This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa File: AS212609.roa (raw, json) Hash identifier: lR8mTTri8gZClWkMCyrtjtb4ajLnz4UC31mRgdqJAQA= Subject key identifier: 1F:38:5A:5F:65:02:1E:B0:95:41:42:C3:37:8A:00:74:3A:49:36:F2 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7CA551466A7A1DD4806718357A3766296A751A96 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa Signing time: Thu 01 May 2025 00:00:13 +0000 ROA not before: Wed 30 Apr 2025 23:55:13 +0000 ROA not after: Thu 30 Apr 2026 00:00:13 +0000 asID: 212609 IP address blocks: 86.38.24.0/24 maxlen: 24 89.116.137.0/24 maxlen: 24 89.116.242.0/24 maxlen: 24 89.117.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a5:51:46:6a:7a:1d:d4:80:67:18:35:7a:37:66:29:6a:75:1a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 30 23:55:13 2025 GMT Not After : Apr 30 00:00:13 2026 GMT Subject: CN=1F385A5F65021EB0954142C3378A00743A4936F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:71:7b:06:09:46:74:af:80:e8:26:05:ac: 6f:34:36:8e:f9:4f:8f:06:a4:9a:80:a4:3a:6c:b3: 8f:f0:bb:1e:16:0e:25:60:31:ce:17:70:02:db:29: ac:e1:55:97:78:a7:92:57:48:fb:35:ae:73:41:f0: cc:20:5f:60:eb:44:70:48:6c:d2:a3:93:84:fe:d8: 61:37:7f:23:2e:5b:89:e1:de:7f:4b:19:20:eb:58: 56:de:c8:82:72:2e:d7:e8:a4:d0:70:75:bb:da:21: 53:52:21:e1:58:3c:ff:b7:ac:b9:e2:87:85:16:3a: ca:b0:a0:b0:69:02:53:d5:a1:7a:05:45:bc:64:f0: c7:c4:b8:ad:90:d3:50:fc:a1:31:f4:13:11:b3:de: 34:2a:ea:29:d9:12:8f:a1:b2:1c:57:71:ae:f8:0f: 19:56:3b:04:1d:25:27:f6:65:f5:e0:09:d7:2c:ec: 7a:aa:37:16:1c:f3:6b:0b:04:a6:32:60:c1:b1:4f: 56:36:cc:06:48:82:c3:1e:c6:53:8d:c4:5f:b0:7c: ca:2a:c6:c0:e2:db:19:df:f7:14:88:53:eb:91:7f: 98:1f:ea:ed:a4:dd:03:f5:ac:2e:fd:3c:14:a1:7d: 24:b8:bf:b2:12:c7:bf:9c:b3:99:19:d6:98:fd:40: 14:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:38:5A:5F:65:02:1E:B0:95:41:42:C3:37:8A:00:74:3A:49:36:F2 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.24.0/24 89.116.137.0/24 89.116.242.0/24 89.117.5.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ce:ff:fe:ef:a1:46:a0:e8:57:28:b5:55:ae:96:6a:32:d1: 76:04:4e:ea:b1:23:2f:16:ea:b5:94:69:ca:e6:6d:a2:de:77: 29:5d:be:c3:14:2e:9f:25:db:8c:dc:90:09:68:a5:6d:3d:f7: 5b:e4:a4:17:a8:3b:6f:23:f9:a6:d2:a6:24:74:04:ef:b1:8b: c3:37:68:cb:76:dd:a7:ab:39:1f:47:bf:6c:4f:05:ac:9e:ca: 2e:1e:18:de:43:e7:09:f7:38:76:18:7c:34:3a:ff:01:b7:4c: fe:6b:ff:8c:6e:5b:25:24:ab:5d:43:37:72:d3:00:a4:9f:d4: ea:b1:c4:09:ad:68:57:ce:94:4c:18:ca:98:e4:7f:14:e8:8f: 7e:f9:ab:54:d9:bc:c8:f3:0c:cb:e2:97:58:88:ef:59:46:c9: 10:82:5b:e3:82:64:ed:07:57:05:90:44:79:ac:c6:a0:4c:3a: ff:57:d6:2e:91:d9:3c:6e:c6:62:60:23:d6:de:b9:42:2f:75: 07:75:23:34:4b:d5:be:21:3c:ae:31:e1:2b:ab:9c:b7:6b:d1: 0a:a4:dc:76:11:e6:5d:92:91:ad:17:dc:8b:10:c9:91:75:3e: 37:ab:45:59:36:46:2f:01:6d:23:a1:5b:86:69:d4:74:e3:90: a4:f3:8e:34 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUfKVRRmp6HdSAZxg1ejdmKWp1GpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA0MzAyMzU1MTNaFw0yNjA0MzAwMDAwMTNaMDMxMTAvBgNV BAMTKDFGMzg1QTVGNjUwMjFFQjA5NTQxNDJDMzM3OEEwMDc0M0E0OTM2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDACnF7BglGdK+A6CYFrG80No75 T48GpJqApDpss4/wux4WDiVgMc4XcALbKazhVZd4p5JXSPs1rnNB8MwgX2DrRHBI bNKjk4T+2GE3fyMuW4nh3n9LGSDrWFbeyIJyLtfopNBwdbvaIVNSIeFYPP+3rLni h4UWOsqwoLBpAlPVoXoFRbxk8MfEuK2Q01D8oTH0ExGz3jQq6inZEo+hshxXca74 DxlWOwQdJSf2ZfXgCdcs7HqqNxYc82sLBKYyYMGxT1Y2zAZIgsMexlONxF+wfMoq xsDi2xnf9xSIU+uRf5gf6u2k3QP1rC79PBShfSS4v7ISx7+cs5kZ1pj9QBQvAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUHzhaX2UCHrCVQULDN4oAdDpJNvIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMjYwOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFYmGAMEAFl0iQMEAFl0 8gMEAFl1BTANBgkqhkiG9w0BAQsFAAOCAQEAMM7//u+hRqDoVyi1Va6WajLRdgRO 6rEjLxbqtZRpyuZtot53KV2+wxQunyXbjNyQCWilbT33W+SkF6g7byP5ptKmJHQE 77GLwzdoy3bdp6s5H0e/bE8FrJ7KLh4Y3kPnCfc4dhh8NDr/AbdM/mv/jG5bJSSr XUM3ctMApJ/U6rHECa1oV86UTBjKmOR/FOiPfvmrVNm8yPMMy+KXWIjvWUbJEIJb 44Jk7QdXBZBEeazGoEw6/1fWLpHZPG7GYmAj1t65Qi91B3UjNEvVviE8rjHhK6uc t2vRCqTcdhHmXZKRrRfcixDJkXU+N6tFWTZGLwFtI6FbhmnUdOOQpPOONA== -----END CERTIFICATE-----Generated at Fri Dec 5 20:12:36 2025 by rpki-client