This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa File: AS7029.roa (raw, json) Hash identifier: 9KpU7aVREuCChPmvaxwteFgXbQC7udogx47V2i9NoT8= Subject key identifier: 9B:54:C6:68:D1:1C:2E:CE:88:07:30:37:0D:BF:74:C5:04:60:E0:83 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 2DB5A8384707ADFC57BB3786DF9BCB20F71A26AD Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa Signing time: Thu 22 Jan 2026 14:42:24 +0000 ROA not before: Thu 22 Jan 2026 14:37:24 +0000 ROA not after: Thu 21 Jan 2027 14:42:24 +0000 asID: 7029 IP address blocks: 82.21.104.0/22 maxlen: 24 82.22.128.0/21 maxlen: 24 82.22.148.0/22 maxlen: 24 82.22.152.0/22 maxlen: 24 82.23.140.0/23 maxlen: 24 82.23.152.0/21 maxlen: 24 82.24.10.0/23 maxlen: 24 82.24.44.0/23 maxlen: 24 82.24.50.0/23 maxlen: 24 82.24.102.0/23 maxlen: 24 82.24.184.0/22 maxlen: 24 82.24.204.0/23 maxlen: 24 82.25.0.0/22 maxlen: 24 82.25.18.0/23 maxlen: 24 82.25.128.0/22 maxlen: 24 82.25.206.0/23 maxlen: 24 82.26.102.0/23 maxlen: 24 82.27.48.0/20 maxlen: 24 82.27.80.0/21 maxlen: 24 82.27.112.0/22 maxlen: 24 82.27.136.0/21 maxlen: 24 82.27.168.0/21 maxlen: 24 82.27.192.0/22 maxlen: 24 82.29.30.0/23 maxlen: 24 82.29.144.0/22 maxlen: 24 82.38.176.0/22 maxlen: 24 82.38.184.0/22 maxlen: 24 82.38.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:b5:a8:38:47:07:ad:fc:57:bb:37:86:df:9b:cb:20:f7:1a:26:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 22 14:37:24 2026 GMT Not After : Jan 21 14:42:24 2027 GMT Subject: CN=9B54C668D11C2ECE880730370DBF74C50460E083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7e:15:dc:5c:b1:94:2c:75:3b:1c:61:e6:1e: 5c:3d:db:42:a9:d8:e4:87:41:a5:b9:44:12:ff:b7: 73:ac:12:2b:bd:3c:c9:10:13:c1:4f:52:9e:7c:5d: a0:0b:ca:d4:2e:a8:57:52:85:38:7d:15:ac:6c:16: c5:72:6c:5f:ed:b4:19:59:70:05:7e:28:86:f2:27: 7e:be:8e:4c:31:db:6f:34:f7:f1:89:8d:45:a1:46: 61:93:42:26:0f:87:82:b8:86:db:37:61:8a:a0:38: de:40:bc:9e:59:86:dd:a2:42:9d:52:0b:21:4a:35: 6d:32:c7:1b:6d:21:f0:41:ec:69:7e:4c:60:03:b3: 86:4c:df:21:3e:57:50:9b:5d:42:bc:71:83:ad:79: 93:02:66:ae:90:03:56:95:ee:17:96:1e:98:04:3f: 85:48:f1:18:59:42:cd:62:9b:c5:93:85:9e:7a:5b: 57:76:f5:ae:ff:64:4c:ee:c0:ef:3c:4b:cd:8d:0c: 60:1d:3c:bf:f9:fa:52:ad:24:ee:bb:ec:ee:b3:ad: 94:f0:59:97:e1:dd:21:57:d4:a3:cd:20:7a:d6:9a: 3a:49:d5:6c:94:84:e2:21:ec:16:0d:ef:38:dd:44: 62:7f:a3:e3:08:14:b7:4c:ac:d2:4d:92:31:2b:61: 1b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:54:C6:68:D1:1C:2E:CE:88:07:30:37:0D:BF:74:C5:04:60:E0:83 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7029.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.21.104.0/22 82.22.128.0/21 82.22.148.0-82.22.155.255 82.23.140.0/23 82.23.152.0/21 82.24.10.0/23 82.24.44.0/23 82.24.50.0/23 82.24.102.0/23 82.24.184.0/22 82.24.204.0/23 82.25.0.0/22 82.25.18.0/23 82.25.128.0/22 82.25.206.0/23 82.26.102.0/23 82.27.48.0/20 82.27.80.0/21 82.27.112.0/22 82.27.136.0/21 82.27.168.0/21 82.27.192.0/22 82.29.30.0/23 82.29.144.0/22 82.38.176.0/22 82.38.184.0/21 Signature Algorithm: sha256WithRSAEncryption 91:ee:02:b3:30:a0:36:d4:3d:5f:f7:b9:0a:48:2c:b0:ea:d2: 44:df:a5:96:51:34:eb:53:fd:78:3a:81:3c:e2:65:54:d8:cd: 34:3d:cd:64:51:5d:91:58:60:93:9d:c2:57:76:8d:cf:ce:66: 8e:49:25:bc:98:8c:da:bf:0c:72:48:0e:d0:9f:33:be:bf:ec: 8d:b5:40:1d:5d:14:39:3b:a4:12:27:9c:4f:83:12:f9:aa:0c: 41:54:bb:a1:51:c0:3a:1d:0c:99:b1:bf:d9:cb:0b:de:be:08: b9:07:eb:9e:99:19:2f:ce:89:44:df:4d:ef:56:ee:9e:3a:3f: 9e:0f:5f:b7:67:9c:55:63:0e:d4:2f:57:3d:cc:e8:e4:75:85: e6:6f:3a:b2:db:5d:a1:85:3f:2e:87:62:4f:84:a5:d2:32:f9: 65:a4:a8:b3:73:9c:41:b1:30:90:11:00:bc:a6:cf:2e:c7:1f: 26:9a:69:55:6b:33:7c:4f:4f:99:a0:76:81:b6:73:a5:8f:69: 80:ba:14:3f:2f:d8:45:43:dc:ac:00:32:f8:9b:4f:24:68:4e: aa:f1:0b:98:46:2e:90:70:04:96:e8:af:37:19:ab:13:21:72: 71:b0:1b:1d:1f:61:c6:07:96:b1:c4:98:51:77:73:e7:83:e9: d7:f9:2b:10 -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgIULbWoOEcHrfxXuzeG35vLIPcaJq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMjIxNDM3MjRaFw0yNzAxMjExNDQyMjRaMDMxMTAvBgNV BAMTKDlCNTRDNjY4RDExQzJFQ0U4ODA3MzAzNzBEQkY3NEM1MDQ2MEUwODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWfhXcXLGULHU7HGHmHlw920Kp 2OSHQaW5RBL/t3OsEiu9PMkQE8FPUp58XaALytQuqFdShTh9FaxsFsVybF/ttBlZ cAV+KIbyJ36+jkwx22809/GJjUWhRmGTQiYPh4K4hts3YYqgON5AvJ5Zht2iQp1S CyFKNW0yxxttIfBB7Gl+TGADs4ZM3yE+V1CbXUK8cYOteZMCZq6QA1aV7heWHpgE P4VI8RhZQs1im8WThZ56W1d29a7/ZEzuwO88S82NDGAdPL/5+lKtJO677O6zrZTw WZfh3SFX1KPNIHrWmjpJ1WyUhOIh7BYN7zjdRGJ/o+MIFLdMrNJNkjErYRtnAgMB AAGjggKrMIICpzAdBgNVHQ4EFgQUm1TGaNEcLs6IBzA3Db90xQRg4IMwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNzAyOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjCBwQYIKwYBBQUHAQcBAf8EgbEwga4wgasEAgABMIGkAwQC UhVoAwQDUhaAMAwDBAJSFpQDBAJSFpgDBAFSF4wDBANSF5gDBAFSGAoDBAFSGCwD BAFSGDIDBAFSGGYDBAJSGLgDBAFSGMwDBAJSGQADBAFSGRIDBAJSGYADBAFSGc4D BAFSGmYDBARSGzADBANSG1ADBAJSG3ADBANSG4gDBANSG6gDBAJSG8ADBAFSHR4D BAJSHZADBAJSJrADBANSJrgwDQYJKoZIhvcNAQELBQADggEBAJHuArMwoDbUPV/3 uQpILLDq0kTfpZZRNOtT/Xg6gTziZVTYzTQ9zWRRXZFYYJOdwld2jc/OZo5JJbyY jNq/DHJIDtCfM76/7I21QB1dFDk7pBInnE+DEvmqDEFUu6FRwDodDJmxv9nLC96+ CLkH656ZGS/OiUTfTe9W7p46P54PX7dnnFVjDtQvVz3M6OR1heZvOrLbXaGFPy6H Yk+EpdIy+WWkqLNznEGxMJARALymzy7HHyaaaVVrM3xPT5mgdoG2c6WPaYC6FD8v 2EVD3KwAMvibTyRoTqrxC5hGLpBwBJborzcZqxMhcnGwGx0fYcYHlrHEmFF3c+eD 6df5KxA= -----END CERTIFICATE-----Generated at Sun Jan 25 09:20:10 2026 by rpki-client