$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa File: AS209043.roa (raw, json) Hash identifier: 4okeAGkeaAxhOvoFsowOX9x0GNPR3En3rrFSbUcjyS4= Subject key identifier: 94:43:F3:B3:2E:92:05:BC:26:F3:88:BE:D6:86:40:2B:5C:B1:E7:7E Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6A8B2141DF96D19F3CE4B27F121FF30F5BDCA4D3 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa Signing time: Wed 13 May 2026 15:47:13 +0000 ROA not before: Wed 13 May 2026 15:42:13 +0000 ROA not after: Wed 12 May 2027 15:47:13 +0000 asID: 209043 IP address blocks: 89.116.92.0/24 maxlen: 24 89.116.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Jun 2026 06:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:8b:21:41:df:96:d1:9f:3c:e4:b2:7f:12:1f:f3:0f:5b:dc:a4:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 13 15:42:13 2026 GMT Not After : May 12 15:47:13 2027 GMT Subject: CN=9443F3B32E9205BC26F388BED686402B5CB1E77E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:37:e6:bc:d2:92:f5:21:13:c2:8b:a8:c8: 79:88:1a:8b:2d:95:22:ae:ff:fc:1e:9f:79:72:91: f0:a1:7f:a7:54:74:8d:b0:a4:49:e0:c7:ac:67:12: 5f:81:e5:a9:67:b2:80:fe:14:07:b5:80:12:41:8c: ff:6c:ed:b1:66:85:ac:46:8d:26:46:d3:76:22:af: 92:9a:16:34:fc:9f:c4:66:bd:69:7b:0a:2f:76:61: c4:f1:2d:9c:50:04:af:93:4a:54:c3:2a:97:95:66: b2:0b:8b:ec:83:4b:d2:4f:ef:93:f3:c0:3b:12:64: 84:bb:16:7c:62:2d:20:68:bd:97:ef:d8:12:9b:8a: db:18:7d:e5:d0:97:cf:57:0f:d3:1d:45:ab:6b:6e: 82:7b:29:2a:ab:d6:33:07:7c:e6:e6:23:78:88:63: 18:c6:73:d1:a0:62:6e:5e:37:8e:f0:52:b0:6e:3c: bc:69:d9:08:38:5b:1e:81:4e:f2:9b:99:5b:88:5a: 0f:c4:18:70:03:ce:45:0b:4a:b8:ec:d8:88:0b:08: 92:7c:fb:25:7e:d3:6f:de:3e:7d:29:79:85:21:95: a6:11:29:4f:94:aa:7b:1c:9a:8c:6e:2d:e7:9b:10: 81:14:5a:ee:28:8e:1c:de:a0:22:38:d3:2e:42:98: 18:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:43:F3:B3:2E:92:05:BC:26:F3:88:BE:D6:86:40:2B:5C:B1:E7:7E X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.92.0/24 89.116.137.0/24 Signature Algorithm: sha256WithRSAEncryption 98:09:6f:78:ab:ad:25:24:3a:e3:1b:de:5d:d5:c3:41:5b:ca: 86:81:ad:ab:5d:af:9e:47:8f:b6:4e:ff:8f:22:30:16:46:ad: 4e:cd:5e:f4:d8:30:f0:ca:df:26:85:bc:77:08:3e:33:b6:08: 2a:01:82:42:14:e2:cc:20:4a:99:5d:83:9e:50:a9:2d:1c:5b: 6f:da:40:97:a6:bb:ef:af:b4:66:a4:b1:9d:79:7a:86:22:74: 76:e4:9b:1a:da:8c:36:29:9a:7b:43:92:55:8a:23:0c:b2:4e: 57:6d:aa:58:6f:68:a2:fe:cb:84:46:5b:eb:be:86:6a:c4:c7: d3:db:0a:19:0e:fb:a4:48:ad:25:71:d9:62:b2:f4:dc:d6:09: 27:5f:15:fb:f5:5f:46:ec:12:e4:bc:b9:df:3a:e0:91:02:61: fc:e3:ef:f1:b7:5f:1a:0a:d5:bf:dc:47:b4:83:f1:15:73:d9: 87:0a:55:7a:65:72:7a:28:b4:88:68:c2:a9:4c:0b:68:47:99: 0c:44:32:c7:34:53:80:b7:84:df:34:1f:65:a8:a9:4c:72:ea: 3c:48:eb:fc:fd:cb:5c:e6:b1:8a:41:38:2f:1a:ea:81:bb:2b: 2c:29:93:16:de:f0:93:d4:c6:80:79:90:fc:72:ec:69:3b:13: 62:bf:17:53 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUaoshQd+W0Z885LJ/Eh/zD1vcpNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA1MTMxNTQyMTNaFw0yNzA1MTIxNTQ3MTNaMDMxMTAvBgNV BAMTKDk0NDNGM0IzMkU5MjA1QkMyNkYzODhCRUQ2ODY0MDJCNUNCMUU3N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuozfmvNKS9SETwouoyHmIGost lSKu//wen3lykfChf6dUdI2wpEngx6xnEl+B5alnsoD+FAe1gBJBjP9s7bFmhaxG jSZG03Yir5KaFjT8n8RmvWl7Ci92YcTxLZxQBK+TSlTDKpeVZrILi+yDS9JP75Pz wDsSZIS7FnxiLSBovZfv2BKbitsYfeXQl89XD9MdRatrboJ7KSqr1jMHfObmI3iI YxjGc9GgYm5eN47wUrBuPLxp2Qg4Wx6BTvKbmVuIWg/EGHADzkULSrjs2IgLCJJ8 +yV+02/ePn0peYUhlaYRKU+UqnscmoxuLeebEIEUWu4ojhzeoCI40y5CmBgpAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUlEPzsy6SBbwm84i+1oZAK1yx534wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTA0My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFl0XAMEAFl0iTANBgkq hkiG9w0BAQsFAAOCAQEAmAlveKutJSQ64xveXdXDQVvKhoGtq12vnkePtk7/jyIw FkatTs1e9Ngw8MrfJoW8dwg+M7YIKgGCQhTizCBKmV2DnlCpLRxbb9pAl6a776+0 ZqSxnXl6hiJ0duSbGtqMNimae0OSVYojDLJOV22qWG9oov7LhEZb676GasTH09sK GQ77pEitJXHZYrL03NYJJ18V+/VfRuwS5Ly53zrgkQJh/OPv8bdfGgrVv9xHtIPx FXPZhwpVemVyeii0iGjCqUwLaEeZDEQyxzRTgLeE3zQfZaipTHLqPEjr/P3LXOax ikE4LxrqgbsrLCmTFt7wk9TGgHmQ/HLsaTsTYr8XUw== -----END CERTIFICATE-----Generated at Thu Jun 4 11:06:34 2026 by rpki-client