This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa File: AS210441.roa (raw, json) Hash identifier: HYlexB5ygTJth8Kme1r2AMF0UDmyAG7/mo59Tif42ls= Subject key identifier: BC:F2:27:5E:32:C0:EC:A5:38:A3:E2:10:E2:40:7D:76:6D:B9:6F:B4 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3602F985ADC6FB7965D995B4CDBBF1255C266437 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa Signing time: Tue 02 Dec 2025 12:55:12 +0000 ROA not before: Tue 02 Dec 2025 12:50:12 +0000 ROA not after: Tue 01 Dec 2026 12:55:12 +0000 asID: 210441 IP address blocks: 86.38.184.0/23 maxlen: 24 86.38.186.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.172.0/23 maxlen: 24 89.116.210.0/23 maxlen: 24 89.117.88.0/22 maxlen: 24 89.117.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:02:f9:85:ad:c6:fb:79:65:d9:95:b4:cd:bb:f1:25:5c:26:64:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 2 12:50:12 2025 GMT Not After : Dec 1 12:55:12 2026 GMT Subject: CN=BCF2275E32C0ECA538A3E210E2407D766DB96FB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9b:9f:a6:11:8c:7b:0b:da:d4:08:95:16:80: 71:d7:fa:c4:fd:c7:44:d7:eb:ff:1e:fa:15:34:fc: 11:ad:e6:09:74:f1:48:6f:46:f8:f1:cc:e0:34:90: 80:c3:fa:af:87:a5:4f:f2:27:0f:13:21:a5:8e:ec: 2b:b6:0f:22:86:a5:c5:e0:a9:ae:6c:ee:b8:38:85: 97:33:b7:34:d1:f4:05:eb:b6:90:4c:29:b9:c9:82: 24:3a:1b:ca:b2:42:ce:37:0d:0b:e8:13:fd:f3:4d: 64:e6:0f:f5:80:a2:52:3b:6b:56:50:b3:3c:8f:20: fb:48:0f:91:00:f6:7a:95:63:76:b7:86:98:72:5a: ec:52:e6:20:6e:44:e9:ed:47:bb:e9:cf:98:f2:68: e5:92:d9:f5:6f:34:d2:3e:df:ee:20:11:07:a0:2e: 8b:d5:4e:fb:24:21:2b:56:16:01:0c:71:03:c2:6d: d3:be:42:5a:64:1a:15:b2:0a:3b:82:bd:e2:cc:26: 8f:9d:66:f7:26:0f:df:e3:7f:4d:b1:5d:c9:c3:af: e1:5f:64:4d:f5:ea:b7:e5:0e:dc:d4:d4:cd:12:27: 1a:9e:06:1e:c2:95:1f:71:e4:0e:50:5a:93:92:d9: a1:69:45:18:e7:04:f7:82:bf:44:72:74:a4:05:d3: 06:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F2:27:5E:32:C0:EC:A5:38:A3:E2:10:E2:40:7D:76:6D:B9:6F:B4 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/22 86.38.246.0/23 89.116.172.0/23 89.116.210.0/23 89.117.88.0/22 89.117.132.0/22 Signature Algorithm: sha256WithRSAEncryption 30:a5:1b:4f:fb:f7:06:2d:c0:26:df:d6:28:31:3b:49:b1:2a: 0f:37:23:c4:3a:b4:d1:12:60:46:63:fe:7f:cd:a3:88:0d:50: 4a:81:da:00:62:10:c1:d5:8a:31:1b:b3:5c:74:d9:64:35:46: f7:74:7c:38:d3:3a:4d:9b:20:08:f2:d0:bd:6a:37:1e:93:bd: 9f:7f:96:c9:44:39:bd:b1:f7:83:17:21:7c:e0:e1:cd:ec:92: f7:67:67:6f:64:e4:29:ca:66:41:27:f3:ac:b3:26:1f:44:1f: 80:c2:0a:05:3f:8c:77:ff:b7:6f:37:56:90:64:cb:c2:12:a9: 78:97:85:ba:17:7a:67:57:90:a9:79:9c:fa:59:46:5f:71:27: e2:53:a6:bd:e3:c3:37:ff:91:81:d5:0b:17:2c:44:e3:51:4f: 65:06:4a:1a:9a:e7:d9:f9:47:ad:8a:d3:53:ba:8a:41:4b:fa: 37:64:2a:54:77:99:7e:97:05:ed:a3:47:ff:76:d8:d0:16:47: 27:6d:ae:37:13:5b:d0:33:3f:cb:bc:22:7b:3d:c1:24:b5:37: 8e:27:94:c7:5b:a4:98:c8:b0:07:8f:dd:dc:47:68:bf:7c:5c: 52:6c:4c:4a:06:fc:b8:ae:65:a1:0e:3e:43:78:a7:78:b1:3b: ca:45:dd:7f -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUNgL5ha3G+3ll2ZW0zbvxJVwmZDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEyMDIxMjUwMTJaFw0yNjEyMDExMjU1MTJaMDMxMTAvBgNV BAMTKEJDRjIyNzVFMzJDMEVDQTUzOEEzRTIxMEUyNDA3RDc2NkRCOTZGQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpm5+mEYx7C9rUCJUWgHHX+sT9 x0TX6/8e+hU0/BGt5gl08UhvRvjxzOA0kIDD+q+HpU/yJw8TIaWO7Cu2DyKGpcXg qa5s7rg4hZcztzTR9AXrtpBMKbnJgiQ6G8qyQs43DQvoE/3zTWTmD/WAolI7a1ZQ szyPIPtID5EA9nqVY3a3hphyWuxS5iBuROntR7vpz5jyaOWS2fVvNNI+3+4gEQeg LovVTvskIStWFgEMcQPCbdO+QlpkGhWyCjuCveLMJo+dZvcmD9/jf02xXcnDr+Ff ZE316rflDtzU1M0SJxqeBh7ClR9x5A5QWpOS2aFpRRjnBPeCv0RydKQF0waLAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUvPInXjLA7KU4o+IQ4kB9dm25b7QwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMDQ0MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAlYmuAMEAVYm9gMEAVl0 rAMEAVl00gMEAll1WAMEAll1hDANBgkqhkiG9w0BAQsFAAOCAQEAMKUbT/v3Bi3A Jt/WKDE7SbEqDzcjxDq00RJgRmP+f82jiA1QSoHaAGIQwdWKMRuzXHTZZDVG93R8 ONM6TZsgCPLQvWo3HpO9n3+WyUQ5vbH3gxchfODhzeyS92dnb2TkKcpmQSfzrLMm H0QfgMIKBT+Md/+3bzdWkGTLwhKpeJeFuhd6Z1eQqXmc+llGX3En4lOmvePDN/+R gdULFyxE41FPZQZKGprn2flHrYrTU7qKQUv6N2QqVHeZfpcF7aNH/3bY0BZHJ22u NxNb0DM/y7wiez3BJLU3jieUx1ukmMiwB4/d3Edov3xcUmxMSgb8uK5loQ4+Q3in eLE7ykXdfw== -----END CERTIFICATE-----Generated at Fri Dec 5 20:07:28 2025 by rpki-client