$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS200017.roa File: AS200017.roa (raw, json) Hash identifier: CYPUXm5Tjc/4BOJD0SAvYa/YMYFJ/EvM0zytM7NUHXw= Subject key identifier: 4D:F6:C1:50:D9:E2:63:84:7B:A9:99:D5:18:2C:A9:20:CC:0B:82:AF Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 0E19C5B5D4B4BB50CC1DCDE21CC2294A82E746ED Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS200017.roa Signing time: Fri 28 Mar 2025 08:53:59 +0000 ROA not before: Fri 28 Mar 2025 08:48:59 +0000 ROA not after: Fri 27 Mar 2026 08:53:59 +0000 asID: 200017 IP address blocks: 86.38.220.0/24 maxlen: 24 89.116.92.0/24 maxlen: 24 89.117.115.0/24 maxlen: 24 89.117.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:19:c5:b5:d4:b4:bb:50:cc:1d:cd:e2:1c:c2:29:4a:82:e7:46:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 28 08:48:59 2025 GMT Not After : Mar 27 08:53:59 2026 GMT Subject: CN=4DF6C150D9E263847BA999D5182CA920CC0B82AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:98:53:11:c3:f2:5f:9d:bd:7e:fd:6b:1b:67: 0a:62:62:fa:22:e8:3f:8f:50:80:d6:7e:08:ee:a8: 71:0d:31:0a:fd:6f:86:3c:d3:9a:a4:1e:c3:32:f7: e3:90:e1:54:91:56:8e:1d:77:4f:41:13:1b:08:40: 4a:0a:e6:0d:71:38:76:46:f5:da:c4:6a:85:20:9c: 74:c7:ff:9c:9e:52:99:53:1f:bb:e6:a3:c7:8a:66: ba:de:0f:a3:33:d3:b8:7e:2f:8b:4a:6c:a7:ba:4c: da:7f:89:46:5d:d1:bf:c4:df:a9:0f:e5:d3:cf:68: ea:31:9e:cd:90:42:40:3a:a3:0a:b2:4a:37:fc:eb: e7:87:d3:84:08:4d:59:84:5b:24:6e:62:94:e9:b7: 6e:af:af:b0:41:df:86:89:62:93:63:69:a4:e8:74: 7c:95:0f:01:bc:bc:b1:0f:ef:bc:0e:56:df:e0:dc: f0:c7:1b:7c:ac:b9:cb:1a:92:68:1b:69:c3:5c:6a: cb:42:08:d7:61:32:60:35:87:7b:57:d1:d3:6b:51: a5:fc:e7:ab:59:ef:6d:42:0d:22:f1:f5:74:88:65: b3:32:fc:ba:2c:cc:80:df:80:32:c7:bc:20:69:e4: d7:e3:d8:c0:50:dd:c3:c4:b3:85:3c:7b:62:d2:d8: f8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F6:C1:50:D9:E2:63:84:7B:A9:99:D5:18:2C:A9:20:CC:0B:82:AF X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS200017.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.220.0/24 89.116.92.0/24 89.117.115.0/24 89.117.164.0/24 Signature Algorithm: sha256WithRSAEncryption 65:d6:3a:2b:a0:42:c2:f5:7f:8c:f9:6c:69:b5:9a:fd:54:50: 99:04:09:9e:dc:c6:30:d0:c1:87:e2:31:09:8d:9c:2d:94:e8: ac:5a:56:3c:2b:8f:65:e2:d5:f0:fa:20:f4:8a:26:68:5b:ce: e1:ec:f8:54:e2:a0:bf:99:59:a0:90:cb:9a:9a:6a:50:1d:9e: 5a:03:f0:a6:07:fb:da:69:cb:46:5d:f5:be:0a:f0:ae:5a:9e: 48:ab:8a:d8:a1:df:ae:33:ff:c7:c6:58:c7:93:80:1e:d5:40: 1d:8b:76:5a:4b:b8:1c:39:38:71:09:a5:29:91:27:a6:ec:e0: e7:9e:81:c7:dc:1c:5d:56:d2:0c:60:3d:d4:6c:56:43:d3:fc: 5e:ff:14:b2:3c:54:c7:c5:06:19:3f:fa:6a:c3:ce:c7:bb:f3: 64:ff:83:fb:36:14:8b:93:e4:67:b9:de:6f:26:e4:7d:38:1c: c0:f8:a8:6c:76:a3:31:8c:db:5f:9b:41:75:8d:5b:eb:a2:aa: 0b:f2:f6:6b:5e:82:85:3b:d0:34:86:9e:46:45:94:8d:37:16: 08:76:12:8e:97:50:c0:ff:93:1c:af:3b:bb:d6:41:e6:fd:b3: 69:28:db:28:87:29:8d:bf:62:7f:45:f4:d9:c1:89:8d:93:13: 7b:7e:4a:8a -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUDhnFtdS0u1DMHc3iHMIpSoLnRu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAzMjgwODQ4NTlaFw0yNjAzMjcwODUzNTlaMDMxMTAvBgNV BAMTKDRERjZDMTUwRDlFMjYzODQ3QkE5OTlENTE4MkNBOTIwQ0MwQjgyQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRmFMRw/Jfnb1+/WsbZwpiYvoi 6D+PUIDWfgjuqHENMQr9b4Y805qkHsMy9+OQ4VSRVo4dd09BExsIQEoK5g1xOHZG 9drEaoUgnHTH/5yeUplTH7vmo8eKZrreD6Mz07h+L4tKbKe6TNp/iUZd0b/E36kP 5dPPaOoxns2QQkA6owqySjf86+eH04QITVmEWyRuYpTpt26vr7BB34aJYpNjaaTo dHyVDwG8vLEP77wOVt/g3PDHG3ysucsakmgbacNcastCCNdhMmA1h3tX0dNrUaX8 56tZ721CDSLx9XSIZbMy/LoszIDfgDLHvCBp5Nfj2MBQ3cPEs4U8e2LS2PhlAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUTfbBUNniY4R7qZnVGCypIMwLgq8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwMDAxNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFYm3AMEAFl0XAMEAFl1 cwMEAFl1pDANBgkqhkiG9w0BAQsFAAOCAQEAZdY6K6BCwvV/jPlsabWa/VRQmQQJ ntzGMNDBh+IxCY2cLZTorFpWPCuPZeLV8Pog9IomaFvO4ez4VOKgv5lZoJDLmppq UB2eWgPwpgf72mnLRl31vgrwrlqeSKuK2KHfrjP/x8ZYx5OAHtVAHYt2Wku4HDk4 cQmlKZEnpuzg556Bx9wcXVbSDGA91GxWQ9P8Xv8UsjxUx8UGGT/6asPOx7vzZP+D +zYUi5PkZ7nebybkfTgcwPiobHajMYzbX5tBdY1b66KqC/L2a16ChTvQNIaeRkWU jTcWCHYSjpdQwP+THK87u9ZB5v2zaSjbKIcpjb9if0X02cGJjZMTe35Kig== -----END CERTIFICATE-----Generated at Fri Apr 4 20:23:16 2025 by rpki-client