$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS213929.roa File: AS213929.roa (raw, json) Hash identifier: tKsdomXoYc2w8HX9NEbRHZs1J9fw2iOuebYW6alrz8A= Subject key identifier: C8:67:32:E9:65:B5:AC:AF:FF:AA:46:8F:1D:6E:E4:41:22:67:6A:72 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 32482EFE85F356F6AD8EA050041BAB5C644CDEE1 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS213929.roa Signing time: Fri 18 Apr 2025 10:58:45 +0000 ROA not before: Fri 18 Apr 2025 10:53:45 +0000 ROA not after: Fri 17 Apr 2026 10:58:45 +0000 asID: 213929 IP address blocks: 89.117.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Apr 2025 23:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:48:2e:fe:85:f3:56:f6:ad:8e:a0:50:04:1b:ab:5c:64:4c:de:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 18 10:53:45 2025 GMT Not After : Apr 17 10:58:45 2026 GMT Subject: CN=C86732E965B5ACAFFFAA468F1D6EE44122676A72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:79:37:e8:c1:27:fd:d4:88:0b:bc:b7:e9:d8: 7a:75:ee:d7:73:b3:60:76:d7:4d:bd:7e:a4:88:89: fd:5a:a0:4a:ac:f7:75:f5:e9:ab:2e:90:b8:14:06: c8:c3:45:c9:d6:7e:61:de:b9:a7:e8:0c:06:b2:17: 26:f5:d9:d1:82:fb:32:67:4e:d5:fe:1d:15:d4:19: 41:24:65:bd:b0:8d:b5:64:bd:45:47:3d:a4:8e:d5: 30:82:99:a4:12:84:78:10:6f:98:cb:60:ef:20:34: 47:e5:70:62:93:94:73:41:05:e9:d0:3b:bd:ea:91: 60:82:83:e6:23:85:2d:5c:89:b1:b4:2c:1a:2f:a8: 3a:0c:a1:66:65:e3:e3:27:b5:de:88:1f:06:ae:2e: e7:de:bc:f7:7d:58:3e:69:1f:b2:1c:0c:78:0f:4f: 8d:6a:11:de:fb:85:fd:66:d3:4e:90:71:be:93:ee: 18:b0:43:b2:1c:6f:5d:17:8d:f8:4f:cd:32:6c:4c: 7f:d9:9e:86:51:3d:dc:13:73:9c:99:88:60:05:3a: 71:4c:e1:2b:4c:4e:03:16:08:92:b7:68:47:c4:44: a1:53:39:74:ce:69:b1:15:b4:78:12:55:13:d9:f0: fa:ea:07:12:d3:c8:5a:70:0e:b7:e8:e6:df:99:c6: 85:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:67:32:E9:65:B5:AC:AF:FF:AA:46:8F:1D:6E:E4:41:22:67:6A:72 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS213929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.87.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:35:17:af:ec:6d:22:5d:4f:e1:d9:6f:4b:0a:3c:8b:7b:9c: 4b:43:5c:18:02:ec:3c:ed:11:8a:2d:87:af:e2:e7:1f:d8:b8: 18:fb:14:0d:25:70:29:81:18:10:3a:4a:06:8c:ce:e9:77:d1: ca:c5:25:b6:5f:ed:23:c5:61:b8:c3:b8:17:77:2f:5b:d0:a8: 00:9b:13:9c:72:0b:3e:37:a2:4c:96:85:7b:5e:bd:60:0f:ee: 28:a5:da:98:9a:33:19:d8:dc:91:09:6b:fc:48:b0:9e:bf:f9: 09:e5:3c:a2:88:c1:59:d2:06:ee:26:65:23:5b:3d:a1:ea:5f: e4:08:b2:d9:84:fc:a9:bd:b2:81:3c:e9:1a:b6:88:93:30:59: d7:ee:5b:89:a7:99:c3:3e:fc:0c:14:51:0d:04:3e:22:a8:df: d6:b3:db:9f:6d:55:5b:ec:0f:cf:32:14:d2:4f:4c:71:3f:3d: b9:b7:84:92:b8:53:76:12:83:75:89:36:d1:2f:f6:7e:8f:9d: 2e:39:0a:d2:ea:0b:8b:0a:3d:a0:25:9b:2b:8a:4b:ff:6f:d1: 35:c5:53:48:c1:bc:de:77:a8:3d:c0:5a:1c:16:8c:80:04:ba: c6:d9:5c:da:b4:94:d4:ec:1d:72:8e:2a:0b:78:a9:39:d8:e4: 7e:32:05:64 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUMkgu/oXzVvatjqBQBBurXGRM3uEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA0MTgxMDUzNDVaFw0yNjA0MTcxMDU4NDVaMDMxMTAvBgNV BAMTKEM4NjczMkU5NjVCNUFDQUZGRkFBNDY4RjFENkVFNDQxMjI2NzZBNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUeTfowSf91IgLvLfp2Hp17tdz s2B21029fqSIif1aoEqs93X16asukLgUBsjDRcnWfmHeuafoDAayFyb12dGC+zJn TtX+HRXUGUEkZb2wjbVkvUVHPaSO1TCCmaQShHgQb5jLYO8gNEflcGKTlHNBBenQ O73qkWCCg+YjhS1cibG0LBovqDoMoWZl4+Mntd6IHwauLufevPd9WD5pH7IcDHgP T41qEd77hf1m006Qcb6T7hiwQ7Icb10XjfhPzTJsTH/ZnoZRPdwTc5yZiGAFOnFM 4StMTgMWCJK3aEfERKFTOXTOabEVtHgSVRPZ8PrqBxLTyFpwDrfo5t+ZxoVfAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUyGcy6WW1rK//qkaPHW7kQSJnanIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMzkyOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl1VzANBgkqhkiG9w0B AQsFAAOCAQEAHDUXr+xtIl1P4dlvSwo8i3ucS0NcGALsPO0Rii2Hr+LnH9i4GPsU DSVwKYEYEDpKBozO6XfRysUltl/tI8VhuMO4F3cvW9CoAJsTnHILPjeiTJaFe169 YA/uKKXamJozGdjckQlr/Eiwnr/5CeU8oojBWdIG7iZlI1s9oepf5Aiy2YT8qb2y gTzpGraIkzBZ1+5biaeZwz78DBRRDQQ+Iqjf1rPbn21VW+wPzzIU0k9McT89ubeE krhTdhKDdYk20S/2fo+dLjkK0uoLiwo9oCWbK4pL/2/RNcVTSMG83neoPcBaHBaM gAS6xtlc2rSU1Owdco4qC3ipOdjkfjIFZA== -----END CERTIFICATE-----Generated at Mon Apr 21 10:56:03 2025 by rpki-client