$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS215152.roa File: AS215152.roa (raw, json) Hash identifier: x8yb3pqGYb9DNo4f8D9QRvJYFRxYhI6O/Fcpqokba8Q= Subject key identifier: 37:0D:AE:EC:C4:45:1B:D0:77:CB:0B:A2:8C:6D:41:95:79:C0:97:59 Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 6CC311BEF03BFC4D983D9CD69C2AFCFF7AE296DC Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS215152.roa Signing time: Sat 11 Apr 2026 13:40:32 +0000 ROA not before: Sat 11 Apr 2026 13:35:32 +0000 ROA not after: Sat 10 Apr 2027 13:40:32 +0000 asID: 215152 IP address blocks: 169.40.33.0/24 maxlen: 24 169.40.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 13 Apr 2026 19:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c3:11:be:f0:3b:fc:4d:98:3d:9c:d6:9c:2a:fc:ff:7a:e2:96:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Apr 11 13:35:32 2026 GMT Not After : Apr 10 13:40:32 2027 GMT Subject: CN=370DAEECC4451BD077CB0BA28C6D419579C09759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e1:03:62:24:7b:6b:de:f2:c7:3b:5c:dd:8a: 97:40:19:6a:f2:b5:fe:ae:03:9d:aa:3d:40:0d:a5: f2:ce:d2:15:da:88:8c:f6:76:3d:64:ce:66:b0:02: c0:68:65:17:d2:9b:e9:09:41:40:7c:e1:06:23:3e: da:72:b9:18:f3:9d:87:7f:3c:8f:82:97:7d:50:fb: 86:0f:a3:cb:23:1a:9c:5e:f7:1a:9d:3b:97:20:4e: f7:82:ef:a9:24:00:72:92:f4:23:1f:53:20:f2:e9: 06:66:f0:96:75:ae:9a:66:11:c1:49:47:88:31:e0: a4:fa:16:ee:55:34:97:33:44:ec:22:53:0d:2c:da: 85:50:61:c6:91:8e:03:a3:aa:f2:63:1f:0c:e5:cc: 88:9d:8c:98:96:51:de:93:12:c1:d2:97:bd:96:aa: 8e:c9:cb:cb:1b:5b:25:2c:7f:bf:4c:97:c0:ac:2a: ee:c3:20:4a:45:f1:5f:ff:c0:2d:f4:62:9c:f6:fd: e9:14:7d:a9:94:e8:c0:45:2b:25:ec:da:d1:6a:38: f2:05:db:8e:48:31:3e:fc:8c:e2:1a:cb:2f:d1:ff: 68:ca:b4:3b:3f:63:d6:f5:d9:6d:d2:0b:46:d8:f2: 0f:00:e7:40:a1:cb:30:a1:17:63:eb:60:dc:25:99: 01:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0D:AE:EC:C4:45:1B:D0:77:CB:0B:A2:8C:6D:41:95:79:C0:97:59 X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS215152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.33.0/24 169.40.59.0/24 Signature Algorithm: sha256WithRSAEncryption 71:ae:b9:e5:80:e2:73:f7:fa:3a:46:7b:30:18:33:46:d8:a8: e8:35:be:dd:c3:a4:33:19:e9:3e:90:13:32:fa:21:0a:ee:e2: 63:81:6f:e3:94:8c:6f:a4:0f:3a:4f:57:fb:39:66:85:70:ce: 20:81:c8:7b:72:0e:d9:17:43:05:64:65:d2:9b:e6:af:8b:07: 36:51:3a:45:bb:27:11:37:c7:b6:53:c6:54:ca:b7:93:31:a2: 43:b7:6e:52:82:7a:89:0a:cc:60:da:c7:a2:71:29:35:e5:be: 91:cf:5e:4f:3c:37:84:57:16:de:33:6b:0f:6b:14:d6:86:62: 43:ac:a5:4f:de:5e:3e:77:92:c6:c4:1f:6d:0f:3a:61:0c:cb: 13:b5:de:79:08:f9:25:07:36:e1:83:41:e6:06:5d:8e:d0:44: 25:2b:8b:a4:d8:6c:e5:f5:e9:96:f4:f8:2f:b9:04:e7:21:8c: 9c:1a:cb:c4:49:cf:22:a7:f7:ae:f7:38:31:19:bf:b4:39:ac: a2:00:d0:69:e9:fe:41:fd:97:17:52:e4:a2:88:5d:bd:c3:f8: 0c:2e:75:e6:5a:dc:db:72:d2:a8:cd:13:a9:2a:ae:18:38:7a: 96:be:f6:4a:68:2f:be:50:c5:1f:90:a4:dd:7f:e7:79:10:59: 54:a7:59:7f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUbMMRvvA7/E2YPZzWnCr8/3riltwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjA0MTExMzM1MzJaFw0yNzA0MTAxMzQwMzJaMDMxMTAvBgNV BAMTKDM3MERBRUVDQzQ0NTFCRDA3N0NCMEJBMjhDNkQ0MTk1NzlDMDk3NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl4QNiJHtr3vLHO1zdipdAGWry tf6uA52qPUANpfLO0hXaiIz2dj1kzmawAsBoZRfSm+kJQUB84QYjPtpyuRjznYd/ PI+Cl31Q+4YPo8sjGpxe9xqdO5cgTveC76kkAHKS9CMfUyDy6QZm8JZ1rppmEcFJ R4gx4KT6Fu5VNJczROwiUw0s2oVQYcaRjgOjqvJjHwzlzIidjJiWUd6TEsHSl72W qo7Jy8sbWyUsf79Ml8CsKu7DIEpF8V//wC30Ypz2/ekUfamU6MBFKyXs2tFqOPIF 245IMT78jOIayy/R/2jKtDs/Y9b12W3SC0bY8g8A50ChyzChF2PrYNwlmQGNAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUNw2u7MRFG9B3ywuijG1BlXnAl1kwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzIxNTE1Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAKkoIQMEAKkoOzANBgkq hkiG9w0BAQsFAAOCAQEAca655YDic/f6OkZ7MBgzRtio6DW+3cOkMxnpPpATMvoh Cu7iY4Fv45SMb6QPOk9X+zlmhXDOIIHIe3IO2RdDBWRl0pvmr4sHNlE6RbsnETfH tlPGVMq3kzGiQ7duUoJ6iQrMYNrHonEpNeW+kc9eTzw3hFcW3jNrD2sU1oZiQ6yl T95ePneSxsQfbQ86YQzLE7XeeQj5JQc24YNB5gZdjtBEJSuLpNhs5fXplvT4L7kE 5yGMnBrLxEnPIqf3rvc4MRm/tDmsogDQaen+Qf2XF1LkoohdvcP4DC515lrc23LS qM0TqSquGDh6lr72SmgvvlDFH5Ck3X/neRBZVKdZfw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:40 2026 by rpki-client