This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: cXeWo207Ov0EozzJ0dT+NK8ebbvTHRHiM0rvKT039eE= Subject key identifier: 88:2F:68:93:1C:46:E9:11:5C:5D:B6:AD:09:25:9B:BE:62:85:0A:C8 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 23C5BD9816E0CF357AB1DC6EF93B80A9475267A2 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa Signing time: Sat 20 Dec 2025 05:38:27 +0000 ROA not before: Sat 20 Dec 2025 05:33:27 +0000 ROA not after: Sat 19 Dec 2026 05:38:27 +0000 asID: 834 IP address blocks: 84.46.236.0/22 maxlen: 24 86.38.180.0/23 maxlen: 24 86.38.182.0/23 maxlen: 24 86.38.184.0/24 maxlen: 24 86.38.187.0/24 maxlen: 24 86.38.246.0/24 maxlen: 24 86.38.255.0/24 maxlen: 24 89.116.8.0/22 maxlen: 24 89.116.45.0/24 maxlen: 24 89.116.64.0/22 maxlen: 24 89.116.72.0/23 maxlen: 24 89.116.127.0/24 maxlen: 24 89.116.148.0/23 maxlen: 23 89.116.165.0/24 maxlen: 24 89.116.210.0/23 maxlen: 23 89.117.0.0/22 maxlen: 24 89.117.12.0/23 maxlen: 24 89.117.81.0/24 maxlen: 24 89.117.84.0/24 maxlen: 24 89.117.94.0/23 maxlen: 24 89.117.96.0/22 maxlen: 24 89.117.112.0/22 maxlen: 22 89.117.120.0/22 maxlen: 24 89.117.132.0/22 maxlen: 22 89.117.142.0/23 maxlen: 24 89.117.158.0/23 maxlen: 24 89.117.172.0/22 maxlen: 24 89.117.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 17:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c5:bd:98:16:e0:cf:35:7a:b1:dc:6e:f9:3b:80:a9:47:52:67:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 20 05:33:27 2025 GMT Not After : Dec 19 05:38:27 2026 GMT Subject: CN=882F68931C46E9115C5DB6AD09259BBE62850AC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:df:36:03:ea:0e:d1:90:6f:0e:fa:b7:dc:5d: 77:3a:0b:16:15:19:af:df:cf:f5:29:db:18:0a:cc: a0:08:50:dc:f5:94:b3:2b:bb:6b:85:28:39:98:67: 21:be:13:0a:b8:9a:e1:ad:17:94:25:b6:fc:32:c0: d2:2c:f2:d5:21:04:b0:88:10:60:04:e1:03:de:10: 9e:ec:aa:61:4a:34:0c:c7:e0:4b:c1:08:09:09:37: 20:01:80:88:36:8c:9e:ee:0f:92:8c:8e:bf:32:e7: e2:70:17:03:8e:98:98:2d:13:16:31:d3:cf:d7:ff: f0:db:12:8d:71:a7:e4:b2:87:1c:e1:0a:7a:54:3e: 1a:93:b4:b6:a3:82:33:b7:ac:83:64:74:6f:bf:81: 90:a9:18:fc:fc:91:f4:7e:b8:af:ac:ce:ce:02:01: eb:3f:da:44:2e:a7:f1:f0:0a:2c:ec:d7:f3:2d:c5: e9:ea:c0:0e:06:96:88:55:5f:97:ce:a5:27:1c:14: 4b:18:34:73:34:89:73:10:b3:91:81:50:fd:46:5e: 0f:2d:9c:ef:8e:51:93:d7:19:64:1b:d6:f8:7b:4c: 57:07:e8:30:62:4d:01:bc:3b:4b:0c:c9:f3:17:74: 4e:da:ba:73:db:2b:36:f3:2d:c4:94:54:63:c7:1a: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2F:68:93:1C:46:E9:11:5C:5D:B6:AD:09:25:9B:BE:62:85:0A:C8 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.46.236.0/22 86.38.180.0-86.38.184.255 86.38.187.0/24 86.38.246.0/24 86.38.255.0/24 89.116.8.0/22 89.116.45.0/24 89.116.64.0/22 89.116.72.0/23 89.116.127.0/24 89.116.148.0/23 89.116.165.0/24 89.116.210.0/23 89.117.0.0/22 89.117.12.0/23 89.117.81.0/24 89.117.84.0/24 89.117.94.0-89.117.99.255 89.117.112.0/22 89.117.120.0/22 89.117.132.0/22 89.117.142.0/23 89.117.158.0/23 89.117.172.0/22 89.117.216.0/23 Signature Algorithm: sha256WithRSAEncryption cb:1f:62:89:22:6f:a6:50:91:ab:ec:d5:eb:db:ed:fd:ed:a7: d0:a4:c7:5f:45:2e:ef:a5:5d:81:ef:e0:ff:bd:c3:39:19:4f: 0c:7c:e2:f6:26:cb:22:d0:9f:92:ba:f1:c9:b5:46:e4:cc:ea: 28:11:89:2e:85:19:4d:4b:6a:33:4c:e7:cd:1e:84:ec:09:e2: 2c:5c:00:df:14:b1:d4:f8:45:cb:06:bb:13:de:a1:22:22:2e: 66:4e:c1:f1:29:47:ba:15:93:78:d0:88:c9:8b:81:5c:8d:fe: 2a:8a:bd:13:ad:25:87:d2:0c:62:47:8b:43:7c:d4:54:1a:97: 5c:e1:6e:4a:ba:62:53:dc:3b:25:05:34:61:35:ed:1e:06:af: 5d:44:02:73:8f:71:9a:2d:09:bb:01:5a:7d:9d:f8:8d:17:9d: 06:93:3e:17:c1:f2:81:3f:a7:13:10:0b:84:a5:58:d0:d1:b0: 66:48:35:6d:8b:3e:5f:a0:27:46:45:c7:88:85:30:28:2a:53: 21:11:24:cc:a4:4c:38:57:76:5d:b4:26:a0:2c:56:ef:40:55: a1:86:7e:9f:16:86:54:7c:20:fa:61:bb:8d:9f:30:a5:ad:5b: bf:c6:92:19:ae:54:0b:e0:13:e4:d7:03:1e:7e:73:9d:80:93: 35:a9:70:18 -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgIUI8W9mBbgzzV6sdxu+TuAqUdSZ6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEyMjAwNTMzMjdaFw0yNjEyMTkwNTM4MjdaMDMxMTAvBgNV BAMTKDg4MkY2ODkzMUM0NkU5MTE1QzVEQjZBRDA5MjU5QkJFNjI4NTBBQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3zYD6g7RkG8O+rfcXXc6CxYV Ga/fz/Up2xgKzKAIUNz1lLMru2uFKDmYZyG+Ewq4muGtF5QltvwywNIs8tUhBLCI EGAE4QPeEJ7sqmFKNAzH4EvBCAkJNyABgIg2jJ7uD5KMjr8y5+JwFwOOmJgtExYx 08/X//DbEo1xp+SyhxzhCnpUPhqTtLajgjO3rINkdG+/gZCpGPz8kfR+uK+szs4C Aes/2kQup/HwCizs1/MtxenqwA4GlohVX5fOpSccFEsYNHM0iXMQs5GBUP1GXg8t nO+OUZPXGWQb1vh7TFcH6DBiTQG8O0sMyfMXdE7aunPbKzbzLcSUVGPHGr8jAgMB AAGjggLRMIICzTAdBgNVHQ4EFgQUiC9okxxG6RFcXbatCSWbvmKFCsgwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMG8GCCsGAQUFBwELBGMwYTBfBggrBgEFBQcwC4ZTcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO AjCBwwYIKwYBBQUHAQcBAf8EgbMwgbAwga0EAgABMIGmAwQCVC7sMAwDBAJWJrQD BABWJrgDBABWJrsDBABWJvYDBABWJv8DBAJZdAgDBABZdC0DBAJZdEADBAFZdEgD BABZdH8DBAFZdJQDBABZdKUDBAFZdNIDBAJZdQADBAFZdQwDBABZdVEDBABZdVQw DAMEAVl1XgMEAll1YAMEAll1cAMEAll1eAMEAll1hAMEAVl1jgMEAVl1ngMEAll1 rAMEAVl12DANBgkqhkiG9w0BAQsFAAOCAQEAyx9iiSJvplCRq+zV69vt/e2n0KTH X0Uu76Vdge/g/73DORlPDHzi9ibLItCfkrrxybVG5MzqKBGJLoUZTUtqM0znzR6E 7AniLFwA3xSx1PhFywa7E96hIiIuZk7B8SlHuhWTeNCIyYuBXI3+Koq9E60lh9IM YkeLQ3zUVBqXXOFuSrpiU9w7JQU0YTXtHgavXUQCc49xmi0JuwFafZ34jRedBpM+ F8HygT+nExALhKVY0NGwZkg1bYs+X6AnRkXHiIUwKCpTIREkzKRMOFd2XbQmoCxW 70BVoYZ+nxaGVHwg+mG7jZ8wpa1bv8aSGa5UC+AT5NcDHn5znYCTNalwGA== -----END CERTIFICATE-----Generated at Mon Dec 22 07:19:04 2025 by rpki-client