This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS29802.roa File: AS29802.roa (raw, json) Hash identifier: rLmGNKWPgaPvTPMqLgqLfggPWny+ZqJkU9srpM/38EY= Subject key identifier: 15:E2:80:1D:37:37:64:47:FF:B1:19:9F:E6:A8:1F:18:45:FF:96:81 Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Certificate serial: 0DAE3B8A6A07A4E676947132F447CB80065A07DF Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS29802.roa Signing time: Thu 29 Jan 2026 10:57:46 +0000 ROA not before: Thu 29 Jan 2026 10:52:46 +0000 ROA not after: Thu 28 Jan 2027 10:57:46 +0000 asID: 29802 IP address blocks: 45.154.106.0/24 maxlen: 24 45.155.16.0/24 maxlen: 24 193.29.99.0/24 maxlen: 24 194.147.6.0/24 maxlen: 24 194.147.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.mft rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 12:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ae:3b:8a:6a:07:a4:e6:76:94:71:32:f4:47:cb:80:06:5a:07:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d Validity Not Before: Jan 29 10:52:46 2026 GMT Not After : Jan 28 10:57:46 2027 GMT Subject: CN=15E2801D37376447FFB1199FE6A81F1845FF9681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:33:17:fa:5a:0a:c6:28:c4:fa:0e:83:47:57: 31:ee:1c:16:4e:df:4c:35:66:a5:c8:bf:89:f8:3a: cf:41:15:25:d9:5a:17:fb:65:61:66:fa:19:ed:49: 30:09:1a:c5:20:7d:cc:ec:2f:01:c2:68:fe:c8:1c: a6:e8:02:dc:8f:e7:ff:b8:7f:24:ae:80:b5:53:bd: e5:a4:8c:a6:12:fc:ac:1b:82:a9:c3:16:c3:7f:aa: ec:32:56:fb:98:d2:d6:3f:c6:65:ff:8a:a5:43:c1: 9d:9b:1c:a7:73:7b:de:8c:37:d2:4d:6f:ee:64:61: d0:75:06:93:25:1d:fa:e6:f5:9d:25:a8:98:da:a7: bd:2f:45:14:42:ed:a3:07:19:0d:a8:ba:f2:d3:6b: 48:7d:cc:3c:fe:c8:05:f4:5d:88:70:9e:66:28:8c: d8:43:ee:d6:54:a6:d2:a0:76:e0:e0:d6:df:57:c1: d9:b2:14:fb:07:20:4f:86:8f:9e:fe:83:df:c8:51: b0:a0:4a:9c:4c:5a:c8:24:1c:27:76:07:70:67:1b: 67:62:a0:ab:05:26:b4:82:e2:17:55:65:ee:3e:c9: b7:87:d1:98:4b:02:24:a1:69:dd:67:be:5e:8c:2c: 07:7c:3e:a9:4a:dc:d2:4b:1d:5b:74:ee:51:0d:21: d2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E2:80:1D:37:37:64:47:FF:B1:19:9F:E6:A8:1F:18:45:FF:96:81 X509v3 Authority Key Identifier: keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS29802.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.154.106.0/24 45.155.16.0/24 193.29.99.0/24 194.147.6.0/23 Signature Algorithm: sha256WithRSAEncryption 08:32:27:de:29:0f:5e:24:53:cf:31:05:7d:b0:ec:ad:53:ad: e8:ab:3d:ee:8f:eb:a0:c5:6a:f7:43:32:93:75:d1:90:78:20: 54:18:26:e4:f9:bd:23:1b:e0:34:d4:34:29:98:63:18:cb:6c: 35:c4:63:df:63:cf:75:41:3c:0f:67:cd:6a:b1:6a:e1:1d:e5: 64:ab:47:8d:f0:af:02:bc:13:04:2f:6e:3c:b1:6b:35:40:a1: eb:4f:02:30:64:43:fe:58:fa:8d:5f:6a:b9:11:dc:7f:0a:28: b4:c8:87:a2:df:be:31:6a:e8:16:3f:6f:ed:54:e2:1c:89:45: 17:4a:51:a4:e7:6f:2e:f9:86:ee:73:59:40:6d:ec:ce:92:30: a2:43:bc:e2:e5:13:85:a8:27:fb:59:d3:74:9e:3c:34:5c:6a: 60:2c:12:8e:1a:db:60:6c:d6:c3:13:1e:ef:a8:8b:7e:f4:90: c9:9e:ee:a7:e5:31:21:34:e9:44:8e:a8:a4:84:63:06:49:c8: 4b:6f:b8:b4:8a:9b:f2:d3:b1:b5:d5:d7:b0:1f:34:4d:32:ec: d4:a6:6c:4a:14:fa:00:8e:5e:56:43:fa:be:cd:42:8c:56:49: 27:a7:ca:fa:4a:cd:93:9c:b2:6a:f3:99:9d:54:3f:04:44:94: 22:5a:62:80 -----BEGIN CERTIFICATE----- MIIFETCCA/mgAwIBAgIUDa47imoHpOZ2lHEy9EfLgAZaB98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNiMWJhM2ZkYjkxZDhkOWVhNzZjNTc3NjMyMGViN2Vi MmQ2ZWQ5ZDAeFw0yNjAxMjkxMDUyNDZaFw0yNzAxMjgxMDU3NDZaMDMxMTAvBgNV BAMTKDE1RTI4MDFEMzczNzY0NDdGRkIxMTk5RkU2QTgxRjE4NDVGRjk2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpMxf6WgrGKMT6DoNHVzHuHBZO 30w1ZqXIv4n4Os9BFSXZWhf7ZWFm+hntSTAJGsUgfczsLwHCaP7IHKboAtyP5/+4 fySugLVTveWkjKYS/KwbgqnDFsN/quwyVvuY0tY/xmX/iqVDwZ2bHKdze96MN9JN b+5kYdB1BpMlHfrm9Z0lqJjap70vRRRC7aMHGQ2ouvLTa0h9zDz+yAX0XYhwnmYo jNhD7tZUptKgduDg1t9XwdmyFPsHIE+Gj57+g9/IUbCgSpxMWsgkHCd2B3BnG2di oKsFJrSC4hdVZe4+ybeH0ZhLAiShad1nvl6MLAd8PqlK3NJLHVt07lENIdLjAgMB AAGjggIbMIICFzAdBgNVHQ4EFgQUFeKAHTc3ZEf/sRmf5qgfGEX/loEwHwYDVR0j BBgwFoAUA7G6P9uR2NnqdsV3YyDrfrLW7Z0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2ZmMGY1NTUtZGJhNy00MTkyLWEwMWQtZjY5MTZkNWJi ODRlLzAvMDNCMUJBM0ZEQjkxRDhEOUVBNzZDNTc3NjMyMEVCN0VCMkQ2RUQ5RC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0E3RzZQOXVSMk5ucWRzVjNZeURyZnJM VzdaMC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzdmZjBmNTU1LWRiYTct NDE5Mi1hMDFkLWY2OTE2ZDViYjg0ZS8wL0FTMjk4MDIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAAtmmoD BAAtmxADBADBHWMDBAHCkwYwDQYJKoZIhvcNAQELBQADggEBAAgyJ94pD14kU88x BX2w7K1TreirPe6P66DFavdDMpN10ZB4IFQYJuT5vSMb4DTUNCmYYxjLbDXEY99j z3VBPA9nzWqxauEd5WSrR43wrwK8EwQvbjyxazVAoetPAjBkQ/5Y+o1farkR3H8K KLTIh6LfvjFq6BY/b+1U4hyJRRdKUaTnby75hu5zWUBt7M6SMKJDvOLlE4WoJ/tZ 03SePDRcamAsEo4a22Bs1sMTHu+oi370kMme7qflMSE06USOqKSEYwZJyEtvuLSK m/LTsbXV17AfNE0y7NSmbEoU+gCOXlZD+r7NQoxWSSenyvpKzZOcsmrzmZ1UPwRE lCJaYoA= -----END CERTIFICATE-----Generated at Thu Jan 29 17:50:01 2026 by rpki-client