This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa File: AS13213.roa (raw, json) Hash identifier: og9hgx819NHtpu30Cra3FT5wmIDiiW5tb5vZziXgwLk= Subject key identifier: A3:FF:00:E4:30:CC:2A:FE:A4:08:B7:E4:4A:3F:6A:60:73:72:17:45 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 65545BC2DE9B219ED59A4CF9C5A059AEBF97D7C6 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa Signing time: Thu 15 Jan 2026 14:25:59 +0000 ROA not before: Thu 15 Jan 2026 14:20:59 +0000 ROA not after: Thu 14 Jan 2027 14:25:59 +0000 asID: 13213 IP address blocks: 86.38.248.0/24 maxlen: 24 86.38.250.0/24 maxlen: 24 86.38.252.0/24 maxlen: 24 86.38.254.0/24 maxlen: 24 89.116.62.0/24 maxlen: 24 89.116.182.0/24 maxlen: 24 89.117.80.0/24 maxlen: 24 89.117.83.0/24 maxlen: 24 89.117.91.0/24 maxlen: 24 89.117.105.0/24 maxlen: 24 89.117.106.0/24 maxlen: 24 89.117.107.0/24 maxlen: 24 89.117.155.0/24 maxlen: 24 89.117.160.0/24 maxlen: 24 89.117.161.0/24 maxlen: 24 89.117.162.0/24 maxlen: 24 89.117.163.0/24 maxlen: 24 89.117.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 11:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:54:5b:c2:de:9b:21:9e:d5:9a:4c:f9:c5:a0:59:ae:bf:97:d7:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 15 14:20:59 2026 GMT Not After : Jan 14 14:25:59 2027 GMT Subject: CN=A3FF00E430CC2AFEA408B7E44A3F6A6073721745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c5:aa:d3:b1:7a:5d:c4:72:86:46:78:71:10: e9:d4:97:86:cc:a3:d2:a8:e1:32:27:5b:b1:d6:d9: af:61:0f:37:01:66:5b:3f:05:6b:10:2f:84:ae:27: e1:42:80:e0:c1:5f:74:5e:52:d1:95:b3:5e:64:3b: 6e:d6:99:e1:cd:43:45:59:5c:9e:df:5a:1f:fa:d7: bc:5a:b2:0d:e7:dc:59:41:20:33:5f:03:0c:61:4b: 81:76:56:b0:00:98:b8:de:4b:6f:27:5d:bc:f9:15: 42:29:23:1d:02:1f:ed:92:a9:23:37:37:d4:25:c7: d6:cb:0f:ee:d2:c2:76:6f:12:aa:74:27:b5:b2:19: 0b:a8:a8:cb:64:19:f1:a6:77:11:3f:7d:4f:ec:c7: ca:6d:63:b2:8f:4f:3c:a0:a5:d9:75:73:09:ad:22: ff:c2:91:3c:57:f7:90:c7:40:c4:55:39:57:83:4a: fa:72:93:39:0a:f5:d0:93:15:09:3b:c9:08:c1:3a: f6:8c:27:ba:6f:5a:b8:9f:7f:38:37:dc:44:46:70: 66:9d:6a:ea:4e:af:57:99:32:21:41:b2:15:be:e2: d6:10:74:e6:63:7f:66:f5:8e:0b:0f:59:34:08:13: a5:75:3a:b7:85:04:2f:ed:44:8d:f3:b2:4c:ff:ea: 9f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:FF:00:E4:30:CC:2A:FE:A4:08:B7:E4:4A:3F:6A:60:73:72:17:45 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.248.0/24 86.38.250.0/24 86.38.252.0/24 86.38.254.0/24 89.116.62.0/24 89.116.182.0/24 89.117.80.0/24 89.117.83.0/24 89.117.91.0/24 89.117.105.0-89.117.107.255 89.117.155.0/24 89.117.160.0/22 89.117.218.0/24 Signature Algorithm: sha256WithRSAEncryption 32:86:20:31:1a:e9:b5:87:cd:0b:98:aa:a0:c5:e0:d3:30:ef: bb:d5:23:63:28:1c:03:92:41:fe:d7:3d:c6:21:b0:e4:aa:b1: c0:a6:34:9b:cf:21:06:cd:1f:e9:ec:ef:11:da:df:04:8d:4b: b8:bf:13:83:f3:bb:fd:35:d4:39:09:8b:ea:b2:b7:22:d6:2d: 89:67:50:49:ec:8a:11:0f:26:79:2e:0d:c3:4d:b0:f3:f6:14: ae:ef:cd:d1:c7:f0:36:d4:21:27:f3:ec:60:3c:30:cb:06:4f: 42:44:4c:d0:37:d2:ad:f7:ee:ff:90:9e:7b:e9:2f:f8:ac:b3: 54:32:85:c5:89:c2:7d:e0:0d:f9:64:87:65:f7:01:a3:ca:4a: 5e:38:72:40:f5:3a:a2:2e:62:86:59:67:95:ca:ac:22:66:60: 94:b0:23:04:7b:02:6a:39:f1:6a:ba:77:82:f9:00:57:28:99: d8:0c:bf:0b:9c:ee:8e:db:2d:61:7d:fc:6b:57:99:dc:e7:0c: af:e3:03:72:6d:ad:18:a3:8e:29:e7:6f:70:39:6b:82:d3:e4: 08:45:1a:34:3a:4c:40:db:42:d2:23:3e:17:6c:2f:c9:59:68: d9:11:bc:90:6d:80:7d:42:a9:99:ee:96:63:3b:45:fa:1b:dd: f4:6b:b1:be -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgIUZVRbwt6bIZ7Vmkz5xaBZrr+X18YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjAxMTUxNDIwNTlaFw0yNzAxMTQxNDI1NTlaMDMxMTAvBgNV BAMTKEEzRkYwMEU0MzBDQzJBRkVBNDA4QjdFNDRBM0Y2QTYwNzM3MjE3NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMxarTsXpdxHKGRnhxEOnUl4bM o9Ko4TInW7HW2a9hDzcBZls/BWsQL4SuJ+FCgODBX3ReUtGVs15kO27WmeHNQ0VZ XJ7fWh/617xasg3n3FlBIDNfAwxhS4F2VrAAmLjeS28nXbz5FUIpIx0CH+2SqSM3 N9Qlx9bLD+7SwnZvEqp0J7WyGQuoqMtkGfGmdxE/fU/sx8ptY7KPTzygpdl1cwmt Iv/CkTxX95DHQMRVOVeDSvpykzkK9dCTFQk7yQjBOvaMJ7pvWriffzg33ERGcGad aupOr1eZMiFBshW+4tYQdOZjf2b1jgsPWTQIE6V1OreFBC/tRI3zskz/6p//AgMB AAGjggJ+MIICejAdBgNVHQ4EFgQUo/8A5DDMKv6kCLfkSj9qYHNyF0UwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEzMjEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQAVib4AwQAVib6AwQAVib8 AwQAVib+AwQAWXQ+AwQAWXS2AwQAWXVQAwQAWXVTAwQAWXVbMAwDBABZdWkDBAJZ dWgDBABZdZsDBAJZdaADBABZddowDQYJKoZIhvcNAQELBQADggEBADKGIDEa6bWH zQuYqqDF4NMw77vVI2MoHAOSQf7XPcYhsOSqscCmNJvPIQbNH+ns7xHa3wSNS7i/ E4Pzu/011DkJi+qytyLWLYlnUEnsihEPJnkuDcNNsPP2FK7vzdHH8DbUISfz7GA8 MMsGT0JETNA30q337v+QnnvpL/iss1QyhcWJwn3gDflkh2X3AaPKSl44ckD1OqIu YoZZZ5XKrCJmYJSwIwR7Amo58Wq6d4L5AFcomdgMvwuc7o7bLWF9/GtXmdznDK/j A3JtrRijjinnb3A5a4LT5AhFGjQ6TEDbQtIjPhdsL8lZaNkRvJBtgH1CqZnulmM7 Rfob3fRrsb4= -----END CERTIFICATE-----Generated at Tue Jan 20 02:50:04 2026 by rpki-client