This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: reDVuHqj4YsRTfxjuH2+xSat/OCWyMEDpVu8/PU9/18= Subject key identifier: 3D:F7:C5:23:BE:2A:72:87:CC:64:1B:23:33:3C:A2:F3:C8:61:87:EA Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Certificate serial: 7E3297D636E401C43B74DD254580EF388A071C46 Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa Signing time: Wed 07 Jan 2026 00:05:02 +0000 ROA not before: Wed 07 Jan 2026 00:00:02 +0000 ROA not after: Wed 06 Jan 2027 00:05:02 +0000 asID: 7029 IP address blocks: 46.202.87.0/24 maxlen: 24 46.202.96.0/24 maxlen: 24 46.202.97.0/24 maxlen: 24 46.202.98.0/24 maxlen: 24 46.202.99.0/24 maxlen: 24 46.202.124.0/24 maxlen: 24 46.202.125.0/24 maxlen: 24 46.202.126.0/24 maxlen: 24 46.202.127.0/24 maxlen: 24 46.202.200.0/24 maxlen: 24 46.202.201.0/24 maxlen: 24 46.202.202.0/24 maxlen: 24 46.202.203.0/24 maxlen: 24 46.202.206.0/24 maxlen: 24 46.202.207.0/24 maxlen: 24 46.202.216.0/24 maxlen: 24 46.202.217.0/24 maxlen: 24 46.202.219.0/24 maxlen: 24 46.202.220.0/24 maxlen: 24 46.202.221.0/24 maxlen: 24 46.202.222.0/24 maxlen: 24 46.202.223.0/24 maxlen: 24 46.203.3.0/24 maxlen: 24 46.203.5.0/24 maxlen: 24 46.203.6.0/24 maxlen: 24 46.203.13.0/24 maxlen: 24 46.203.14.0/24 maxlen: 24 46.203.21.0/24 maxlen: 24 46.203.22.0/24 maxlen: 24 46.203.29.0/24 maxlen: 24 46.203.32.0/24 maxlen: 24 46.203.43.0/24 maxlen: 24 46.203.44.0/24 maxlen: 24 46.203.47.0/24 maxlen: 24 46.203.54.0/24 maxlen: 24 46.203.56.0/24 maxlen: 24 46.203.58.0/24 maxlen: 24 46.203.62.0/24 maxlen: 24 46.203.74.0/24 maxlen: 24 46.203.80.0/24 maxlen: 24 46.203.91.0/24 maxlen: 24 46.203.92.0/24 maxlen: 24 46.203.104.0/24 maxlen: 24 46.203.113.0/24 maxlen: 24 46.203.121.0/24 maxlen: 24 46.203.137.0/24 maxlen: 24 46.203.161.0/24 maxlen: 24 91.124.0.0/24 maxlen: 24 91.124.2.0/24 maxlen: 24 91.124.3.0/24 maxlen: 24 91.124.16.0/24 maxlen: 24 91.124.59.0/24 maxlen: 24 91.124.82.0/24 maxlen: 24 91.124.90.0/24 maxlen: 24 91.124.134.0/24 maxlen: 24 91.124.208.0/24 maxlen: 24 91.124.228.0/23 maxlen: 24 91.124.230.0/23 maxlen: 24 91.124.232.0/23 maxlen: 24 91.124.234.0/23 maxlen: 24 92.112.32.0/24 maxlen: 24 92.112.33.0/24 maxlen: 24 92.112.34.0/24 maxlen: 24 92.112.35.0/24 maxlen: 24 92.112.157.0/24 maxlen: 24 92.113.215.0/24 maxlen: 24 92.113.254.0/23 maxlen: 24 178.92.80.0/24 maxlen: 24 178.92.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 08:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:32:97:d6:36:e4:01:c4:3b:74:dd:25:45:80:ef:38:8a:07:1c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f Validity Not Before: Jan 7 00:00:02 2026 GMT Not After : Jan 6 00:05:02 2027 GMT Subject: CN=3DF7C523BE2A7287CC641B23333CA2F3C86187EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e4:41:7c:f0:b2:e3:77:19:3d:02:9d:ae:57: 7b:e6:d1:fc:5b:42:89:df:66:8c:ad:60:c1:80:71: 7e:65:d6:66:d4:d3:d2:74:2d:22:0c:aa:96:7e:02: a0:90:07:47:5c:e6:93:91:b2:32:2c:b8:92:1b:5f: 5f:08:07:92:c5:f6:64:22:12:15:2c:fa:a3:f0:46: f2:cf:0a:8f:2f:32:2e:7d:4e:68:9e:55:b1:9b:0c: 55:e1:52:f6:eb:85:d4:56:89:08:6b:9c:dd:5f:48: 4a:03:62:50:f7:45:06:04:c1:fe:db:ea:15:a7:ce: b9:19:a2:ad:b9:fe:02:6d:45:c0:27:dc:c3:bd:3a: 3b:9a:ba:79:d5:96:7e:7d:df:10:dc:1e:73:fd:31: 8a:8f:ca:90:a6:bc:db:12:23:32:c2:00:c0:2d:85: 0b:77:54:30:2d:e6:5e:8f:6b:1c:7e:ab:a2:59:0e: 24:07:c2:4f:ce:b2:c6:f8:c6:af:59:04:c3:6a:74: df:36:01:df:aa:44:f7:76:58:89:d0:70:4e:97:f9: 89:8b:5b:98:85:ce:44:fa:12:31:9c:c1:a3:3b:14: e2:c3:26:ea:10:dc:25:e3:7c:b1:ee:50:7b:f4:a5: c2:b0:8c:c4:bf:4b:39:7d:de:1c:eb:0b:e0:67:da: ff:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F7:C5:23:BE:2A:72:87:CC:64:1B:23:33:3C:A2:F3:C8:61:87:EA X509v3 Authority Key Identifier: keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.202.87.0/24 46.202.96.0/22 46.202.124.0/22 46.202.200.0/22 46.202.206.0/23 46.202.216.0/23 46.202.219.0-46.202.223.255 46.203.3.0/24 46.203.5.0-46.203.6.255 46.203.13.0-46.203.14.255 46.203.21.0-46.203.22.255 46.203.29.0/24 46.203.32.0/24 46.203.43.0-46.203.44.255 46.203.47.0/24 46.203.54.0/24 46.203.56.0/24 46.203.58.0/24 46.203.62.0/24 46.203.74.0/24 46.203.80.0/24 46.203.91.0-46.203.92.255 46.203.104.0/24 46.203.113.0/24 46.203.121.0/24 46.203.137.0/24 46.203.161.0/24 91.124.0.0/24 91.124.2.0/23 91.124.16.0/24 91.124.59.0/24 91.124.82.0/24 91.124.90.0/24 91.124.134.0/24 91.124.208.0/24 91.124.228.0-91.124.235.255 92.112.32.0/22 92.112.157.0/24 92.113.215.0/24 92.113.254.0/23 178.92.80.0/24 178.92.82.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:db:3a:92:a5:ee:e1:c9:f4:3c:91:dd:66:27:28:4a:3b:67: 79:ed:cd:aa:d6:f8:19:e9:fe:f4:1e:f1:d6:e1:6c:85:b3:50: 7c:89:48:55:c4:b7:07:8c:8a:fd:78:2c:ce:8b:26:40:90:26: 8a:ad:73:bc:52:28:3d:4a:54:3f:a0:17:0e:74:a4:19:4c:00: 91:10:e6:05:78:33:25:83:e5:8d:41:ff:7c:fa:28:28:7e:6e: f1:b4:a2:3f:16:04:37:3a:b2:1a:17:45:12:d3:28:ac:74:64: 29:b1:30:00:c2:dc:c5:54:7d:6c:fb:d4:08:66:9b:30:f8:95: 0d:3f:25:43:e3:de:62:af:bd:ae:a0:d5:8b:5a:f0:ec:c2:0e: 5f:1d:8d:76:f4:74:da:b4:b1:ff:0b:88:e3:1b:7f:5f:c7:10: 0e:97:7f:54:7b:d8:b8:d4:23:b1:96:b1:ac:c8:5c:57:a7:94: 85:64:8d:5f:c1:0c:8c:1a:51:ae:0d:f1:8c:46:e7:f8:a7:de: 66:91:c7:bb:cf:be:cb:44:78:36:8b:6d:d1:65:c3:e6:2b:06: 80:94:cf:bb:c4:9c:75:85:42:d5:6a:af:f8:42:34:b9:bf:3e: a2:ce:76:5f:d3:0a:01:0f:bb:48:7d:e2:e7:76:84:98:f5:f2: 7e:3f:09:3b -----BEGIN CERTIFICATE----- MIIGNjCCBR6gAwIBAgIUfjKX1jbkAcQ7dN0lRYDvOIoHHEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk NWMxM2I1ZjAeFw0yNjAxMDcwMDAwMDJaFw0yNzAxMDYwMDA1MDJaMDMxMTAvBgNV BAMTKDNERjdDNTIzQkUyQTcyODdDQzY0MUIyMzMzM0NBMkYzQzg2MTg3RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX5EF88LLjdxk9Ap2uV3vm0fxb QonfZoytYMGAcX5l1mbU09J0LSIMqpZ+AqCQB0dc5pORsjIsuJIbX18IB5LF9mQi EhUs+qPwRvLPCo8vMi59TmieVbGbDFXhUvbrhdRWiQhrnN1fSEoDYlD3RQYEwf7b 6hWnzrkZoq25/gJtRcAn3MO9OjuaunnVln593xDcHnP9MYqPypCmvNsSIzLCAMAt hQt3VDAt5l6Paxx+q6JZDiQHwk/Ossb4xq9ZBMNqdN82Ad+qRPd2WInQcE6X+YmL W5iFzkT6EjGcwaM7FOLDJuoQ3CXjfLHuUHv0pcKwjMS/Szl93hzrC+Bn2v/dAgMB AAGjggNAMIIDPDAdBgNVHQ4EFgQUPffFI74qcofMZBsjMzyi88hhh+owHwYDVR0j BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNzAyOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAVUGCCsGAQUFBwEHAQH/BIIBRDCCAUAwggE8BAIAATCC ATQDBAAuylcDBAIuymADBAIuynwDBAIuysgDBAEuys4DBAEuytgwDAMEAC7K2wME BS7KwAMEAC7LAzAMAwQALssFAwQALssGMAwDBAAuyw0DBAAuyw4wDAMEAC7LFQME AC7LFgMEAC7LHQMEAC7LIDAMAwQALssrAwQALsssAwQALssvAwQALss2AwQALss4 AwQALss6AwQALss+AwQALstKAwQALstQMAwDBAAuy1sDBAAuy1wDBAAuy2gDBAAu y3EDBAAuy3kDBAAuy4kDBAAuy6EDBABbfAADBAFbfAIDBABbfBADBABbfDsDBABb fFIDBABbfFoDBABbfIYDBABbfNAwDAMEAlt85AMEAlt86AMEAlxwIAMEAFxwnQME AFxx1wMEAVxx/gMEALJcUAMEALJcUjANBgkqhkiG9w0BAQsFAAOCAQEAa9s6kqXu 4cn0PJHdZicoSjtnee3Nqtb4Gen+9B7x1uFshbNQfIlIVcS3B4yK/XgszosmQJAm iq1zvFIoPUpUP6AXDnSkGUwAkRDmBXgzJYPljUH/fPooKH5u8bSiPxYENzqyGhdF EtMorHRkKbEwAMLcxVR9bPvUCGabMPiVDT8lQ+PeYq+9rqDVi1rw7MIOXx2NdvR0 2rSx/wuI4xt/X8cQDpd/VHvYuNQjsZaxrMhcV6eUhWSNX8EMjBpRrg3xjEbn+Kfe ZpHHu8++y0R4Nott0WXD5isGgJTPu8ScdYVC1Wqv+EI0ub8+os52X9MKAQ+7SH3i 53aEmPXyfj8JOw== -----END CERTIFICATE-----Generated at Tue Feb 10 10:54:48 2026 by rpki-client