$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS215638.roa File: AS215638.roa (raw, json) Hash identifier: VrKrT+WetKTnNxstQyy/PdPJ3hpyLQhwOKL4W0uNo6Q= Subject key identifier: 62:8D:53:0E:A8:67:3E:0C:E2:85:87:CB:02:D4:68:5C:5A:3A:EB:53 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 5DBFD1CBEA647E7157ED521374E4CF5176257407 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS215638.roa Signing time: Sat 08 Mar 2025 08:53:56 +0000 ROA not before: Sat 08 Mar 2025 08:48:56 +0000 ROA not after: Sat 07 Mar 2026 08:53:56 +0000 asID: 215638 IP address blocks: 89.117.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:bf:d1:cb:ea:64:7e:71:57:ed:52:13:74:e4:cf:51:76:25:74:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 8 08:48:56 2025 GMT Not After : Mar 7 08:53:56 2026 GMT Subject: CN=628D530EA8673E0CE28587CB02D4685C5A3AEB53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6a:fc:b3:5d:70:44:68:7b:fc:7f:d7:c6:f8: 5f:a6:96:c2:c2:dd:65:be:b6:09:0d:8f:28:91:58: 1d:b8:33:de:e6:8a:86:a1:f1:65:fb:57:47:bf:c7: a0:a3:14:3c:e8:57:52:24:32:25:64:87:9d:a7:9c: 46:74:cc:ba:41:ad:e7:8c:0c:75:d9:a7:b9:43:a6: f9:48:57:e4:55:b8:3d:dd:f0:88:c0:5b:36:f5:d1: 00:ce:72:3a:21:59:fe:a2:a3:95:45:c0:09:fd:7c: 2e:30:48:05:a8:10:2d:31:49:de:39:8b:5b:30:4c: b2:3b:f4:ee:8a:b3:2a:49:2a:18:39:4d:17:6c:5d: 74:c6:2b:05:61:80:86:e4:78:33:34:cf:85:7b:fb: c7:75:0a:15:3f:50:df:93:e2:45:f5:9c:ee:c7:5c: 09:7a:d3:77:78:2f:2c:3e:c9:b8:3a:ad:8b:9e:3e: 26:6e:54:8b:53:8a:b0:eb:e4:0b:54:5c:a8:65:38: e2:d2:51:d2:e2:19:a1:ad:f4:87:f8:4a:c9:bd:0d: 82:17:76:ca:53:e1:1b:04:a8:bc:1b:dd:73:ec:62: 7a:9e:30:49:91:b7:78:e4:5b:15:b1:0d:e9:3f:cb: b6:10:78:61:9d:b6:2d:e6:5a:b2:ca:85:c8:8b:bb: f1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8D:53:0E:A8:67:3E:0C:E2:85:87:CB:02:D4:68:5C:5A:3A:EB:53 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS215638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.218.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c2:09:6b:c4:22:28:e9:39:a2:1d:6b:a8:92:7f:65:58:bc: 82:7f:b9:67:ad:e8:62:93:31:f0:d5:93:b5:79:97:3f:88:27: 85:f6:01:6f:26:0d:61:c8:1d:cd:96:26:7a:b0:1a:42:a1:ea: 96:47:c8:e6:93:e6:da:de:2b:69:85:c2:59:7f:ab:70:42:88: 65:3d:b7:ca:ef:a5:cf:b3:9b:84:49:91:19:80:c4:be:2f:4c: 43:c1:72:79:89:d8:3e:7c:35:0f:5d:cb:96:8e:7b:05:8c:63: 06:ad:52:92:70:89:f5:f5:5d:7e:e0:34:bc:f8:d6:89:45:90: cf:73:f1:76:bf:3c:a8:4d:da:80:9a:bd:a8:0c:57:6e:5e:97: bb:ca:41:a9:fb:5b:8b:5e:46:31:ff:95:16:99:c7:8d:a4:80: d5:a0:f8:ba:a2:25:f3:7f:87:b3:21:f8:f1:39:b4:b2:65:e5: 44:30:f5:46:8a:7c:52:cc:fe:3a:90:75:86:ad:33:6f:ba:c9: ca:3f:3f:9d:ee:9f:15:2a:7a:86:cb:3d:f6:62:fe:98:a2:18: 44:df:f9:e7:d1:64:9a:f7:82:dd:39:6a:a8:31:24:0e:07:f6: d7:2e:2c:9e:08:aa:43:94:91:ea:2d:72:f5:f8:3b:67:a1:91: 5c:06:53:c2 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUXb/Ry+pkfnFX7VITdOTPUXYldAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAzMDgwODQ4NTZaFw0yNjAzMDcwODUzNTZaMDMxMTAvBgNV BAMTKDYyOEQ1MzBFQTg2NzNFMENFMjg1ODdDQjAyRDQ2ODVDNUEzQUVCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmavyzXXBEaHv8f9fG+F+mlsLC 3WW+tgkNjyiRWB24M97mioah8WX7V0e/x6CjFDzoV1IkMiVkh52nnEZ0zLpBreeM DHXZp7lDpvlIV+RVuD3d8IjAWzb10QDOcjohWf6io5VFwAn9fC4wSAWoEC0xSd45 i1swTLI79O6KsypJKhg5TRdsXXTGKwVhgIbkeDM0z4V7+8d1ChU/UN+T4kX1nO7H XAl603d4Lyw+ybg6rYuePiZuVItTirDr5AtUXKhlOOLSUdLiGaGt9If4Ssm9DYIX dspT4RsEqLwb3XPsYnqeMEmRt3jkWxWxDek/y7YQeGGdti3mWrLKhciLu/F5AgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUYo1TDqhnPgzihYfLAtRoXFo661MwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxNTYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl12jANBgkqhkiG9w0B AQsFAAOCAQEAAsIJa8QiKOk5oh1rqJJ/ZVi8gn+5Z63oYpMx8NWTtXmXP4gnhfYB byYNYcgdzZYmerAaQqHqlkfI5pPm2t4raYXCWX+rcEKIZT23yu+lz7ObhEmRGYDE vi9MQ8FyeYnYPnw1D13Llo57BYxjBq1SknCJ9fVdfuA0vPjWiUWQz3Pxdr88qE3a gJq9qAxXbl6Xu8pBqftbi15GMf+VFpnHjaSA1aD4uqIl83+HsyH48Tm0smXlRDD1 Rop8Usz+OpB1hq0zb7rJyj8/ne6fFSp6hss99mL+mKIYRN/559FkmveC3TlqqDEk Dgf21y4sngiqQ5SR6i1y9fg7Z6GRXAZTwg== -----END CERTIFICATE-----Generated at Fri Apr 4 20:16:33 2025 by rpki-client