This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS29802.roa File: AS29802.roa (raw, json) Hash identifier: F5Wy4wiBCIuc1dEaZvn5j9tyw4BsfjgYJc+QPNCCQlM= Subject key identifier: 00:34:74:E4:ED:4B:F2:F8:5F:3A:B1:19:EE:82:AB:D4:4B:0D:A8:4D Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Certificate serial: 6E489C9AA71B1D41C79FEB7B032181925693E1B7 Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS29802.roa Signing time: Thu 29 Jan 2026 10:57:45 +0000 ROA not before: Thu 29 Jan 2026 10:52:45 +0000 ROA not after: Thu 28 Jan 2027 10:57:45 +0000 asID: 29802 IP address blocks: 2.57.22.0/24 maxlen: 24 2.58.28.0/24 maxlen: 24 5.252.68.0/24 maxlen: 24 5.252.69.0/24 maxlen: 24 5.252.70.0/24 maxlen: 24 5.252.71.0/24 maxlen: 24 5.252.73.0/24 maxlen: 24 5.252.161.0/24 maxlen: 24 45.87.186.0/24 maxlen: 24 141.98.88.0/24 maxlen: 24 141.98.90.0/24 maxlen: 24 179.61.130.0/24 maxlen: 24 179.61.143.0/24 maxlen: 24 179.61.195.0/24 maxlen: 24 179.61.225.0/24 maxlen: 24 181.41.213.0/24 maxlen: 24 181.41.222.0/23 maxlen: 24 181.214.35.0/24 maxlen: 24 181.214.52.0/24 maxlen: 24 181.214.123.0/24 maxlen: 24 181.214.219.0/24 maxlen: 24 181.214.242.0/24 maxlen: 24 181.215.46.0/24 maxlen: 24 181.215.61.0/24 maxlen: 24 181.215.89.0/24 maxlen: 24 181.215.183.0/24 maxlen: 24 185.34.40.0/24 maxlen: 24 185.34.41.0/24 maxlen: 24 185.130.204.0/22 maxlen: 24 185.135.11.0/24 maxlen: 24 185.139.237.0/24 maxlen: 24 185.141.164.0/23 maxlen: 24 185.142.26.0/24 maxlen: 24 185.142.27.0/24 maxlen: 24 185.143.228.0/24 maxlen: 24 185.158.148.0/24 maxlen: 24 185.172.58.0/23 maxlen: 24 185.173.24.0/23 maxlen: 24 185.173.32.0/23 maxlen: 24 185.174.62.0/24 maxlen: 24 191.96.42.0/23 maxlen: 24 191.96.50.0/23 maxlen: 24 191.96.70.0/23 maxlen: 24 191.96.97.0/24 maxlen: 24 191.96.167.0/24 maxlen: 24 191.96.188.0/24 maxlen: 24 191.96.189.0/24 maxlen: 24 191.96.192.0/24 maxlen: 24 191.101.62.0/24 maxlen: 24 191.101.134.0/24 maxlen: 24 191.101.164.0/23 maxlen: 24 191.101.204.0/24 maxlen: 24 191.101.205.0/24 maxlen: 24 191.101.253.0/24 maxlen: 24 193.31.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 11:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:48:9c:9a:a7:1b:1d:41:c7:9f:eb:7b:03:21:81:92:56:93:e1:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a Validity Not Before: Jan 29 10:52:45 2026 GMT Not After : Jan 28 10:57:45 2027 GMT Subject: CN=003474E4ED4BF2F85F3AB119EE82ABD44B0DA84D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:6e:47:08:9c:3e:61:bc:da:45:5e:46:5d:78: 42:01:c6:49:e4:f8:e2:5e:de:1c:22:62:a0:49:a0: 75:e9:9e:0e:a1:f7:14:7b:58:e4:d1:ad:1d:57:64: d8:8b:83:74:18:d7:07:01:4c:ae:5a:14:68:ed:86: 15:23:84:32:d1:99:bb:55:29:8c:c3:22:db:7c:63: 0c:c4:ca:8a:ac:1e:62:99:99:dc:6f:2c:ef:14:ea: 22:68:62:1f:91:58:bb:8d:2b:78:e2:f0:eb:1c:d2: 33:d6:95:b7:3b:10:86:38:e1:72:fb:d9:73:bb:fd: af:6b:3b:d7:1c:0e:4f:4e:b1:d3:ed:f4:fc:7d:15: 2c:e4:a2:ed:e2:b6:2d:ae:2e:dd:ad:3e:43:09:ab: 68:30:b0:44:29:83:8c:c3:8c:64:f4:38:c8:ec:d5: a9:fb:fd:4d:c4:7c:69:c8:a5:b7:ba:9d:70:6e:e9: 16:5d:f1:d5:15:4e:67:d5:7d:36:e2:8c:32:45:21: d1:08:f1:af:4f:d1:e5:96:f7:a8:14:ee:51:a3:43: 14:0e:84:b6:22:10:1a:9d:7d:c5:68:67:a3:5e:c4: 48:16:6c:70:8f:df:4a:28:3e:52:83:79:0e:dd:fa: 5e:ff:91:04:8f:ca:38:c4:95:45:a5:3a:f1:46:5d: c1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:34:74:E4:ED:4B:F2:F8:5F:3A:B1:19:EE:82:AB:D4:4B:0D:A8:4D X509v3 Authority Key Identifier: keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS29802.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.22.0/24 2.58.28.0/24 5.252.68.0/22 5.252.73.0/24 5.252.161.0/24 45.87.186.0/24 141.98.88.0/24 141.98.90.0/24 179.61.130.0/24 179.61.143.0/24 179.61.195.0/24 179.61.225.0/24 181.41.213.0/24 181.41.222.0/23 181.214.35.0/24 181.214.52.0/24 181.214.123.0/24 181.214.219.0/24 181.214.242.0/24 181.215.46.0/24 181.215.61.0/24 181.215.89.0/24 181.215.183.0/24 185.34.40.0/23 185.130.204.0/22 185.135.11.0/24 185.139.237.0/24 185.141.164.0/23 185.142.26.0/23 185.143.228.0/24 185.158.148.0/24 185.172.58.0/23 185.173.24.0/23 185.173.32.0/23 185.174.62.0/24 191.96.42.0/23 191.96.50.0/23 191.96.70.0/23 191.96.97.0/24 191.96.167.0/24 191.96.188.0/23 191.96.192.0/24 191.101.62.0/24 191.101.134.0/24 191.101.164.0/23 191.101.204.0/23 191.101.253.0/24 193.31.40.0/24 Signature Algorithm: sha256WithRSAEncryption a4:e0:33:37:15:3e:1f:41:49:d5:0a:eb:10:27:91:46:c1:ba: 02:3e:85:02:aa:71:bc:59:8b:79:e9:52:9d:40:d8:43:c0:b3: bf:cf:f2:1a:b4:9a:8b:9a:f5:73:8e:f9:ce:0d:2e:65:45:13: 48:4b:29:c2:c2:32:84:6e:09:87:76:05:f7:97:f5:04:10:a6: 51:69:33:8d:99:c2:42:b3:fb:3c:57:38:c9:03:76:bd:aa:44: b2:fc:e6:48:a9:30:2e:e0:64:90:13:70:52:ea:61:dd:ff:fb: 9b:eb:96:f5:f2:5b:09:8f:4b:ab:b9:11:af:c5:13:1e:2e:13: 83:5f:d1:85:ce:ec:9f:30:2f:e9:86:46:1a:26:f2:e7:ba:23: 89:5c:a7:2a:0d:c6:32:a6:55:4b:e2:80:ff:67:d0:3a:52:03: 2b:5b:83:d7:bf:51:8d:05:b7:36:44:f1:b6:ac:0c:be:6c:5c: 54:28:2d:f1:53:4d:b9:3e:56:ca:bc:18:86:82:42:b7:0b:f3: d9:0e:6f:c8:37:b3:0d:3e:a2:68:35:76:27:c8:a4:b1:64:00: 39:51:37:30:46:06:59:66:02:f5:6d:c7:68:1a:8e:32:5b:56: 28:d7:2e:93:e5:6d:26:3d:6f:78:7a:46:98:86:45:f5:00:d2: c0:78:d3:42 -----BEGIN CERTIFICATE----- MIIGIzCCBQugAwIBAgIUbkicmqcbHUHHn+t7AyGBklaT4bcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFiMWJiNDQ0NzcxOGYxNmIzZDM2Njc1ZDIwNWM0ZGVh NDFiYmEwYTAeFw0yNjAxMjkxMDUyNDVaFw0yNzAxMjgxMDU3NDVaMDMxMTAvBgNV BAMTKDAwMzQ3NEU0RUQ0QkYyRjg1RjNBQjExOUVFODJBQkQ0NEIwREE4NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTbkcInD5hvNpFXkZdeEIBxknk +OJe3hwiYqBJoHXpng6h9xR7WOTRrR1XZNiLg3QY1wcBTK5aFGjthhUjhDLRmbtV KYzDItt8YwzEyoqsHmKZmdxvLO8U6iJoYh+RWLuNK3ji8Osc0jPWlbc7EIY44XL7 2XO7/a9rO9ccDk9OsdPt9Px9FSzkou3iti2uLt2tPkMJq2gwsEQpg4zDjGT0OMjs 1an7/U3EfGnIpbe6nXBu6RZd8dUVTmfVfTbijDJFIdEI8a9P0eWW96gU7lGjQxQO hLYiEBqdfcVoZ6NexEgWbHCP30ooPlKDeQ7d+l7/kQSPyjjElUWlOvFGXcHDAgMB AAGjggMtMIIDKTAdBgNVHQ4EFgQUADR05O1L8vhfOrEZ7oKr1EsNqE0wHwYDVR0j BBgwFoAUYbG7REdxjxaz02Z10gXE3qQbugowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTM3NDU5ZTctMmE4My00M2QxLTlhYTEtNTg0MTdhYmFj NGI2LzEvNjFCMUJCNDQ0NzcxOEYxNkIzRDM2Njc1RDIwNUM0REVBNDFCQkEwQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1liRzdSRWR4anhhejAyWjEwZ1hFM3FR YnVnby5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzUzNzQ1OWU3LTJhODMt NDNkMS05YWExLTU4NDE3YWJhYzRiNi8xL0FTMjk4MDIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwggFBBggrBgEFBQcBBwEB/wSCATAwggEsMIIBKAQCAAEw ggEgAwQAAjkWAwQAAjocAwQCBfxEAwQABfxJAwQABfyhAwQALVe6AwQAjWJYAwQA jWJaAwQAsz2CAwQAsz2PAwQAsz3DAwQAsz3hAwQAtSnVAwQBtSneAwQAtdYjAwQA tdY0AwQAtdZ7AwQAtdbbAwQAtdbyAwQAtdcuAwQAtdc9AwQAtddZAwQAtde3AwQB uSIoAwQCuYLMAwQAuYcLAwQAuYvtAwQBuY2kAwQBuY4aAwQAuY/kAwQAuZ6UAwQB uaw6AwQBua0YAwQBua0gAwQAua4+AwQBv2AqAwQBv2AyAwQBv2BGAwQAv2BhAwQA v2CnAwQBv2C8AwQAv2DAAwQAv2U+AwQAv2WGAwQBv2WkAwQBv2XMAwQAv2X9AwQA wR8oMA0GCSqGSIb3DQEBCwUAA4IBAQCk4DM3FT4fQUnVCusQJ5FGwboCPoUCqnG8 WYt56VKdQNhDwLO/z/IatJqLmvVzjvnODS5lRRNISynCwjKEbgmHdgX3l/UEEKZR aTONmcJCs/s8VzjJA3a9qkSy/OZIqTAu4GSQE3BS6mHd//ub65b18lsJj0uruRGv xRMeLhODX9GFzuyfMC/phkYaJvLnuiOJXKcqDcYyplVL4oD/Z9A6UgMrW4PXv1GN Bbc2RPG2rAy+bFxUKC3xU025PlbKvBiGgkK3C/PZDm/IN7MNPqJoNXYnyKSxZAA5 UTcwRgZZZgL1bcdoGo4yW1Yo1y6T5W0mPW94ekaYhkX1ANLAeNNC -----END CERTIFICATE-----Generated at Thu Jan 29 17:50:00 2026 by rpki-client