$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16276.roa File: AS16276.roa (raw, json) Hash identifier: t3/dRP9Ydq8+Zm4bbJG8gUWjaMg+JVOCbHHZzWD0S4g= Subject key identifier: 40:4C:20:F1:49:22:19:B0:ED:F4:C5:58:94:98:4F:C2:B1:BD:76:9C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 44D294725E15F2797FCD1A7A9FA84B548E46A46A Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16276.roa Signing time: Sun 13 Jul 2025 13:20:05 +0000 ROA not before: Sun 13 Jul 2025 13:15:05 +0000 ROA not after: Sun 12 Jul 2026 13:20:05 +0000 asID: 16276 IP address blocks: 89.117.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 06:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d2:94:72:5e:15:f2:79:7f:cd:1a:7a:9f:a8:4b:54:8e:46:a4:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 13 13:15:05 2025 GMT Not After : Jul 12 13:20:05 2026 GMT Subject: CN=404C20F1492219B0EDF4C55894984FC2B1BD769C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e4:79:9d:c6:dd:72:d5:3c:a7:9b:7d:f5:92: df:14:e2:33:dc:92:a9:02:e5:c6:fe:58:36:47:a8: 29:23:74:76:5a:1d:2a:39:af:52:97:fb:e2:0c:29: bc:d9:74:ea:07:d5:3d:ab:0e:6a:ad:25:0e:8e:9e: 40:67:18:f7:7f:e5:a6:34:9c:62:96:4e:10:c2:a8: 45:cc:17:20:d9:c4:c5:94:a8:04:67:dd:38:61:33: 52:6e:d1:cd:75:59:43:b4:df:85:00:48:36:a2:39: 60:1b:39:10:1c:1e:df:26:50:7a:c9:cb:97:f0:4a: 7c:fe:4e:f1:68:fc:ee:4b:b0:72:fd:95:dc:65:42: b4:91:31:b3:b1:fa:0e:9a:6c:01:2b:f0:95:1a:ee: 38:ff:6f:82:80:22:f6:72:c2:e6:28:5f:71:5d:75: 6b:ec:4a:0b:f9:6b:af:7d:2b:34:5e:91:7b:1b:29: 98:a5:94:8e:f4:e1:04:ca:df:73:3f:d8:bb:0a:b0: 24:34:56:2f:13:72:d6:6f:c2:f5:b8:11:17:c4:9d: ce:2f:dc:35:cc:71:bb:23:23:60:7a:d9:f4:83:a6: b7:77:56:35:f1:16:39:45:56:ac:dc:af:4b:9d:14: 26:d0:0f:51:55:61:3b:a9:71:bb:5a:9d:f9:7c:7b: e7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4C:20:F1:49:22:19:B0:ED:F4:C5:58:94:98:4F:C2:B1:BD:76:9C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.87.0/24 Signature Algorithm: sha256WithRSAEncryption 65:9a:38:00:d8:ea:46:f2:58:0b:21:c9:49:17:56:4b:06:c9: de:be:b1:ee:68:09:6b:d9:ce:9f:d2:e0:98:3a:07:ce:52:7d: 6a:44:1f:64:42:6e:7a:d4:fc:4f:61:f0:43:62:15:7b:55:ab: 73:c3:bf:df:d0:a2:1a:94:96:a3:3b:3b:29:77:65:30:b0:5d: 7a:69:24:65:a9:0b:e6:d8:c3:2e:a4:ac:97:38:3f:26:20:ed: a4:d5:79:51:ec:9c:c0:29:dc:52:66:a3:40:1d:70:85:32:5e: 02:e1:23:3f:cb:25:e9:bc:8f:dd:27:e5:89:4a:0c:80:69:02: 36:9f:db:f1:73:37:4c:2e:ee:0b:b2:8c:5f:a0:de:d8:22:4a: 03:32:87:c3:95:c3:b1:fc:38:78:62:4a:ce:df:a2:04:30:5f: cb:9f:7e:16:4b:25:d6:25:cb:1a:5b:ac:6a:af:e8:8d:9d:e8: c6:b2:aa:77:36:84:89:8a:09:bf:a4:eb:8b:c9:47:5d:6a:5d: e5:f8:f4:74:04:5d:6f:5e:14:08:26:83:c3:f7:45:9e:ac:62: 43:58:55:b2:a6:f0:05:30:1c:b7:c9:85:69:84:03:5a:c7:8a: 4c:d1:0a:20:6c:fd:9d:3c:42:45:92:18:0a:91:9c:df:6d:81: 93:39:fd:a4 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIURNKUcl4V8nl/zRp6n6hLVI5GpGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA3MTMxMzE1MDVaFw0yNjA3MTIxMzIwMDVaMDMxMTAvBgNV BAMTKDQwNEMyMEYxNDkyMjE5QjBFREY0QzU1ODk0OTg0RkMyQjFCRDc2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK5Hmdxt1y1Tynm331kt8U4jPc kqkC5cb+WDZHqCkjdHZaHSo5r1KX++IMKbzZdOoH1T2rDmqtJQ6OnkBnGPd/5aY0 nGKWThDCqEXMFyDZxMWUqARn3ThhM1Ju0c11WUO034UASDaiOWAbORAcHt8mUHrJ y5fwSnz+TvFo/O5LsHL9ldxlQrSRMbOx+g6abAEr8JUa7jj/b4KAIvZywuYoX3Fd dWvsSgv5a699KzRekXsbKZillI704QTK33M/2LsKsCQ0Vi8TctZvwvW4ERfEnc4v 3DXMcbsjI2B62fSDprd3VjXxFjlFVqzcr0udFCbQD1FVYTupcbtanfl8e+dNAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUQEwg8UkiGbDt9MVYlJhPwrG9dpwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE2Mjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWXVXMA0GCSqGSIb3DQEB CwUAA4IBAQBlmjgA2OpG8lgLIclJF1ZLBsnevrHuaAlr2c6f0uCYOgfOUn1qRB9k Qm561PxPYfBDYhV7Vatzw7/f0KIalJajOzspd2UwsF16aSRlqQvm2MMupKyXOD8m IO2k1XlR7JzAKdxSZqNAHXCFMl4C4SM/yyXpvI/dJ+WJSgyAaQI2n9vxczdMLu4L soxfoN7YIkoDMofDlcOx/Dh4YkrO36IEMF/Ln34WSyXWJcsaW6xqr+iNnejGsqp3 NoSJigm/pOuLyUddal3l+PR0BF1vXhQIJoPD90WerGJDWFWypvAFMBy3yYVphANa x4pM0QogbP2dPEJFkhgKkZzfbYGTOf2k -----END CERTIFICATE-----Generated at Wed Jul 23 19:35:32 2025 by rpki-client