$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: Jumd09WQ6GDYLLhfQYiIjH+TFGK73CRUxe6t2FkpbVA= Subject key identifier: 1B:F2:62:2F:30:6A:DA:B9:88:18:EE:FE:C2:F0:5C:97:51:80:F4:E8 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 25B8BDDB2087B33C5EB3D3523063716EF6AEBC84 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS21859.roa Signing time: Fri 12 Sep 2025 04:41:52 +0000 ROA not before: Fri 12 Sep 2025 04:36:52 +0000 ROA not after: Fri 11 Sep 2026 04:41:52 +0000 asID: 21859 IP address blocks: 89.116.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Sep 2025 13:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b8:bd:db:20:87:b3:3c:5e:b3:d3:52:30:63:71:6e:f6:ae:bc:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 12 04:36:52 2025 GMT Not After : Sep 11 04:41:52 2026 GMT Subject: CN=1BF2622F306ADAB98818EEFEC2F05C975180F4E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:db:54:33:11:90:df:a1:51:34:aa:1b:70:e1: 24:6e:91:b2:5f:c9:5c:aa:81:a9:b8:22:b2:0a:4f: 74:a2:e5:8e:ca:ab:54:71:6d:6d:19:2c:0a:71:d7: 1c:98:18:e3:9b:cc:03:6b:df:eb:d5:ec:e1:41:4e: 25:a5:b8:93:3f:5b:ca:38:61:01:18:a0:25:7e:fd: 6d:1b:21:d7:79:4e:3c:cf:d3:a2:fd:4b:d0:8e:96: 35:3d:5f:12:bf:ca:18:da:31:58:8d:39:9c:7d:ab: c9:b9:18:35:91:7d:8a:20:ca:80:94:1f:f2:96:e1: a6:ea:7f:ee:82:ae:6b:a1:ed:2a:af:6f:70:36:20: db:7d:1f:8b:37:23:e6:9c:4d:de:43:55:b5:5d:70: 72:d9:00:be:a2:09:61:61:90:f5:43:2b:61:f9:d5: 7a:2e:91:6e:2f:e7:88:8d:14:31:cb:ae:66:00:20: 29:92:bc:2f:e7:2e:f9:27:18:4a:0e:f6:c7:79:15: 98:54:2d:2f:8e:82:4b:14:bc:53:4c:2b:c2:7c:9a: d3:f1:fa:fe:97:84:75:3c:c5:6b:1e:f7:94:d2:25: 03:c6:06:0d:93:82:58:20:a5:e6:9c:99:f3:9d:b2: 83:57:bf:00:20:92:1a:bc:36:70:fa:fd:26:ac:d6: 12:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F2:62:2F:30:6A:DA:B9:88:18:EE:FE:C2:F0:5C:97:51:80:F4:E8 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.45.0/24 Signature Algorithm: sha256WithRSAEncryption be:38:4d:23:7e:1b:8c:ae:4c:6b:2b:ff:c0:31:c6:2c:d2:56: 6a:3f:5d:5b:01:dd:4a:a2:d1:d4:85:75:de:2e:a9:87:bd:32: d8:e4:b5:c0:3d:3e:45:85:f9:ff:df:fd:19:65:34:ee:94:41: 5d:f3:8c:96:3d:47:0c:f1:32:7b:5a:84:f5:23:2e:44:63:24: 36:74:1b:a9:2c:34:47:1b:85:9d:f5:7e:fc:a1:30:14:68:dc: b2:9d:72:49:c5:07:3e:e9:2c:b2:a7:18:fa:24:ec:46:b6:d4: d5:da:1b:9e:4e:1c:ce:b2:b6:a0:c0:1a:56:16:1b:b1:43:2e: 71:d9:4d:5d:85:d7:7d:8c:38:2b:dc:62:80:f3:60:09:02:dd: 7e:1a:fe:e2:38:be:0c:98:4c:70:27:7c:58:05:f1:c5:f3:08: 63:92:22:6b:b3:33:c9:0d:d9:a0:b3:2e:1e:01:e9:01:07:50: 3a:a3:8b:3e:a1:ec:f3:ef:b1:dc:01:88:26:b0:9f:b5:10:4c: c8:16:e8:01:c7:3a:99:63:83:0d:8a:bc:ca:0a:0c:ec:ec:60: 63:62:9d:84:60:ce:77:0d:9d:3e:7b:cc:49:ee:2f:8f:37:06: bb:f7:44:8d:03:31:4e:80:f8:b5:cb:74:08:95:1e:80:b0:96: bc:40:2d:a0 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUJbi92yCHszxes9NSMGNxbvauvIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA5MTIwNDM2NTJaFw0yNjA5MTEwNDQxNTJaMDMxMTAvBgNV BAMTKDFCRjI2MjJGMzA2QURBQjk4ODE4RUVGRUMyRjA1Qzk3NTE4MEY0RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr21QzEZDfoVE0qhtw4SRukbJf yVyqgam4IrIKT3Si5Y7Kq1RxbW0ZLApx1xyYGOObzANr3+vV7OFBTiWluJM/W8o4 YQEYoCV+/W0bIdd5TjzP06L9S9COljU9XxK/yhjaMViNOZx9q8m5GDWRfYogyoCU H/KW4abqf+6Crmuh7Sqvb3A2INt9H4s3I+acTd5DVbVdcHLZAL6iCWFhkPVDK2H5 1XoukW4v54iNFDHLrmYAICmSvC/nLvknGEoO9sd5FZhULS+OgksUvFNMK8J8mtPx +v6XhHU8xWse95TSJQPGBg2TglggpeacmfOdsoNXvwAgkhq8NnD6/Sas1hK3AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUG/JiLzBq2rmIGO7+wvBcl1GA9OgwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxODU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWXQtMA0GCSqGSIb3DQEB CwUAA4IBAQC+OE0jfhuMrkxrK//AMcYs0lZqP11bAd1KotHUhXXeLqmHvTLY5LXA PT5Fhfn/3/0ZZTTulEFd84yWPUcM8TJ7WoT1Iy5EYyQ2dBupLDRHG4Wd9X78oTAU aNyynXJJxQc+6Syypxj6JOxGttTV2hueThzOsragwBpWFhuxQy5x2U1dhdd9jDgr 3GKA82AJAt1+Gv7iOL4MmExwJ3xYBfHF8whjkiJrszPJDdmgsy4eAekBB1A6o4s+ oezz77HcAYgmsJ+1EEzIFugBxzqZY4MNirzKCgzs7GBjYp2EYM53DZ0+e8xJ7i+P Nwa790SNAzFOgPi1y3QIlR6AsJa8QC2g -----END CERTIFICATE-----Generated at Fri Sep 19 04:20:05 2025 by rpki-client