This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: 0jvbz1NYqpTFaDZ79wzJG5xXgy5G86v/kpPksYnsfMo= Subject key identifier: C2:74:64:26:E9:0E:4A:D7:02:C0:95:4B:3A:76:B7:78:BF:32:8C:7D Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 42473B630AFE963C9825BC850FC926E5F888A2D6 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa Signing time: Wed 26 Nov 2025 12:06:12 +0000 ROA not before: Wed 26 Nov 2025 12:01:12 +0000 ROA not after: Wed 25 Nov 2026 12:06:12 +0000 asID: 7029 IP address blocks: 82.21.104.0/22 maxlen: 24 82.22.128.0/21 maxlen: 24 82.22.148.0/22 maxlen: 24 82.22.152.0/22 maxlen: 24 82.23.140.0/23 maxlen: 24 82.24.10.0/23 maxlen: 24 82.24.44.0/23 maxlen: 24 82.24.50.0/23 maxlen: 24 82.24.102.0/23 maxlen: 24 82.24.184.0/22 maxlen: 24 82.24.204.0/23 maxlen: 24 82.25.0.0/22 maxlen: 24 82.25.18.0/23 maxlen: 24 82.25.128.0/22 maxlen: 24 82.25.206.0/23 maxlen: 24 82.26.102.0/23 maxlen: 24 82.27.48.0/20 maxlen: 24 82.27.80.0/21 maxlen: 24 82.27.112.0/22 maxlen: 24 82.27.136.0/21 maxlen: 24 82.27.168.0/21 maxlen: 24 82.27.192.0/22 maxlen: 24 82.29.30.0/23 maxlen: 24 82.29.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:47:3b:63:0a:fe:96:3c:98:25:bc:85:0f:c9:26:e5:f8:88:a2:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 26 12:01:12 2025 GMT Not After : Nov 25 12:06:12 2026 GMT Subject: CN=C2746426E90E4AD702C0954B3A76B778BF328C7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c4:2c:a8:35:61:57:51:b7:a2:04:92:b2:62: f5:2f:44:84:60:88:b0:02:f6:64:ac:23:38:79:51: fe:62:00:72:79:dc:3f:96:69:82:c4:a6:a1:14:be: f3:54:1a:a6:32:69:e9:da:00:35:38:74:a5:44:e3: 9d:4d:13:8a:4a:6d:50:88:53:49:15:33:31:5c:17: f7:8e:b1:47:10:93:1c:e9:e7:b5:f7:94:c3:7d:a8: 02:67:7a:7e:be:8e:8b:5d:76:b8:c8:f2:55:eb:6d: 86:13:96:d6:0a:1a:d8:bd:24:03:b1:e1:3b:61:5a: c0:49:52:65:ca:e8:75:43:d0:83:67:c7:e4:95:f8: a6:47:67:b0:71:b7:53:d9:1a:60:86:6a:a1:a2:e3: 24:ea:7b:78:d6:c5:1d:d8:3f:f9:5f:19:a9:b0:04: 2a:2d:28:98:07:25:ce:28:24:86:b1:35:22:0d:09: 35:d4:2b:17:cd:72:a4:7e:ac:58:1e:c9:09:bf:9d: 4c:44:0b:e8:26:7d:a6:ad:1e:46:ef:e4:03:98:7b: 74:5c:ad:4e:e4:d4:9c:d6:10:76:18:30:4a:69:82: f8:9a:f2:09:f2:b5:26:f0:91:7d:25:9b:28:2e:f6: 6b:f9:75:4d:dd:f7:c0:fc:7c:a8:ba:d1:dd:6d:bc: 0a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:74:64:26:E9:0E:4A:D7:02:C0:95:4B:3A:76:B7:78:BF:32:8C:7D X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.104.0/22 82.22.128.0/21 82.22.148.0-82.22.155.255 82.23.140.0/23 82.24.10.0/23 82.24.44.0/23 82.24.50.0/23 82.24.102.0/23 82.24.184.0/22 82.24.204.0/23 82.25.0.0/22 82.25.18.0/23 82.25.128.0/22 82.25.206.0/23 82.26.102.0/23 82.27.48.0/20 82.27.80.0/21 82.27.112.0/22 82.27.136.0/21 82.27.168.0/21 82.27.192.0/22 82.29.30.0/23 82.29.144.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:b6:48:d4:2f:7a:7e:b7:49:0a:5e:87:4d:42:fe:04:52:4e: 7a:b4:77:ee:ba:27:c9:2d:9b:ab:75:f4:99:31:73:d3:93:be: 5e:1f:99:bb:3e:8a:f4:c9:58:3b:d1:35:1a:08:4a:67:8e:71: 57:32:4f:98:4a:8d:8a:bc:d5:54:96:0e:7d:52:d7:a5:8f:5d: 93:77:24:43:1d:61:02:45:4a:6e:6d:82:bd:12:4c:38:4a:57: 2e:d8:26:65:06:b4:e4:76:3c:96:2b:ed:95:5a:86:3c:fb:c9: 26:42:b8:5d:85:34:6e:d5:1c:30:82:78:aa:a3:10:72:c0:17: 2c:4c:dd:f8:e7:ed:2e:b7:5f:67:3b:fc:c1:c7:27:99:c7:26: 74:7a:30:39:40:ed:cc:0d:ca:9b:fa:7a:99:e5:ab:ca:bd:12: 6c:6d:3f:ed:49:16:14:af:64:05:74:b3:1c:ee:42:0e:f6:09: 56:91:9e:52:55:51:5a:bf:f7:6a:bd:27:7c:ed:5e:d6:b6:77: cf:76:4e:d8:54:0b:92:4a:05:d7:5b:22:a5:55:c8:51:ae:fb: 9f:b3:3e:97:9b:0d:1d:4e:9a:f2:22:2e:84:67:14:09:5b:0b: c4:d6:9a:6e:67:c5:65:13:83:9c:30:08:f4:8c:b9:43:55:11: 42:55:5f:cc -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIUQkc7Ywr+ljyYJbyFD8km5fiIotYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjYxMjAxMTJaFw0yNjExMjUxMjA2MTJaMDMxMTAvBgNV BAMTKEMyNzQ2NDI2RTkwRTRBRDcwMkMwOTU0QjNBNzZCNzc4QkYzMjhDN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOxCyoNWFXUbeiBJKyYvUvRIRg iLAC9mSsIzh5Uf5iAHJ53D+WaYLEpqEUvvNUGqYyaenaADU4dKVE451NE4pKbVCI U0kVMzFcF/eOsUcQkxzp57X3lMN9qAJnen6+jotddrjI8lXrbYYTltYKGti9JAOx 4TthWsBJUmXK6HVD0INnx+SV+KZHZ7Bxt1PZGmCGaqGi4yTqe3jWxR3YP/lfGamw BCotKJgHJc4oJIaxNSINCTXUKxfNcqR+rFgeyQm/nUxEC+gmfaatHkbv5AOYe3Rc rU7k1JzWEHYYMEppgvia8gnytSbwkX0lmygu9mv5dU3d98D8fKi60d1tvAobAgMB AAGjggKZMIIClTAdBgNVHQ4EFgQUwnRkJukOStcCwJVLOna3eL8yjH0wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNzAyOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBrwYIKwYBBQUHAQcBAf8EgZ8wgZwwgZkEAgABMIGSAwQC UhVoAwQDUhaAMAwDBAJSFpQDBAJSFpgDBAFSF4wDBAFSGAoDBAFSGCwDBAFSGDID BAFSGGYDBAJSGLgDBAFSGMwDBAJSGQADBAFSGRIDBAJSGYADBAFSGc4DBAFSGmYD BARSGzADBANSG1ADBAJSG3ADBANSG4gDBANSG6gDBAJSG8ADBAFSHR4DBAJSHZAw DQYJKoZIhvcNAQELBQADggEBAJq2SNQven63SQpeh01C/gRSTnq0d+66J8ktm6t1 9Jkxc9OTvl4fmbs+ivTJWDvRNRoISmeOcVcyT5hKjYq81VSWDn1S16WPXZN3JEMd YQJFSm5tgr0STDhKVy7YJmUGtOR2PJYr7ZVahjz7ySZCuF2FNG7VHDCCeKqjEHLA FyxM3fjn7S63X2c7/MHHJ5nHJnR6MDlA7cwNypv6epnlq8q9EmxtP+1JFhSvZAV0 sxzuQg72CVaRnlJVUVq/92q9J3ztXta2d892TthUC5JKBddbIqVVyFGu+5+zPpeb DR1OmvIiLoRnFAlbC8TWmm5nxWUTg5wwCPSMuUNVEUJVX8w= -----END CERTIFICATE-----Generated at Thu Dec 4 04:21:44 2025 by rpki-client