$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: ncLDcYMFOdMyY3EkKVIfiRrfO2N+DJcF1LDUcxYDYoc= Subject key identifier: BF:C2:4C:70:F8:FD:86:28:7F:00:19:60:33:C0:0B:20:27:95:9B:98 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 60CF6DE82FF96FD30BCDD412E7A46BB1D4444CFD Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9304.roa Signing time: Thu 10 Jul 2025 05:18:59 +0000 ROA not before: Thu 10 Jul 2025 05:13:59 +0000 ROA not after: Thu 09 Jul 2026 05:18:59 +0000 asID: 9304 IP address blocks: 86.38.184.0/24 maxlen: 24 89.116.8.0/24 maxlen: 24 89.116.9.0/24 maxlen: 24 89.116.10.0/24 maxlen: 24 89.116.11.0/24 maxlen: 24 89.116.141.0/24 maxlen: 24 89.116.165.0/24 maxlen: 24 89.116.172.0/24 maxlen: 24 89.116.237.0/24 maxlen: 24 89.116.244.0/24 maxlen: 24 89.117.65.0/24 maxlen: 24 89.117.84.0/24 maxlen: 24 89.117.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 01:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:cf:6d:e8:2f:f9:6f:d3:0b:cd:d4:12:e7:a4:6b:b1:d4:44:4c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 10 05:13:59 2025 GMT Not After : Jul 9 05:18:59 2026 GMT Subject: CN=BFC24C70F8FD86287F00196033C00B2027959B98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:e4:2d:4a:b8:5d:2c:4d:f9:a4:fc:6e:86: 3c:ee:d5:62:7a:6a:2c:bd:78:47:32:29:15:96:20: 0f:1d:ce:a5:98:05:cc:25:20:09:97:7f:6b:87:94: 6f:3d:35:b0:d3:f9:74:52:6d:66:67:e7:19:b7:2e: a6:6b:98:2e:a5:23:98:e3:f9:2c:2c:c6:55:dc:30: a5:ec:87:8e:46:92:ed:d3:53:59:e7:b3:19:2d:6d: 20:7b:0c:0a:84:3e:18:2c:97:e7:71:fb:0c:02:f6: 28:d3:e4:80:c7:9e:64:b7:0d:9f:12:91:35:4a:3d: 30:16:48:fd:91:32:de:d3:d2:52:b5:a8:58:e2:e9: d7:4d:99:56:5d:dc:d4:36:cc:70:1d:d6:b4:76:b6: 43:e8:b6:bb:9a:d6:f5:b2:17:90:ae:e3:b4:ef:d0: 7d:4a:d8:34:ec:75:cd:ec:c2:f7:67:63:63:02:de: 3b:fe:6e:1c:6b:7c:39:13:5a:b1:33:48:f6:4c:d2: 4e:e2:97:fb:84:95:e7:eb:d1:12:f4:1d:71:7c:c2: 77:6e:27:51:f9:cf:dc:5e:d6:25:80:cb:ec:92:40: d8:84:c9:65:80:73:ec:3b:5f:f8:12:43:1e:c6:4b: 63:e3:33:b6:53:26:a3:6e:4e:45:1b:83:52:6a:41: e4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C2:4C:70:F8:FD:86:28:7F:00:19:60:33:C0:0B:20:27:95:9B:98 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/24 89.116.8.0/22 89.116.141.0/24 89.116.165.0/24 89.116.172.0/24 89.116.237.0/24 89.116.244.0/24 89.117.65.0/24 89.117.84.0/24 89.117.129.0/24 Signature Algorithm: sha256WithRSAEncryption 56:9f:ba:7c:68:38:47:10:db:35:94:7b:5d:67:de:63:98:f7: a9:06:07:32:cf:13:8e:62:f2:6d:da:5e:b2:84:a8:1e:ed:5a: 1f:c1:b0:36:8b:ee:1b:42:f0:a9:9d:77:52:79:29:52:5f:d5: 6f:c5:eb:c0:40:a1:11:aa:30:30:7b:66:07:6b:5e:4e:f6:c8: d8:92:d7:fa:ed:ac:d2:52:be:05:28:a5:4e:b0:37:70:60:6e: ba:8d:f0:6a:00:9e:a2:1c:9c:65:32:73:4a:a2:a7:2a:97:40: 00:35:80:ea:50:3e:f5:42:13:68:8c:a3:bc:f1:22:92:b2:8d: 9b:f7:d4:2f:6c:9e:b3:a3:dd:08:0d:96:2e:4b:60:d3:9a:74: 29:bd:1c:b0:a0:97:14:72:77:f7:78:60:66:b8:7c:16:7e:f4: f7:49:d8:c5:c9:00:20:56:a3:dd:97:44:c8:29:5d:0e:44:f0: 2f:b9:0d:20:8e:13:e9:16:70:77:ac:d4:0e:b1:90:06:db:c7: 5e:c1:29:5c:d1:d2:02:9d:d9:1c:88:4d:bd:4d:9d:5f:3d:fa: 0b:27:bc:09:9c:1f:b6:46:e9:83:9f:3a:16:d1:c4:80:e2:6b: f2:9f:e6:a0:1a:f6:f1:95:d1:45:02:52:00:f7:c8:d4:3b:65: 08:b2:00:3b -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgIUYM9t6C/5b9MLzdQS56RrsdRETP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA3MTAwNTEzNTlaFw0yNjA3MDkwNTE4NTlaMDMxMTAvBgNV BAMTKEJGQzI0QzcwRjhGRDg2Mjg3RjAwMTk2MDMzQzAwQjIwMjc5NTlCOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgr+QtSrhdLE35pPxuhjzu1WJ6 aiy9eEcyKRWWIA8dzqWYBcwlIAmXf2uHlG89NbDT+XRSbWZn5xm3LqZrmC6lI5jj +SwsxlXcMKXsh45Gku3TU1nnsxktbSB7DAqEPhgsl+dx+wwC9ijT5IDHnmS3DZ8S kTVKPTAWSP2RMt7T0lK1qFji6ddNmVZd3NQ2zHAd1rR2tkPotrua1vWyF5Cu47Tv 0H1K2DTsdc3swvdnY2MC3jv+bhxrfDkTWrEzSPZM0k7il/uElefr0RL0HXF8wndu J1H5z9xe1iWAy+ySQNiEyWWAc+w7X/gSQx7GS2PjM7ZTJqNuTkUbg1JqQeSNAgMB AAGjggJjMIICXzAdBgNVHQ4EFgQUv8JMcPj9hih/ABlgM8ALICeVm5gwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzkzMDQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwVQYIKwYBBQUHAQcBAf8ERjBEMEIEAgABMDwDBABWJrgDBAJZdAgDBABZdI0D BABZdKUDBABZdKwDBABZdO0DBABZdPQDBABZdUEDBABZdVQDBABZdYEwDQYJKoZI hvcNAQELBQADggEBAFafunxoOEcQ2zWUe11n3mOY96kGBzLPE45i8m3aXrKEqB7t Wh/BsDaL7htC8Kmdd1J5KVJf1W/F68BAoRGqMDB7ZgdrXk72yNiS1/rtrNJSvgUo pU6wN3BgbrqN8GoAnqIcnGUyc0qipyqXQAA1gOpQPvVCE2iMo7zxIpKyjZv31C9s nrOj3QgNli5LYNOadCm9HLCglxRyd/d4YGa4fBZ+9PdJ2MXJACBWo92XRMgpXQ5E 8C+5DSCOE+kWcHes1A6xkAbbx17BKVzR0gKd2RyITb1NnV89+gsnvAmcH7ZG6YOf OhbRxIDia/Kf5qAa9vGV0UUCUgD3yNQ7ZQiyADs= -----END CERTIFICATE-----Generated at Sun Jul 20 14:18:21 2025 by rpki-client