This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: /4kUJxNqng9f8Y+wqWLDm/USUFBPFG3KqXs5BGr6G1o= Subject key identifier: C6:20:18:5C:60:52:17:4D:3A:4A:4B:EA:F5:25:A6:22:A9:83:7D:BF Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 3C509F9F707410555AF829EFB050265165649F61 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa Signing time: Thu 15 Jan 2026 18:22:59 +0000 ROA not before: Thu 15 Jan 2026 18:17:59 +0000 ROA not after: Thu 14 Jan 2027 18:22:59 +0000 asID: 7029 IP address blocks: 82.21.104.0/22 maxlen: 24 82.22.128.0/21 maxlen: 24 82.22.148.0/22 maxlen: 24 82.22.152.0/22 maxlen: 24 82.23.140.0/23 maxlen: 24 82.23.152.0/21 maxlen: 24 82.24.10.0/23 maxlen: 24 82.24.44.0/23 maxlen: 24 82.24.50.0/23 maxlen: 24 82.24.102.0/23 maxlen: 24 82.24.184.0/22 maxlen: 24 82.24.204.0/23 maxlen: 24 82.25.0.0/22 maxlen: 24 82.25.18.0/23 maxlen: 24 82.25.128.0/22 maxlen: 24 82.25.206.0/23 maxlen: 24 82.26.102.0/23 maxlen: 24 82.27.48.0/20 maxlen: 24 82.27.80.0/21 maxlen: 24 82.27.112.0/22 maxlen: 24 82.27.136.0/21 maxlen: 24 82.27.168.0/21 maxlen: 24 82.27.192.0/22 maxlen: 24 82.29.30.0/23 maxlen: 24 82.29.144.0/22 maxlen: 24 82.38.176.0/22 maxlen: 24 82.38.184.0/22 maxlen: 24 82.38.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:50:9f:9f:70:74:10:55:5a:f8:29:ef:b0:50:26:51:65:64:9f:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 15 18:17:59 2026 GMT Not After : Jan 14 18:22:59 2027 GMT Subject: CN=C620185C6052174D3A4A4BEAF525A622A9837DBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:10:f3:dd:c9:f7:21:15:42:74:b2:a7:7d:0f: 79:08:90:f6:91:94:92:c7:1b:15:f6:11:36:f1:71: 9b:71:23:dc:0c:99:e3:67:7d:de:00:c3:dd:e3:10: d2:14:9b:4c:fc:05:e6:95:3b:1d:15:10:78:b6:22: af:3a:9c:d0:76:bf:cf:d1:38:a7:66:61:8c:f5:73: 03:08:1b:b9:cb:cb:a2:20:d3:c2:4b:e8:cf:8e:ad: 6f:fb:87:d3:8a:e7:9b:a9:64:e3:21:21:85:b4:04: 3c:6b:04:75:e9:67:3c:9e:b4:8b:a3:86:40:d2:20: e8:c3:6c:0b:70:1a:cf:6b:6f:34:a0:16:a5:af:f6: 45:5f:8e:ad:0b:06:59:82:3a:e3:c8:5e:13:92:6b: a4:e9:73:b6:de:33:1d:e0:1d:69:d7:78:bb:96:db: 9e:18:38:b6:e9:cb:c3:86:83:34:5a:72:54:fe:57: 38:2b:13:3c:8b:e9:d7:65:b0:76:61:07:1e:e7:16: 41:79:f5:c1:ee:95:16:3c:f9:1f:e7:9e:b4:be:72: 58:33:95:e2:3f:17:83:fb:d9:09:f4:54:5f:04:79: 27:db:49:32:7e:87:1d:0e:b7:8a:56:7c:f6:99:aa: b0:10:21:08:6f:20:3f:54:0e:43:18:6f:02:e8:e5: 67:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:20:18:5C:60:52:17:4D:3A:4A:4B:EA:F5:25:A6:22:A9:83:7D:BF X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.104.0/22 82.22.128.0/21 82.22.148.0-82.22.155.255 82.23.140.0/23 82.23.152.0/21 82.24.10.0/23 82.24.44.0/23 82.24.50.0/23 82.24.102.0/23 82.24.184.0/22 82.24.204.0/23 82.25.0.0/22 82.25.18.0/23 82.25.128.0/22 82.25.206.0/23 82.26.102.0/23 82.27.48.0/20 82.27.80.0/21 82.27.112.0/22 82.27.136.0/21 82.27.168.0/21 82.27.192.0/22 82.29.30.0/23 82.29.144.0/22 82.38.176.0/22 82.38.184.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:fa:dc:54:f0:78:ca:b3:f6:28:a9:86:3b:7f:0d:87:2a:b0: e5:cb:2c:30:07:6c:0f:1d:08:7a:67:b0:55:88:e5:39:fe:94: 81:9f:2e:ab:54:25:14:be:da:c9:00:fb:49:4e:e0:18:a4:19: 5d:00:de:b5:19:5c:23:c4:c3:38:10:a5:95:48:2c:80:ee:ae: de:dc:4d:c9:c4:6b:2e:47:ef:8f:1b:03:13:a2:8a:50:56:b5: 4a:3a:50:02:0f:ca:7e:c2:f8:11:c3:ab:ae:16:53:55:e7:14: 16:04:8a:00:0b:e7:c2:c2:eb:ff:31:64:df:9a:38:65:50:b7: 9d:dd:f1:f6:86:ba:e3:b5:9b:df:d4:53:dc:6b:99:fc:9e:c1: ea:6f:34:6b:9d:e0:9c:e4:73:ce:42:a2:a7:f8:b1:d5:2a:05: 0c:5c:69:cc:01:43:71:80:70:67:e5:1b:4c:c4:e0:e8:4b:68: fe:d8:b4:b6:d0:9e:17:5e:03:c0:c5:f8:0d:bd:d3:57:62:6e: 56:7c:94:72:f0:97:5c:46:4c:82:be:1e:f4:ca:5b:96:52:31: a1:58:aa:02:ca:c9:0c:d5:9e:c3:c0:df:75:1d:2d:c3:38:f2: 22:b1:3d:5f:27:ab:cd:5b:3d:63:6e:f7:16:41:64:a8:cc:48: d4:7d:bf:91 -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgIUPFCfn3B0EFVa+CnvsFAmUWVkn2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMTUxODE3NTlaFw0yNzAxMTQxODIyNTlaMDMxMTAvBgNV BAMTKEM2MjAxODVDNjA1MjE3NEQzQTRBNEJFQUY1MjVBNjIyQTk4MzdEQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4EPPdyfchFUJ0sqd9D3kIkPaR lJLHGxX2ETbxcZtxI9wMmeNnfd4Aw93jENIUm0z8BeaVOx0VEHi2Iq86nNB2v8/R OKdmYYz1cwMIG7nLy6Ig08JL6M+OrW/7h9OK55upZOMhIYW0BDxrBHXpZzyetIuj hkDSIOjDbAtwGs9rbzSgFqWv9kVfjq0LBlmCOuPIXhOSa6Tpc7beMx3gHWnXeLuW 254YOLbpy8OGgzRaclT+VzgrEzyL6ddlsHZhBx7nFkF59cHulRY8+R/nnrS+clgz leI/F4P72Qn0VF8EeSfbSTJ+hx0Ot4pWfPaZqrAQIQhvID9UDkMYbwLo5WcvAgMB AAGjggKrMIICpzAdBgNVHQ4EFgQUxiAYXGBSF006Skvq9SWmIqmDfb8wHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNzAyOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBwQYIKwYBBQUHAQcBAf8EgbEwga4wgasEAgABMIGkAwQC UhVoAwQDUhaAMAwDBAJSFpQDBAJSFpgDBAFSF4wDBANSF5gDBAFSGAoDBAFSGCwD BAFSGDIDBAFSGGYDBAJSGLgDBAFSGMwDBAJSGQADBAFSGRIDBAJSGYADBAFSGc4D BAFSGmYDBARSGzADBANSG1ADBAJSG3ADBANSG4gDBANSG6gDBAJSG8ADBAFSHR4D BAJSHZADBAJSJrADBANSJrgwDQYJKoZIhvcNAQELBQADggEBACr63FTweMqz9iip hjt/DYcqsOXLLDAHbA8dCHpnsFWI5Tn+lIGfLqtUJRS+2skA+0lO4BikGV0A3rUZ XCPEwzgQpZVILIDurt7cTcnEay5H748bAxOiilBWtUo6UAIPyn7C+BHDq64WU1Xn FBYEigAL58LC6/8xZN+aOGVQt53d8faGuuO1m9/UU9xrmfyewepvNGud4Jzkc85C oqf4sdUqBQxcacwBQ3GAcGflG0zE4OhLaP7YtLbQnhdeA8DF+A2901diblZ8lHLw l1xGTIK+HvTKW5ZSMaFYqgLKyQzVnsPA33UdLcM48iKxPV8nq81bPWNu9xZBZKjM SNR9v5E= -----END CERTIFICATE-----Generated at Sun Jan 18 08:55:08 2026 by rpki-client