This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/16fb84-fa29-41b2-8dbb-59decd8d5a0c/1/58jG5a4etI7HLIjlMWRu8EZHcBI.roa File: 58jG5a4etI7HLIjlMWRu8EZHcBI.roa (raw, json) Hash identifier: h6AjzB3AJvNdpXgK77pPU3V49NDZDTYGpMVhHidUW8I= Subject key identifier: E7:C8:C6:E5:AE:1E:B4:8E:C7:2C:88:E5:31:64:6E:F0:46:47:70:12 Certificate issuer: /CN=d6fac3967ea9859227d9f7be744e2a6ea486e117 Certificate serial: 019B775883AFBBC3021597FBA73FD8BAD5C4 Authority key identifier: D6:FA:C3:96:7E:A9:85:92:27:D9:F7:BE:74:4E:2A:6E:A4:86:E1:17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vrDln6phZIn2fe-dE4qbqSG4Rc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/16fb84-fa29-41b2-8dbb-59decd8d5a0c/1/58jG5a4etI7HLIjlMWRu8EZHcBI.roa Signing time: Thu 01 Jan 2026 02:17:28 +0000 ROA not before: Thu 01 Jan 2026 02:17:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31587 IP address blocks: 185.99.220.0/24 maxlen: 24 185.99.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/16fb84-fa29-41b2-8dbb-59decd8d5a0c/1/1vrDln6phZIn2fe-dE4qbqSG4Rc.crl rsync://rpki.ripe.net/repository/DEFAULT/46/16fb84-fa29-41b2-8dbb-59decd8d5a0c/1/1vrDln6phZIn2fe-dE4qbqSG4Rc.mft rsync://rpki.ripe.net/repository/DEFAULT/1vrDln6phZIn2fe-dE4qbqSG4Rc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:83:af:bb:c3:02:15:97:fb:a7:3f:d8:ba:d5:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6fac3967ea9859227d9f7be744e2a6ea486e117 Validity Not Before: Jan 1 02:17:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7c8c6e5ae1eb48ec72c88e531646ef046477012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:49:f6:b2:77:40:6d:10:b5:97:05:40:75:c2: 33:03:35:5c:94:3a:aa:e4:69:58:32:63:ee:9d:48: 5c:ba:08:14:03:34:a3:0a:4f:6b:1e:3a:53:d6:01: 33:08:af:9f:95:bf:cb:0e:c4:27:a2:ce:ae:7a:c5: b4:b7:69:9b:e1:cd:e3:69:6b:05:e8:db:34:f0:d0: 81:2c:c0:93:9a:7a:1c:e6:03:09:fd:11:44:02:5f: a0:45:20:cd:2b:8d:3d:6f:a1:56:c6:21:dc:e1:44: d4:d1:52:b9:5d:50:9e:f0:cc:2f:ea:3d:7b:9e:74: 09:57:08:19:93:cf:3f:73:3e:64:a7:6f:7a:f6:d9: 2a:6e:9d:15:ea:c3:4c:4c:c8:f8:a6:db:00:b8:19: ef:5e:fd:4a:61:ac:48:04:18:e5:03:e1:4c:e8:05: c7:3f:76:6b:9e:c5:4c:c9:bf:e3:d8:da:64:57:cd: cc:a1:4c:7d:04:80:7c:de:29:2a:0b:8d:4c:9c:47: 7f:e2:59:73:80:77:bd:bf:cd:09:8c:80:f5:75:81: ff:90:f0:fb:27:54:3c:ae:be:84:e5:21:d3:8a:3a: 3d:51:a9:66:e5:c5:0a:8a:0f:0f:cd:97:15:9c:8a: b7:1e:2c:ec:1d:32:fa:0d:31:a0:91:ac:f8:d6:b7: 60:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C8:C6:E5:AE:1E:B4:8E:C7:2C:88:E5:31:64:6E:F0:46:47:70:12 X509v3 Authority Key Identifier: keyid:D6:FA:C3:96:7E:A9:85:92:27:D9:F7:BE:74:4E:2A:6E:A4:86:E1:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vrDln6phZIn2fe-dE4qbqSG4Rc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/16fb84-fa29-41b2-8dbb-59decd8d5a0c/1/58jG5a4etI7HLIjlMWRu8EZHcBI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/16fb84-fa29-41b2-8dbb-59decd8d5a0c/1/1vrDln6phZIn2fe-dE4qbqSG4Rc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.99.220.0/24 185.99.223.0/24 Signature Algorithm: sha256WithRSAEncryption a9:d4:42:52:2e:8c:33:bb:26:77:ec:50:4c:be:e7:c1:1c:19: a6:f0:04:79:fe:a0:5b:3e:f4:46:a7:02:0a:f2:b3:30:71:39: c9:7d:5c:46:e3:24:bb:ed:4c:32:a8:d1:99:e1:08:e1:7c:4e: c0:69:ef:f3:42:e1:b4:34:0e:70:78:65:1e:1d:ab:35:5e:e1: b5:68:28:72:77:01:a1:7e:4f:15:3f:2e:80:67:fa:3c:73:13: ee:8b:32:7f:92:fa:57:39:ff:93:50:e9:74:78:ea:cb:ef:cb: 31:f8:14:48:93:b4:bb:39:59:12:ba:a9:87:b4:c1:a1:c6:ea: f5:d4:01:47:7a:32:a6:9e:31:35:ed:2d:e7:70:9d:f6:b7:15: 32:88:0c:81:19:c9:0f:20:ee:cd:fa:f6:78:27:16:05:e1:e3: 63:d2:11:58:f7:29:3b:49:d2:36:39:68:6e:04:83:1d:c5:d0: d3:4c:ed:1a:e8:7d:33:db:38:7c:f9:74:00:0e:78:65:82:4e: e9:f2:24:a9:43:fa:db:3d:4e:a0:e1:5d:cd:2b:ce:28:e7:79: ee:b0:1e:0b:84:17:86:fc:31:72:d2:e1:d0:89:ed:6a:73:50: 6b:96:f5:de:e0:35:39:64:7a:7d:2e:df:44:49:1d:b5:e3:e8: 54:8d:a2:b2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WIOvu8MCFZf7pz/YutXEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2ZmFjMzk2N2VhOTg1OTIyN2Q5ZjdiZTc0NGUyYTZlYTQ4 NmUxMTcwHhcNMjYwMTAxMDIxNzI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2M4YzZlNWFlMWViNDhlYzcyYzg4ZTUzMTY0NmVmMDQ2NDc3MDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkn2sndAbRC1lwVAdcIzAzVclDqq 5GlYMmPunUhcuggUAzSjCk9rHjpT1gEzCK+flb/LDsQnos6uesW0t2mb4c3jaWsF 6Ns08NCBLMCTmnoc5gMJ/RFEAl+gRSDNK409b6FWxiHc4UTU0VK5XVCe8Mwv6j17 nnQJVwgZk88/cz5kp2969tkqbp0V6sNMTMj4ptsAuBnvXv1KYaxIBBjlA+FM6AXH P3ZrnsVMyb/j2NpkV83MoUx9BIB83ikqC41MnEd/4llzgHe9v80JjID1dYH/kPD7 J1Q8rr6E5SHTijo9Ualm5cUKig8PzZcVnIq3HizsHTL6DTGgkaz41rdguwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOfIxuWuHrSOxyyI5TFkbvBGR3ASMB8GA1UdIwQY MBaAFNb6w5Z+qYWSJ9n3vnROKm6khuEXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXZyRGxuNnBoWkluMmZlLWRFNHFicVNHNFJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8xNmZiODQtZmEyOS00MWIyLThkYmIt NTlkZWNkOGQ1YTBjLzEvNThqRzVhNGV0STdITElqbE1XUnU4RVpIY0JJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8xNmZiODQtZmEyOS00MWIyLThkYmItNTlkZWNkOGQ1YTBj LzEvMXZyRGxuNnBoWkluMmZlLWRFNHFicVNHNFJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuWPcAwQA uWPfMA0GCSqGSIb3DQEBCwUAA4IBAQCp1EJSLowzuyZ37FBMvufBHBmm8AR5/qBb PvRGpwIK8rMwcTnJfVxG4yS77UwyqNGZ4QjhfE7Aae/zQuG0NA5weGUeHas1XuG1 aChydwGhfk8VPy6AZ/o8cxPuizJ/kvpXOf+TUOl0eOrL78sx+BRIk7S7OVkSuqmH tMGhxur11AFHejKmnjE17S3ncJ32txUyiAyBGckPIO7N+vZ4JxYF4eNj0hFY9yk7 SdI2OWhuBIMdxdDTTO0a6H0z2zh8+XQADnhlgk7p8iSpQ/rbPU6g4V3NK84o53nu sB4LhBeG/DFy0uHQie1qc1BrlvXe4DU5ZHp9Lt9ESR214+hUjaKy -----END CERTIFICATE-----Generated at Mon Feb 9 23:42:05 2026 by rpki-client