This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS29802.roa File: AS29802.roa (raw, json) Hash identifier: BPbCqWY1Z64I90llbzjta8wVvVhuGeQhGKu3yk2+9Bw= Subject key identifier: F3:16:D5:35:6B:63:B2:E6:B1:00:78:3F:2F:0E:7E:6A:6E:97:31:1D Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Certificate serial: 32F08AB65883A82D152E331BEC2E688BE864F4A7 Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS29802.roa Signing time: Tue 09 Dec 2025 17:33:05 +0000 ROA not before: Tue 09 Dec 2025 17:28:05 +0000 ROA not after: Tue 08 Dec 2026 17:33:05 +0000 asID: 29802 IP address blocks: 96.62.140.0/24 maxlen: 24 96.62.216.0/24 maxlen: 24 143.14.110.0/24 maxlen: 24 143.14.157.0/24 maxlen: 24 143.14.210.0/24 maxlen: 24 143.14.213.0/24 maxlen: 24 145.223.50.0/24 maxlen: 24 145.223.55.0/24 maxlen: 24 145.223.60.0/24 maxlen: 24 145.223.62.0/24 maxlen: 24 145.223.63.0/24 maxlen: 24 146.103.4.0/24 maxlen: 24 146.103.19.0/24 maxlen: 24 148.135.178.0/24 maxlen: 24 148.135.179.0/24 maxlen: 24 148.135.190.0/24 maxlen: 24 148.135.191.0/24 maxlen: 24 148.135.254.0/24 maxlen: 24 150.241.175.0/24 maxlen: 24 150.241.233.0/24 maxlen: 24 155.117.22.0/24 maxlen: 24 155.117.121.0/24 maxlen: 24 162.141.52.0/24 maxlen: 24 162.141.133.0/24 maxlen: 24 162.141.141.0/24 maxlen: 24 167.148.118.0/24 maxlen: 24 167.148.178.0/24 maxlen: 24 168.222.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f0:8a:b6:58:83:a8:2d:15:2e:33:1b:ec:2e:68:8b:e8:64:f4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc Validity Not Before: Dec 9 17:28:05 2025 GMT Not After : Dec 8 17:33:05 2026 GMT Subject: CN=F316D5356B63B2E6B100783F2F0E7E6A6E97311D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fa:15:26:53:c1:6b:71:c3:9e:46:fd:df:62: 60:ca:8b:70:b5:f4:87:d7:b5:34:61:8e:df:ba:d6: e1:5f:e6:8f:33:5f:02:df:8a:cb:d6:c4:90:78:f3: 22:99:19:74:fb:dc:1d:1a:c4:b9:dd:82:bb:1d:c6: 1e:93:1f:dc:eb:ba:01:e1:e7:a5:04:b0:67:9e:d2: 8f:f7:27:fc:8b:8d:22:19:e4:77:72:24:3a:11:57: a0:6c:c7:77:f2:ab:84:72:bb:c7:5c:6d:e9:8c:33: fd:75:4a:d7:13:a9:6e:c8:09:d4:9a:47:92:3e:3f: 04:fb:aa:56:81:fc:87:bc:30:44:fc:96:fc:fc:2a: 67:d2:9c:65:e8:95:f1:9f:c6:2e:d8:2e:44:ec:d6: 28:73:7f:8e:f1:c3:6d:75:35:d4:7c:00:f2:d8:a0: 1d:ec:8c:64:15:ba:fb:27:cd:27:ac:4c:41:96:66: 16:90:60:7d:8f:bf:e8:b1:90:48:47:70:93:59:90: 20:af:07:d6:3b:40:3e:aa:ee:e2:77:e5:ca:3d:3c: d5:46:0b:8c:48:c7:a6:45:4d:6a:41:48:7f:0a:5d: 44:cd:09:eb:c9:18:af:88:d8:d3:9a:38:4c:0c:ad: 6f:54:6b:ce:c5:c6:b4:d2:6b:c2:1a:26:33:d3:0a: 89:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:16:D5:35:6B:63:B2:E6:B1:00:78:3F:2F:0E:7E:6A:6E:97:31:1D X509v3 Authority Key Identifier: keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS29802.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.62.140.0/24 96.62.216.0/24 143.14.110.0/24 143.14.157.0/24 143.14.210.0/24 143.14.213.0/24 145.223.50.0/24 145.223.55.0/24 145.223.60.0/24 145.223.62.0/23 146.103.4.0/24 146.103.19.0/24 148.135.178.0/23 148.135.190.0/23 148.135.254.0/24 150.241.175.0/24 150.241.233.0/24 155.117.22.0/24 155.117.121.0/24 162.141.52.0/24 162.141.133.0/24 162.141.141.0/24 167.148.118.0/24 167.148.178.0/24 168.222.1.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:17:cf:78:a0:7d:ca:95:c9:68:fc:36:a2:8a:ba:dc:92:6d: 86:af:5c:27:55:09:d2:5c:8b:e2:9a:0e:8d:3b:36:c9:21:23: 1a:72:6a:6d:66:4b:7f:26:3a:2a:ff:0e:47:65:b7:22:ff:d5: d4:5a:42:b2:65:51:65:03:e9:41:8b:c5:19:8a:67:f3:3a:2d: 4a:03:70:72:42:af:e9:c6:90:14:ef:5a:1e:ef:60:67:b1:cb: 48:d8:f6:98:b8:23:00:66:e4:5b:ff:08:e0:ef:0b:80:11:86: 24:8e:6f:90:e4:95:f3:93:0b:67:cf:92:91:35:91:65:ab:f8: 9d:e6:15:c9:b3:4f:61:00:2f:08:b1:eb:08:d8:2b:17:89:fa: 25:d4:78:04:70:eb:07:00:26:72:44:e4:9a:97:c7:65:07:d4: b4:b8:1b:0e:b7:98:27:fb:53:f1:aa:66:c1:1d:e2:76:db:65: 9e:94:bc:e9:49:b3:fb:60:7b:f5:46:99:84:ae:9e:c4:e9:62: 35:44:2a:c7:92:40:a7:a5:b5:9c:cf:8e:ea:16:1c:4a:ad:f1: 9a:43:61:9e:4a:be:20:3c:8a:c1:90:7a:a1:4d:27:02:ab:6c: f7:19:0c:c0:56:c8:a8:cc:17:29:70:13:a3:81:ef:3f:61:95: f0:30:8e:ea -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIUMvCKtliDqC0VLjMb7C5oi+hk9KcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNGZjMzM2YmY5ZjNkZTVjZTQxNDE0YmQxOTcxOTQ1ZjRi MjQ2YmZjYzAeFw0yNTEyMDkxNzI4MDVaFw0yNjEyMDgxNzMzMDVaMDMxMTAvBgNV BAMTKEYzMTZENTM1NkI2M0IyRTZCMTAwNzgzRjJGMEU3RTZBNkU5NzMxMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe+hUmU8FrccOeRv3fYmDKi3C1 9IfXtTRhjt+61uFf5o8zXwLfisvWxJB48yKZGXT73B0axLndgrsdxh6TH9zrugHh 56UEsGee0o/3J/yLjSIZ5HdyJDoRV6Bsx3fyq4Ryu8dcbemMM/11StcTqW7ICdSa R5I+PwT7qlaB/Ie8MET8lvz8KmfSnGXolfGfxi7YLkTs1ihzf47xw211NdR8APLY oB3sjGQVuvsnzSesTEGWZhaQYH2Pv+ixkEhHcJNZkCCvB9Y7QD6q7uJ35co9PNVG C4xIx6ZFTWpBSH8KXUTNCevJGK+I2NOaOEwMrW9Ua87FxrTSa8IaJjPTComXAgMB AAGjggKeMIICmjAdBgNVHQ4EFgQU8xbVNWtjsuaxAHg/Lw5+am6XMR0wHwYDVR0j BBgwFoAUT8M2v5895c5BQUvRlxlF9LJGv8wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDliZTNhYWUtYWVhMS00MWRjLWIxYjktOTVhYzU5MTgy NDRkLzAvNEZDMzM2QkY5RjNERTVDRTQxNDE0QkQxOTcxOTQ1RjRCMjQ2QkZDQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1Q4TTJ2NTg5NWM1QlFVdlJseGxGOUxK R3Y4dy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzA5YmUzYWFlLWFlYTEt NDFkYy1iMWI5LTk1YWM1OTE4MjQ0ZC8wL0FTMjk4MDIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwgbMGCCsGAQUFBwEHAQH/BIGjMIGgMIGdBAIAATCBlgME AGA+jAMEAGA+2AMEAI8ObgMEAI8OnQMEAI8O0gMEAI8O1QMEAJHfMgMEAJHfNwME AJHfPAMEAZHfPgMEAJJnBAMEAJJnEwMEAZSHsgMEAZSHvgMEAJSH/gMEAJbxrwME AJbx6QMEAJt1FgMEAJt1eQMEAKKNNAMEAKKNhQMEAKKNjQMEAKeUdgMEAKeUsgME AKjeATANBgkqhkiG9w0BAQsFAAOCAQEAHBfPeKB9ypXJaPw2ooq63JJthq9cJ1UJ 0lyL4poOjTs2ySEjGnJqbWZLfyY6Kv8OR2W3Iv/V1FpCsmVRZQPpQYvFGYpn8zot SgNwckKv6caQFO9aHu9gZ7HLSNj2mLgjAGbkW/8I4O8LgBGGJI5vkOSV85MLZ8+S kTWRZav4neYVybNPYQAvCLHrCNgrF4n6JdR4BHDrBwAmckTkmpfHZQfUtLgbDreY J/tT8apmwR3idttlnpS86Umz+2B79UaZhK6exOliNUQqx5JAp6W1nM+O6hYcSq3x mkNhnkq+IDyKwZB6oU0nAqts9xkMwFbIqMwXKXATo4HvP2GV8DCO6g== -----END CERTIFICATE-----Generated at Wed Dec 17 18:10:11 2025 by rpki-client