
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa
File: AS29802.roa (raw, json)
Hash identifier: mO5xaavVZ17kdNQlu8aP1ZmrwSmF4Sxzzu0MPA1EqUY=
Subject key identifier: 70:A7:26:29:53:66:85:E5:ED:14:AC:33:8C:C4:B1:81:03:47:D3:05
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 345407DC18479EDE7A95863109CE44464A7EB852
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa
Signing time: Tue 14 Jul 2026 10:07:04 +0000
ROA not before: Tue 14 Jul 2026 10:02:04 +0000
ROA not after: Tue 13 Jul 2027 10:07:04 +0000
asID: 29802
IP address blocks: 82.21.67.0/24 maxlen: 24
82.21.74.0/24 maxlen: 24
82.21.93.0/24 maxlen: 24
82.21.103.0/24 maxlen: 24
82.21.110.0/24 maxlen: 24
82.21.113.0/24 maxlen: 24
82.21.119.0/24 maxlen: 24
82.21.122.0/24 maxlen: 24
82.21.124.0/24 maxlen: 24
82.21.132.0/24 maxlen: 24
82.21.139.0/24 maxlen: 24
82.21.140.0/24 maxlen: 24
82.21.143.0/24 maxlen: 24
82.21.148.0/24 maxlen: 24
82.21.152.0/24 maxlen: 24
82.21.155.0/24 maxlen: 24
82.21.157.0/24 maxlen: 24
82.21.163.0/24 maxlen: 24
82.22.61.0/24 maxlen: 24
82.24.92.0/22 maxlen: 24
82.24.96.0/22 maxlen: 24
82.24.116.0/22 maxlen: 24
82.24.128.0/22 maxlen: 24
82.24.132.0/22 maxlen: 24
82.24.136.0/22 maxlen: 24
82.24.140.0/22 maxlen: 24
82.24.145.0/24 maxlen: 24
82.24.148.0/22 maxlen: 24
82.24.152.0/22 maxlen: 24
82.24.156.0/22 maxlen: 24
82.24.160.0/22 maxlen: 24
82.24.164.0/22 maxlen: 24
82.24.168.0/22 maxlen: 24
82.24.176.0/22 maxlen: 24
82.24.196.0/22 maxlen: 24
82.25.146.0/23 maxlen: 24
82.25.148.0/23 maxlen: 24
82.25.150.0/23 maxlen: 24
82.25.152.0/23 maxlen: 24
82.25.154.0/23 maxlen: 24
82.25.156.0/23 maxlen: 24
82.25.158.0/23 maxlen: 24
82.25.162.0/23 maxlen: 24
82.25.164.0/23 maxlen: 24
82.25.166.0/23 maxlen: 24
82.25.168.0/23 maxlen: 24
82.25.170.0/23 maxlen: 24
82.25.172.0/23 maxlen: 24
82.25.176.0/23 maxlen: 24
82.25.178.0/23 maxlen: 24
82.25.182.0/23 maxlen: 24
82.25.188.0/23 maxlen: 24
82.26.116.0/24 maxlen: 24
82.26.176.0/21 maxlen: 24
82.26.184.0/21 maxlen: 24
82.38.174.0/24 maxlen: 24
82.39.223.0/24 maxlen: 24
82.47.160.0/24 maxlen: 24
82.47.240.0/23 maxlen: 24
84.75.201.0/24 maxlen: 24
84.75.240.0/24 maxlen: 24
84.75.243.0/24 maxlen: 24
2a13:9500:6::/48 maxlen: 48
2a13:9500:7::/48 maxlen: 48
2a13:9500:8::/48 maxlen: 48
2a13:9500:9::/48 maxlen: 48
2a13:9500:a::/48 maxlen: 48
2a13:9500:b::/48 maxlen: 48
2a13:9500:c::/48 maxlen: 48
2a13:9500:d::/48 maxlen: 48
2a13:9500:e::/48 maxlen: 48
2a13:9500:f::/48 maxlen: 48
2a13:9500:10::/48 maxlen: 48
2a13:9500:1c::/48 maxlen: 48
2a13:9500:1d::/48 maxlen: 48
2a13:9500:1e::/48 maxlen: 48
2a13:9500:1f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:54:07:dc:18:47:9e:de:7a:95:86:31:09:ce:44:46:4a:7e:b8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 14 10:02:04 2026 GMT
Not After : Jul 13 10:07:04 2027 GMT
Subject: CN=70A72629536685E5ED14AC338CC4B1810347D305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:48:d4:d6:5c:de:56:19:ee:3c:c7:18:47:f9:
cb:2f:a7:b0:d9:8f:71:0b:a3:4a:b8:21:6d:80:e3:
e8:1c:81:df:58:d7:5c:55:32:47:d8:7b:b9:23:fb:
cf:2f:06:e5:34:31:4a:20:ae:76:da:fe:50:e9:5d:
f0:92:ba:bd:c1:76:64:e6:c0:88:d7:29:fe:44:d5:
d6:83:d8:1c:7f:40:e0:31:1d:a3:34:4a:8f:53:03:
49:7d:f2:f4:c2:4a:f7:15:8c:77:41:4c:03:7e:c5:
b6:8d:7d:08:18:37:a7:3d:18:3a:b5:da:27:37:aa:
99:ac:04:e2:94:c2:06:65:f1:08:82:48:d8:e9:dc:
91:7c:6e:a0:cd:6f:bb:21:de:f3:37:18:84:b0:a8:
09:b9:4a:e1:43:72:eb:2a:c3:32:74:69:60:eb:29:
83:1c:3e:e0:74:25:4a:07:54:03:d2:17:3d:e5:80:
b2:59:70:24:00:b6:21:bb:c7:e0:0c:5d:80:93:c0:
6b:b8:8c:a2:55:a6:e4:3d:01:a1:bd:df:f0:d6:0d:
a8:77:17:9f:09:98:dd:eb:16:67:67:f9:ba:c2:43:
5d:f9:94:fb:80:0d:76:43:bb:a6:a4:5f:48:5c:d0:
70:fe:a7:5e:02:57:e9:67:62:73:05:e9:2d:d9:28:
4f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A7:26:29:53:66:85:E5:ED:14:AC:33:8C:C4:B1:81:03:47:D3:05
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.67.0/24
82.21.74.0/24
82.21.93.0/24
82.21.103.0/24
82.21.110.0/24
82.21.113.0/24
82.21.119.0/24
82.21.122.0/24
82.21.124.0/24
82.21.132.0/24
82.21.139.0-82.21.140.255
82.21.143.0/24
82.21.148.0/24
82.21.152.0/24
82.21.155.0/24
82.21.157.0/24
82.21.163.0/24
82.22.61.0/24
82.24.92.0-82.24.99.255
82.24.116.0/22
82.24.128.0/20
82.24.145.0/24
82.24.148.0-82.24.171.255
82.24.176.0/22
82.24.196.0/22
82.25.146.0-82.25.159.255
82.25.162.0-82.25.173.255
82.25.176.0/22
82.25.182.0/23
82.25.188.0/23
82.26.116.0/24
82.26.176.0/20
82.38.174.0/24
82.39.223.0/24
82.47.160.0/24
82.47.240.0/23
84.75.201.0/24
84.75.240.0/24
84.75.243.0/24
IPv6:
2a13:9500:6::-2a13:9500:10:ffff:ffff:ffff:ffff:ffff
2a13:9500:1c::/46
Signature Algorithm: sha256WithRSAEncryption
10:31:a1:85:b3:91:f3:6e:7f:d1:c3:a5:91:2f:ff:4c:36:65:
d2:2a:8c:d3:80:82:1a:3b:18:be:b4:fb:fd:e2:54:83:3c:8d:
c7:bc:0c:6d:83:06:b0:4b:a0:e1:a9:91:7f:7d:d8:86:58:8d:
22:16:e2:84:d5:dd:cd:9d:36:71:77:8b:67:8a:b9:96:31:61:
a4:66:64:35:00:b3:19:1c:5d:a3:85:a1:4e:90:0e:9d:c3:04:
72:40:0f:df:46:af:75:47:e1:96:dc:f6:5a:d8:59:b1:27:7b:
de:41:ff:2a:e9:7d:23:d8:bc:df:6e:b8:32:13:d4:11:cb:2d:
9d:5e:6f:5e:34:71:e0:20:a6:8c:cc:44:a6:9b:5c:e5:9a:9e:
c6:9e:4b:f5:cc:75:4d:d5:44:4e:4e:21:3a:d2:82:10:aa:5d:
57:72:64:de:a5:2f:d5:e7:d6:89:00:ec:46:9c:ff:dd:b5:98:
99:95:35:64:6c:5e:ae:6d:64:4a:90:d7:30:4e:92:51:18:d6:
1b:34:c0:33:3f:61:16:65:bd:1b:59:03:48:46:33:0e:2c:2d:
b1:a0:f6:b5:5a:11:6d:73:83:58:7e:6b:f1:fc:d0:21:32:03:
c7:77:61:3c:aa:16:6d:eb:8f:91:1c:b4:41:02:36:73:0b:3d:
85:30:8d:67
-----BEGIN CERTIFICATE-----
MIIGOjCCBSKgAwIBAgIUNFQH3BhHnt56lYYxCc5ERkp+uFIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA3MTQxMDAyMDRaFw0yNzA3MTMxMDA3MDRaMDMxMTAvBgNV
BAMTKDcwQTcyNjI5NTM2Njg1RTVFRDE0QUMzMzhDQzRCMTgxMDM0N0QzMDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrSNTWXN5WGe48xxhH+csvp7DZ
j3ELo0q4IW2A4+gcgd9Y11xVMkfYe7kj+88vBuU0MUogrnba/lDpXfCSur3BdmTm
wIjXKf5E1daD2Bx/QOAxHaM0So9TA0l98vTCSvcVjHdBTAN+xbaNfQgYN6c9GDq1
2ic3qpmsBOKUwgZl8QiCSNjp3JF8bqDNb7sh3vM3GISwqAm5SuFDcusqwzJ0aWDr
KYMcPuB0JUoHVAPSFz3lgLJZcCQAtiG7x+AMXYCTwGu4jKJVpuQ9AaG93/DWDah3
F58JmN3rFmdn+brCQ135lPuADXZDu6akX0hc0HD+p14CV+lnYnMF6S3ZKE/jAgMB
AAGjggNEMIIDQDAdBgNVHQ4EFgQUcKcmKVNmheXtFKwzjMSxgQNH0wUwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjk4MDIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwggFYBggrBgEFBQcBBwEB/wSCAUcwggFDMIIBGgQCAAEw
ggESAwQAUhVDAwQAUhVKAwQAUhVdAwQAUhVnAwQAUhVuAwQAUhVxAwQAUhV3AwQA
UhV6AwQAUhV8AwQAUhWEMAwDBABSFYsDBABSFYwDBABSFY8DBABSFZQDBABSFZgD
BABSFZsDBABSFZ0DBABSFaMDBABSFj0wDAMEAlIYXAMEAlIYYAMEAlIYdAMEBFIY
gAMEAFIYkTAMAwQCUhiUAwQCUhioAwQCUhiwAwQCUhjEMAwDBAFSGZIDBAVSGYAw
DAMEAVIZogMEAVIZrAMEAlIZsAMEAVIZtgMEAVIZvAMEAFIadAMEBFIasAMEAFIm
rgMEAFIn3wMEAFIvoAMEAVIv8AMEAFRLyQMEAFRL8AMEAFRL8zAjBAIAAjAdMBID
BwEqE5UAAAYDBwAqE5UAABADBwIqE5UAABwwDQYJKoZIhvcNAQELBQADggEBABAx
oYWzkfNuf9HDpZEv/0w2ZdIqjNOAgho7GL60+/3iVIM8jce8DG2DBrBLoOGpkX99
2IZYjSIW4oTV3c2dNnF3i2eKuZYxYaRmZDUAsxkcXaOFoU6QDp3DBHJAD99Gr3VH
4Zbc9lrYWbEne95B/yrpfSPYvN9uuDIT1BHLLZ1eb140ceAgpozMRKabXOWansae
S/XMdU3VRE5OITrSghCqXVdyZN6lL9Xn1okA7Eac/921mJmVNWRsXq5tZEqQ1zBO
klEY1hs0wDM/YRZlvRtZA0hGMw4sLbGg9rVaEW1zg1h+a/H80CEyA8d3YTyqFm3r
j5EctEECNnMLPYUwjWc=
-----END CERTIFICATE-----
Generated at Fri Jul 17 23:05:15 2026 by rpki-client