$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3320.roa File: AS3320.roa (raw, json) Hash identifier: gZgiv15l4pagkOVIJVIMjkUL76QPRS6YZurYgp0AvE4= Subject key identifier: 68:DA:04:F4:E4:08:F1:A6:B2:99:13:44:E0:5A:C2:E7:05:F0:D7:0C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 2CCC187CB65561C12F3C399F6C916F20FCBB0762 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3320.roa Signing time: Tue 02 Jun 2026 00:47:23 +0000 ROA not before: Tue 02 Jun 2026 00:42:23 +0000 ROA not after: Tue 01 Jun 2027 00:47:23 +0000 asID: 3320 IP address blocks: 86.38.37.0/24 maxlen: 24 86.38.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:cc:18:7c:b6:55:61:c1:2f:3c:39:9f:6c:91:6f:20:fc:bb:07:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 2 00:42:23 2026 GMT Not After : Jun 1 00:47:23 2027 GMT Subject: CN=68DA04F4E408F1A6B2991344E05AC2E705F0D70C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3a:32:49:ff:65:26:e3:55:34:6c:3b:3e:c3: 44:0d:b0:40:7f:96:9a:34:20:cd:59:42:04:72:9c: 00:5b:2b:65:ae:42:bb:6f:82:e5:68:a9:a2:d0:0f: 85:c3:b2:0f:74:85:ab:cf:34:64:fa:fc:87:7f:1c: ff:64:82:52:4f:c5:ce:e3:51:af:94:bf:23:b4:48: f6:f6:44:7e:e6:e4:11:84:97:0e:b0:8d:82:60:71: fe:32:34:68:2a:03:b2:f1:c5:fe:f1:d3:83:84:a7: b6:ad:0c:33:70:7b:f6:89:69:20:2f:de:d1:24:2c: cc:d2:b1:7a:d0:d3:7e:db:44:f7:b7:fd:74:27:68: ca:15:e0:a4:f5:d4:99:b8:6e:48:89:ec:98:29:6c: 10:83:01:58:76:89:ec:39:00:58:ad:5d:35:76:7a: 6f:95:50:44:e6:2d:d1:71:83:c8:46:1f:39:82:22: 09:50:2d:1a:b2:04:61:07:a8:23:3f:81:90:f7:a7: df:bc:40:e7:65:11:7c:85:12:84:46:2a:05:44:2b: 08:5f:97:53:ec:af:14:02:53:a1:b4:bc:dc:ae:88: d7:2c:62:dc:b9:54:4e:e8:60:6d:1d:a0:1b:a0:d3: 3c:bb:41:1f:e4:60:f8:b1:11:8f:45:2f:21:cc:4b: b0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DA:04:F4:E4:08:F1:A6:B2:99:13:44:E0:5A:C2:E7:05:F0:D7:0C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3320.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.37.0/24 86.38.248.0/21 Signature Algorithm: sha256WithRSAEncryption d4:5b:b1:8f:e6:59:f1:64:37:61:52:04:a3:f3:b5:7f:1e:e7: 28:ef:0b:23:ee:55:c7:d4:2e:bb:8d:f1:9f:d8:95:33:4f:61: 55:3f:e9:e6:95:27:f9:85:cf:36:8c:f6:f9:ec:19:f0:ae:66: 4c:19:62:fa:e1:a7:be:60:b4:f1:19:ca:38:9e:55:d0:d8:95: 45:26:c3:22:f7:2d:63:fa:c2:32:11:f2:90:01:2e:f8:7e:8f: 0a:72:9d:de:b5:54:6c:e6:fc:c0:b1:13:44:59:33:3a:87:c9: 9d:49:74:58:b6:8b:8e:be:83:fd:e3:0d:d4:ce:1d:19:06:1d: 4a:30:df:78:c0:df:cf:0b:9c:de:4c:68:22:e9:a4:30:17:28: 22:c5:e7:b8:a7:96:2c:36:d8:cb:9b:6e:03:57:13:be:1d:10: 6a:47:bd:01:79:b6:f6:2e:27:f3:ff:0a:48:a3:e6:ea:73:4d: 9a:30:50:b2:88:01:0c:95:6d:9d:01:9a:9e:d7:fd:07:85:d2: 50:c2:35:cb:c6:d1:26:74:4c:1f:cd:83:2d:ed:60:5f:6e:9d: 9b:05:26:c5:f2:21:78:41:de:6b:78:39:71:15:ff:ae:55:73: 37:73:e0:f8:3c:2d:ff:33:84:94:61:c8:3b:1c:d1:c5:87:75: 01:5a:da:d1 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULMwYfLZVYcEvPDmfbJFvIPy7B2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA2MDIwMDQyMjNaFw0yNzA2MDEwMDQ3MjNaMDMxMTAvBgNV BAMTKDY4REEwNEY0RTQwOEYxQTZCMjk5MTM0NEUwNUFDMkU3MDVGMEQ3MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaOjJJ/2Um41U0bDs+w0QNsEB/ lpo0IM1ZQgRynABbK2WuQrtvguVoqaLQD4XDsg90havPNGT6/Id/HP9kglJPxc7j Ua+UvyO0SPb2RH7m5BGElw6wjYJgcf4yNGgqA7Lxxf7x04OEp7atDDNwe/aJaSAv 3tEkLMzSsXrQ037bRPe3/XQnaMoV4KT11Jm4bkiJ7JgpbBCDAVh2iew5AFitXTV2 em+VUETmLdFxg8hGHzmCIglQLRqyBGEHqCM/gZD3p9+8QOdlEXyFEoRGKgVEKwhf l1PsrxQCU6G0vNyuiNcsYty5VE7oYG0doBug0zy7QR/kYPixEY9FLyHMS7D/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUaNoE9OQI8aaymRNE4FrC5wXw1wwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzMzMjAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABWJiUDBANWJvgwDQYJKoZI hvcNAQELBQADggEBANRbsY/mWfFkN2FSBKPztX8e5yjvCyPuVcfULruN8Z/YlTNP YVU/6eaVJ/mFzzaM9vnsGfCuZkwZYvrhp75gtPEZyjieVdDYlUUmwyL3LWP6wjIR 8pABLvh+jwpynd61VGzm/MCxE0RZMzqHyZ1JdFi2i46+g/3jDdTOHRkGHUow33jA 388LnN5MaCLppDAXKCLF57inliw22MubbgNXE74dEGpHvQF5tvYuJ/P/Ckij5upz TZowULKIAQyVbZ0Bmp7X/QeF0lDCNcvG0SZ0TB/Ngy3tYF9unZsFJsXyIXhB3mt4 OXEV/65Vczdz4Pg8Lf8zhJRhyDsc0cWHdQFa2tE= -----END CERTIFICATE-----Generated at Sat Jun 6 02:29:39 2026 by rpki-client