$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa File: AS13213.roa (raw, json) Hash identifier: MwFAKMHAbXcBsNjL2EORpmUpiNg5R2AOTDfDtfxCObE= Subject key identifier: 13:FA:BB:A4:23:19:59:CA:10:54:EC:10:A7:5D:52:EB:CD:11:90:8F Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 07AA4C3432EAC7FAC19C8015CDC19DA739FFA2DD Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa Signing time: Thu 14 May 2026 08:31:39 +0000 ROA not before: Thu 14 May 2026 08:26:39 +0000 ROA not after: Thu 13 May 2027 08:31:39 +0000 asID: 13213 IP address blocks: 89.116.62.0/24 maxlen: 24 89.116.182.0/24 maxlen: 24 89.117.155.0/24 maxlen: 24 89.117.160.0/24 maxlen: 24 89.117.161.0/24 maxlen: 24 89.117.162.0/24 maxlen: 24 89.117.163.0/24 maxlen: 24 89.117.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:aa:4c:34:32:ea:c7:fa:c1:9c:80:15:cd:c1:9d:a7:39:ff:a2:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 14 08:26:39 2026 GMT Not After : May 13 08:31:39 2027 GMT Subject: CN=13FABBA4231959CA1054EC10A75D52EBCD11908F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b6:fd:4d:d1:25:12:95:6f:84:b1:49:8b:e4: 66:a9:05:dc:1e:84:86:f1:e5:6f:f9:c3:5f:83:47: e6:ea:c1:d7:5c:20:28:ec:f1:48:22:48:90:0e:2b: 25:72:72:13:e8:10:08:62:f2:9b:43:00:66:9b:cd: 7e:62:92:f8:6d:16:27:5d:32:e8:92:d2:72:4f:dd: 9d:f5:d9:de:73:6e:72:5d:ff:24:34:0d:82:a4:98: 63:2f:cb:15:3c:c9:81:5a:dc:89:14:cc:c6:bf:b0: ba:e6:79:6e:14:53:9b:02:e4:2c:7e:ac:2c:2a:89: d3:51:4a:a4:f7:b4:0d:bf:c7:f1:8f:c5:ad:12:32: c6:db:51:32:f3:67:7e:94:6d:45:4c:45:bb:7a:b1: 1e:25:ad:92:2d:73:fa:46:60:cf:2f:1b:3f:42:68: bc:c4:80:b1:e7:e2:96:99:b0:5b:ad:15:b7:40:e2: 0f:aa:c1:da:fb:0b:e1:78:4e:ad:34:cb:60:3f:3b: af:09:f0:2c:33:e5:c7:3c:d8:87:46:c9:11:58:44: 59:e3:d4:4c:21:c7:e8:1a:3a:f9:86:fc:46:bb:41: df:9f:86:bd:0c:78:10:e7:67:c9:77:62:87:d8:89: bb:51:87:a1:bd:c9:ad:c4:00:12:c7:05:a0:48:b7: a2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:FA:BB:A4:23:19:59:CA:10:54:EC:10:A7:5D:52:EB:CD:11:90:8F X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.62.0/24 89.116.182.0/24 89.117.155.0/24 89.117.160.0/22 89.117.218.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:cd:0a:7a:85:1f:ba:be:75:08:da:ef:24:c5:18:74:16:b3: 12:4b:15:99:28:4d:c3:69:b7:4c:79:71:e7:a6:18:82:0d:54: ee:14:0e:3f:3a:c0:9d:3f:e4:47:91:44:33:fb:78:f8:91:5e: 09:f2:7d:e4:66:17:2f:5a:8e:0c:6c:a5:64:96:43:8d:81:24: b8:06:cb:27:e4:f1:9d:06:fe:f8:90:14:1d:1f:4d:58:37:b7: f9:70:39:73:35:c1:55:c0:dc:e3:88:3c:aa:71:22:c1:70:08: aa:b3:60:5f:4d:b1:ca:15:ad:f7:7d:d3:50:8b:cf:a5:b3:08: f1:57:c0:4f:77:66:b5:11:ad:68:3c:4a:82:ad:29:bd:05:5f: 77:59:f2:bd:fc:dc:3e:c3:38:c5:fa:bb:72:fa:e2:0d:22:6f: 01:0d:85:e1:ca:64:23:3f:fc:1a:dd:ac:1d:68:42:9b:fa:22: 0a:27:39:72:2c:65:38:25:58:e8:59:5f:3f:7b:37:71:7a:3d: 2c:1f:94:38:b9:10:84:3c:a7:d5:b6:4d:d3:d8:2b:c2:0d:b1: 06:fc:c4:bc:2e:b4:30:4f:32:e2:99:db:00:72:c5:5c:41:5e: b1:cb:c4:90:57:5b:e7:bb:ef:c7:f1:6b:9a:26:c6:6d:d2:87: dc:c0:e3:7d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUB6pMNDLqx/rBnIAVzcGdpzn/ot0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA1MTQwODI2MzlaFw0yNzA1MTMwODMxMzlaMDMxMTAvBgNV BAMTKDEzRkFCQkE0MjMxOTU5Q0ExMDU0RUMxMEE3NUQ1MkVCQ0QxMTkwOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDttv1N0SUSlW+EsUmL5GapBdwe hIbx5W/5w1+DR+bqwddcICjs8UgiSJAOKyVychPoEAhi8ptDAGabzX5ikvhtFidd MuiS0nJP3Z312d5zbnJd/yQ0DYKkmGMvyxU8yYFa3IkUzMa/sLrmeW4UU5sC5Cx+ rCwqidNRSqT3tA2/x/GPxa0SMsbbUTLzZ36UbUVMRbt6sR4lrZItc/pGYM8vGz9C aLzEgLHn4paZsFutFbdA4g+qwdr7C+F4Tq00y2A/O68J8Cwz5cc82IdGyRFYRFnj 1Ewhx+gaOvmG/Ea7Qd+fhr0MeBDnZ8l3YofYibtRh6G9ya3EABLHBaBIt6LlAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUE/q7pCMZWcoQVOwQp11S680RkI8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEzMjEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAWXQ+AwQAWXS2AwQAWXWb AwQCWXWgAwQAWXXaMA0GCSqGSIb3DQEBCwUAA4IBAQBbzQp6hR+6vnUI2u8kxRh0 FrMSSxWZKE3DabdMeXHnphiCDVTuFA4/OsCdP+RHkUQz+3j4kV4J8n3kZhcvWo4M bKVklkONgSS4Bssn5PGdBv74kBQdH01YN7f5cDlzNcFVwNzjiDyqcSLBcAiqs2Bf TbHKFa33fdNQi8+lswjxV8BPd2a1Ea1oPEqCrSm9BV93WfK9/Nw+wzjF+rty+uIN Im8BDYXhymQjP/wa3awdaEKb+iIKJzlyLGU4JVjoWV8/ezdxej0sH5Q4uRCEPKfV tk3T2CvCDbEG/MS8LrQwTzLimdsAcsVcQV6xy8SQV1vnu+/H8WuaJsZt0ofcwON9 -----END CERTIFICATE-----Generated at Sat Jun 6 02:29:35 2026 by rpki-client