Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa
File: AS29802.roa (raw, json)
Hash identifier: Fbc4ePvWsjeTTO/mRaKK1jCrR3pro6hTMYi3LAT8jxI=
Subject key identifier: 57:29:A3:E9:C9:3B:9B:F0:5A:3F:33:51:F0:0C:F2:A0:DB:31:E7:9B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 55FC746F57AA70A52CF87E0F39F1131B32471FE2
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa
Signing time: Thu 31 Jul 2025 00:02:12 +0000
ROA not before: Wed 30 Jul 2025 23:57:12 +0000
ROA not after: Thu 30 Jul 2026 00:02:12 +0000
asID: 29802
IP address blocks: 46.202.232.0/22 maxlen: 24
46.202.240.0/22 maxlen: 24
46.203.108.0/22 maxlen: 24
46.203.116.0/22 maxlen: 24
46.203.128.0/22 maxlen: 24
46.203.140.0/22 maxlen: 24
46.203.198.0/24 maxlen: 24
46.203.201.0/24 maxlen: 24
46.203.206.0/24 maxlen: 24
46.203.209.0/24 maxlen: 24
91.124.130.0/24 maxlen: 24
91.124.149.0/24 maxlen: 24
92.112.134.0/24 maxlen: 24
92.112.136.0/24 maxlen: 24
92.112.139.0/24 maxlen: 24
92.112.145.0/24 maxlen: 24
92.112.148.0/24 maxlen: 24
92.112.150.0/24 maxlen: 24
92.112.168.0/24 maxlen: 24
92.112.169.0/24 maxlen: 24
92.112.173.0/24 maxlen: 24
92.112.174.0/24 maxlen: 24
92.112.203.0/24 maxlen: 24
92.113.83.0/24 maxlen: 24
92.113.103.0/24 maxlen: 24
92.113.162.0/24 maxlen: 24
92.113.232.0/24 maxlen: 24
92.113.233.0/24 maxlen: 24
92.113.237.0/24 maxlen: 24
92.113.238.0/24 maxlen: 24
92.113.242.0/24 maxlen: 24
92.113.243.0/24 maxlen: 24
178.92.92.0/22 maxlen: 24
178.93.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:fc:74:6f:57:aa:70:a5:2c:f8:7e:0f:39:f1:13:1b:32:47:1f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jul 30 23:57:12 2025 GMT
Not After : Jul 30 00:02:12 2026 GMT
Subject: CN=5729A3E9C93B9BF05A3F3351F00CF2A0DB31E79B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:71:b0:24:38:e2:f8:62:8f:6e:6a:f9:0d:ce:
1e:c6:f1:b1:6c:aa:7e:4d:e5:d7:5c:61:77:99:e9:
27:c8:79:e6:38:ab:1c:92:b3:19:b2:f2:6d:6d:c2:
ed:f3:f9:0a:4a:bd:39:7e:44:a6:73:f8:bd:e1:b1:
94:c1:c8:32:b1:4e:0d:fe:72:e0:37:cb:fb:64:88:
fb:13:5d:ba:50:ab:61:bc:fb:db:28:66:51:d4:47:
48:05:10:a3:28:9d:a9:fc:8d:98:49:82:4e:43:5e:
47:51:c7:27:77:ea:81:21:e6:61:c3:df:3a:4d:fc:
4e:09:5b:93:3e:ba:3f:df:7c:a7:9d:5c:aa:02:97:
d9:b3:8a:5a:3b:30:21:19:e1:79:08:4c:f5:3c:78:
ae:ee:df:13:7d:95:b5:b9:e0:6f:c4:f8:77:40:c8:
eb:5c:64:e4:ec:00:b4:e6:6e:74:6d:4f:24:3f:df:
30:f4:2b:d0:a4:a3:fd:1d:80:36:72:55:a2:3e:50:
67:db:7d:42:37:21:0a:33:34:2c:6a:9a:9b:58:6d:
8f:1d:b7:3d:0d:42:54:a0:5c:c3:0c:c2:13:d8:02:
64:37:0d:24:3e:f6:76:80:fc:6b:34:2d:2f:82:a8:
97:ab:9b:a0:27:00:fc:7e:cd:80:62:82:0a:25:33:
65:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:29:A3:E9:C9:3B:9B:F0:5A:3F:33:51:F0:0C:F2:A0:DB:31:E7:9B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS29802.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.232.0/22
46.202.240.0/22
46.203.108.0/22
46.203.116.0/22
46.203.128.0/22
46.203.140.0/22
46.203.198.0/24
46.203.201.0/24
46.203.206.0/24
46.203.209.0/24
91.124.130.0/24
91.124.149.0/24
92.112.134.0/24
92.112.136.0/24
92.112.139.0/24
92.112.145.0/24
92.112.148.0/24
92.112.150.0/24
92.112.168.0/23
92.112.173.0-92.112.174.255
92.112.203.0/24
92.113.83.0/24
92.113.103.0/24
92.113.162.0/24
92.113.232.0/23
92.113.237.0-92.113.238.255
92.113.242.0/23
178.92.92.0/22
178.93.112.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:9f:42:56:a0:cc:72:7e:5c:6e:e3:4d:90:52:03:cf:60:18:
5f:a6:c6:d9:2a:42:96:ca:51:86:57:ce:30:e7:22:38:87:60:
ac:1e:39:89:03:1b:88:81:94:30:ed:59:ed:0a:0c:50:71:36:
0a:8d:7e:c1:c7:8a:c9:bf:e4:6b:a5:12:6e:28:35:79:85:12:
c5:2e:ae:ee:3f:39:4b:47:35:b8:c4:04:45:c5:ae:59:9d:3c:
89:78:63:5e:c4:73:6f:a6:e8:e4:4b:be:a5:33:b8:be:2a:3d:
fc:5b:7d:63:9b:ec:e6:99:4e:80:e1:ff:e0:f2:49:b2:eb:e4:
1b:0e:f9:d4:8a:11:0f:fc:0f:ad:16:51:c3:b8:99:a0:3b:44:
4f:11:2d:c1:2d:f0:19:97:36:b6:4c:cb:a5:50:a7:99:4e:77:
7d:ce:6b:cd:71:2e:bc:a2:ff:34:db:75:87:ac:58:c0:a3:bc:
15:95:3e:db:cb:fd:e1:a6:7d:a8:0f:2c:a6:fb:2d:ed:3d:ba:
16:25:8e:8e:6a:f6:f4:cb:e1:d0:55:97:01:e4:69:91:93:88:
65:7b:77:d8:ff:9c:24:54:57:37:71:2c:e3:6b:77:48:ec:ce:
d0:47:3b:54:71:3d:6c:e6:37:8d:92:3e:d4:d4:ef:ab:67:ed:
a8:1a:37:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 13:56:32 2025 by rpki-client