$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS49703.roa File: AS49703.roa (raw, json) Hash identifier: wAUc47aCg4XnMEmb4OD5ZNTqbw1FvqJysbm2EYOfX6g= Subject key identifier: 99:F5:67:56:EC:1C:48:60:33:6D:14:F2:5B:D0:2F:E5:83:DE:AD:7F Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 217AD0FFDF29BCDF7307EE9554883DB9C6839E91 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS49703.roa Signing time: Wed 12 Mar 2025 09:53:58 +0000 ROA not before: Wed 12 Mar 2025 09:48:58 +0000 ROA not after: Wed 11 Mar 2026 09:53:58 +0000 asID: 49703 IP address blocks: 89.116.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:7a:d0:ff:df:29:bc:df:73:07:ee:95:54:88:3d:b9:c6:83:9e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 12 09:48:58 2025 GMT Not After : Mar 11 09:53:58 2026 GMT Subject: CN=99F56756EC1C4860336D14F25BD02FE583DEAD7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d1:28:29:03:fc:f5:9e:32:2b:4f:b3:e9:1d: 95:90:30:54:81:62:2e:84:41:0a:82:c7:ec:98:10: 46:23:ab:6a:33:cb:09:84:36:81:f1:56:4d:f1:cf: 66:94:ca:83:e2:cf:ec:2c:57:e6:ef:ec:b6:01:8d: ee:ca:86:8c:ac:7d:3d:73:86:2c:42:52:e8:73:17: b1:c9:45:ae:27:95:78:68:12:3f:a9:fb:29:3f:2e: a1:2b:db:21:0b:75:17:64:43:ab:41:35:b3:d2:8e: 1b:c2:62:c3:b7:56:9e:46:94:ea:77:58:04:6a:a6: 16:3d:14:dd:98:c4:66:2d:fe:75:b7:4f:d4:f5:56: 35:fd:98:fe:83:11:8a:9a:d8:11:2f:c3:6b:4e:bd: 30:54:5e:ec:53:f6:e1:89:b2:06:6a:c5:25:05:4f: 8f:6e:f6:12:97:01:21:0c:1d:cb:73:1c:b8:9d:f2: 93:15:b0:10:97:0a:39:57:e1:39:c6:88:2e:03:41: 08:6b:39:b3:e4:0e:29:bc:a1:5a:81:aa:75:8b:f6: 4a:53:0e:fd:6d:d8:f6:2b:0a:f3:0c:aa:7f:61:e0: ec:f0:7f:32:51:43:92:c4:c9:9b:f4:0a:8d:2c:9a: 2b:8d:67:e1:d4:3b:8b:12:96:2d:26:10:8c:c9:ee: d5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F5:67:56:EC:1C:48:60:33:6D:14:F2:5B:D0:2F:E5:83:DE:AD:7F X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS49703.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.135.0/24 Signature Algorithm: sha256WithRSAEncryption 48:f8:f6:bc:9a:3f:9e:52:f7:0f:36:9d:15:a7:e5:47:71:cc: 9b:c5:03:2a:96:49:bf:0f:16:5b:fd:30:12:e3:f0:cd:a0:f7: e2:d7:80:7b:09:00:d9:20:bf:e8:b5:cc:cd:b5:78:e6:20:65: 24:c3:d0:75:6c:ff:8b:ac:64:97:10:26:42:d3:b7:70:65:15: a7:7f:bc:ec:f5:57:9e:83:3a:06:f5:13:c7:04:5e:30:9d:2b: 06:ab:d9:73:f4:db:74:fa:e0:f4:ce:d1:a6:3d:2d:be:06:1c: 7b:e8:c9:28:36:42:74:d1:be:37:9a:a3:49:e6:59:58:c2:20: 49:6f:49:76:d0:40:01:71:3b:31:cf:25:5a:01:24:bf:18:df: 9a:0d:51:a4:78:12:b8:47:59:f1:48:44:37:b9:e0:bd:c8:c3: bb:87:71:8e:7a:80:80:a5:87:db:e4:d0:e7:33:b7:1f:59:33: 52:aa:63:ba:ca:d4:9f:b3:9f:20:7e:ff:84:a8:f3:12:42:e2: b2:b5:2c:29:12:7d:30:7c:cb:11:83:aa:7e:69:77:48:7d:8b: 0f:3e:18:cc:f5:b0:e4:c8:84:bd:54:84:dd:ed:33:2c:68:18: ad:5f:ef:7b:ce:9d:08:65:8a:18:ad:1e:1c:c9:ff:f5:c9:bf: dc:fe:c4:e7 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUIXrQ/98pvN9zB+6VVIg9ucaDnpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAzMTIwOTQ4NThaFw0yNjAzMTEwOTUzNThaMDMxMTAvBgNV BAMTKDk5RjU2NzU2RUMxQzQ4NjAzMzZEMTRGMjVCRDAyRkU1ODNERUFEN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy0SgpA/z1njIrT7PpHZWQMFSB Yi6EQQqCx+yYEEYjq2ozywmENoHxVk3xz2aUyoPiz+wsV+bv7LYBje7KhoysfT1z hixCUuhzF7HJRa4nlXhoEj+p+yk/LqEr2yELdRdkQ6tBNbPSjhvCYsO3Vp5GlOp3 WARqphY9FN2YxGYt/nW3T9T1VjX9mP6DEYqa2BEvw2tOvTBUXuxT9uGJsgZqxSUF T49u9hKXASEMHctzHLid8pMVsBCXCjlX4TnGiC4DQQhrObPkDim8oVqBqnWL9kpT Dv1t2PYrCvMMqn9h4OzwfzJRQ5LEyZv0Co0smiuNZ+HUO4sSli0mEIzJ7tWFAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUmfVnVuwcSGAzbRTyW9Av5YPerX8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzQ5NzAzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWXSHMA0GCSqGSIb3DQEB CwUAA4IBAQBI+Pa8mj+eUvcPNp0Vp+VHccybxQMqlkm/DxZb/TAS4/DNoPfi14B7 CQDZIL/otczNtXjmIGUkw9B1bP+LrGSXECZC07dwZRWnf7zs9VeegzoG9RPHBF4w nSsGq9lz9Nt0+uD0ztGmPS2+Bhx76MkoNkJ00b43mqNJ5llYwiBJb0l20EABcTsx zyVaASS/GN+aDVGkeBK4R1nxSEQ3ueC9yMO7h3GOeoCApYfb5NDnM7cfWTNSqmO6 ytSfs58gfv+EqPMSQuKytSwpEn0wfMsRg6p+aXdIfYsPPhjM9bDkyIS9VITd7TMs aBitX+97zp0IZYoYrR4cyf/1yb/c/sTn -----END CERTIFICATE-----Generated at Fri Apr 4 20:14:53 2025 by rpki-client