$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS401650.roa File: AS401650.roa (raw, json) Hash identifier: 3BlBVjHv8eJ2LrS49IcC8h7LqBYawH7K9+OtFbFzemo= Subject key identifier: 5B:A7:83:0A:96:FB:5D:CC:C7:B4:2B:AB:5F:1D:FA:10:5F:C1:C2:5B Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6E19673D4A95C1C8BBEB838580C3E46FDA4ACDEE Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS401650.roa Signing time: Tue 23 Jun 2026 12:11:26 +0000 ROA not before: Tue 23 Jun 2026 12:06:26 +0000 ROA not after: Tue 22 Jun 2027 12:11:26 +0000 asID: 401650 IP address blocks: 86.38.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Jun 2026 10:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:19:67:3d:4a:95:c1:c8:bb:eb:83:85:80:c3:e4:6f:da:4a:cd:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 23 12:06:26 2026 GMT Not After : Jun 22 12:11:26 2027 GMT Subject: CN=5BA7830A96FB5DCCC7B42BAB5F1DFA105FC1C25B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:0a:c1:dd:6f:98:d5:f2:e6:82:1b:f3:a2: 1e:f1:33:fd:c5:13:da:52:91:b1:da:91:4c:e6:23: fe:f2:f8:7c:21:a6:31:ec:15:fd:c3:50:a4:ee:aa: 74:03:df:59:d6:54:7d:3a:37:b2:cb:6e:26:c6:73: ea:4b:98:f7:6f:7d:24:d3:54:d1:8b:82:c7:94:a4: 5d:65:cc:30:9b:58:4e:02:55:3a:0a:0d:b4:14:cb: e9:03:5f:81:4b:2e:52:33:a1:9b:67:58:e5:59:3d: ea:cf:de:5e:05:eb:b8:e2:f8:47:42:87:e2:49:59: b1:b9:40:6a:7a:c3:43:88:ab:a7:f2:e7:36:24:88: 66:df:23:ab:cf:ab:2f:b3:be:4d:13:c7:b3:5e:f0: a4:34:b6:c3:df:7f:69:83:c8:ed:12:77:00:07:93: 89:38:84:84:bb:64:2d:bf:eb:d9:84:0c:b4:01:29: 84:ce:8a:e1:c5:67:fb:db:b4:85:0c:13:bf:47:cb: a7:f7:d0:e3:01:20:0c:6c:43:b8:20:0f:53:c5:15: 81:82:ad:d1:39:0f:d1:09:5e:51:90:0e:1b:60:dd: 64:4b:dc:ad:22:72:2e:26:41:df:52:b7:1f:1c:fb: b8:1e:0e:2e:56:6c:76:65:17:5f:c3:83:74:5b:b4: 3b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A7:83:0A:96:FB:5D:CC:C7:B4:2B:AB:5F:1D:FA:10:5F:C1:C2:5B X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS401650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.235.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:3b:e1:24:a3:43:c0:f2:18:2d:c6:4a:db:d1:0a:b8:c8:da: 89:c4:5b:9c:58:83:9a:d9:26:69:6d:7b:ae:5a:92:04:c1:f6: f7:8b:ed:32:88:21:3a:d0:19:c1:a6:28:e3:4c:c3:eb:00:90: 07:f8:3d:be:12:ac:d8:26:33:46:92:2b:9d:a1:ec:50:b6:79: 72:3e:c3:b2:f5:d2:51:84:01:d2:2d:15:b6:eb:2b:41:fe:14: 04:4f:91:00:d6:2a:62:e3:4a:a9:29:f6:44:c6:22:e8:f6:a2: 89:90:60:3c:99:d3:24:d8:ad:cd:dd:a7:38:a0:d2:ba:36:04: 5d:e1:d3:58:0b:7e:fa:43:04:e5:c9:b6:b4:f8:43:a2:7c:cb: fe:0f:17:5d:27:82:cd:aa:86:d9:2c:a8:c7:e7:e4:65:90:1d: 31:3d:df:e4:8b:ba:da:ec:17:35:b5:e2:57:dc:c9:cd:69:e4: a6:8c:70:7a:7e:c8:d8:88:86:0c:ca:08:01:c6:78:f4:ac:9e: ac:0b:09:5d:6d:ab:62:e4:42:ac:62:fe:04:ff:95:db:e9:43: df:05:75:d6:b3:74:b2:04:54:00:bf:0e:46:ff:9d:1f:53:61: 21:12:75:26:01:53:b1:04:5c:ef:ed:d1:8e:ad:80:cb:23:9f: a7:74:6c:eb -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUbhlnPUqVwci764OFgMPkb9pKze4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA2MjMxMjA2MjZaFw0yNzA2MjIxMjExMjZaMDMxMTAvBgNV BAMTKDVCQTc4MzBBOTZGQjVEQ0NDN0I0MkJBQjVGMURGQTEwNUZDMUMyNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBdgrB3W+Y1fLmghvzoh7xM/3F E9pSkbHakUzmI/7y+HwhpjHsFf3DUKTuqnQD31nWVH06N7LLbibGc+pLmPdvfSTT VNGLgseUpF1lzDCbWE4CVToKDbQUy+kDX4FLLlIzoZtnWOVZPerP3l4F67ji+EdC h+JJWbG5QGp6w0OIq6fy5zYkiGbfI6vPqy+zvk0Tx7Ne8KQ0tsPff2mDyO0SdwAH k4k4hIS7ZC2/69mEDLQBKYTOiuHFZ/vbtIUME79Hy6f30OMBIAxsQ7ggD1PFFYGC rdE5D9EJXlGQDhtg3WRL3K0ici4mQd9Stx8c+7geDi5WbHZlF1/Dg3RbtDu1AgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUW6eDCpb7XczHtCurXx36EF/BwlswHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzQwMTY1MC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYm6zANBgkqhkiG9w0B AQsFAAOCAQEALjvhJKNDwPIYLcZK29EKuMjaicRbnFiDmtkmaW17rlqSBMH294vt MoghOtAZwaYo40zD6wCQB/g9vhKs2CYzRpIrnaHsULZ5cj7DsvXSUYQB0i0Vtusr Qf4UBE+RANYqYuNKqSn2RMYi6PaiiZBgPJnTJNitzd2nOKDSujYEXeHTWAt++kME 5cm2tPhDonzL/g8XXSeCzaqG2Syox+fkZZAdMT3f5Iu62uwXNbXiV9zJzWnkpoxw en7I2IiGDMoIAcZ49KyerAsJXW2rYuRCrGL+BP+V2+lD3wV11rN0sgRUAL8ORv+d H1NhIRJ1JgFTsQRc7+3Rjq2AyyOfp3Rs6w== -----END CERTIFICATE-----Generated at Tue Jun 23 14:57:19 2026 by rpki-client