This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa File: AS29802.roa (raw, json) Hash identifier: KebIFP3ghuvV0inqeJhqvH6AMFeRAHN/nT9hBooDNqI= Subject key identifier: 5D:0B:1A:1C:9C:3B:D7:59:F4:23:AA:CA:9F:41:66:F5:67:D8:78:BF Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 2038C4418CB8CE4F2E2748901F189D76DD32F8A6 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa Signing time: Sun 01 Feb 2026 00:11:20 +0000 ROA not before: Sun 01 Feb 2026 00:06:20 +0000 ROA not after: Sun 31 Jan 2027 00:11:20 +0000 asID: 29802 IP address blocks: 46.202.232.0/22 maxlen: 24 46.202.240.0/22 maxlen: 24 46.203.108.0/22 maxlen: 24 46.203.116.0/22 maxlen: 24 46.203.128.0/22 maxlen: 24 46.203.140.0/22 maxlen: 24 46.203.198.0/24 maxlen: 24 46.203.201.0/24 maxlen: 24 46.203.206.0/24 maxlen: 24 46.203.209.0/24 maxlen: 24 91.124.130.0/24 maxlen: 24 92.112.134.0/24 maxlen: 24 92.112.136.0/24 maxlen: 24 92.112.139.0/24 maxlen: 24 92.112.145.0/24 maxlen: 24 92.112.148.0/24 maxlen: 24 92.112.150.0/24 maxlen: 24 92.112.168.0/24 maxlen: 24 92.112.169.0/24 maxlen: 24 92.112.173.0/24 maxlen: 24 92.112.174.0/24 maxlen: 24 92.112.203.0/24 maxlen: 24 92.113.83.0/24 maxlen: 24 92.113.103.0/24 maxlen: 24 92.113.232.0/24 maxlen: 24 92.113.233.0/24 maxlen: 24 92.113.237.0/24 maxlen: 24 92.113.238.0/24 maxlen: 24 92.113.242.0/24 maxlen: 24 92.113.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 12:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:38:c4:41:8c:b8:ce:4f:2e:27:48:90:1f:18:9d:76:dd:32:f8:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Feb 1 00:06:20 2026 GMT Not After : Jan 31 00:11:20 2027 GMT Subject: CN=5D0B1A1C9C3BD759F423AACA9F4166F567D878BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b0:78:8e:30:fe:96:b5:b6:f9:9b:87:98:7b: 39:83:1d:da:e4:be:24:82:60:1b:79:b1:1e:43:ad: 8d:43:1f:63:fb:a7:04:5e:38:9a:37:60:2e:c6:e3: 1b:df:85:bb:10:4b:09:cb:27:fb:1c:c8:08:37:9b: 8d:52:98:01:e3:2c:56:38:3b:f0:2d:04:b1:82:c2: 24:31:69:ec:ae:dc:e8:2a:6b:a9:03:67:01:2c:5a: c6:62:b4:3d:57:eb:0f:90:6f:81:e0:17:85:91:b2: af:54:85:8e:16:db:70:82:e5:15:8d:ca:7a:0a:e5: ec:dd:38:98:15:47:ef:9e:99:eb:4d:39:7b:6d:64: 50:74:39:3d:95:0a:7a:e3:ec:55:b3:b8:29:28:6b: 76:73:4e:47:09:a6:85:8c:33:8b:17:ac:40:1d:57: 38:ef:32:0a:f7:61:bc:a1:5e:4f:0b:95:e9:f8:c0: 95:8a:81:c8:d9:c6:03:01:00:fe:bc:c8:15:f9:69: f5:4a:f4:01:c6:3c:48:c8:32:2d:2c:62:86:64:d7: 48:d6:64:1d:4b:e7:ee:08:53:52:d1:f2:b3:50:57: 17:6d:f2:a7:eb:34:69:a9:5e:0f:f5:8c:c9:d1:9d: 67:30:24:f0:f8:b2:f1:a4:69:11:ea:a7:d1:98:45: b7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0B:1A:1C:9C:3B:D7:59:F4:23:AA:CA:9F:41:66:F5:67:D8:78:BF X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.232.0/22 46.202.240.0/22 46.203.108.0/22 46.203.116.0/22 46.203.128.0/22 46.203.140.0/22 46.203.198.0/24 46.203.201.0/24 46.203.206.0/24 46.203.209.0/24 91.124.130.0/24 92.112.134.0/24 92.112.136.0/24 92.112.139.0/24 92.112.145.0/24 92.112.148.0/24 92.112.150.0/24 92.112.168.0/23 92.112.173.0-92.112.174.255 92.112.203.0/24 92.113.83.0/24 92.113.103.0/24 92.113.232.0/23 92.113.237.0-92.113.238.255 92.113.242.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:32:1f:f7:cf:c4:ee:31:64:f5:f2:2a:3c:db:51:a7:cb:6f: ad:47:20:e2:37:a0:fa:52:1e:13:fc:e6:73:73:8f:e6:87:5f: fc:1c:24:7d:de:6a:70:3a:16:0a:5e:0d:dd:ff:d9:ee:78:eb: 6d:70:f5:70:e1:e4:a2:07:05:7e:14:e7:ee:b0:1c:db:15:f9: 26:c1:32:71:c3:ce:8d:35:7a:b6:33:b4:dc:d5:44:94:28:2a: 45:76:1f:ed:16:f6:23:df:db:7c:bb:07:f3:40:d9:43:56:8b: f6:0f:a4:cf:c4:fb:57:7a:6e:02:d2:61:51:49:4a:4e:8c:cd: 63:6b:0f:36:eb:79:18:c4:75:c3:08:f6:f1:18:59:43:84:49: d4:1e:ce:60:4a:09:2e:72:64:9a:cf:ff:ba:c6:37:50:ad:73: cf:77:51:08:10:5b:6b:7e:7b:3e:b6:b5:f9:e7:a4:b1:32:1f: d2:cd:16:21:48:cf:fb:7b:8e:46:51:2c:57:87:39:a5:25:3d: bd:28:20:26:6c:a4:47:9d:72:1c:38:1e:2e:8b:6d:a8:04:d0: 48:7f:55:ec:65:0d:6a:67:27:c6:9b:9a:66:6f:45:ab:58:bb: ba:50:7e:f3:d2:8c:88:b2:61:87:68:a6:aa:1b:18:45:cc:32: e2:41:e1:1e -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgIUIDjEQYy4zk8uJ0iQHxiddt0y+KYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAyMDEwMDA2MjBaFw0yNzAxMzEwMDExMjBaMDMxMTAvBgNV BAMTKDVEMEIxQTFDOUMzQkQ3NTlGNDIzQUFDQTlGNDE2NkY1NjdEODc4QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPsHiOMP6Wtbb5m4eYezmDHdrk viSCYBt5sR5DrY1DH2P7pwReOJo3YC7G4xvfhbsQSwnLJ/scyAg3m41SmAHjLFY4 O/AtBLGCwiQxaeyu3Ogqa6kDZwEsWsZitD1X6w+Qb4HgF4WRsq9UhY4W23CC5RWN ynoK5ezdOJgVR++emetNOXttZFB0OT2VCnrj7FWzuCkoa3ZzTkcJpoWMM4sXrEAd VzjvMgr3YbyhXk8Llen4wJWKgcjZxgMBAP68yBX5afVK9AHGPEjIMi0sYoZk10jW ZB1L5+4IU1LR8rNQVxdt8qfrNGmpXg/1jMnRnWcwJPD4svGkaRHqp9GYRbezAgMB AAGjggKuMIICqjAdBgNVHQ4EFgQUXQsaHJw711n0I6rKn0Fm9WfYeL8wHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMjk4MDIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgcMGCCsGAQUFBwEHAQH/BIGzMIGwMIGtBAIAATCBpgME Ai7K6AMEAi7K8AMEAi7LbAMEAi7LdAMEAi7LgAMEAi7LjAMEAC7LxgMEAC7LyQME AC7LzgMEAC7L0QMEAFt8ggMEAFxwhgMEAFxwiAMEAFxwiwMEAFxwkQMEAFxwlAME AFxwlgMEAVxwqDAMAwQAXHCtAwQAXHCuAwQAXHDLAwQAXHFTAwQAXHFnAwQBXHHo MAwDBABcce0DBABcce4DBAFccfIwDQYJKoZIhvcNAQELBQADggEBAD0yH/fPxO4x ZPXyKjzbUafLb61HIOI3oPpSHhP85nNzj+aHX/wcJH3eanA6FgpeDd3/2e54621w 9XDh5KIHBX4U5+6wHNsV+SbBMnHDzo01erYztNzVRJQoKkV2H+0W9iPf23y7B/NA 2UNWi/YPpM/E+1d6bgLSYVFJSk6MzWNrDzbreRjEdcMI9vEYWUOESdQezmBKCS5y ZJrP/7rGN1Ctc893UQgQW2t+ez62tfnnpLEyH9LNFiFIz/t7jkZRLFeHOaUlPb0o ICZspEedchw4Hi6LbagE0Eh/VexlDWpnJ8abmmZvRatYu7pQfvPSjIiyYYdopqob GEXMMuJB4R4= -----END CERTIFICATE-----Generated at Sun Feb 1 22:12:25 2026 by rpki-client