$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: PPc/xIM5cYsBa6M8tLkJ+YLRd4jksByLJs92oYm4g/o= Subject key identifier: 8B:5A:26:0F:22:2E:F1:B7:49:F3:B7:3D:75:A4:29:8C:08:7A:C8:97 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 52044A8D0EF15A5FB6219422A8866531232A2905 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa Signing time: Mon 25 Aug 2025 12:54:45 +0000 ROA not before: Mon 25 Aug 2025 12:49:45 +0000 ROA not after: Mon 24 Aug 2026 12:54:45 +0000 asID: 14618 IP address blocks: 86.38.232.0/24 maxlen: 24 89.117.15.0/24 maxlen: 24 89.117.28.0/24 maxlen: 24 89.117.81.0/24 maxlen: 24 89.117.87.0/24 maxlen: 24 89.117.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 15:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:04:4a:8d:0e:f1:5a:5f:b6:21:94:22:a8:86:65:31:23:2a:29:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 25 12:49:45 2025 GMT Not After : Aug 24 12:54:45 2026 GMT Subject: CN=8B5A260F222EF1B749F3B73D75A4298C087AC897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:80:63:74:ed:da:d6:11:c7:95:a0:07:b6:8c: b1:f1:da:67:68:de:50:06:6e:5c:1f:4b:cb:a2:d4: ec:73:8f:bc:72:49:71:3f:d6:e7:9f:71:57:de:76: 74:0c:b6:16:ce:81:79:de:c2:fe:e1:d7:34:09:76: 58:5d:17:ac:87:71:7f:5f:d3:65:0c:1a:28:0a:05: e0:af:a8:c4:a1:69:5f:6f:ab:01:84:bb:59:28:7d: 96:db:5f:e5:5b:27:78:69:69:69:6b:8a:ae:8f:3c: 63:e6:60:79:8a:78:8d:7d:f5:df:b2:97:b9:bc:43: 47:c7:53:ac:85:c5:b6:7d:a6:8c:91:b3:5f:26:1f: 3a:ed:8f:e0:ad:b7:84:aa:69:f9:b8:23:79:5a:e2: 30:32:87:72:4a:97:03:f8:e7:03:db:50:d2:74:34: 92:86:de:13:4d:2d:5c:3f:bb:c9:e5:e4:25:65:c8: 44:78:56:0e:5b:d4:05:a2:23:79:7a:be:3c:45:e5: f4:fb:58:d7:55:77:5f:33:8c:91:74:3c:de:79:14: 21:dc:34:7f:42:3f:22:55:5b:20:e1:ac:74:d6:37: 82:71:a8:0a:5f:15:83:7c:89:17:19:2e:a2:e5:93: 93:2e:cd:6e:10:09:e4:19:bc:20:20:22:3a:b6:40: 73:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5A:26:0F:22:2E:F1:B7:49:F3:B7:3D:75:A4:29:8C:08:7A:C8:97 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.232.0/24 89.117.15.0/24 89.117.28.0/24 89.117.81.0/24 89.117.87.0/24 89.117.153.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:4a:4c:03:77:df:6d:30:98:c1:0c:81:a9:49:40:62:75:b6: 20:1e:df:41:e9:15:90:21:27:4e:2a:25:f0:a4:ad:89:c8:70: 15:40:b2:f7:24:71:75:ab:38:2c:fb:ec:a4:74:79:1d:27:fc: 69:a1:d0:6e:c0:c5:19:24:7b:90:ef:a3:4d:9b:ca:48:55:7f: 61:64:e9:1f:8e:0f:8e:a7:0f:13:af:47:ca:2c:31:23:51:52: d8:eb:48:59:6a:60:2d:3f:af:49:db:ba:b7:4f:22:55:11:f3: 62:4b:8c:ef:76:0d:0a:1b:9a:10:2e:20:81:9f:8e:a0:53:99: 98:af:81:e6:79:8d:32:6e:6c:af:b6:86:99:84:61:d9:1f:a2: 1b:51:bf:a8:7e:2c:5e:81:34:d2:06:48:df:c2:51:b8:9e:c1: b0:a6:bc:c4:27:34:7d:36:0b:4c:a2:cb:93:d5:c9:de:bd:df: 82:d5:d0:9f:4c:9d:34:d5:f2:de:69:40:84:e2:c1:49:3e:25: 69:c5:57:ed:8d:5b:b8:3e:5c:35:2f:4f:9d:32:55:b8:70:c8: 0f:45:9f:1b:73:b0:58:3f:b6:cf:9d:16:d7:29:52:0c:06:23: ae:3d:b1:9d:62:ef:00:9d:fb:3c:3e:a6:fc:00:ca:90:32:d2: d3:cd:c5:42 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUUgRKjQ7xWl+2IZQiqIZlMSMqKQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA4MjUxMjQ5NDVaFw0yNjA4MjQxMjU0NDVaMDMxMTAvBgNV BAMTKDhCNUEyNjBGMjIyRUYxQjc0OUYzQjczRDc1QTQyOThDMDg3QUM4OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDagGN07drWEceVoAe2jLHx2mdo 3lAGblwfS8ui1Oxzj7xySXE/1uefcVfednQMthbOgXnewv7h1zQJdlhdF6yHcX9f 02UMGigKBeCvqMShaV9vqwGEu1kofZbbX+VbJ3hpaWlriq6PPGPmYHmKeI199d+y l7m8Q0fHU6yFxbZ9poyRs18mHzrtj+Ctt4Sqafm4I3la4jAyh3JKlwP45wPbUNJ0 NJKG3hNNLVw/u8nl5CVlyER4Vg5b1AWiI3l6vjxF5fT7WNdVd18zjJF0PN55FCHc NH9CPyJVWyDhrHTWN4JxqApfFYN8iRcZLqLlk5MuzW4QCeQZvCAgIjq2QHOzAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUi1omDyIu8bdJ87c9daQpjAh6yJcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE0NjE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAViboAwQAWXUPAwQAWXUc AwQAWXVRAwQAWXVXAwQAWXWZMA0GCSqGSIb3DQEBCwUAA4IBAQCcSkwDd99tMJjB DIGpSUBidbYgHt9B6RWQISdOKiXwpK2JyHAVQLL3JHF1qzgs++ykdHkdJ/xpodBu wMUZJHuQ76NNm8pIVX9hZOkfjg+Opw8Tr0fKLDEjUVLY60hZamAtP69J27q3TyJV EfNiS4zvdg0KG5oQLiCBn46gU5mYr4HmeY0ybmyvtoaZhGHZH6IbUb+ofixegTTS BkjfwlG4nsGwprzEJzR9NgtMosuT1cnevd+C1dCfTJ001fLeaUCE4sFJPiVpxVft jVu4Plw1L0+dMlW4cMgPRZ8bc7BYP7bPnRbXKVIMBiOuPbGdYu8Anfs8Pqb8AMqQ MtLTzcVC -----END CERTIFICATE-----Generated at Sat Sep 6 08:09:48 2025 by rpki-client