$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS329007.roa File: AS329007.roa (raw, json) Hash identifier: OpeXPKjYbUjdmH1C2+pqP9hq/xKZ0YHtyQWNwMWu/4M= Subject key identifier: 8A:66:13:C1:3E:AA:FE:17:5E:EE:FE:67:23:DD:4A:98:7D:08:4A:8F Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 12DE24CE73E7D0D4D1F4BC9C965FCB1DC43A935C Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS329007.roa Signing time: Fri 18 Jul 2025 16:27:26 +0000 ROA not before: Fri 18 Jul 2025 16:22:26 +0000 ROA not after: Fri 17 Jul 2026 16:27:26 +0000 asID: 329007 IP address blocks: 86.38.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 07:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:de:24:ce:73:e7:d0:d4:d1:f4:bc:9c:96:5f:cb:1d:c4:3a:93:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 18 16:22:26 2025 GMT Not After : Jul 17 16:27:26 2026 GMT Subject: CN=8A6613C13EAAFE175EEEFE6723DD4A987D084A8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4b:41:2c:7d:ad:33:a4:49:e1:b4:d0:8f:c4: ac:9c:2d:95:20:d3:45:ef:78:fb:d5:b0:2d:9a:2f: 92:66:34:59:94:ef:3d:1c:20:09:4b:26:09:4a:20: 26:c6:0c:da:4a:c5:27:e4:f1:8b:ee:46:ff:5f:66: 20:09:d9:02:e2:b1:4c:51:81:dd:9a:38:e0:34:6e: 79:75:14:ab:34:53:78:e9:ca:af:32:af:63:af:76: 60:8b:14:73:43:51:65:63:56:de:2a:ce:24:75:02: 0e:44:b4:70:26:92:42:89:5a:6b:50:14:34:4b:a0: 62:a6:da:fa:56:0b:e5:82:44:e7:ec:be:82:ef:14: 83:06:c0:fb:65:c7:6a:da:79:c8:a1:14:39:44:e2: ac:a2:78:93:6f:3a:41:c9:46:4c:0e:7a:71:dd:f5: e5:77:65:92:96:2f:17:cf:0e:50:2a:df:8e:df:7c: 6c:d0:19:0f:47:ea:8e:79:f5:e5:90:f6:cf:bf:3d: 1d:41:56:e0:e8:6d:f8:73:e3:8e:d8:38:ea:4c:1f: e4:16:92:16:86:b7:79:bf:06:16:23:1f:27:34:5c: f7:aa:2a:04:69:a5:e5:ec:9f:a2:66:86:67:33:17: 55:0c:b2:c5:81:4a:3d:5a:3b:38:52:ad:2a:1a:2f: 21:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:66:13:C1:3E:AA:FE:17:5E:EE:FE:67:23:DD:4A:98:7D:08:4A:8F X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS329007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.255.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:c5:36:96:e8:ca:8b:f6:ef:f0:0a:b5:ae:e7:44:80:09:f4: ad:d0:21:f8:e7:c8:61:04:ba:59:f9:97:1f:bf:6e:3c:ec:24: 49:06:52:cf:6d:f5:58:b3:03:39:61:9b:cc:b8:7f:01:a8:e0: ba:a7:1b:15:27:7c:f9:61:3c:c0:27:cf:0e:40:68:56:c1:ec: d8:6f:b8:25:32:c3:c8:90:5c:e7:1e:77:e0:fc:4d:8b:19:22: ee:1a:9f:21:fb:57:9d:fd:b6:4d:4b:f2:98:66:5b:5b:26:85: 49:2b:53:10:f6:30:c7:29:47:e8:ba:1d:fc:55:e8:df:82:5f: 32:95:fc:0a:71:20:4b:c6:f1:5f:b3:2c:1c:98:79:51:22:f5: 10:94:30:70:c6:3f:1e:4f:52:5e:2a:44:93:aa:ef:f6:42:e0: 8f:40:87:e6:96:71:eb:d4:4a:de:5b:b5:14:15:6c:0c:fb:18: eb:45:e0:48:60:5c:b1:d1:6f:03:46:3a:1f:ae:01:bc:21:98: 83:3b:46:56:e2:7d:78:78:3d:1a:a5:a2:87:c2:24:cf:da:1f: ef:f1:f4:ce:5a:7d:46:91:6e:0f:da:12:dc:bc:f5:31:db:a4: 2c:0c:ad:a2:7f:36:7f:0e:8a:e3:7c:65:1b:f7:a6:9c:3e:13: 8c:f8:f0:0d -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUEt4kznPn0NTR9Lycll/LHcQ6k1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA3MTgxNjIyMjZaFw0yNjA3MTcxNjI3MjZaMDMxMTAvBgNV BAMTKDhBNjYxM0MxM0VBQUZFMTc1RUVFRkU2NzIzREQ0QTk4N0QwODRBOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjS0Esfa0zpEnhtNCPxKycLZUg 00XvePvVsC2aL5JmNFmU7z0cIAlLJglKICbGDNpKxSfk8YvuRv9fZiAJ2QLisUxR gd2aOOA0bnl1FKs0U3jpyq8yr2OvdmCLFHNDUWVjVt4qziR1Ag5EtHAmkkKJWmtQ FDRLoGKm2vpWC+WCROfsvoLvFIMGwPtlx2raecihFDlE4qyieJNvOkHJRkwOenHd 9eV3ZZKWLxfPDlAq347ffGzQGQ9H6o559eWQ9s+/PR1BVuDobfhz447YOOpMH+QW khaGt3m/BhYjHyc0XPeqKgRppeXsn6JmhmczF1UMssWBSj1aOzhSrSoaLyFvAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUimYTwT6q/hde7v5nI91KmH0ISo8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzMyOTAwNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYm/zANBgkqhkiG9w0B AQsFAAOCAQEAHcU2lujKi/bv8Aq1rudEgAn0rdAh+OfIYQS6WfmXH79uPOwkSQZS z231WLMDOWGbzLh/AajguqcbFSd8+WE8wCfPDkBoVsHs2G+4JTLDyJBc5x534PxN ixki7hqfIftXnf22TUvymGZbWyaFSStTEPYwxylH6Lod/FXo34JfMpX8CnEgS8bx X7MsHJh5USL1EJQwcMY/Hk9SXipEk6rv9kLgj0CH5pZx69RK3lu1FBVsDPsY60Xg SGBcsdFvA0Y6H64BvCGYgztGVuJ9eHg9GqWih8Ikz9of7/H0zlp9RpFuD9oS3Lz1 MdukLAyton82fw6K43xlG/emnD4TjPjwDQ== -----END CERTIFICATE-----Generated at Sun Jul 20 22:17:00 2025 by rpki-client