$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: MRTO3oOdxtAQVwTa1hGN/TJvVf26a7zkgGzlpWox7+0= Subject key identifier: FC:82:E9:0C:8B:3F:A4:09:1B:8C:EA:31:3C:C4:0B:BE:05:FD:E0:26 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 5F4260595817880BEA5D0F864FB211FEE76FBC5C Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa Signing time: Mon 20 Oct 2025 12:22:08 +0000 ROA not before: Mon 20 Oct 2025 12:17:08 +0000 ROA not after: Mon 19 Oct 2026 12:22:08 +0000 asID: 14618 IP address blocks: 86.38.232.0/24 maxlen: 24 89.117.15.0/24 maxlen: 24 89.117.28.0/24 maxlen: 24 89.117.87.0/24 maxlen: 24 89.117.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Oct 2025 11:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:42:60:59:58:17:88:0b:ea:5d:0f:86:4f:b2:11:fe:e7:6f:bc:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Oct 20 12:17:08 2025 GMT Not After : Oct 19 12:22:08 2026 GMT Subject: CN=FC82E90C8B3FA4091B8CEA313CC40BBE05FDE026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:75:82:da:fa:aa:51:10:02:ed:2d:68:d9:45: e3:c1:30:af:2f:c8:24:43:bd:fd:29:c3:4f:05:e2: 07:6c:73:e7:11:60:df:0c:da:40:3a:7a:63:ff:43: 3d:5a:59:e1:e5:3e:16:32:9a:8d:59:1b:e9:f9:5e: 97:c9:62:c8:33:b2:4a:08:be:6a:d5:5d:12:93:e7: c6:b8:ec:9a:58:ff:6c:a6:6b:fd:18:95:d6:90:bf: 40:a8:e4:a2:ba:4b:b6:7e:6f:c1:01:a3:9f:d3:6c: a7:5a:8c:40:aa:d6:d8:9b:e7:52:f5:54:b1:ff:47: 4d:b8:82:32:e5:21:b3:55:5f:4f:91:19:a2:e2:d2: e7:24:ef:25:16:e0:c3:7c:c6:12:0d:5a:a7:5f:f6: ae:f0:3c:73:97:d1:9e:ae:fe:85:b1:f7:2d:5e:d3: 5f:31:cc:1a:28:56:cb:f5:03:93:0b:66:d6:f1:5b: 34:bd:f3:8d:ec:3d:5c:1e:84:b9:aa:71:22:9c:38: 3c:fe:55:57:3c:42:c6:0c:e0:88:83:a1:f5:5e:65: f1:35:a5:3d:2a:4e:73:62:8e:07:cd:28:7e:dd:f7: 7a:3a:4e:3e:b9:09:01:5e:77:4c:c3:cc:d8:60:24: 24:c6:68:d6:50:e4:45:95:41:74:3b:05:7f:ba:f0: a5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:82:E9:0C:8B:3F:A4:09:1B:8C:EA:31:3C:C4:0B:BE:05:FD:E0:26 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.232.0/24 89.117.15.0/24 89.117.28.0/24 89.117.87.0/24 89.117.153.0/24 Signature Algorithm: sha256WithRSAEncryption 41:2b:18:af:2e:55:84:8b:fb:3b:97:b2:11:27:88:c5:71:10: 57:4e:22:47:2c:1f:26:60:83:96:75:e4:57:aa:b9:4f:6d:4b: 93:99:c2:4a:43:dd:9e:1a:e2:a4:a1:ef:16:1c:c8:2d:ef:15: 57:82:26:27:47:91:2c:83:cc:30:52:97:2e:88:ad:2a:11:46: 2b:55:98:d3:e8:e1:07:3a:e8:72:3b:a9:d7:03:9c:ce:23:b9: 8c:74:fc:1c:c3:fa:9f:f7:e3:95:25:f4:af:15:03:69:6a:5a: fb:b0:f6:89:61:82:6b:59:6c:67:57:bc:76:0d:6c:2b:6f:a9: 47:74:97:a7:b3:dc:34:63:70:c0:b1:1c:da:36:d6:df:74:2c: 82:94:89:99:7b:38:39:27:03:20:36:4c:90:bd:fa:d4:78:f1: 67:31:a5:37:40:23:e1:98:49:80:e2:c6:a7:69:b1:0b:b2:e2: 65:74:87:d2:c7:8f:c9:ea:b3:6f:e7:09:8d:8c:37:98:2f:4d: 66:b2:5e:6c:7f:12:18:68:6f:87:64:68:ac:13:ab:31:e9:e9: df:ea:36:fa:3b:ba:81:7e:38:23:a9:d5:c8:d5:49:31:a9:fb: 5b:2b:1b:10:b2:01:4c:76:a3:dd:da:b2:56:c6:08:ab:2f:51: 83:39:81:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUX0JgWVgXiAvqXQ+GT7IR/udvvFwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEwMjAxMjE3MDhaFw0yNjEwMTkxMjIyMDhaMDMxMTAvBgNV BAMTKEZDODJFOTBDOEIzRkE0MDkxQjhDRUEzMTNDQzQwQkJFMDVGREUwMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSdYLa+qpREALtLWjZRePBMK8v yCRDvf0pw08F4gdsc+cRYN8M2kA6emP/Qz1aWeHlPhYymo1ZG+n5XpfJYsgzskoI vmrVXRKT58a47JpY/2yma/0YldaQv0Co5KK6S7Z+b8EBo5/TbKdajECq1tib51L1 VLH/R024gjLlIbNVX0+RGaLi0uck7yUW4MN8xhINWqdf9q7wPHOX0Z6u/oWx9y1e 018xzBooVsv1A5MLZtbxWzS9843sPVwehLmqcSKcODz+VVc8QsYM4IiDofVeZfE1 pT0qTnNijgfNKH7d93o6Tj65CQFed0zDzNhgJCTGaNZQ5EWVQXQ7BX+68KWVAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU/ILpDIs/pAkbjOoxPMQLvgX94CYwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE0NjE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAViboAwQAWXUPAwQAWXUc AwQAWXVXAwQAWXWZMA0GCSqGSIb3DQEBCwUAA4IBAQBBKxivLlWEi/s7l7IRJ4jF cRBXTiJHLB8mYIOWdeRXqrlPbUuTmcJKQ92eGuKkoe8WHMgt7xVXgiYnR5Esg8ww UpcuiK0qEUYrVZjT6OEHOuhyO6nXA5zOI7mMdPwcw/qf9+OVJfSvFQNpalr7sPaJ YYJrWWxnV7x2DWwrb6lHdJens9w0Y3DAsRzaNtbfdCyClImZezg5JwMgNkyQvfrU ePFnMaU3QCPhmEmA4sanabELsuJldIfSx4/J6rNv5wmNjDeYL01msl5sfxIYaG+H ZGisE6sx6enf6jb6O7qBfjgjqdXI1UkxqftbKxsQsgFMdqPd2rJWxgirL1GDOYGV -----END CERTIFICATE-----Generated at Wed Oct 22 00:46:04 2025 by rpki-client