$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: +/t35oGKitOHIFnkktECvn94o9wIUmeZAs4ETrAUWFA= Subject key identifier: F6:11:97:F2:AC:2D:58:64:0B:AE:EE:F7:F4:F1:7C:FB:C4:5F:3D:50 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3184DF1A7776E810F87FBD1AD222A61AF809664A Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa Signing time: Thu 14 May 2026 10:59:16 +0000 ROA not before: Thu 14 May 2026 10:54:16 +0000 ROA not after: Thu 13 May 2027 10:59:16 +0000 asID: 16509 IP address blocks: 89.116.123.0/24 maxlen: 24 89.117.15.0/24 maxlen: 24 89.117.28.0/24 maxlen: 24 89.117.87.0/24 maxlen: 24 89.117.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:84:df:1a:77:76:e8:10:f8:7f:bd:1a:d2:22:a6:1a:f8:09:66:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 14 10:54:16 2026 GMT Not After : May 13 10:59:16 2027 GMT Subject: CN=F61197F2AC2D58640BAEEEF7F4F17CFBC45F3D50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:10:02:40:a3:74:e8:67:ab:02:6a:ba:b7:91: 16:f7:16:7a:50:82:42:51:58:b4:b9:84:f5:d0:48: 28:f6:db:eb:65:dd:a1:08:d0:af:a2:6b:f6:4a:6e: 73:3f:9a:0e:eb:4c:5a:81:42:e0:ae:52:24:55:79: 7c:c6:8f:39:9e:44:8d:ac:6f:d6:43:19:18:63:40: 75:58:43:29:6d:83:38:dd:46:61:ee:95:c5:86:f0: 7d:f6:74:17:e7:db:e8:24:bb:48:b2:cc:73:bd:48: 8e:dc:bd:39:36:4a:a3:36:b7:9b:4e:cd:b5:14:1d: 03:51:bc:70:69:c4:bb:08:26:a7:99:61:f6:fa:d8: da:08:28:43:98:c5:53:89:2e:12:c0:fe:24:23:63: 89:cc:a5:bf:01:bd:69:7a:bc:6e:d5:10:f2:eb:d5: f2:b6:a8:fe:7b:ef:db:1d:f1:24:e5:7a:44:42:d8: 35:b3:72:c3:93:68:f4:b2:1b:0d:9c:7f:d2:ca:84: 8d:c8:73:b8:6f:ea:88:00:30:6b:30:f2:f0:14:2e: f8:05:df:f2:3a:07:5b:f2:9d:b7:f1:1a:05:d4:3a: 34:d7:d6:cc:84:22:a2:7a:c2:26:f2:ed:2b:45:61: f7:f6:60:3e:a4:6b:a7:7b:3c:a5:03:59:e4:e8:5a: 5a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:11:97:F2:AC:2D:58:64:0B:AE:EE:F7:F4:F1:7C:FB:C4:5F:3D:50 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.123.0/24 89.117.15.0/24 89.117.28.0/24 89.117.87.0/24 89.117.153.0/24 Signature Algorithm: sha256WithRSAEncryption 93:1b:c2:40:49:76:9b:6d:32:86:8e:63:b2:d0:ba:fa:aa:0b: a6:54:bd:a5:d4:db:16:34:1c:aa:9f:58:87:0a:0a:72:a7:d3: 2c:8f:b9:31:4b:da:46:4c:d5:50:c2:60:ac:ca:83:11:92:3f: 68:8c:95:84:9b:41:2b:90:ac:1a:f2:36:ab:72:44:d7:26:c7: 8f:26:02:55:4a:8f:fb:ee:95:ec:83:8f:72:04:da:6a:6d:d1: 4b:44:47:d3:88:b1:84:d2:b4:e7:38:e1:66:09:12:e9:2e:14: 22:4b:4f:f5:e2:9a:0e:ff:bc:c4:ec:80:51:62:96:02:cc:38: b4:03:14:da:5b:26:a4:4b:a1:9b:32:95:60:45:76:aa:d4:ac: 3f:a3:c1:e0:a8:2a:b4:ad:0e:1c:48:8b:3f:05:5e:41:1b:42: a9:2f:e3:fd:be:90:ec:2a:ae:81:2e:ed:68:36:45:fe:c6:3d: b8:e3:5a:ec:ff:af:1f:69:dc:4f:ed:94:33:77:ff:b2:dd:6d: 5a:39:e2:b1:bf:af:1f:8c:d5:2a:b1:f6:b7:7f:b3:58:3c:45: ad:c4:86:92:1b:83:f8:db:12:09:18:39:16:eb:c4:8d:14:dd: c4:26:9c:2d:a1:e8:9c:56:41:d3:40:b7:64:13:e9:89:4d:da: 42:a8:46:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUMYTfGnd26BD4f70a0iKmGvgJZkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA1MTQxMDU0MTZaFw0yNzA1MTMxMDU5MTZaMDMxMTAvBgNV BAMTKEY2MTE5N0YyQUMyRDU4NjQwQkFFRUVGN0Y0RjE3Q0ZCQzQ1RjNENTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7EAJAo3ToZ6sCarq3kRb3FnpQ gkJRWLS5hPXQSCj22+tl3aEI0K+ia/ZKbnM/mg7rTFqBQuCuUiRVeXzGjzmeRI2s b9ZDGRhjQHVYQyltgzjdRmHulcWG8H32dBfn2+gku0iyzHO9SI7cvTk2SqM2t5tO zbUUHQNRvHBpxLsIJqeZYfb62NoIKEOYxVOJLhLA/iQjY4nMpb8BvWl6vG7VEPLr 1fK2qP5779sd8STlekRC2DWzcsOTaPSyGw2cf9LKhI3Ic7hv6ogAMGsw8vAULvgF 3/I6B1vynbfxGgXUOjTX1syEIqJ6wiby7StFYff2YD6ka6d7PKUDWeToWlo3AgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU9hGX8qwtWGQLru739PF8+8RfPVAwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE2NTA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAWXR7AwQAWXUPAwQAWXUc AwQAWXVXAwQAWXWZMA0GCSqGSIb3DQEBCwUAA4IBAQCTG8JASXabbTKGjmOy0Lr6 qgumVL2l1NsWNByqn1iHCgpyp9Msj7kxS9pGTNVQwmCsyoMRkj9ojJWEm0ErkKwa 8jarckTXJsePJgJVSo/77pXsg49yBNpqbdFLREfTiLGE0rTnOOFmCRLpLhQiS0/1 4poO/7zE7IBRYpYCzDi0AxTaWyakS6GbMpVgRXaq1Kw/o8HgqCq0rQ4cSIs/BV5B G0KpL+P9vpDsKq6BLu1oNkX+xj2441rs/68fadxP7ZQzd/+y3W1aOeKxv68fjNUq sfa3f7NYPEWtxIaSG4P42xIJGDkW68SNFN3EJpwtoeicVkHTQLdkE+mJTdpCqEYp -----END CERTIFICATE-----Generated at Sat Jun 6 02:29:31 2026 by rpki-client