$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: 5kgblI95i8VU/pNeOu29eBe7d6LXn7dvTQAjrDYMxpE= Subject key identifier: CD:6D:BB:D4:34:8E:87:A3:25:12:90:EF:33:B5:E1:DD:E0:79:E5:F8 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 04B76CCB13DD5E9982FB04DD2579862CFBBE5699 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS214025.roa Signing time: Tue 30 Sep 2025 08:41:53 +0000 ROA not before: Tue 30 Sep 2025 08:36:53 +0000 ROA not after: Tue 29 Sep 2026 08:41:53 +0000 asID: 214025 IP address blocks: 86.38.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 00:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:b7:6c:cb:13:dd:5e:99:82:fb:04:dd:25:79:86:2c:fb:be:56:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 30 08:36:53 2025 GMT Not After : Sep 29 08:41:53 2026 GMT Subject: CN=CD6DBBD4348E87A3251290EF33B5E1DDE079E5F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:13:13:de:69:94:f2:3e:f3:48:6f:f0:e5:ee: 2d:04:ab:4d:f9:5d:13:b7:56:1a:2f:5b:1d:cf:67: fe:2a:5c:22:3f:50:73:10:9c:d2:98:aa:b4:f9:03: 0f:d7:da:1a:a9:19:8a:aa:f3:77:97:06:57:f0:c4: 37:d0:31:72:9f:52:22:3a:c4:08:65:73:20:12:e4: d0:44:0b:63:85:c0:00:93:f5:0a:7c:6a:48:66:c6: 12:dc:f6:27:f6:a4:8e:5d:58:a3:ac:10:a2:50:64: 51:c4:ca:fc:13:fc:a4:52:76:32:99:ac:00:54:16: 5f:f6:a8:60:00:9c:21:2c:4f:1e:5e:5b:fa:78:82: f4:d6:a1:23:39:b8:08:86:12:50:91:d7:dc:8a:3f: d0:6a:39:a0:4c:97:9d:c5:e2:7a:01:ee:30:5e:05: 0f:2e:2f:f4:57:6f:ff:a3:80:f0:4b:94:ef:f4:57: fb:38:a9:e8:86:20:94:f0:a7:5a:be:75:d8:43:c1: d1:2a:ee:ba:20:14:49:d3:f0:64:64:6f:d8:f4:6f: 2d:72:47:4c:cd:14:29:ee:99:78:a5:3e:ff:d4:25: 35:6b:ff:87:9a:27:09:d5:ee:de:95:90:8b:8d:0f: 40:25:26:e8:0c:0d:8b:43:f0:ff:0e:41:ba:be:bc: 11:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6D:BB:D4:34:8E:87:A3:25:12:90:EF:33:B5:E1:DD:E0:79:E5:F8 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.187.0/24 Signature Algorithm: sha256WithRSAEncryption 60:61:71:e0:91:ec:34:f0:9d:6c:d3:6c:e8:db:eb:87:fd:67: c6:18:5e:77:4f:a3:bd:35:72:fc:3a:f4:e0:82:58:38:76:07: cd:dd:c8:87:79:f4:30:88:39:96:84:8f:3d:b4:09:37:c8:d4: c1:ea:84:b0:26:1e:26:56:03:90:e3:0b:5b:dd:75:10:6f:93: a2:27:bc:02:61:6e:e1:1f:fa:c6:7f:87:4f:ac:ac:90:35:4d: 4b:cd:3c:16:6c:3e:8d:ae:11:27:da:22:81:c4:ff:57:c2:f4: 7c:cd:0e:20:5c:47:07:f9:e5:5b:a0:28:16:28:c6:cc:84:4d: 49:c4:d7:b1:0d:21:81:4a:c0:f8:05:57:2d:5e:10:97:36:18: e7:a0:d8:1d:dd:56:d0:4e:52:34:06:ac:4e:94:7f:5e:fe:0f: fe:41:4a:ad:e3:59:d8:a8:a5:3c:ea:7d:c0:9f:7d:3e:dd:a4: 68:5c:d9:0c:aa:4d:18:00:8c:fb:ee:a4:a2:ba:fd:e2:c6:3f: f6:e7:cb:a1:09:1e:f8:1e:19:35:8a:c5:32:8d:0d:7c:91:dd: 60:e8:5e:6e:9d:7a:cf:23:98:ee:0e:0e:fb:36:0f:e2:d2:77: 99:a5:f1:0b:3c:c4:ef:f1:7f:fb:50:58:62:a8:3a:ef:c2:91: 90:9f:71:12 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUBLdsyxPdXpmC+wTdJXmGLPu+VpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA5MzAwODM2NTNaFw0yNjA5MjkwODQxNTNaMDMxMTAvBgNV BAMTKENENkRCQkQ0MzQ4RTg3QTMyNTEyOTBFRjMzQjVFMURERTA3OUU1RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkExPeaZTyPvNIb/Dl7i0Eq035 XRO3VhovWx3PZ/4qXCI/UHMQnNKYqrT5Aw/X2hqpGYqq83eXBlfwxDfQMXKfUiI6 xAhlcyAS5NBEC2OFwACT9Qp8akhmxhLc9if2pI5dWKOsEKJQZFHEyvwT/KRSdjKZ rABUFl/2qGAAnCEsTx5eW/p4gvTWoSM5uAiGElCR19yKP9BqOaBMl53F4noB7jBe BQ8uL/RXb/+jgPBLlO/0V/s4qeiGIJTwp1q+ddhDwdEq7rogFEnT8GRkb9j0by1y R0zNFCnumXilPv/UJTVr/4eaJwnV7t6VkIuND0AlJugMDYtD8P8OQbq+vBENAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUzW271DSOh6MlEpDvM7Xh3eB55fgwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxNDAyNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYmuzANBgkqhkiG9w0B AQsFAAOCAQEAYGFx4JHsNPCdbNNs6Nvrh/1nxhhed0+jvTVy/Dr04IJYOHYHzd3I h3n0MIg5loSPPbQJN8jUweqEsCYeJlYDkOMLW911EG+Toie8AmFu4R/6xn+HT6ys kDVNS808Fmw+ja4RJ9oigcT/V8L0fM0OIFxHB/nlW6AoFijGzIRNScTXsQ0hgUrA +AVXLV4QlzYY56DYHd1W0E5SNAasTpR/Xv4P/kFKreNZ2KilPOp9wJ99Pt2kaFzZ DKpNGACM++6korr94sY/9ufLoQke+B4ZNYrFMo0NfJHdYOhebp16zyOY7g4O+zYP 4tJ3maXxCzzE7/F/+1BYYqg678KRkJ9xEg== -----END CERTIFICATE-----Generated at Mon Oct 20 15:26:31 2025 by rpki-client