This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa File: 352e38332e3231302e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: wcFC/PwcZ1Mj4TURg4NQXG6iWBnPtqgY16kUOrsbsxQ= Subject key identifier: 28:8A:CB:1E:53:88:01:96:68:94:AB:84:98:1C:52:10:B2:9C:6C:C5 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 143F12BFE6B559EB884A388E670B243FB4D05140 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa Signing time: Mon 29 Dec 2025 00:55:33 +0000 ROA not before: Mon 29 Dec 2025 00:50:33 +0000 ROA not after: Mon 28 Dec 2026 00:55:33 +0000 asID: 58061 IP address blocks: 5.83.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:3f:12:bf:e6:b5:59:eb:88:4a:38:8e:67:0b:24:3f:b4:d0:51:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Dec 29 00:50:33 2025 GMT Not After : Dec 28 00:55:33 2026 GMT Subject: CN=288ACB1E538801966894AB84981C5210B29C6CC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7e:cd:c6:de:7d:53:9e:45:47:25:c6:03:67: bd:cb:c7:2b:44:c0:16:9f:14:94:f0:ff:28:ac:b3: 15:14:4b:e9:cc:4d:f9:23:5b:43:9f:42:53:61:64: 9e:e6:54:50:98:67:ba:a0:f9:31:08:08:a3:1a:61: 49:35:7f:7d:ac:af:cb:a2:e5:ac:e7:05:d6:20:7e: 31:9d:0b:e8:4d:24:da:71:c9:cb:c3:fc:7a:d9:e7: 51:c5:65:ba:10:5a:1d:38:9c:da:e4:46:09:05:fc: 3e:e8:f9:3f:7c:e3:2f:e9:59:1c:b7:04:ac:c3:6f: 97:c9:3a:36:e1:58:c6:a3:8b:37:b8:8a:c6:d0:7a: 08:6f:20:3c:ff:b8:dc:6f:95:fd:06:74:f8:81:32: 5a:0d:c7:47:da:f1:7d:ae:ff:eb:34:6a:d1:50:1f: d6:86:b1:11:53:8b:57:75:c1:20:97:60:95:84:47: 1d:67:bc:c5:4e:fb:13:03:cd:c4:5b:3d:28:65:96: fa:17:81:99:8a:bf:a4:ee:44:38:a8:18:cc:82:0f: 91:49:41:9b:c6:39:f8:04:38:20:c2:81:21:67:10: b6:aa:a2:5f:2a:a1:de:6f:61:53:bf:4c:18:0f:ee: 7a:45:e4:8e:fd:ae:cf:53:8b:d0:e4:f2:9e:ec:79: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:8A:CB:1E:53:88:01:96:68:94:AB:84:98:1C:52:10:B2:9C:6C:C5 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.210.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:54:c8:61:df:12:82:fa:93:a9:4a:77:8a:fa:93:ea:ce:f1: 72:4c:75:7d:0d:93:fd:ed:8a:98:22:1e:d0:23:19:1a:40:b7: 7c:64:7c:69:5f:47:95:a3:f9:6c:f5:3f:60:c9:c2:bd:8b:7a: ee:48:eb:f8:df:c4:a9:72:89:2d:dc:6b:8c:7e:ca:58:31:74: 4d:f4:f0:4a:60:31:e2:32:98:b5:bb:96:29:4a:3c:de:3b:d8: 92:d3:ff:d4:d1:53:72:cf:1e:1f:9c:03:b9:ff:d9:0c:2e:38: 1f:b6:f7:c9:61:91:77:ed:aa:d7:b4:dc:f9:2f:d7:d8:5a:83: b4:e8:b1:87:bb:b5:6b:82:0a:07:86:98:c2:d2:96:80:53:e5: 6e:51:93:9b:dd:3c:7d:9a:2a:03:8f:85:ce:82:8f:78:ff:e5: d0:4b:97:4b:c7:60:ff:94:ee:66:6d:a7:80:34:18:ed:d2:c6: e7:cc:fa:bb:ab:77:a3:4b:90:e2:17:5e:42:5b:af:c9:5b:e1: 46:80:76:3d:c1:98:1f:2c:b5:e8:65:80:af:70:7f:3d:0f:44: fb:50:55:fc:d8:07:fa:e6:d6:b5:f9:b1:3d:61:bf:a9:2e:b3: 3f:65:aa:ae:45:d6:a2:99:99:61:ad:75:45:4a:d4:e0:f4:d7: 68:41:e5:5e -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUFD8Sv+a1WeuISjiOZwskP7TQUUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTEyMjkwMDUwMzNaFw0yNjEyMjgwMDU1MzNaMDMxMTAvBgNV BAMTKDI4OEFDQjFFNTM4ODAxOTY2ODk0QUI4NDk4MUM1MjEwQjI5QzZDQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqfs3G3n1TnkVHJcYDZ73LxytE wBafFJTw/yissxUUS+nMTfkjW0OfQlNhZJ7mVFCYZ7qg+TEICKMaYUk1f32sr8ui 5aznBdYgfjGdC+hNJNpxycvD/HrZ51HFZboQWh04nNrkRgkF/D7o+T984y/pWRy3 BKzDb5fJOjbhWMajize4isbQeghvIDz/uNxvlf0GdPiBMloNx0fa8X2u/+s0atFQ H9aGsRFTi1d1wSCXYJWERx1nvMVO+xMDzcRbPShllvoXgZmKv6TuRDioGMyCD5FJ QZvGOfgEOCDCgSFnELaqol8qod5vYVO/TBgP7npF5I79rs9Ti9Dk8p7seVj7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUKIrLHlOIAZZolKuEmBxSELKcbMUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzAzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPSMA0GCSqGSIb3DQEB CwUAA4IBAQArVMhh3xKC+pOpSneK+pPqzvFyTHV9DZP97YqYIh7QIxkaQLd8ZHxp X0eVo/ls9T9gycK9i3ruSOv438Spcokt3GuMfspYMXRN9PBKYDHiMpi1u5YpSjze O9iS0//U0VNyzx4fnAO5/9kMLjgftvfJYZF37arXtNz5L9fYWoO06LGHu7VrggoH hpjC0paAU+VuUZOb3Tx9mioDj4XOgo94/+XQS5dLx2D/lO5mbaeANBjt0sbnzPq7 q3ejS5DiF15CW6/JW+FGgHY9wZgfLLXoZYCvcH89D0T7UFX82Af65ta1+bE9Yb+p LrM/ZaquRdaimZlhrXVFStTg9NdoQeVe -----END CERTIFICATE-----Generated at Mon Jan 19 13:57:36 2026 by rpki-client