$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa File: AS61317.roa (raw, json) Hash identifier: APv4jY5B80v1vqiw5zFE3k848EH4ptCfxuF8tbkLU2c= Subject key identifier: FB:B0:B8:70:5D:AF:36:69:C0:51:A8:E1:9D:E5:E8:BA:B4:AC:ED:CD Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 03610133797985057A0D37B7524EE873AD568561 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa Signing time: Fri 29 Aug 2025 07:20:37 +0000 ROA not before: Fri 29 Aug 2025 07:15:37 +0000 ROA not after: Fri 28 Aug 2026 07:20:37 +0000 asID: 61317 IP address blocks: 86.38.177.0/24 maxlen: 24 86.38.183.0/24 maxlen: 24 89.116.56.0/24 maxlen: 24 89.117.126.0/24 maxlen: 24 89.117.132.0/23 maxlen: 23 89.117.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 15:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:61:01:33:79:79:85:05:7a:0d:37:b7:52:4e:e8:73:ad:56:85:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 29 07:15:37 2025 GMT Not After : Aug 28 07:20:37 2026 GMT Subject: CN=FBB0B8705DAF3669C051A8E19DE5E8BAB4ACEDCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a7:1f:cc:8d:af:7f:e3:0c:d0:ec:46:61:ba: 4c:5c:bf:f6:6b:c3:24:09:f4:e0:6f:fa:0e:25:65: 3b:f2:5f:85:6f:9b:42:ef:57:54:b7:ff:be:d3:ba: 35:ed:e6:7f:25:57:8e:3e:d7:ae:b7:a6:d4:59:29: 1a:a1:1b:2f:f9:4a:1b:a7:bb:4b:df:34:cf:6a:5a: e0:2f:01:37:eb:5d:d8:34:d7:80:12:6a:52:8e:b7: fa:3c:4c:ac:64:eb:ab:66:ba:ea:12:31:6b:7c:ed: 74:37:05:33:9c:8c:cd:f2:fa:2b:15:dc:b7:bf:1f: 35:a8:db:50:80:23:c5:14:00:ed:d6:24:aa:5e:68: 85:0f:b7:d2:5a:92:df:6c:db:e8:b1:f3:7b:ca:db: 6b:32:79:e3:2c:e1:8d:67:0d:3d:4c:0b:ba:07:19: c9:63:f9:ae:1e:ed:b6:85:78:c1:09:08:be:d8:4b: a6:48:68:f6:16:e1:37:15:fa:1d:6e:a8:48:6b:f7: b2:72:fb:ba:a4:54:75:a1:4e:5b:68:b7:c0:f4:f3: 32:b4:e0:98:a3:ad:24:63:ec:7c:12:ed:c9:a7:e1: f1:08:e1:97:5d:cb:9a:f0:0e:b5:36:9d:b9:d1:1e: c5:58:14:5e:0c:f2:c7:88:fd:09:ce:a3:ee:d3:34: 71:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B0:B8:70:5D:AF:36:69:C0:51:A8:E1:9D:E5:E8:BA:B4:AC:ED:CD X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.177.0/24 86.38.183.0/24 89.116.56.0/24 89.117.126.0/24 89.117.132.0/23 89.117.215.0/24 Signature Algorithm: sha256WithRSAEncryption aa:5c:3c:a5:55:27:d5:90:3f:68:02:27:82:4b:07:36:27:e7: 02:ae:ed:73:83:af:31:c4:57:81:4c:65:09:6c:58:65:d7:b3: b5:d2:32:7a:98:bb:15:92:01:fc:90:e2:e3:bf:34:93:d4:3b: b6:77:31:fd:d2:ae:20:a2:92:a3:fe:52:e3:12:8e:8d:ad:1e: e0:9b:4a:d2:e5:62:96:b9:33:9b:c8:60:b0:1e:fd:7a:5a:cb: 23:8d:dd:fe:2b:c7:12:47:81:54:41:2c:ea:cd:1b:c5:9d:aa: 49:93:97:f1:ec:0a:9d:3b:32:ef:67:4a:74:87:3b:4f:01:d4: a8:84:b7:c6:5c:67:40:1c:6e:99:47:d5:d0:3e:f4:e3:90:f6: 17:cd:59:69:78:50:ca:41:62:f7:92:42:2c:32:85:2c:0e:b1: 00:08:0a:47:33:23:a5:89:eb:6d:64:6a:3a:26:b6:5a:b4:3e: 4e:1b:c7:a5:9c:f5:4a:e1:28:f9:b4:24:40:22:63:d5:39:e3: 1d:8f:41:6c:49:2a:22:07:ac:bf:cd:47:1d:9f:39:26:15:7a: 67:8b:cc:4b:eb:84:48:9a:79:4a:17:91:e9:6b:a6:3e:43:ec: 29:e3:0c:4f:af:52:73:96:16:7a:c8:b8:a6:5b:81:76:4a:85: 07:39:f7:83 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUA2EBM3l5hQV6DTe3Uk7oc61WhWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA4MjkwNzE1MzdaFw0yNjA4MjgwNzIwMzdaMDMxMTAvBgNV BAMTKEZCQjBCODcwNURBRjM2NjlDMDUxQThFMTlERTVFOEJBQjRBQ0VEQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGpx/Mja9/4wzQ7EZhukxcv/Zr wyQJ9OBv+g4lZTvyX4Vvm0LvV1S3/77TujXt5n8lV44+1663ptRZKRqhGy/5Shun u0vfNM9qWuAvATfrXdg014ASalKOt/o8TKxk66tmuuoSMWt87XQ3BTOcjM3y+isV 3Le/HzWo21CAI8UUAO3WJKpeaIUPt9Jakt9s2+ix83vK22syeeMs4Y1nDT1MC7oH Gclj+a4e7baFeMEJCL7YS6ZIaPYW4TcV+h1uqEhr97Jy+7qkVHWhTltot8D08zK0 4JijrSRj7HwS7cmn4fEI4Zddy5rwDrU2nbnRHsVYFF4M8seI/QnOo+7TNHEtAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQU+7C4cF2vNmnAUajhneXourSs7c0wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzYxMzE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAViaxAwQAVia3AwQAWXQ4 AwQAWXV+AwQBWXWEAwQAWXXXMA0GCSqGSIb3DQEBCwUAA4IBAQCqXDylVSfVkD9o AieCSwc2J+cCru1zg68xxFeBTGUJbFhl17O10jJ6mLsVkgH8kOLjvzST1Du2dzH9 0q4gopKj/lLjEo6NrR7gm0rS5WKWuTObyGCwHv16Wssjjd3+K8cSR4FUQSzqzRvF napJk5fx7AqdOzLvZ0p0hztPAdSohLfGXGdAHG6ZR9XQPvTjkPYXzVlpeFDKQWL3 kkIsMoUsDrEACApHMyOliettZGo6JrZatD5OG8elnPVK4Sj5tCRAImPVOeMdj0Fs SSoiB6y/zUcdnzkmFXpni8xL64RImnlKF5Hpa6Y+Q+wp4wxPr1JzlhZ6yLimW4F2 SoUHOfeD -----END CERTIFICATE-----Generated at Sat Sep 6 08:15:10 2025 by rpki-client