$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: ctWTxMVe6oICaT6L5ZEC18iBxah48xIbUXDxbaz7Cw8= Subject key identifier: 14:90:02:E5:03:08:9A:F2:22:3F:DA:32:5C:79:A6:F1:AD:8F:D7:36 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3786AF3D3EB4FF92DDF8736F8AEA46550FC4C2A8 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa Signing time: Thu 03 Jul 2025 13:59:12 +0000 ROA not before: Thu 03 Jul 2025 13:54:12 +0000 ROA not after: Thu 02 Jul 2026 13:59:12 +0000 asID: 834 IP address blocks: 84.46.236.0/22 maxlen: 24 86.38.180.0/23 maxlen: 24 86.38.182.0/23 maxlen: 24 89.116.64.0/22 maxlen: 24 89.116.72.0/23 maxlen: 24 89.116.148.0/23 maxlen: 23 89.116.210.0/23 maxlen: 23 89.117.0.0/22 maxlen: 24 89.117.12.0/23 maxlen: 24 89.117.94.0/23 maxlen: 24 89.117.96.0/22 maxlen: 24 89.117.112.0/22 maxlen: 22 89.117.120.0/22 maxlen: 24 89.117.132.0/22 maxlen: 22 89.117.142.0/23 maxlen: 24 89.117.158.0/23 maxlen: 24 89.117.172.0/22 maxlen: 24 89.117.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 06:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:86:af:3d:3e:b4:ff:92:dd:f8:73:6f:8a:ea:46:55:0f:c4:c2:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 3 13:54:12 2025 GMT Not After : Jul 2 13:59:12 2026 GMT Subject: CN=149002E503089AF2223FDA325C79A6F1AD8FD736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:29:c9:49:63:a0:7f:ea:97:43:fb:bc:22:41: d0:bf:89:e0:93:ca:07:6a:e0:9b:cd:c6:69:f6:fa: f8:ef:d7:e7:ff:0b:49:65:db:85:fe:60:2c:09:b7: 40:d2:cd:bf:dd:92:0d:32:3c:72:2b:32:82:e2:8e: 54:8c:3a:8f:3c:98:96:9f:46:20:c3:35:0f:91:5c: 0e:5e:73:4c:37:ad:de:89:a6:bb:eb:81:50:86:db: 37:cb:d3:4b:79:4a:3c:e3:a7:a1:21:0d:93:f1:5e: 39:38:b8:f3:53:3b:35:27:a0:8c:d2:7d:93:79:3e: 83:94:6d:67:37:6a:ef:d7:62:a9:c7:61:75:c8:04: 89:41:8f:3e:73:b1:16:7c:d9:7c:7c:d1:8e:58:77: 00:bf:36:4e:4f:a4:02:67:88:8f:6a:8d:aa:b8:cc: 7b:1f:2f:65:d2:a9:9d:25:5d:17:ae:82:2b:6c:dd: 14:51:c5:6e:69:4d:db:ac:5f:58:0a:da:fc:59:98: cb:e9:3a:81:51:b8:4f:65:8f:74:e7:8b:a9:ee:f5: 05:2b:74:90:c9:16:4c:f9:a7:e9:c6:09:3e:5d:35: b2:11:75:ba:2c:22:ca:fd:0c:1b:32:4c:ab:f0:e4: 25:d6:77:4a:f0:3d:32:1f:1e:d4:f2:54:23:2d:ed: a5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:90:02:E5:03:08:9A:F2:22:3F:DA:32:5C:79:A6:F1:AD:8F:D7:36 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.46.236.0/22 86.38.180.0/22 89.116.64.0/22 89.116.72.0/23 89.116.148.0/23 89.116.210.0/23 89.117.0.0/22 89.117.12.0/23 89.117.94.0-89.117.99.255 89.117.112.0/22 89.117.120.0/22 89.117.132.0/22 89.117.142.0/23 89.117.158.0/23 89.117.172.0/22 89.117.216.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:8f:1a:a1:2c:c1:18:e8:f3:d3:9c:42:2c:e5:0a:14:df:fc: 6a:4d:aa:37:32:88:47:ff:a2:50:d0:b2:b2:2c:f1:8e:f6:51: 0c:37:e2:58:d5:bc:dc:06:84:14:2f:86:07:bb:bf:2d:1c:d0: d3:32:d7:65:48:41:b7:51:e6:7e:1d:28:06:25:86:3c:dc:3c: 18:b8:73:63:4f:bd:e1:7b:6b:d1:3b:55:88:62:30:bf:46:79: 2c:fa:cc:17:a0:59:46:84:b4:60:78:69:6d:a2:33:da:0f:b0: b3:8b:72:de:fd:b3:42:1c:61:b2:8f:bc:e4:e1:96:b1:23:63: 91:62:26:50:5e:13:99:9f:e6:c1:88:9c:1d:e7:eb:bc:dc:72: 6a:59:9a:45:f7:f6:27:60:d1:20:2a:3b:d4:ac:9e:e6:ae:73: 41:9f:a7:96:b8:fe:71:8f:d9:ab:8d:4e:7d:73:a8:ea:13:fa: 42:fe:0c:fd:46:92:49:21:27:b4:fd:5c:ea:ad:9b:8f:8b:48: d1:86:76:07:9d:eb:40:8d:5a:f4:8e:7f:3c:b4:1f:97:57:36: 94:3a:7e:86:da:e0:5d:38:af:00:65:79:a6:ad:7c:2b:79:77: c5:b6:8e:6f:6d:dd:e2:89:96:70:3f:3f:40:80:a2:e4:22:1a: e0:bf:24:26 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIUN4avPT60/5Ld+HNviupGVQ/EwqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA3MDMxMzU0MTJaFw0yNjA3MDIxMzU5MTJaMDMxMTAvBgNV BAMTKDE0OTAwMkU1MDMwODlBRjIyMjNGREEzMjVDNzlBNkYxQUQ4RkQ3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrKclJY6B/6pdD+7wiQdC/ieCT ygdq4JvNxmn2+vjv1+f/C0ll24X+YCwJt0DSzb/dkg0yPHIrMoLijlSMOo88mJaf RiDDNQ+RXA5ec0w3rd6JprvrgVCG2zfL00t5Sjzjp6EhDZPxXjk4uPNTOzUnoIzS fZN5PoOUbWc3au/XYqnHYXXIBIlBjz5zsRZ82Xx80Y5YdwC/Nk5PpAJniI9qjaq4 zHsfL2XSqZ0lXReugits3RRRxW5pTdusX1gK2vxZmMvpOoFRuE9lj3Tni6nu9QUr dJDJFkz5p+nGCT5dNbIRdbosIsr9DBsyTKvw5CXWd0rwPTIfHtTyVCMt7aVBAgMB AAGjggKPMIICizAdBgNVHQ4EFgQUFJAC5QMImvIiP9oyXHmm8a2P1zYwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMG8GCCsGAQUFBwELBGMwYTBfBggrBgEFBQcwC4ZTcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO AjCBgQYIKwYBBQUHAQcBAf8EcjBwMG4EAgABMGgDBAJULuwDBAJWJrQDBAJZdEAD BAFZdEgDBAFZdJQDBAFZdNIDBAJZdQADBAFZdQwwDAMEAVl1XgMEAll1YAMEAll1 cAMEAll1eAMEAll1hAMEAVl1jgMEAVl1ngMEAll1rAMEAVl12DANBgkqhkiG9w0B AQsFAAOCAQEAP48aoSzBGOjz05xCLOUKFN/8ak2qNzKIR/+iUNCysizxjvZRDDfi WNW83AaEFC+GB7u/LRzQ0zLXZUhBt1Hmfh0oBiWGPNw8GLhzY0+94Xtr0TtViGIw v0Z5LPrMF6BZRoS0YHhpbaIz2g+ws4ty3v2zQhxhso+85OGWsSNjkWImUF4TmZ/m wYicHefrvNxyalmaRff2J2DRICo71Kye5q5zQZ+nlrj+cY/Zq41OfXOo6hP6Qv4M /UaSSSEntP1c6q2bj4tI0YZ2B53rQI1a9I5/PLQfl1c2lDp+htrgXTivAGV5pq18 K3l3xbaOb23d4omWcD8/QICi5CIa4L8kJg== -----END CERTIFICATE-----Generated at Sat Jul 5 21:06:26 2025 by rpki-client