This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa File: AS210443.roa (raw, json) Hash identifier: NL2EtiSjdQCdX7dMm6Ull/rI3H48qGh4TOGoWAaOb4k= Subject key identifier: 51:CB:DE:A5:97:D2:52:49:BE:EA:D8:A8:85:C3:BA:C7:D7:E6:F4:E1 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6C52D2A8DC37AFF9157C23CA15AD3E2554F26399 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa Signing time: Tue 02 Dec 2025 12:55:12 +0000 ROA not before: Tue 02 Dec 2025 12:50:12 +0000 ROA not after: Tue 01 Dec 2026 12:55:12 +0000 asID: 210443 IP address blocks: 86.38.184.0/23 maxlen: 24 86.38.186.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:52:d2:a8:dc:37:af:f9:15:7c:23:ca:15:ad:3e:25:54:f2:63:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 2 12:50:12 2025 GMT Not After : Dec 1 12:55:12 2026 GMT Subject: CN=51CBDEA597D25249BEEAD8A885C3BAC7D7E6F4E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c1:76:4b:7b:0e:b1:84:2b:94:fd:3d:2e:d2: 1e:53:89:0a:b1:66:c8:e8:a3:7b:15:3f:93:8a:c6: 4b:94:ee:b3:8c:58:ac:57:bb:87:fc:17:fd:31:7f: df:97:c5:66:5b:8e:2f:37:3a:b6:e6:23:41:cb:dc: f0:0d:4b:fc:14:58:41:0d:c9:e5:c2:39:28:76:dc: f7:da:44:7a:ed:ff:a7:3a:14:b7:c2:f1:6f:4b:3d: d1:83:12:eb:6f:4f:b7:05:34:86:4a:5a:74:27:dc: c8:02:2a:03:18:4e:b5:81:45:47:8d:66:6e:5f:f5: 03:ec:d0:0e:97:91:35:79:5c:66:24:10:38:18:7c: f0:71:d6:09:55:46:ae:1f:24:40:68:52:2e:91:cc: 78:7a:bb:d7:e8:16:6f:e1:ab:6a:23:a0:5e:c0:b6: 7c:ac:63:8b:a9:8d:3d:54:af:e7:ae:ca:e9:28:4f: 11:8c:2a:17:6c:cb:86:87:7f:3c:0b:cf:9d:2e:6a: 55:53:48:55:f8:79:2c:20:ae:12:e8:7c:0f:48:23: 76:3a:0f:55:6c:86:fc:fc:a4:b3:0d:29:58:44:02: 0c:d9:3c:fa:b8:4c:b6:87:95:86:bf:d4:86:a3:c2: c9:62:0e:ec:d0:bb:69:71:ae:fa:dc:6c:1a:d4:56: 8a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CB:DE:A5:97:D2:52:49:BE:EA:D8:A8:85:C3:BA:C7:D7:E6:F4:E1 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/22 86.38.246.0/23 89.116.210.0/23 Signature Algorithm: sha256WithRSAEncryption 69:42:c6:d1:6d:59:a3:9a:cc:0c:23:9c:77:83:a4:b2:bd:95: a4:6a:e4:ad:72:a6:7a:05:76:53:5b:17:de:f8:0e:d8:a7:9c: 18:6a:48:fd:ba:7d:ab:cf:d1:98:a0:95:78:58:61:6a:2b:41: ca:48:a8:20:22:4c:16:98:47:2e:6e:6b:9a:ae:fb:80:eb:9f: 17:3f:eb:22:85:d6:26:3c:03:c7:07:2f:59:99:66:a5:df:4d: 41:f8:61:c6:19:74:26:c1:17:ba:1d:61:36:32:c4:2d:dc:da: f0:95:d0:1e:c2:c3:e0:0c:0b:2c:87:1f:0a:6b:b9:14:95:86: 35:b1:0f:87:3f:aa:f7:45:01:db:6f:b0:47:bc:e7:fe:ad:5e: e0:da:c0:68:5f:22:f6:e9:2a:fb:96:8c:d4:4d:21:d5:17:57: 08:c3:6c:7b:57:d5:d3:e1:c0:b7:34:cf:23:3f:61:a5:64:d7: d5:ea:c3:1f:7a:b1:7f:36:50:a5:a5:ae:34:16:9b:6f:66:fa: 1f:0a:93:e6:eb:da:65:3d:60:f3:99:16:da:b2:a5:21:bf:57: bd:60:2f:ea:86:fc:e0:eb:99:7e:5b:8a:95:cd:5c:9f:02:83: d5:4d:43:f0:8b:23:83:34:13:ab:40:3d:8a:f7:65:19:9c:4c: df:86:8e:01 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbFLSqNw3r/kVfCPKFa0+JVTyY5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEyMDIxMjUwMTJaFw0yNjEyMDExMjU1MTJaMDMxMTAvBgNV BAMTKDUxQ0JERUE1OTdEMjUyNDlCRUVBRDhBODg1QzNCQUM3RDdFNkY0RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpwXZLew6xhCuU/T0u0h5TiQqx Zsjoo3sVP5OKxkuU7rOMWKxXu4f8F/0xf9+XxWZbji83OrbmI0HL3PANS/wUWEEN yeXCOSh23PfaRHrt/6c6FLfC8W9LPdGDEutvT7cFNIZKWnQn3MgCKgMYTrWBRUeN Zm5f9QPs0A6XkTV5XGYkEDgYfPBx1glVRq4fJEBoUi6RzHh6u9foFm/hq2ojoF7A tnysY4upjT1Ur+euyukoTxGMKhdsy4aHfzwLz50ualVTSFX4eSwgrhLofA9II3Y6 D1Vshvz8pLMNKVhEAgzZPPq4TLaHlYa/1IajwsliDuzQu2lxrvrcbBrUVordAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUUcvepZfSUkm+6tiohcO6x9fm9OEwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMDQ0My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlYmuAMEAVYm9gMEAVl0 0jANBgkqhkiG9w0BAQsFAAOCAQEAaULG0W1Zo5rMDCOcd4Oksr2VpGrkrXKmegV2 U1sX3vgO2KecGGpI/bp9q8/RmKCVeFhhaitBykioICJMFphHLm5rmq77gOufFz/r IoXWJjwDxwcvWZlmpd9NQfhhxhl0JsEXuh1hNjLELdza8JXQHsLD4AwLLIcfCmu5 FJWGNbEPhz+q90UB22+wR7zn/q1e4NrAaF8i9ukq+5aM1E0h1RdXCMNse1fV0+HA tzTPIz9hpWTX1erDH3qxfzZQpaWuNBabb2b6HwqT5uvaZT1g85kW2rKlIb9XvWAv 6ob84OuZfluKlc1cnwKD1U1D8IsjgzQTq0A9ivdlGZxM34aOAQ== -----END CERTIFICATE-----Generated at Fri Dec 5 20:07:28 2025 by rpki-client