$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa File: AS3356.roa (raw, json) Hash identifier: bqUlGPZu0GEca1UKcsCDFbexE7gQgfTDfL9CQTIMNkA= Subject key identifier: 64:44:DF:E3:1D:B1:74:96:16:6D:AA:B3:89:68:6E:99:74:18:E1:F9 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7471A86839C3B5D8FB1EDBB23BAB09F46275C09E Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa Signing time: Thu 10 Jul 2025 19:54:13 +0000 ROA not before: Thu 10 Jul 2025 19:49:13 +0000 ROA not after: Thu 09 Jul 2026 19:54:13 +0000 asID: 3356 IP address blocks: 86.38.7.0/24 maxlen: 24 86.38.151.0/24 maxlen: 24 89.116.54.0/24 maxlen: 24 89.116.125.0/24 maxlen: 24 89.117.135.0/24 maxlen: 24 89.117.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 06:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:71:a8:68:39:c3:b5:d8:fb:1e:db:b2:3b:ab:09:f4:62:75:c0:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 10 19:49:13 2025 GMT Not After : Jul 9 19:54:13 2026 GMT Subject: CN=6444DFE31DB17496166DAAB389686E997418E1F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:46:74:2b:8e:0e:14:79:45:02:38:ab:f1:46: 0c:d4:54:9e:dd:ff:8c:a3:53:e2:25:6e:2c:33:b3: 9d:b9:2b:8a:14:98:c4:bf:cc:89:5d:fc:af:79:51: 01:5f:dc:82:c6:8b:be:45:0f:d9:e9:cd:a0:b0:55: 23:4b:24:e2:88:be:e4:03:19:3b:a6:0d:09:3e:81: f1:11:9c:eb:f7:8d:ae:c5:4f:ef:a6:bc:f1:5d:96: 92:80:57:9f:b6:bf:08:7a:3f:a8:01:b5:09:d9:b1: 2e:ec:c5:4b:33:99:6b:06:98:bf:b5:bc:57:55:ab: e5:68:d7:9b:7e:03:a6:3c:20:33:7b:de:0c:66:15: dd:76:40:ff:73:78:d4:ed:c4:e5:f1:9d:f9:7f:59: 08:76:11:97:4a:72:2c:1e:e8:2e:18:9a:1a:2d:92: 08:d8:b7:51:8f:22:ec:6d:2c:e6:31:8c:85:70:e6: 25:a2:ba:a8:e7:2f:16:37:0e:c0:09:66:5a:8b:01: 14:e4:73:9e:0e:79:1e:f5:87:00:6e:93:a6:a9:71: f1:6d:29:5b:91:d1:fb:76:9b:88:a5:f7:e1:ab:8b: 16:37:80:a5:b8:09:c3:27:07:89:d8:17:be:af:a3: 8f:57:21:70:63:b5:74:54:7c:2e:5e:50:5f:e1:ae: 57:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:44:DF:E3:1D:B1:74:96:16:6D:AA:B3:89:68:6E:99:74:18:E1:F9 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.7.0/24 86.38.151.0/24 89.116.54.0/24 89.116.125.0/24 89.117.135.0-89.117.136.255 Signature Algorithm: sha256WithRSAEncryption 2b:92:b6:77:06:06:26:2f:41:11:2e:1a:8f:97:0b:bd:94:38: 38:e1:ca:21:32:06:4c:a8:d4:3e:67:b4:5a:45:e3:7f:79:e5: 6c:b8:2a:14:95:eb:4b:18:d8:23:f1:9b:1e:46:79:29:e0:0a: 1e:44:e0:f1:bc:86:28:53:9d:a1:1f:db:a1:78:97:70:8d:ab: fa:84:15:e2:04:9d:47:9a:43:6d:fa:fc:ca:8e:65:e8:f5:ec: bd:0a:e0:6a:0d:68:61:dd:4a:eb:f7:43:70:ba:ff:38:89:33: 5f:55:46:b7:84:6f:80:c8:73:a3:ec:3a:85:0f:1c:97:3b:aa: bc:5b:b3:d6:99:1f:10:93:73:e5:ab:1c:71:11:16:bf:ad:94: 9a:bd:34:4e:1d:df:33:2c:7d:53:e7:e5:14:c9:f0:a9:2c:40: 2d:70:00:4b:e6:1f:62:bb:29:25:33:42:03:02:9d:2a:05:94: 78:6c:9b:e8:52:00:18:20:ca:e7:42:35:b5:72:5e:b6:85:2d: 7b:85:0f:5d:4a:cf:53:d9:ad:c9:17:70:24:a4:bf:ae:41:e7: 09:d9:71:9d:82:64:b8:10:8b:e0:f6:3a:75:f2:cc:a6:c1:1a: 9a:ee:64:94:df:18:8e:fb:39:c2:8c:0a:23:fe:da:e7:66:0f: 66:eb:c5:f1 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUdHGoaDnDtdj7HtuyO6sJ9GJ1wJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA3MTAxOTQ5MTNaFw0yNjA3MDkxOTU0MTNaMDMxMTAvBgNV BAMTKDY0NDRERkUzMURCMTc0OTYxNjZEQUFCMzg5Njg2RTk5NzQxOEUxRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYRnQrjg4UeUUCOKvxRgzUVJ7d /4yjU+Ilbiwzs525K4oUmMS/zIld/K95UQFf3ILGi75FD9npzaCwVSNLJOKIvuQD GTumDQk+gfERnOv3ja7FT++mvPFdlpKAV5+2vwh6P6gBtQnZsS7sxUszmWsGmL+1 vFdVq+Vo15t+A6Y8IDN73gxmFd12QP9zeNTtxOXxnfl/WQh2EZdKciwe6C4Ymhot kgjYt1GPIuxtLOYxjIVw5iWiuqjnLxY3DsAJZlqLARTkc54OeR71hwBuk6apcfFt KVuR0ft2m4il9+GrixY3gKW4CcMnB4nYF76vo49XIXBjtXRUfC5eUF/hrle1AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUZETf4x2xdJYWbaqziWhumXQY4fkwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzMzNTYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwPwYIKwYBBQUHAQcBAf8EMDAuMCwEAgABMCYDBABWJgcDBABWJpcDBABZdDYD BABZdH0wDAMEAFl1hwMEAFl1iDANBgkqhkiG9w0BAQsFAAOCAQEAK5K2dwYGJi9B ES4aj5cLvZQ4OOHKITIGTKjUPme0WkXjf3nlbLgqFJXrSxjYI/GbHkZ5KeAKHkTg 8byGKFOdoR/boXiXcI2r+oQV4gSdR5pDbfr8yo5l6PXsvQrgag1oYd1K6/dDcLr/ OIkzX1VGt4RvgMhzo+w6hQ8clzuqvFuz1pkfEJNz5asccREWv62Umr00Th3fMyx9 U+flFMnwqSxALXAAS+YfYrspJTNCAwKdKgWUeGyb6FIAGCDK50I1tXJetoUte4UP XUrPU9mtyRdwJKS/rkHnCdlxnYJkuBCL4PY6dfLMpsEamu5klN8Yjvs5wowKI/7a 52YPZuvF8Q== -----END CERTIFICATE-----Generated at Wed Jul 23 19:37:37 2025 by rpki-client