$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS9304.roa File: AS9304.roa (raw, json) Hash identifier: 6yUvRTdLacZiAYQh+n660iJKdmdXs2EbKlNthe/9dfo= Subject key identifier: 8F:D8:9E:5F:98:FD:74:CA:2C:5A:AA:D0:DB:6E:D2:A3:84:F1:4C:07 Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 2564DFA31D5ABC0CF42EB2DE624DB9A09B23EB6E Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS9304.roa Signing time: Thu 25 Jun 2026 13:23:43 +0000 ROA not before: Thu 25 Jun 2026 13:18:43 +0000 ROA not after: Thu 24 Jun 2027 13:23:43 +0000 asID: 9304 IP address blocks: 13.141.20.0/22 maxlen: 24 13.141.48.0/22 maxlen: 24 169.40.96.0/24 maxlen: 24 169.40.102.0/23 maxlen: 23 169.40.107.0/24 maxlen: 24 169.40.111.0/24 maxlen: 24 169.40.150.0/24 maxlen: 24 169.40.153.0/24 maxlen: 24 169.40.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Jun 2026 10:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:64:df:a3:1d:5a:bc:0c:f4:2e:b2:de:62:4d:b9:a0:9b:23:eb:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Jun 25 13:18:43 2026 GMT Not After : Jun 24 13:23:43 2027 GMT Subject: CN=8FD89E5F98FD74CA2C5AAAD0DB6ED2A384F14C07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:14:41:c1:6f:14:a6:73:4d:83:b2:4c:01: 99:37:cc:60:8d:00:43:9f:ca:93:0a:79:35:0b:f5: ab:cc:9b:45:4e:b1:e5:83:97:b3:9c:2b:5a:64:96: ca:d0:61:37:f6:17:a0:72:99:84:8d:cb:a3:5a:62: 70:c3:76:b7:e8:6e:8b:fa:ab:14:0b:b9:7a:11:83: b4:19:69:24:22:86:a0:93:01:90:5d:2c:10:67:0b: de:0e:6e:b6:cb:bc:28:2c:7e:f6:14:f4:f6:8e:3c: 38:8e:eb:aa:72:09:8a:25:ea:36:45:43:92:13:73: d5:d9:45:9d:81:12:86:19:f0:fc:cd:1b:e8:95:0b: 83:75:3f:12:d8:8b:2e:63:66:32:41:96:d5:7d:aa: 24:77:7a:99:65:07:a2:65:1b:e6:43:76:5f:0c:9b: 89:4a:d7:52:85:52:14:64:15:70:7f:9b:f7:53:2c: 57:eb:77:48:30:6e:0c:29:b2:09:a3:c1:50:42:be: a0:3a:14:86:da:97:ad:6c:96:de:24:40:78:5a:39: ba:a4:82:86:74:7f:f6:d2:73:65:c2:1d:66:85:8b: d9:1d:67:75:67:2f:7b:26:f4:78:9b:4b:25:e9:04: ea:1a:26:6e:87:05:6d:f0:8e:13:18:a4:d9:c8:d8: 6d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D8:9E:5F:98:FD:74:CA:2C:5A:AA:D0:DB:6E:D2:A3:84:F1:4C:07 X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS9304.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.141.20.0/22 13.141.48.0/22 169.40.96.0/24 169.40.102.0/23 169.40.107.0/24 169.40.111.0/24 169.40.150.0/24 169.40.153.0/24 169.40.155.0/24 Signature Algorithm: sha256WithRSAEncryption a6:bd:20:b8:bb:8a:a8:c3:67:94:86:a0:90:4c:a2:10:27:a5: 46:3e:bb:db:2a:56:1d:38:da:16:78:90:17:cc:08:cd:64:c8: 87:b2:d8:5d:f8:13:bf:97:13:e5:a7:58:78:3d:69:c8:55:83: 25:ca:0d:dc:f9:bd:e1:cd:4c:b1:48:4d:6d:fc:80:6f:cd:a6: ac:68:e5:ec:c3:17:3b:64:49:9d:52:7c:69:20:21:ff:b0:81: a6:10:1d:a2:26:86:8f:9c:cd:eb:c6:e3:f5:91:d5:01:2a:4c: 67:7f:f5:42:24:13:42:eb:9d:c7:88:c9:14:b8:25:60:8b:a0: 23:de:6f:c8:ff:1f:fc:0c:a1:6d:9d:ed:31:a0:ad:c7:c5:fa: 59:69:6b:7e:ad:39:d9:a7:e2:c9:d6:c0:39:58:0d:35:8a:6f: db:4e:28:50:4c:f8:87:e9:ad:b5:39:36:9e:fb:c1:5b:78:33: a6:51:66:b1:eb:29:7b:33:41:79:fa:ac:cf:19:9d:3f:d3:e0: 67:77:a3:14:01:52:23:91:63:41:f7:06:e8:72:67:bb:c9:f1: 16:1c:8f:b3:f2:b2:12:e5:04:7d:a5:4c:c2:51:89:58:c7:6a: 32:5e:fe:a4:48:91:7d:4b:0b:2a:dc:01:b9:4f:38:0f:12:ab: 92:9a:8c:6b -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgIUJWTfox1avAz0LrLeYk25oJsj624wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjA2MjUxMzE4NDNaFw0yNzA2MjQxMzIzNDNaMDMxMTAvBgNV BAMTKDhGRDg5RTVGOThGRDc0Q0EyQzVBQUFEMERCNkVEMkEzODRGMTRDMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/2xRBwW8UpnNNg7JMAZk3zGCN AEOfypMKeTUL9avMm0VOseWDl7OcK1pklsrQYTf2F6BymYSNy6NaYnDDdrfobov6 qxQLuXoRg7QZaSQihqCTAZBdLBBnC94ObrbLvCgsfvYU9PaOPDiO66pyCYol6jZF Q5ITc9XZRZ2BEoYZ8PzNG+iVC4N1PxLYiy5jZjJBltV9qiR3epllB6JlG+ZDdl8M m4lK11KFUhRkFXB/m/dTLFfrd0gwbgwpsgmjwVBCvqA6FIbal61slt4kQHhaObqk goZ0f/bSc2XCHWaFi9kdZ3VnL3sm9HibSyXpBOoaJm6HBW3wjhMYpNnI2G2BAgMB AAGjggJdMIICWTAdBgNVHQ4EFgQUj9ieX5j9dMosWqrQ227So4TxTAcwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzkzMDQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwTwYIKwYBBQUHAQcBAf8EQDA+MDwEAgABMDYDBAINjRQDBAINjTADBACpKGAD BAGpKGYDBACpKGsDBACpKG8DBACpKJYDBACpKJkDBACpKJswDQYJKoZIhvcNAQEL BQADggEBAKa9ILi7iqjDZ5SGoJBMohAnpUY+u9sqVh042hZ4kBfMCM1kyIey2F34 E7+XE+WnWHg9achVgyXKDdz5veHNTLFITW38gG/Npqxo5ezDFztkSZ1SfGkgIf+w gaYQHaImho+czevG4/WR1QEqTGd/9UIkE0LrnceIyRS4JWCLoCPeb8j/H/wMoW2d 7TGgrcfF+llpa36tOdmn4snWwDlYDTWKb9tOKFBM+IfprbU5Np77wVt4M6ZRZrHr KXszQXn6rM8ZnT/T4Gd3oxQBUiORY0H3BuhyZ7vJ8RYcj7PyshLlBH2lTMJRiVjH ajJe/qRIkX1LCyrcAblPOA8Sq5KajGs= -----END CERTIFICATE-----Generated at Sat Jun 27 19:55:36 2026 by rpki-client