This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3230382e302f32302d3230203d3e203230333236.roa File: 3136392e34302e3230382e302f32302d3230203d3e203230333236.roa (raw, json) Hash identifier: f220JYH/ONmtctOrFly0kzZMpvpt1toLtJw3mBu2FgM= Subject key identifier: C2:3C:CD:E4:B1:3F:A7:DE:64:A8:B6:5F:B4:96:DC:80:0E:66:E5:BB Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 2F98643AC8E9562B361938776DFA271612754E1B Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3230382e302f32302d3230203d3e203230333236.roa Signing time: Thu 11 Dec 2025 04:11:01 +0000 ROA not before: Thu 11 Dec 2025 04:06:01 +0000 ROA not after: Thu 10 Dec 2026 04:11:01 +0000 asID: 20326 IP address blocks: 169.40.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:98:64:3a:c8:e9:56:2b:36:19:38:77:6d:fa:27:16:12:75:4e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Dec 11 04:06:01 2025 GMT Not After : Dec 10 04:11:01 2026 GMT Subject: CN=C23CCDE4B13FA7DE64A8B65FB496DC800E66E5BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:63:aa:b5:bc:37:d2:10:6f:2a:ae:fb:33:1a: 89:d3:39:2b:ca:dd:23:2c:7d:2b:c8:80:00:c1:ef: b2:fd:78:54:bd:5b:23:ad:bb:ac:11:d3:8c:7f:7a: cb:5f:d0:76:18:3e:cd:3d:23:b0:23:7f:a8:fd:0a: 18:21:09:8d:da:7c:0e:0e:bc:36:2a:fa:fa:2d:28: 45:31:2a:cd:22:d6:e2:84:d7:de:4b:44:e9:01:74: d1:ac:22:e7:a7:80:8c:e9:d6:70:4f:28:44:b6:f2: 17:01:c0:d9:e0:21:de:0c:09:12:91:14:55:55:7d: b3:2a:85:b8:c8:2f:c4:f4:40:20:0a:93:d4:6e:96: 7d:bb:3a:79:63:18:09:8c:88:6c:32:7c:4b:05:34: a3:26:33:89:6f:0d:7e:ea:b5:6d:b0:ff:7a:17:87: 92:d7:42:e2:73:bb:0e:3f:28:ba:f8:9b:b1:e4:ea: fa:90:25:02:5d:41:4d:43:ef:9d:95:ae:60:e7:49: bf:cb:0c:bf:45:18:3e:c1:be:59:a9:e7:16:65:12: fa:00:7d:2f:f3:59:08:0c:bc:ff:49:cd:24:84:c6: 50:1f:93:3e:2e:0b:a2:90:e6:b8:aa:e3:e2:ac:36: 67:b0:c9:19:35:04:0d:6e:ce:ca:f5:f4:1f:8a:65: d8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3C:CD:E4:B1:3F:A7:DE:64:A8:B6:5F:B4:96:DC:80:0E:66:E5:BB X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3230382e302f32302d3230203d3e203230333236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.208.0/20 Signature Algorithm: sha256WithRSAEncryption 08:e0:fd:09:2f:0f:f9:65:53:f2:50:8c:e9:28:b8:69:21:5e: eb:c3:86:ce:c7:bc:e2:fc:8b:e2:bb:a0:d9:dd:07:13:73:42: 35:0d:6d:31:e5:9a:30:cc:4d:06:a3:53:28:02:9a:53:52:cb: 66:26:9e:e0:e0:0a:09:59:f5:42:11:db:fd:3d:25:72:2a:03: d1:45:a9:1d:08:be:9c:cd:4d:8f:06:6b:46:ec:ca:50:85:28: 78:6f:3e:72:31:c2:e1:11:e4:7e:2f:1c:7d:27:9c:f2:14:90: 00:54:7a:c1:e9:55:2b:7a:20:b1:7f:cd:ef:bb:c9:c3:ae:1e: aa:7a:1c:84:df:e0:df:26:79:fb:00:d0:00:f1:18:9e:35:02: 83:45:b1:57:f0:59:1b:37:1e:77:c5:c2:da:20:c8:e1:a1:36: 9d:5d:bd:c3:33:66:af:fc:77:9c:b3:07:b5:8a:53:24:f2:44: df:a4:14:a4:42:4f:99:b0:61:8f:45:5b:4b:55:88:29:2c:67: 69:48:e0:1c:64:70:10:9f:85:cc:04:dc:98:6a:bf:2b:2b:8f: 07:e4:8b:ab:ef:02:ee:00:2c:e8:12:0b:49:96:75:2d:4b:64: b4:57:11:53:68:96:a7:68:df:26:86:2f:a6:9d:2a:0b:79:0c: 34:fe:e8:77 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUL5hkOsjpVis2GTh3bfonFhJ1ThswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNTEyMTEwNDA2MDFaFw0yNjEyMTAwNDExMDFaMDMxMTAvBgNV BAMTKEMyM0NDREU0QjEzRkE3REU2NEE4QjY1RkI0OTZEQzgwMEU2NkU1QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Y6q1vDfSEG8qrvszGonTOSvK 3SMsfSvIgADB77L9eFS9WyOtu6wR04x/estf0HYYPs09I7Ajf6j9ChghCY3afA4O vDYq+votKEUxKs0i1uKE195LROkBdNGsIuengIzp1nBPKES28hcBwNngId4MCRKR FFVVfbMqhbjIL8T0QCAKk9Ruln27OnljGAmMiGwyfEsFNKMmM4lvDX7qtW2w/3oX h5LXQuJzuw4/KLr4m7Hk6vqQJQJdQU1D752VrmDnSb/LDL9FGD7Bvlmp5xZlEvoA fS/zWQgMvP9JzSSExlAfkz4uC6KQ5riq4+KsNmewyRk1BA1uzsr19B+KZdgNAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUwjzN5LE/p95kqLZftJbcgA5m5bswHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby8zMDMyN2I5ZS0yMjdhLTRlYmQtODI1 Yi0zYjk4MDk1ZGM5MjctMC8wLzMxMzYzOTJlMzQzMDJlMzIzMDM4MmUzMDJmMzIz MDJkMzIzMDIwM2QzZTIwMzIzMDMzMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBKko0DANBgkqhkiG 9w0BAQsFAAOCAQEACOD9CS8P+WVT8lCM6Si4aSFe68OGzse84vyL4rug2d0HE3NC NQ1tMeWaMMxNBqNTKAKaU1LLZiae4OAKCVn1QhHb/T0lcioD0UWpHQi+nM1NjwZr RuzKUIUoeG8+cjHC4RHkfi8cfSec8hSQAFR6welVK3ogsX/N77vJw64eqnochN/g 3yZ5+wDQAPEYnjUCg0WxV/BZGzced8XC2iDI4aE2nV29wzNmr/x3nLMHtYpTJPJE 36QUpEJPmbBhj0VbS1WIKSxnaUjgHGRwEJ+FzATcmGq/KyuPB+SLq+8C7gAs6BIL SZZ1LUtktFcRU2iWp2jfJoYvpp0qC3kMNP7odw== -----END CERTIFICATE-----Generated at Sat Dec 20 05:10:24 2025 by rpki-client