$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS197685.roa File: AS197685.roa (raw, json) Hash identifier: p8b3GZg1TOPd7OPLiqomm+r9dUetSZJUQTRZdUZ2zt0= Subject key identifier: 4A:46:E5:E0:49:16:C5:04:AD:C2:C3:B3:1B:11:8A:AB:66:57:3F:2D Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 2B842B9342B8C63D9FC9AE1EFD24D7BE5CC8E3AB Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS197685.roa Signing time: Mon 26 May 2025 10:54:08 +0000 ROA not before: Mon 26 May 2025 10:49:08 +0000 ROA not after: Mon 25 May 2026 10:54:08 +0000 asID: 197685 IP address blocks: 89.116.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 13:52:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:84:2b:93:42:b8:c6:3d:9f:c9:ae:1e:fd:24:d7:be:5c:c8:e3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 26 10:49:08 2025 GMT Not After : May 25 10:54:08 2026 GMT Subject: CN=4A46E5E04916C504ADC2C3B31B118AAB66573F2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:69:17:3b:59:1a:31:90:9d:91:f1:d3:ec:54: 8e:e8:ec:7a:cb:46:25:2f:c7:cf:55:cf:cf:41:10: bd:e2:c5:f7:83:35:45:bd:8e:49:85:6e:75:42:96: e0:4a:4b:b3:ad:7d:28:f0:3a:db:01:c0:2c:cc:3e: 36:5b:a9:1b:83:a2:1d:60:d2:90:57:79:97:a5:96: 31:c9:34:7d:c6:7c:b5:24:de:a5:8b:4b:77:21:59: fd:30:d4:6a:9e:32:91:8c:27:77:93:00:e6:fd:ad: c1:5b:13:15:f4:2b:27:6b:d1:1e:ff:79:3c:bb:88: 03:7f:00:ce:92:86:5e:7b:29:9a:b6:ab:09:68:42: 47:b7:48:5b:2f:59:0d:8d:0e:b7:25:c5:37:cd:a2: 81:e1:c1:d1:99:1c:67:7d:1a:2c:68:a3:1d:e7:fb: 9e:b8:33:1a:5d:5f:77:17:b2:4f:f0:37:74:0a:92: 64:01:79:a0:a2:ad:b1:49:b0:49:e1:b9:10:49:90: aa:c9:81:28:0d:91:6e:37:de:71:1e:29:b7:4a:d1: 09:eb:ce:ee:2c:b5:c3:a9:e5:41:27:e3:8d:ea:16: d2:50:66:c6:8c:48:9b:66:89:a4:e0:d4:c9:c2:02: c9:0f:21:19:b2:b2:8e:09:f5:38:58:a9:32:89:2c: fa:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:46:E5:E0:49:16:C5:04:AD:C2:C3:B3:1B:11:8A:AB:66:57:3F:2D X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS197685.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.107.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:4d:42:8c:4a:5c:19:38:d4:3f:2d:f9:d7:53:77:0e:40:c6: ec:ab:c1:ed:fd:29:db:ce:c5:42:0b:09:02:b5:79:ac:75:d1: d8:a9:f2:69:06:58:0a:20:8d:fa:35:4b:28:d8:4e:81:84:d9: a2:1e:c3:8a:f8:82:a6:75:ca:e8:f0:19:70:53:ea:7c:fb:d8: cf:24:49:74:b2:d6:6c:5c:51:0f:02:4b:fa:fe:bf:f3:01:0f: 08:8a:bc:5b:75:1b:56:55:b9:71:af:c4:77:f6:97:80:aa:89: 77:49:ca:22:84:30:2d:26:f7:a7:29:e7:ea:f0:2c:48:16:51: b2:ab:71:fb:c7:5b:72:a8:dd:a8:7c:85:3c:d3:3a:05:cb:5e: fa:70:cb:c2:6d:00:37:25:91:78:e5:0a:92:cc:71:98:47:34: 7a:18:f9:ce:99:e8:90:98:1a:ac:d9:12:b9:c2:3f:59:77:ae: 21:63:bc:c7:c1:3b:d1:3e:9b:16:db:31:73:77:cb:45:1e:50: ae:69:5a:a6:62:e6:29:b3:0b:5d:53:a5:21:71:25:c2:30:08: 1b:94:54:f6:4d:4a:aa:86:96:45:b7:b8:59:b7:c4:b5:36:d1: a8:8d:3b:49:18:8f:24:95:2b:c6:e3:d6:2b:9a:fe:24:10:7d: 35:d5:eb:e6 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUK4Qrk0K4xj2fya4e/STXvlzI46swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA1MjYxMDQ5MDhaFw0yNjA1MjUxMDU0MDhaMDMxMTAvBgNV BAMTKDRBNDZFNUUwNDkxNkM1MDRBREMyQzNCMzFCMTE4QUFCNjY1NzNGMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCaRc7WRoxkJ2R8dPsVI7o7HrL RiUvx89Vz89BEL3ixfeDNUW9jkmFbnVCluBKS7OtfSjwOtsBwCzMPjZbqRuDoh1g 0pBXeZelljHJNH3GfLUk3qWLS3chWf0w1GqeMpGMJ3eTAOb9rcFbExX0Kydr0R7/ eTy7iAN/AM6Shl57KZq2qwloQke3SFsvWQ2NDrclxTfNooHhwdGZHGd9Gixoox3n +564MxpdX3cXsk/wN3QKkmQBeaCirbFJsEnhuRBJkKrJgSgNkW433nEeKbdK0Qnr zu4stcOp5UEn443qFtJQZsaMSJtmiaTg1MnCAskPIRmyso4J9ThYqTKJLPqdAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUSkbl4EkWxQStwsOzGxGKq2ZXPy0wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE5NzY4NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl0azANBgkqhkiG9w0B AQsFAAOCAQEAnk1CjEpcGTjUPy3511N3DkDG7KvB7f0p287FQgsJArV5rHXR2Kny aQZYCiCN+jVLKNhOgYTZoh7DiviCpnXK6PAZcFPqfPvYzyRJdLLWbFxRDwJL+v6/ 8wEPCIq8W3UbVlW5ca/Ed/aXgKqJd0nKIoQwLSb3pynn6vAsSBZRsqtx+8dbcqjd qHyFPNM6Bcte+nDLwm0ANyWReOUKksxxmEc0ehj5zpnokJgarNkSucI/WXeuIWO8 x8E70T6bFtsxc3fLRR5QrmlapmLmKbMLXVOlIXElwjAIG5RU9k1KqoaWRbe4WbfE tTbRqI07SRiPJJUrxuPWK5r+JBB9NdXr5g== -----END CERTIFICATE-----Generated at Sat Jun 7 06:51:59 2025 by rpki-client