Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS29802.roa
File: AS29802.roa (raw, json)
Hash identifier: F0aNPF2ow9VRf0TQK4kFUYxnenbA2EEDNrpADQSsXP0=
Subject key identifier: 1B:F9:AA:32:E2:D0:74:B2:A6:34:99:5A:9A:6B:72:23:51:5F:35:D1
Certificate issuer: /CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Certificate serial: 7E0095A21EE40305F9A064527F71A9266FD97695
Authority key identifier: 61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS29802.roa
Signing time: Thu 26 Feb 2026 16:20:11 +0000
ROA not before: Thu 26 Feb 2026 16:15:11 +0000
ROA not after: Thu 25 Feb 2027 16:20:11 +0000
asID: 29802
IP address blocks: 2.57.22.0/24 maxlen: 24
2.58.28.0/24 maxlen: 24
5.252.68.0/24 maxlen: 24
5.252.69.0/24 maxlen: 24
5.252.70.0/24 maxlen: 24
5.252.71.0/24 maxlen: 24
5.252.73.0/24 maxlen: 24
5.252.161.0/24 maxlen: 24
45.87.186.0/24 maxlen: 24
141.98.88.0/24 maxlen: 24
141.98.90.0/24 maxlen: 24
179.61.130.0/24 maxlen: 24
179.61.143.0/24 maxlen: 24
179.61.158.0/24 maxlen: 24
179.61.195.0/24 maxlen: 24
181.41.213.0/24 maxlen: 24
181.41.222.0/23 maxlen: 24
181.214.35.0/24 maxlen: 24
181.214.52.0/24 maxlen: 24
181.214.123.0/24 maxlen: 24
181.214.219.0/24 maxlen: 24
181.214.242.0/24 maxlen: 24
181.215.37.0/24 maxlen: 24
181.215.46.0/24 maxlen: 24
181.215.61.0/24 maxlen: 24
181.215.89.0/24 maxlen: 24
181.215.165.0/24 maxlen: 24
181.215.183.0/24 maxlen: 24
181.215.231.0/24 maxlen: 24
185.34.40.0/24 maxlen: 24
185.34.41.0/24 maxlen: 24
185.130.204.0/22 maxlen: 24
185.135.8.0/24 maxlen: 24
185.135.11.0/24 maxlen: 24
185.139.237.0/24 maxlen: 24
185.141.164.0/23 maxlen: 24
185.142.26.0/24 maxlen: 24
185.142.27.0/24 maxlen: 24
185.143.228.0/24 maxlen: 24
185.158.148.0/24 maxlen: 24
185.172.58.0/23 maxlen: 24
185.173.24.0/23 maxlen: 24
185.173.32.0/23 maxlen: 24
185.174.62.0/24 maxlen: 24
191.96.42.0/23 maxlen: 24
191.96.50.0/23 maxlen: 24
191.96.70.0/23 maxlen: 24
191.96.97.0/24 maxlen: 24
191.96.109.0/24 maxlen: 24
191.96.167.0/24 maxlen: 24
191.96.188.0/24 maxlen: 24
191.96.189.0/24 maxlen: 24
191.96.192.0/24 maxlen: 24
191.101.62.0/24 maxlen: 24
191.101.65.0/24 maxlen: 24
191.101.73.0/24 maxlen: 24
191.101.93.0/24 maxlen: 24
191.101.134.0/24 maxlen: 24
191.101.164.0/23 maxlen: 24
191.101.205.0/24 maxlen: 24
191.101.253.0/24 maxlen: 24
193.31.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:00:95:a2:1e:e4:03:05:f9:a0:64:52:7f:71:a9:26:6f:d9:76:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1bb4447718f16b3d36675d205c4dea41bba0a
Validity
Not Before: Feb 26 16:15:11 2026 GMT
Not After : Feb 25 16:20:11 2027 GMT
Subject: CN=1BF9AA32E2D074B2A634995A9A6B7223515F35D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:17:2d:0d:93:61:15:c5:b4:2c:88:0c:41:
c4:27:ba:82:52:cc:3d:fd:f3:20:13:7a:7a:fa:38:
3d:ab:2e:97:31:3b:a5:93:d0:39:6f:7b:c5:04:94:
39:74:1d:3e:cf:49:ea:1c:de:01:ef:a4:96:15:d1:
70:7a:1b:39:24:90:b9:f4:7b:a6:e4:f0:e9:66:be:
df:b2:16:2c:39:d5:24:60:c6:3e:03:39:93:d0:e2:
b1:f0:02:d5:c3:e7:20:73:4b:72:a6:7c:2f:0e:12:
13:9f:40:3c:34:cc:1f:f1:fc:db:fd:93:42:d6:51:
ae:05:63:13:75:ef:a4:7e:ae:6d:a0:27:5a:9f:c9:
19:64:4d:70:b1:78:df:73:99:21:8b:28:98:37:3d:
fd:23:b4:d1:58:f1:42:79:83:61:f8:56:16:44:ed:
1d:6a:db:37:25:4e:84:85:89:f6:3f:bf:bd:08:fa:
8c:1c:d9:05:74:f8:79:4f:aa:91:da:94:d2:f3:b4:
5d:ed:74:1f:6d:04:6d:a3:4b:12:0c:77:38:2c:64:
bb:81:53:5b:ea:d6:9e:b9:ef:dc:b3:01:7c:29:7b:
11:3e:82:30:34:c8:13:c8:83:6d:62:7f:70:e2:de:
f3:94:25:b2:19:3a:bc:37:26:da:0c:8f:c0:76:64:
f0:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:F9:AA:32:E2:D0:74:B2:A6:34:99:5A:9A:6B:72:23:51:5F:35:D1
X509v3 Authority Key Identifier:
keyid:61:B1:BB:44:47:71:8F:16:B3:D3:66:75:D2:05:C4:DE:A4:1B:BA:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/61B1BB4447718F16B3D36675D205C4DEA41BBA0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbG7REdxjxaz02Z10gXE3qQbugo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/537459e7-2a83-43d1-9aa1-58417abac4b6/1/AS29802.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.22.0/24
2.58.28.0/24
5.252.68.0/22
5.252.73.0/24
5.252.161.0/24
45.87.186.0/24
141.98.88.0/24
141.98.90.0/24
179.61.130.0/24
179.61.143.0/24
179.61.158.0/24
179.61.195.0/24
181.41.213.0/24
181.41.222.0/23
181.214.35.0/24
181.214.52.0/24
181.214.123.0/24
181.214.219.0/24
181.214.242.0/24
181.215.37.0/24
181.215.46.0/24
181.215.61.0/24
181.215.89.0/24
181.215.165.0/24
181.215.183.0/24
181.215.231.0/24
185.34.40.0/23
185.130.204.0/22
185.135.8.0/24
185.135.11.0/24
185.139.237.0/24
185.141.164.0/23
185.142.26.0/23
185.143.228.0/24
185.158.148.0/24
185.172.58.0/23
185.173.24.0/23
185.173.32.0/23
185.174.62.0/24
191.96.42.0/23
191.96.50.0/23
191.96.70.0/23
191.96.97.0/24
191.96.109.0/24
191.96.167.0/24
191.96.188.0/23
191.96.192.0/24
191.101.62.0/24
191.101.65.0/24
191.101.73.0/24
191.101.93.0/24
191.101.134.0/24
191.101.164.0/23
191.101.205.0/24
191.101.253.0/24
193.31.40.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:06:7b:71:3e:56:5e:16:fc:8c:94:03:57:98:f0:ea:59:b6:
a7:84:d9:cb:b1:cf:73:d6:0a:9f:db:ee:19:ca:42:bc:47:68:
43:b3:a6:19:8b:7f:24:f6:c4:2a:40:54:4b:e9:a5:3f:8b:ec:
27:8f:5d:9e:9e:da:3b:64:96:7b:39:43:b1:8a:0d:c1:23:bf:
7f:a0:2c:cd:61:10:a9:9d:de:35:09:9e:fb:90:a8:ee:85:04:
da:88:0a:02:de:cf:33:91:3b:e9:f3:c6:5a:6f:af:07:9d:a5:
02:c4:a1:e8:4e:4e:b5:a3:38:49:59:83:03:9f:8d:b5:17:28:
98:35:3d:f7:aa:58:fd:83:4c:e6:5c:d5:96:4a:66:2a:72:07:
db:53:09:b5:dc:84:22:26:8c:9c:f4:7e:e8:b0:18:81:55:de:
89:1b:55:32:ee:1f:b2:9b:d7:37:84:ee:0e:73:57:18:59:f3:
79:99:cf:a6:65:22:81:8d:97:06:b9:67:dc:e3:9d:af:ee:5c:
d8:7f:8a:12:a4:e8:fe:ad:76:f2:23:da:24:89:45:d1:7f:b4:
7f:32:ca:e9:72:97:c0:25:fb:96:11:08:14:59:57:e3:f8:50:
1a:71:92:e7:d3:84:6b:75:35:2b:98:4a:2c:07:66:0c:9f:ac:
c1:8d:e1:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:39:32 2026 by rpki-client