This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3133332e302f32342d3234203d3e20313337383937.roa File: 3136392e34302e3133332e302f32342d3234203d3e20313337383937.roa (raw, json) Hash identifier: q2SJggSR4v6PEUX38EXUWkzrLq1iUgz0y65bsvVcHH8= Subject key identifier: A5:2A:2A:AF:50:09:32:9E:C3:AB:2D:4C:32:13:0E:BF:6A:38:8C:27 Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 704D3B9612F530359F177255392CBB100824D537 Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3133332e302f32342d3234203d3e20313337383937.roa Signing time: Wed 17 Dec 2025 15:42:43 +0000 ROA not before: Wed 17 Dec 2025 15:37:43 +0000 ROA not after: Wed 16 Dec 2026 15:42:43 +0000 asID: 137897 IP address blocks: 169.40.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 08:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:4d:3b:96:12:f5:30:35:9f:17:72:55:39:2c:bb:10:08:24:d5:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Dec 17 15:37:43 2025 GMT Not After : Dec 16 15:42:43 2026 GMT Subject: CN=A52A2AAF5009329EC3AB2D4C32130EBF6A388C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f5:43:cd:f2:c8:31:cc:3c:38:c5:f5:cb:b0: ce:f9:21:43:09:64:e9:2f:ea:7e:f3:64:61:71:6f: 68:27:5e:75:b8:d1:a0:f8:ad:50:70:02:66:c3:d9: 51:f6:47:c9:fb:d3:ca:c2:a1:b3:8f:66:cf:16:b7: 15:36:8b:bb:db:8b:e8:5d:ff:17:54:9b:df:16:84: 0b:23:4e:75:d8:c6:98:ed:05:6c:47:a3:14:a7:c4: 40:90:07:5d:e2:63:71:0d:38:18:f8:a1:60:32:e5: dc:52:ab:7d:ce:23:54:32:fa:1a:df:51:e7:26:eb: db:aa:c9:43:4b:89:3d:12:02:52:a7:cc:36:2e:3a: cf:b6:db:ed:27:d3:5d:f3:9c:78:68:10:dd:c9:73: 31:04:3e:e4:0a:1c:d6:b0:a6:74:96:b4:d3:7d:39: 91:46:0e:f2:c6:fa:4a:c0:93:7b:d0:02:a3:d1:ba: 4f:a0:a9:c0:37:e9:9f:9f:92:b7:9e:90:04:03:96: 37:f8:bb:d2:14:59:ed:2d:c7:15:ad:94:29:1b:de: 31:57:72:7c:18:16:f1:f4:0d:41:79:93:bf:fe:f6: b2:8a:30:09:c0:4b:dd:82:34:d4:4d:8a:eb:80:4b: 6b:bc:c7:e2:86:a1:5e:41:b2:a8:11:e8:37:3c:44: a0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2A:2A:AF:50:09:32:9E:C3:AB:2D:4C:32:13:0E:BF:6A:38:8C:27 X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3133332e302f32342d3234203d3e20313337383937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.133.0/24 Signature Algorithm: sha256WithRSAEncryption 99:60:d8:85:24:25:0b:e1:fc:2c:dd:5d:bf:37:82:1e:12:52: 81:d0:51:3f:e4:86:27:be:ea:64:5a:00:6d:97:74:12:76:78: 36:13:fa:eb:72:a7:92:60:7f:7b:7b:04:1a:26:af:71:59:d8: 92:08:8c:c7:1d:20:f3:70:58:2f:35:2c:8e:5e:f8:47:80:d4: 23:07:c7:b4:af:1c:d8:b8:f0:80:74:88:98:31:0c:df:b8:cd: ac:37:c9:b6:05:e9:f5:d1:0f:c3:4a:92:c0:58:96:ec:77:06: 29:3d:4c:10:d1:4e:3e:e6:74:67:b5:db:33:1f:bc:0b:53:51: 0d:ce:6d:1a:cf:c9:17:7e:10:f1:37:6b:e4:84:86:26:35:1e: fd:61:59:b0:9d:42:f0:45:86:4f:50:b1:41:c5:46:63:07:5f: 71:75:f5:87:af:63:1f:cd:83:71:93:95:12:2b:17:e5:95:cc: c2:6a:06:60:f0:bb:79:07:d2:8f:3e:f3:70:06:d2:41:26:43: 5b:b8:1a:9a:70:a6:5b:76:37:e5:41:d4:24:d5:b9:e6:3f:8d: b3:ec:8d:9f:37:17:55:f5:10:b3:d6:c3:1d:f7:eb:30:40:02: 1b:e3:d0:cd:dc:67:c1:52:f6:cb:5b:52:46:90:b1:9f:26:35: 4c:8e:6c:96 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUcE07lhL1MDWfF3JVOSy7EAgk1TcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNTEyMTcxNTM3NDNaFw0yNjEyMTYxNTQyNDNaMDMxMTAvBgNV BAMTKEE1MkEyQUFGNTAwOTMyOUVDM0FCMkQ0QzMyMTMwRUJGNkEzODhDMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT9UPN8sgxzDw4xfXLsM75IUMJ ZOkv6n7zZGFxb2gnXnW40aD4rVBwAmbD2VH2R8n708rCobOPZs8WtxU2i7vbi+hd /xdUm98WhAsjTnXYxpjtBWxHoxSnxECQB13iY3ENOBj4oWAy5dxSq33OI1Qy+hrf Uecm69uqyUNLiT0SAlKnzDYuOs+22+0n013znHhoEN3JczEEPuQKHNawpnSWtNN9 OZFGDvLG+krAk3vQAqPRuk+gqcA36Z+fkreekAQDljf4u9IUWe0txxWtlCkb3jFX cnwYFvH0DUF5k7/+9rKKMAnAS92CNNRNiuuAS2u8x+KGoV5BsqgR6Dc8RKAdAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUpSoqr1AJMp7Dqy1MMhMOv2o4jCcwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby8zMDMyN2I5ZS0yMjdhLTRlYmQtODI1 Yi0zYjk4MDk1ZGM5MjctMC8wLzMxMzYzOTJlMzQzMDJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzgzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqSiFMA0GCSqG SIb3DQEBCwUAA4IBAQCZYNiFJCUL4fws3V2/N4IeElKB0FE/5IYnvupkWgBtl3QS dng2E/rrcqeSYH97ewQaJq9xWdiSCIzHHSDzcFgvNSyOXvhHgNQjB8e0rxzYuPCA dIiYMQzfuM2sN8m2Ben10Q/DSpLAWJbsdwYpPUwQ0U4+5nRntdszH7wLU1ENzm0a z8kXfhDxN2vkhIYmNR79YVmwnULwRYZPULFBxUZjB19xdfWHr2MfzYNxk5USKxfl lczCagZg8Lt5B9KPPvNwBtJBJkNbuBqacKZbdjflQdQk1bnmP42z7I2fNxdV9RCz 1sMd9+swQAIb49DN3GfBUvbLW1JGkLGfJjVMjmyW -----END CERTIFICATE-----Generated at Fri Dec 19 22:35:28 2025 by rpki-client