$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: zUjg1QEluknUsMFU8OrrbAP3GC0gTZ/UyHZU7BptQ9k= Subject key identifier: 2F:C8:1E:C5:65:57:FA:A9:9A:09:F1:6D:9A:C4:32:75:E6:55:65:E3 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 4F099BBC5A5391E7CE3CEA474E06CDC12402E950 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa Signing time: Thu 16 Jan 2025 16:15:16 +0000 ROA not before: Thu 16 Jan 2025 16:10:16 +0000 ROA not after: Thu 15 Jan 2026 16:15:16 +0000 asID: 16509 IP address blocks: 86.38.232.0/24 maxlen: 24 89.117.15.0/24 maxlen: 24 89.117.28.0/24 maxlen: 24 89.117.81.0/24 maxlen: 24 89.117.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:09:9b:bc:5a:53:91:e7:ce:3c:ea:47:4e:06:cd:c1:24:02:e9:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 16 16:10:16 2025 GMT Not After : Jan 15 16:15:16 2026 GMT Subject: CN=2FC81EC56557FAA99A09F16D9AC43275E65565E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ec:b2:f0:b2:42:1a:72:e4:73:99:7c:89:31: c5:35:6a:2d:91:2d:aa:3b:00:22:fe:8b:e1:5c:98: fa:79:db:06:a0:22:88:82:07:f2:d9:05:88:b8:e4: 90:4c:5c:8d:1f:24:cf:53:f7:fa:14:61:38:88:6c: 59:3d:13:3c:73:b9:d5:5d:e0:65:9f:c9:c6:18:97: 2f:af:51:76:0b:6c:1b:6f:89:fc:b1:10:42:20:1f: d3:62:44:ac:ed:07:f7:41:b4:03:bc:18:4a:04:57: 96:66:14:0d:60:e6:d6:b7:7e:ab:f3:7a:e6:1f:93: ae:1b:25:63:62:dc:4e:55:49:d0:36:c7:1c:cc:d3: dc:6f:2f:a5:25:39:c7:f2:1d:b2:b2:9a:44:59:82: c6:7f:d9:c4:a5:26:7e:1c:40:2d:e9:f4:3c:67:df: f5:f7:c9:fb:23:df:a4:c5:72:2f:fe:1f:5a:49:6e: ce:8e:bc:11:01:86:87:67:b8:75:f7:60:8b:c1:b0: 2e:91:2b:82:7a:74:0a:02:ff:5e:fa:af:60:45:a2: a5:b3:b9:f4:31:eb:76:02:85:71:4b:05:07:2e:af: 81:e0:da:64:1b:cc:0f:d2:1f:9a:c1:af:2e:64:9f: 37:f4:b2:31:ee:75:69:85:7f:c7:22:11:88:85:c6: da:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C8:1E:C5:65:57:FA:A9:9A:09:F1:6D:9A:C4:32:75:E6:55:65:E3 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.232.0/24 89.117.15.0/24 89.117.28.0/24 89.117.81.0/24 89.117.153.0/24 Signature Algorithm: sha256WithRSAEncryption 83:88:7c:96:5f:82:cc:a7:ec:0d:9b:51:f3:68:25:ae:91:fd: a7:c8:61:99:45:f4:5d:d3:e0:64:fd:a6:22:01:ab:97:54:7f: aa:ea:33:0a:07:41:47:24:b6:fa:55:87:c6:53:94:2f:ff:50: 89:07:45:07:f4:04:f5:12:8e:8b:22:58:53:b8:d5:2a:aa:30: 30:76:bc:e5:82:0f:d8:29:20:7c:48:6f:59:7e:8d:e1:7c:ad: 3f:dd:ed:08:62:97:cf:2d:08:0b:31:9b:8b:c0:fb:17:98:0b: 8d:c6:da:2f:b6:ea:75:c5:a2:a8:76:00:13:8e:7f:55:c8:a7: d3:4b:07:68:4e:8f:2f:08:76:fb:0d:49:ed:9c:b2:8e:c5:38: 6a:0d:bb:96:08:30:71:7b:9f:f2:6f:0c:80:fd:8f:37:88:7d: 96:39:09:7d:60:c0:fa:cd:4f:38:9d:23:b9:97:b0:1a:1a:f9: 57:90:3b:ea:1e:d1:33:b0:ca:bc:6d:f5:9d:9c:79:15:81:9c: 51:c6:22:d4:b8:8e:ab:63:70:49:67:41:fc:7b:de:ac:8c:42: fc:ea:5b:c3:f6:e5:fc:1a:24:84:d6:81:ac:23:e4:11:6a:fc: b9:f2:58:d3:ca:db:15:72:71:39:91:56:11:08:7d:26:de:ea: b9:ad:16:0c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUTwmbvFpTkefOPOpHTgbNwSQC6VAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAxMTYxNjEwMTZaFw0yNjAxMTUxNjE1MTZaMDMxMTAvBgNV BAMTKDJGQzgxRUM1NjU1N0ZBQTk5QTA5RjE2RDlBQzQzMjc1RTY1NTY1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY7LLwskIacuRzmXyJMcU1ai2R Lao7ACL+i+FcmPp52wagIoiCB/LZBYi45JBMXI0fJM9T9/oUYTiIbFk9EzxzudVd 4GWfycYYly+vUXYLbBtvifyxEEIgH9NiRKztB/dBtAO8GEoEV5ZmFA1g5ta3fqvz euYfk64bJWNi3E5VSdA2xxzM09xvL6UlOcfyHbKymkRZgsZ/2cSlJn4cQC3p9Dxn 3/X3yfsj36TFci/+H1pJbs6OvBEBhodnuHX3YIvBsC6RK4J6dAoC/176r2BFoqWz ufQx63YChXFLBQcur4Hg2mQbzA/SH5rBry5knzf0sjHudWmFf8ciEYiFxtqfAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUL8gexWVX+qmaCfFtmsQydeZVZeMwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE2NTA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAViboAwQAWXUPAwQAWXUc AwQAWXVRAwQAWXWZMA0GCSqGSIb3DQEBCwUAA4IBAQCDiHyWX4LMp+wNm1HzaCWu kf2nyGGZRfRd0+Bk/aYiAauXVH+q6jMKB0FHJLb6VYfGU5Qv/1CJB0UH9AT1Eo6L IlhTuNUqqjAwdrzlgg/YKSB8SG9Zfo3hfK0/3e0IYpfPLQgLMZuLwPsXmAuNxtov tup1xaKodgATjn9VyKfTSwdoTo8vCHb7DUntnLKOxThqDbuWCDBxe5/ybwyA/Y83 iH2WOQl9YMD6zU84nSO5l7AaGvlXkDvqHtEzsMq8bfWdnHkVgZxRxiLUuI6rY3BJ Z0H8e96sjEL86lvD9uX8GiSE1oGsI+QRavy58ljTytsVcnE5kVYRCH0m3uq5rRYM -----END CERTIFICATE-----Generated at Fri Apr 4 20:19:04 2025 by rpki-client