This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa File: AS29802.roa (raw, json) Hash identifier: JtJ25RkH9E9nXnxXBXpvB+Uf7s/rhK8XcjIVup5sqD0= Subject key identifier: 32:8A:69:B2:85:6C:41:02:58:E2:1B:31:99:D3:BE:CC:35:CF:6C:10 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 55A1E5A6DB7255CB0DBEA01A9CEC5A2CD14C5D96 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa Signing time: Wed 07 Jan 2026 17:07:55 +0000 ROA not before: Wed 07 Jan 2026 17:02:55 +0000 ROA not after: Wed 06 Jan 2027 17:07:55 +0000 asID: 29802 IP address blocks: 82.21.67.0/24 maxlen: 24 82.21.74.0/24 maxlen: 24 82.21.93.0/24 maxlen: 24 82.21.103.0/24 maxlen: 24 82.21.110.0/24 maxlen: 24 82.21.113.0/24 maxlen: 24 82.21.119.0/24 maxlen: 24 82.21.122.0/24 maxlen: 24 82.21.124.0/24 maxlen: 24 82.21.132.0/24 maxlen: 24 82.21.139.0/24 maxlen: 24 82.21.140.0/24 maxlen: 24 82.21.143.0/24 maxlen: 24 82.21.148.0/24 maxlen: 24 82.21.152.0/24 maxlen: 24 82.21.155.0/24 maxlen: 24 82.21.157.0/24 maxlen: 24 82.21.163.0/24 maxlen: 24 82.24.92.0/22 maxlen: 24 82.24.96.0/22 maxlen: 24 82.24.116.0/22 maxlen: 24 82.24.128.0/22 maxlen: 24 82.24.132.0/22 maxlen: 24 82.24.136.0/22 maxlen: 24 82.24.140.0/22 maxlen: 24 82.24.148.0/22 maxlen: 24 82.24.152.0/22 maxlen: 24 82.24.156.0/22 maxlen: 24 82.24.160.0/22 maxlen: 24 82.24.164.0/22 maxlen: 24 82.24.168.0/22 maxlen: 24 82.24.176.0/22 maxlen: 24 82.24.196.0/22 maxlen: 24 82.25.146.0/23 maxlen: 24 82.25.148.0/23 maxlen: 24 82.25.150.0/23 maxlen: 24 82.25.152.0/23 maxlen: 24 82.25.154.0/23 maxlen: 24 82.25.156.0/23 maxlen: 24 82.25.158.0/23 maxlen: 24 82.25.162.0/23 maxlen: 24 82.25.164.0/23 maxlen: 24 82.25.166.0/23 maxlen: 24 82.25.168.0/23 maxlen: 24 82.25.170.0/23 maxlen: 24 82.25.172.0/23 maxlen: 24 82.25.176.0/23 maxlen: 24 82.25.178.0/23 maxlen: 24 82.25.182.0/23 maxlen: 24 82.25.188.0/23 maxlen: 24 82.26.66.0/24 maxlen: 24 82.26.116.0/24 maxlen: 24 82.26.176.0/21 maxlen: 24 82.26.184.0/21 maxlen: 24 82.27.8.0/24 maxlen: 24 82.38.174.0/24 maxlen: 24 2a13:9500:3::/48 maxlen: 48 2a13:9500:6::/48 maxlen: 48 2a13:9500:7::/48 maxlen: 48 2a13:9500:8::/48 maxlen: 48 2a13:9500:9::/48 maxlen: 48 2a13:9500:a::/48 maxlen: 48 2a13:9500:b::/48 maxlen: 48 2a13:9500:c::/48 maxlen: 48 2a13:9500:d::/48 maxlen: 48 2a13:9500:e::/48 maxlen: 48 2a13:9500:f::/48 maxlen: 48 2a13:9500:10::/48 maxlen: 48 2a13:9500:1c::/48 maxlen: 48 2a13:9500:1d::/48 maxlen: 48 2a13:9500:1e::/48 maxlen: 48 2a13:9500:1f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a1:e5:a6:db:72:55:cb:0d:be:a0:1a:9c:ec:5a:2c:d1:4c:5d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 7 17:02:55 2026 GMT Not After : Jan 6 17:07:55 2027 GMT Subject: CN=328A69B2856C410258E21B3199D3BECC35CF6C10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2d:2d:3f:c6:ea:d7:f7:00:76:8a:f4:e9:7b: 7a:09:76:b5:51:73:02:4a:30:df:67:48:af:0e:de: df:dd:4e:1c:10:dc:d8:93:bc:a5:74:9d:1b:dc:9f: 10:2e:66:02:28:3a:91:80:7e:83:d9:ba:95:d4:ec: 55:a7:43:99:ee:6c:f8:e5:c3:ad:45:fd:27:2d:b0: e8:53:41:19:b2:2f:24:80:5f:3a:e4:39:9f:84:00: a5:ac:37:c0:39:15:7b:0d:ae:16:21:6e:41:1c:3f: 9e:8d:ee:4f:b9:d8:f7:8a:d8:c7:c5:9f:92:ad:1f: a6:29:5c:4a:fc:70:c6:ed:32:83:6b:59:c1:a2:8d: 69:95:1d:11:7e:01:66:65:06:9c:0b:91:88:8a:21: 10:12:96:f5:72:ca:e6:3e:cb:ef:63:03:1b:4f:5f: fc:15:0e:30:19:5a:b1:91:f1:d1:ea:a6:f3:b0:70: 9b:ee:0e:40:3d:c4:6f:c2:53:44:81:83:24:d3:ce: 2f:73:ba:13:60:2b:26:28:9b:0f:b7:fa:c5:41:1a: 3f:a0:f3:8d:1b:95:4b:ec:37:df:fa:8c:8e:19:0c: 17:41:ae:e7:a1:72:4a:22:67:3c:31:62:c8:84:36: 02:51:b7:ba:db:39:20:3a:2a:d9:9c:56:ed:32:66: 27:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:8A:69:B2:85:6C:41:02:58:E2:1B:31:99:D3:BE:CC:35:CF:6C:10 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.67.0/24 82.21.74.0/24 82.21.93.0/24 82.21.103.0/24 82.21.110.0/24 82.21.113.0/24 82.21.119.0/24 82.21.122.0/24 82.21.124.0/24 82.21.132.0/24 82.21.139.0-82.21.140.255 82.21.143.0/24 82.21.148.0/24 82.21.152.0/24 82.21.155.0/24 82.21.157.0/24 82.21.163.0/24 82.24.92.0-82.24.99.255 82.24.116.0/22 82.24.128.0/20 82.24.148.0-82.24.171.255 82.24.176.0/22 82.24.196.0/22 82.25.146.0-82.25.159.255 82.25.162.0-82.25.173.255 82.25.176.0/22 82.25.182.0/23 82.25.188.0/23 82.26.66.0/24 82.26.116.0/24 82.26.176.0/20 82.27.8.0/24 82.38.174.0/24 IPv6: 2a13:9500:3::/48 2a13:9500:6::-2a13:9500:10:ffff:ffff:ffff:ffff:ffff 2a13:9500:1c::/46 Signature Algorithm: sha256WithRSAEncryption 6c:5a:4d:8c:26:a4:9b:ca:de:1a:8e:ed:5d:7c:13:1d:75:1d: 72:a9:f0:be:74:e0:97:fe:be:d7:92:09:db:e9:e4:19:fe:58: f9:59:28:3e:b6:de:98:03:9b:b1:6d:2a:49:ed:4f:59:1c:89: 41:24:12:69:0f:4c:f7:81:dd:49:92:d1:e3:53:be:5f:6b:46: c7:f1:e5:cd:ea:65:5e:c4:fd:02:a7:4e:75:f0:12:88:9f:d4: be:13:0b:65:4e:a7:6c:19:0e:f4:76:60:50:95:23:ee:05:eb: d8:b3:b4:8b:2e:5e:e7:c2:9e:3b:b5:96:52:a1:ac:6d:30:11: d3:ae:ee:b2:99:d7:bd:ef:60:ec:93:66:d9:d4:03:41:7c:1b: 04:47:f4:88:a4:85:ed:10:39:f1:64:37:00:8d:60:df:d3:9f: 75:26:2c:0c:c1:3f:03:fb:01:e9:fe:56:dd:1b:6f:bf:36:ca: 23:d1:41:39:40:3d:05:8a:50:d9:b2:ff:f6:b3:c0:be:0c:ac: 8f:f7:c7:ff:3d:70:76:64:c5:5a:59:1e:64:38:b2:e8:5d:9c: 4e:4d:d1:9c:1d:8c:d1:a1:de:a8:ac:ca:f0:e8:8b:ca:cf:cf: df:e4:4b:09:f5:d3:03:f1:bd:dd:62:a3:97:4e:f2:5f:ef:9e: 54:1d:5b:05 -----BEGIN CERTIFICATE----- MIIGHTCCBQWgAwIBAgIUVaHlpttyVcsNvqAanOxaLNFMXZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDcxNzAyNTVaFw0yNzAxMDYxNzA3NTVaMDMxMTAvBgNV BAMTKDMyOEE2OUIyODU2QzQxMDI1OEUyMUIzMTk5RDNCRUNDMzVDRjZDMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxLS0/xurX9wB2ivTpe3oJdrVR cwJKMN9nSK8O3t/dThwQ3NiTvKV0nRvcnxAuZgIoOpGAfoPZupXU7FWnQ5nubPjl w61F/SctsOhTQRmyLySAXzrkOZ+EAKWsN8A5FXsNrhYhbkEcP56N7k+52PeK2MfF n5KtH6YpXEr8cMbtMoNrWcGijWmVHRF+AWZlBpwLkYiKIRASlvVyyuY+y+9jAxtP X/wVDjAZWrGR8dHqpvOwcJvuDkA9xG/CU0SBgyTTzi9zuhNgKyYomw+3+sVBGj+g 840blUvsN9/6jI4ZDBdBruehckoiZzwxYsiENgJRt7rbOSA6KtmcVu0yZidPAgMB AAGjggMnMIIDIzAdBgNVHQ4EFgQUMoppsoVsQQJY4hsxmdO+zDXPbBAwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjk4MDIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwggE7BggrBgEFBQcBBwEB/wSCASowggEmMIH1BAIAATCB 7gMEAFIVQwMEAFIVSgMEAFIVXQMEAFIVZwMEAFIVbgMEAFIVcQMEAFIVdwMEAFIV egMEAFIVfAMEAFIVhDAMAwQAUhWLAwQAUhWMAwQAUhWPAwQAUhWUAwQAUhWYAwQA UhWbAwQAUhWdAwQAUhWjMAwDBAJSGFwDBAJSGGADBAJSGHQDBARSGIAwDAMEAlIY lAMEAlIYqAMEAlIYsAMEAlIYxDAMAwQBUhmSAwQFUhmAMAwDBAFSGaIDBAFSGawD BAJSGbADBAFSGbYDBAFSGbwDBABSGkIDBABSGnQDBARSGrADBABSGwgDBABSJq4w LAQCAAIwJgMHACoTlQAAAzASAwcBKhOVAAAGAwcAKhOVAAAQAwcCKhOVAAAcMA0G CSqGSIb3DQEBCwUAA4IBAQBsWk2MJqSbyt4aju1dfBMddR1yqfC+dOCX/r7Xkgnb 6eQZ/lj5WSg+tt6YA5uxbSpJ7U9ZHIlBJBJpD0z3gd1JktHjU75fa0bH8eXN6mVe xP0Cp0518BKIn9S+EwtlTqdsGQ70dmBQlSPuBevYs7SLLl7nwp47tZZSoaxtMBHT ru6ymde972Dsk2bZ1ANBfBsER/SIpIXtEDnxZDcAjWDf0591JiwMwT8D+wHp/lbd G2+/Nsoj0UE5QD0FilDZsv/2s8C+DKyP98f/PXB2ZMVaWR5kOLLoXZxOTdGcHYzR od6orMrw6IvKz8/f5EsJ9dMD8b3dYqOXTvJf755UHVsF -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:11 2026 by rpki-client