This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa File: AS29802.roa (raw, json) Hash identifier: yOfT5YqFEpKQ4Xqz75U4yfD7GJrBkQyiRUE9VdyfEB8= Subject key identifier: E8:A1:4C:C4:94:54:69:A9:D3:6A:38:BB:A0:1B:3D:2B:CC:88:89:04 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 5B74B966B2046A016F1B0E6F885F0ABAA036CF Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa Signing time: Wed 21 Jan 2026 17:04:56 +0000 ROA not before: Wed 21 Jan 2026 16:59:56 +0000 ROA not after: Wed 20 Jan 2027 17:04:56 +0000 asID: 29802 IP address blocks: 82.21.67.0/24 maxlen: 24 82.21.74.0/24 maxlen: 24 82.21.93.0/24 maxlen: 24 82.21.103.0/24 maxlen: 24 82.21.110.0/24 maxlen: 24 82.21.113.0/24 maxlen: 24 82.21.119.0/24 maxlen: 24 82.21.122.0/24 maxlen: 24 82.21.124.0/24 maxlen: 24 82.21.132.0/24 maxlen: 24 82.21.139.0/24 maxlen: 24 82.21.140.0/24 maxlen: 24 82.21.143.0/24 maxlen: 24 82.21.148.0/24 maxlen: 24 82.21.152.0/24 maxlen: 24 82.21.155.0/24 maxlen: 24 82.21.157.0/24 maxlen: 24 82.21.163.0/24 maxlen: 24 82.24.92.0/22 maxlen: 24 82.24.96.0/22 maxlen: 24 82.24.116.0/22 maxlen: 24 82.24.128.0/22 maxlen: 24 82.24.132.0/22 maxlen: 24 82.24.136.0/22 maxlen: 24 82.24.140.0/22 maxlen: 24 82.24.148.0/22 maxlen: 24 82.24.152.0/22 maxlen: 24 82.24.156.0/22 maxlen: 24 82.24.160.0/22 maxlen: 24 82.24.164.0/22 maxlen: 24 82.24.168.0/22 maxlen: 24 82.24.176.0/22 maxlen: 24 82.24.196.0/22 maxlen: 24 82.25.146.0/23 maxlen: 24 82.25.148.0/23 maxlen: 24 82.25.150.0/23 maxlen: 24 82.25.152.0/23 maxlen: 24 82.25.154.0/23 maxlen: 24 82.25.156.0/23 maxlen: 24 82.25.158.0/23 maxlen: 24 82.25.162.0/23 maxlen: 24 82.25.164.0/23 maxlen: 24 82.25.166.0/23 maxlen: 24 82.25.168.0/23 maxlen: 24 82.25.170.0/23 maxlen: 24 82.25.172.0/23 maxlen: 24 82.25.176.0/23 maxlen: 24 82.25.178.0/23 maxlen: 24 82.25.182.0/23 maxlen: 24 82.25.188.0/23 maxlen: 24 82.26.66.0/24 maxlen: 24 82.26.116.0/24 maxlen: 24 82.26.176.0/21 maxlen: 24 82.26.184.0/21 maxlen: 24 82.27.8.0/24 maxlen: 24 82.38.174.0/24 maxlen: 24 178.83.59.0/24 maxlen: 24 2a13:9500:3::/48 maxlen: 48 2a13:9500:6::/48 maxlen: 48 2a13:9500:7::/48 maxlen: 48 2a13:9500:8::/48 maxlen: 48 2a13:9500:9::/48 maxlen: 48 2a13:9500:a::/48 maxlen: 48 2a13:9500:b::/48 maxlen: 48 2a13:9500:c::/48 maxlen: 48 2a13:9500:d::/48 maxlen: 48 2a13:9500:e::/48 maxlen: 48 2a13:9500:f::/48 maxlen: 48 2a13:9500:10::/48 maxlen: 48 2a13:9500:1c::/48 maxlen: 48 2a13:9500:1d::/48 maxlen: 48 2a13:9500:1e::/48 maxlen: 48 2a13:9500:1f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:74:b9:66:b2:04:6a:01:6f:1b:0e:6f:88:5f:0a:ba:a0:36:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 21 16:59:56 2026 GMT Not After : Jan 20 17:04:56 2027 GMT Subject: CN=E8A14CC4945469A9D36A38BBA01B3D2BCC888904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:02:f8:dc:8a:dc:20:47:13:89:3e:83:b1:3d: ef:45:46:e9:6c:70:e8:17:3c:b0:a2:2c:34:67:49: 9b:0e:49:18:a3:cc:06:6d:5c:9b:06:50:16:61:1a: 9b:65:37:3a:6b:12:e8:b8:7e:df:a1:65:11:f2:30: 00:c9:76:13:ae:79:5e:a2:8a:96:67:ab:c2:fe:44: 10:d4:ff:61:38:08:77:58:6a:ce:db:74:0e:68:95: 92:1f:45:73:a9:d3:09:03:05:9c:89:dc:d7:b1:a2: 63:c2:7e:7f:73:51:5b:37:0d:54:cc:21:30:f1:52: db:6d:57:b8:3c:0c:27:3a:24:84:84:a8:a2:a2:a7: 44:f4:e4:1a:ca:49:f2:74:0f:83:b7:4a:ac:f7:39: 42:0b:dd:5d:02:22:f8:5e:7b:11:5d:4c:47:33:40: 77:67:d2:2f:cf:13:21:df:4a:2d:94:30:a6:60:3c: 68:09:5f:3c:08:ae:ba:5a:b3:35:aa:a2:ef:8b:a6: 0c:b1:ab:1c:91:37:92:18:a2:8d:e4:30:f6:b6:04: ee:9e:dc:a3:36:7b:9d:b6:5a:6a:b8:e6:88:8e:6d: 33:0f:2c:e5:05:e8:d5:3f:b4:61:b5:26:49:0c:c7: 77:3b:3e:01:29:e9:0e:45:fa:15:2f:de:ed:13:ff: b9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A1:4C:C4:94:54:69:A9:D3:6A:38:BB:A0:1B:3D:2B:CC:88:89:04 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29802.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.67.0/24 82.21.74.0/24 82.21.93.0/24 82.21.103.0/24 82.21.110.0/24 82.21.113.0/24 82.21.119.0/24 82.21.122.0/24 82.21.124.0/24 82.21.132.0/24 82.21.139.0-82.21.140.255 82.21.143.0/24 82.21.148.0/24 82.21.152.0/24 82.21.155.0/24 82.21.157.0/24 82.21.163.0/24 82.24.92.0-82.24.99.255 82.24.116.0/22 82.24.128.0/20 82.24.148.0-82.24.171.255 82.24.176.0/22 82.24.196.0/22 82.25.146.0-82.25.159.255 82.25.162.0-82.25.173.255 82.25.176.0/22 82.25.182.0/23 82.25.188.0/23 82.26.66.0/24 82.26.116.0/24 82.26.176.0/20 82.27.8.0/24 82.38.174.0/24 178.83.59.0/24 IPv6: 2a13:9500:3::/48 2a13:9500:6::-2a13:9500:10:ffff:ffff:ffff:ffff:ffff 2a13:9500:1c::/46 Signature Algorithm: sha256WithRSAEncryption a4:8b:cb:7c:bd:c1:9f:cb:7c:29:05:06:ca:66:5c:99:15:28: dc:fc:08:16:3f:dc:6a:2b:bc:a5:a1:47:29:9a:c8:a3:be:4c: 52:ea:c4:26:9e:aa:ff:a8:a3:ca:58:30:98:9f:58:0b:aa:7d: 24:6d:7e:89:3f:ff:96:f8:51:a6:15:c2:5d:8b:83:36:cb:15: f0:03:ed:b8:10:e6:3a:3d:a5:9e:2b:95:8f:91:e1:9d:35:45: c4:9c:2c:a7:33:3e:dd:de:fa:4b:72:62:c4:8b:7c:7b:41:e6: 7c:51:5c:1c:3f:74:bc:47:01:4f:22:b9:b9:15:c6:a1:4e:e6: ee:ef:35:b5:59:4e:a4:82:a1:7c:f7:e8:ba:19:69:a6:98:13: df:f7:cc:52:84:ab:7a:b5:4d:a8:91:88:17:a7:00:03:b6:aa: 39:f0:54:4d:93:9b:78:06:5a:f0:50:6b:ff:2d:72:cd:fb:51: 49:15:87:e3:02:ee:44:13:0e:6d:0c:12:6c:e8:76:28:a8:40: 72:c4:77:d4:01:06:22:85:74:25:13:39:8d:51:44:24:eb:6e: f1:14:5e:68:17:c7:9c:be:a6:bf:d3:b0:e8:86:5d:39:23:c2: fd:79:5f:21:f3:bd:66:28:a7:e8:29:dd:7e:84:66:58:71:e5: 84:61:89:f5 -----BEGIN CERTIFICATE----- MIIGIjCCBQqgAwIBAgITW3S5ZrIEagFvGw5viF8KuqA2zzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygyMThjYzZlMjQxMDVkZTZjNWM5MDAzZDY1MjQzODkzY2Iz Y2ZkZDAxMB4XDTI2MDEyMTE2NTk1NloXDTI3MDEyMDE3MDQ1NlowMzExMC8GA1UE AxMoRThBMTRDQzQ5NDU0NjlBOUQzNkEzOEJCQTAxQjNEMkJDQzg4ODkwNDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKAC+NyK3CBHE4k+g7E970VG6Wxw 6Bc8sKIsNGdJmw5JGKPMBm1cmwZQFmEam2U3OmsS6Lh+36FlEfIwAMl2E655XqKK lmerwv5EENT/YTgId1hqztt0DmiVkh9Fc6nTCQMFnInc17GiY8J+f3NRWzcNVMwh MPFS221XuDwMJzokhISooqKnRPTkGspJ8nQPg7dKrPc5QgvdXQIi+F57EV1MRzNA d2fSL88TId9KLZQwpmA8aAlfPAiuulqzNaqi74umDLGrHJE3khiijeQw9rYE7p7c ozZ7nbZaarjmiI5tMw8s5QXo1T+0YbUmSQzHdzs+ASnpDkX6FS/e7RP/uc8CAwEA AaOCAy0wggMpMB0GA1UdDgQWBBTooUzElFRpqdNqOLugGz0rzIiJBDAfBgNVHSME GDAWgBQhjMbiQQXebFyQA9ZSQ4k8s8/dATAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS83MThhMWI0Zi1iNjRjLTQwMmMtYmUxNS1kZDgyYTQxYTFh ZjYvMC8yMThDQzZFMjQxMDVERTZDNUM5MDAzRDY1MjQzODkzQ0IzQ0ZERDAxLmNy bDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvSVl6RzRrRUYzbXhja0FQV1VrT0pQTFBQ M1FFLmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJzeW5jOi8vcnN5 bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00 MDJjLWJlMTUtZGQ4MmE0MWExYWY2LzAvQVMyOTgwMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCCAUEGCCsGAQUFBwEHAQH/BIIBMDCCASwwgfsEAgABMIH0 AwQAUhVDAwQAUhVKAwQAUhVdAwQAUhVnAwQAUhVuAwQAUhVxAwQAUhV3AwQAUhV6 AwQAUhV8AwQAUhWEMAwDBABSFYsDBABSFYwDBABSFY8DBABSFZQDBABSFZgDBABS FZsDBABSFZ0DBABSFaMwDAMEAlIYXAMEAlIYYAMEAlIYdAMEBFIYgDAMAwQCUhiU AwQCUhioAwQCUhiwAwQCUhjEMAwDBAFSGZIDBAVSGYAwDAMEAVIZogMEAVIZrAME AlIZsAMEAVIZtgMEAVIZvAMEAFIaQgMEAFIadAMEBFIasAMEAFIbCAMEAFImrgME ALJTOzAsBAIAAjAmAwcAKhOVAAADMBIDBwEqE5UAAAYDBwAqE5UAABADBwIqE5UA ABwwDQYJKoZIhvcNAQELBQADggEBAKSLy3y9wZ/LfCkFBspmXJkVKNz8CBY/3Gor vKWhRymayKO+TFLqxCaeqv+oo8pYMJifWAuqfSRtfok//5b4UaYVwl2LgzbLFfAD 7bgQ5jo9pZ4rlY+R4Z01RcScLKczPt3e+ktyYsSLfHtB5nxRXBw/dLxHAU8iubkV xqFO5u7vNbVZTqSCoXz36LoZaaaYE9/3zFKEq3q1TaiRiBenAAO2qjnwVE2Tm3gG WvBQa/8tcs37UUkVh+MC7kQTDm0MEmzodiioQHLEd9QBBiKFdCUTOY1RRCTrbvEU XmgXx5y+pr/TsOiGXTkjwv15XyHzvWYop+gp3X6EZlhx5YRhifU= -----END CERTIFICATE-----Generated at Mon Jan 26 07:26:23 2026 by rpki-client