roa File: YDnfJOnMu6Si-gAesSWrjXLpap4.roa (raw, json) Hash identifier: B7R8+B/ZeCCfKk4fxiFdzjz/3OCt236BA6643pRiy/c= Subject key identifier: 60:39:DF:24:E9:CC:BB:A4:A2:FA:00:1E:B1:25:AB:8D:72:E9:6A:9E Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019AE559B7AC160D3D2CFBDBE68554F4C9BF Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/YDnfJOnMu6Si-gAesSWrjXLpap4.roa Signing time: Wed 03 Dec 2025 17:54:13 +0000 ROA not before: Wed 03 Dec 2025 17:54:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9304 IP address blocks: 37.202.212.0/24 maxlen: 24 151.240.118.0/23 maxlen: 24 151.240.147.0/24 maxlen: 24 151.240.150.0/24 maxlen: 24 151.240.154.0/24 maxlen: 24 151.240.161.0/24 maxlen: 24 151.240.179.0/24 maxlen: 24 151.240.249.0/24 maxlen: 24 151.241.9.0/24 maxlen: 24 151.241.13.0/24 maxlen: 24 151.241.26.0/24 maxlen: 24 151.241.168.0/24 maxlen: 24 151.241.174.0/24 maxlen: 24 151.241.213.0/24 maxlen: 24 151.241.222.0/24 maxlen: 24 151.241.223.0/24 maxlen: 24 151.242.143.0/24 maxlen: 24 151.243.138.0/23 maxlen: 24 151.243.144.0/23 maxlen: 24 151.243.170.0/24 maxlen: 24 151.243.172.0/24 maxlen: 24 151.243.173.0/24 maxlen: 24 151.243.176.0/24 maxlen: 24 151.243.177.0/24 maxlen: 24 151.243.224.0/24 maxlen: 24 151.243.247.0/24 maxlen: 24 151.244.64.0/24 maxlen: 24 151.244.196.0/24 maxlen: 24 151.245.42.0/24 maxlen: 24 151.245.61.0/24 maxlen: 24 151.245.63.0/24 maxlen: 24 151.245.88.0/24 maxlen: 24 151.245.91.0/24 maxlen: 24 151.245.148.0/24 maxlen: 24 151.245.150.0/24 maxlen: 24 151.245.194.0/24 maxlen: 24 151.245.224.0/23 maxlen: 24 151.245.226.0/23 maxlen: 24 151.245.230.0/24 maxlen: 24 151.246.164.0/23 maxlen: 24 151.246.176.0/24 maxlen: 24 151.246.180.0/24 maxlen: 24 151.246.181.0/24 maxlen: 24 151.246.184.0/24 maxlen: 24 151.246.185.0/24 maxlen: 24 151.246.186.0/24 maxlen: 24 151.246.187.0/24 maxlen: 24 151.246.189.0/24 maxlen: 24 151.246.246.0/23 maxlen: 24 151.246.249.0/24 maxlen: 24 151.246.250.0/23 maxlen: 24 151.246.255.0/24 maxlen: 24 151.247.137.0/24 maxlen: 24 151.247.161.0/24 maxlen: 24 151.247.162.0/24 maxlen: 24 151.247.163.0/24 maxlen: 24 151.247.164.0/24 maxlen: 24 151.247.165.0/24 maxlen: 24 151.247.167.0/24 maxlen: 24 151.247.169.0/24 maxlen: 24 151.247.170.0/24 maxlen: 24 151.247.177.0/24 maxlen: 24 151.247.248.0/24 maxlen: 24 151.247.249.0/24 maxlen: 24 151.247.250.0/24 maxlen: 24 151.247.253.0/24 maxlen: 24 151.247.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e5:59:b7:ac:16:0d:3d:2c:fb:db:e6:85:54:f4:c9:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Dec 3 17:54:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6039df24e9ccbba4a2fa001eb125ab8d72e96a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:2f:61:6c:75:5c:96:d9:c6:cc:9c:62:73: 63:11:52:a9:80:50:c2:a2:4b:33:8a:93:b7:0b:8a: 31:ef:41:10:49:0d:e8:ac:d6:54:83:6a:a3:cb:88: 30:2f:5c:e5:77:f2:1d:dc:c3:45:fe:ff:fb:06:2c: 61:e3:c0:54:42:43:c3:6d:a2:d2:3f:67:70:8b:c7: ef:2c:6f:17:ce:73:b0:c9:f8:80:4d:db:60:70:8e: d8:56:36:4d:6a:ed:fe:14:3f:3e:75:88:ef:34:de: 04:51:6d:c9:65:d8:5b:a3:b1:01:be:62:e7:87:41: ec:e5:0f:33:ee:e6:bd:63:a8:51:15:49:04:1d:96: a0:ea:07:fa:1b:07:db:c2:89:b5:43:19:dc:98:98: 55:af:db:61:9e:c4:b7:f0:d8:75:4c:41:35:49:3a: 85:df:41:6b:4c:da:c4:d2:40:f6:b6:1e:c8:18:4a: b7:5f:2e:65:f7:78:37:a6:94:64:6a:88:ea:76:4d: f2:cf:b9:6e:77:a8:6b:86:5d:bb:34:79:a2:f3:5e: 7c:f8:45:0c:05:59:1f:ab:ed:79:f9:43:5f:f9:41: 0b:48:08:24:77:fd:48:3c:25:8b:57:73:3d:fe:e3: b9:68:61:3b:c8:d0:05:55:bd:0f:4b:6a:46:b9:a9: 12:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:39:DF:24:E9:CC:BB:A4:A2:FA:00:1E:B1:25:AB:8D:72:E9:6A:9E X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/YDnfJOnMu6Si-gAesSWrjXLpap4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.202.212.0/24 151.240.118.0/23 151.240.147.0/24 151.240.150.0/24 151.240.154.0/24 151.240.161.0/24 151.240.179.0/24 151.240.249.0/24 151.241.9.0/24 151.241.13.0/24 151.241.26.0/24 151.241.168.0/24 151.241.174.0/24 151.241.213.0/24 151.241.222.0/23 151.242.143.0/24 151.243.138.0/23 151.243.144.0/23 151.243.170.0/24 151.243.172.0/23 151.243.176.0/23 151.243.224.0/24 151.243.247.0/24 151.244.64.0/24 151.244.196.0/24 151.245.42.0/24 151.245.61.0/24 151.245.63.0/24 151.245.88.0/24 151.245.91.0/24 151.245.148.0/24 151.245.150.0/24 151.245.194.0/24 151.245.224.0/22 151.245.230.0/24 151.246.164.0/23 151.246.176.0/24 151.246.180.0/23 151.246.184.0/22 151.246.189.0/24 151.246.246.0/23 151.246.249.0-151.246.251.255 151.246.255.0/24 151.247.137.0/24 151.247.161.0-151.247.165.255 151.247.167.0/24 151.247.169.0-151.247.170.255 151.247.177.0/24 151.247.248.0-151.247.250.255 151.247.253.0-151.247.254.255 Signature Algorithm: sha256WithRSAEncryption 91:9f:77:03:c6:97:d6:01:4f:40:47:c4:8f:ab:1d:25:e8:a4: de:3b:e7:e0:c1:06:b0:85:9b:df:95:93:33:17:61:f4:63:c0: 0b:ff:48:b4:86:63:f2:65:f5:c6:b9:c0:e0:23:47:7f:a1:e6: 8a:97:13:e0:e4:40:20:4d:92:41:7f:74:ff:57:99:b2:d0:66: c0:c8:77:bd:28:e1:e5:4c:bd:e1:6b:79:0c:e0:7b:dd:9e:c1: 5b:06:1b:77:9d:de:ad:20:bf:17:03:30:f3:51:0d:eb:ff:2f: 35:5c:cd:08:02:fd:c7:77:17:f8:20:3d:49:ca:83:9d:d5:9a: fb:25:59:3f:d9:6c:66:1c:29:85:62:53:a5:ee:ed:88:f8:31: e3:3e:2d:78:10:01:e6:e6:27:e9:6e:ef:b5:e3:4b:34:e8:49: 8e:6e:20:d4:26:c8:70:8c:c4:c2:fa:63:3e:95:00:02:a3:52: 43:59:b9:89:ad:7c:f6:22:bc:5e:cc:2c:7f:14:87:b5:54:77: 33:1f:09:54:da:d3:c9:cc:85:59:83:46:46:b4:b3:be:83:88: 3f:38:25:43:73:53:5d:64:ae:20:b8:73:73:6e:4f:68:46:ee: f2:f9:c5:af:a6:71:bb:ed:ce:ad:68:57:99:26:6e:ba:a2:4f: fa:a3:43:eb -----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISAZrlWbesFg09LPvb5oVU9Mm/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjUxMjAzMTc1NDEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2MDM5ZGYyNGU5Y2NiYmE0YTJmYTAwMWViMTI1YWI4ZDcyZTk2YTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvckvYWx1XJbZxsycYnNjEVKpgFDC okszipO3C4ox70EQSQ3orNZUg2qjy4gwL1zld/Id3MNF/v/7Bixh48BUQkPDbaLS P2dwi8fvLG8XznOwyfiATdtgcI7YVjZNau3+FD8+dYjvNN4EUW3JZdhbo7EBvmLn h0Hs5Q8z7ua9Y6hRFUkEHZag6gf6Gwfbwom1QxncmJhVr9thnsS38Nh1TEE1STqF 30FrTNrE0kD2th7IGEq3Xy5l93g3ppRkaojqdk3yz7lud6hrhl27NHmi8158+EUM BVkfq+15+UNf+UELSAgkd/1IPCWLV3M9/uO5aGE7yNAFVb0PS2pGuakS6QIDAQAB o4IDYTCCA10wHQYDVR0OBBYEFGA53yTpzLukovoAHrElq41y6WqeMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvWURuZkpPbk11NlNpLWdBZXNTV3JqWExwYXA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIIBdQYIKwYBBQUHAQcBAf8EggFkMIIBYDCCAVwEAgABMIIB VAMEACXK1AMEAZfwdgMEAJfwkwMEAJfwlgMEAJfwmgMEAJfwoQMEAJfwswMEAJfw +QMEAJfxCQMEAJfxDQMEAJfxGgMEAJfxqAMEAJfxrgMEAJfx1QMEAZfx3gMEAJfy jwMEAZfzigMEAZfzkAMEAJfzqgMEAZfzrAMEAZfzsAMEAJfz4AMEAJfz9wMEAJf0 QAMEAJf0xAMEAJf1KgMEAJf1PQMEAJf1PwMEAJf1WAMEAJf1WwMEAJf1lAMEAJf1 lgMEAJf1wgMEApf14AMEAJf15gMEAZf2pAMEAJf2sAMEAZf2tAMEApf2uAMEAJf2 vQMEAZf29jAMAwQAl/b5AwQCl/b4AwQAl/b/AwQAl/eJMAwDBACX96EDBAGX96QD BACX96cwDAMEAJf3qQMEAJf3qgMEAJf3sTAMAwQDl/f4AwQAl/f6MAwDBACX9/0D BACX9/4wDQYJKoZIhvcNAQELBQADggEBAJGfdwPGl9YBT0BHxI+rHSXopN475+DB BrCFm9+VkzMXYfRjwAv/SLSGY/Jl9ca5wOAjR3+h5oqXE+DkQCBNkkF/dP9XmbLQ ZsDId70o4eVMveFreQzge92ewVsGG3ed3q0gvxcDMPNRDev/LzVczQgC/cd3F/gg PUnKg53VmvslWT/ZbGYcKYViU6Xu7Yj4MeM+LXgQAebmJ+lu77XjSzToSY5uINQm yHCMxML6Yz6VAAKjUkNZuYmtfPYivF7MLH8Uh7VUdzMfCVTa08nMhVmDRka0s76D iD84JUNzU11kriC4c3NuT2hG7vL5xa+mcbvtzq1oV5kmbrqiT/qjQ+s= -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:28 2025 by rpki-client