$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa File: AS834.roa (raw, json) Hash identifier: g4Yarp18W1uOWLz8uuo9alikb77Cqpg13lVSl2DlQ2w= Subject key identifier: A7:2F:25:A1:1E:D1:CF:61:28:3C:0E:3B:D2:1A:39:A2:17:E9:7E:0C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7DC57BF6B9DB75D80AACBDE72127B5854AD1D5BA Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa Signing time: Mon 20 Oct 2025 12:22:29 +0000 ROA not before: Mon 20 Oct 2025 12:17:29 +0000 ROA not after: Mon 19 Oct 2026 12:22:29 +0000 asID: 834 IP address blocks: 84.46.236.0/22 maxlen: 24 86.38.180.0/23 maxlen: 24 86.38.182.0/23 maxlen: 24 86.38.246.0/24 maxlen: 24 89.116.64.0/22 maxlen: 24 89.116.72.0/23 maxlen: 24 89.116.148.0/23 maxlen: 23 89.116.210.0/23 maxlen: 23 89.117.0.0/22 maxlen: 24 89.117.12.0/23 maxlen: 24 89.117.81.0/24 maxlen: 24 89.117.94.0/23 maxlen: 24 89.117.96.0/22 maxlen: 24 89.117.112.0/22 maxlen: 22 89.117.120.0/22 maxlen: 24 89.117.132.0/22 maxlen: 22 89.117.142.0/23 maxlen: 24 89.117.158.0/23 maxlen: 24 89.117.172.0/22 maxlen: 24 89.117.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Oct 2025 11:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c5:7b:f6:b9:db:75:d8:0a:ac:bd:e7:21:27:b5:85:4a:d1:d5:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Oct 20 12:17:29 2025 GMT Not After : Oct 19 12:22:29 2026 GMT Subject: CN=A72F25A11ED1CF61283C0E3BD21A39A217E97E0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fc:9b:0c:05:ad:11:3d:f2:29:c3:5c:09:be: 02:fd:09:f7:fe:5e:20:a3:59:81:14:f7:52:9a:cb: 37:7b:51:ac:81:9f:97:4d:46:f6:7a:0b:91:26:29: 39:4c:3b:6f:68:22:92:58:9c:ae:af:13:25:7b:1f: 6e:08:a4:44:5c:c0:3d:22:42:24:78:16:a8:10:bb: 3a:3c:2c:99:0c:fe:1e:b4:28:0f:2f:30:d2:60:34: 06:21:14:94:89:0c:e4:78:94:7b:0b:a3:48:f3:d1: 0c:0d:61:55:bc:0c:0b:f5:93:17:2f:d0:36:93:29: fe:55:4f:41:20:25:0d:9a:df:99:65:32:7c:b8:f6: 0e:4b:70:3f:56:f7:38:40:ea:f4:d7:7b:c8:40:91: 81:38:ce:57:99:55:24:5f:30:7a:40:59:87:fd:8b: 32:73:8c:7d:93:4e:f8:86:65:ba:3b:a6:da:5d:6c: b6:91:26:8c:40:44:10:cd:27:f5:09:c1:c4:95:3a: 12:ec:94:f8:41:bb:5a:bf:4a:b1:a0:3c:a9:d6:3b: 9b:1a:19:1d:ac:3b:8e:52:d1:34:eb:7d:5c:9a:b5: 06:0c:a7:25:af:4b:68:0a:16:0f:f7:3d:a7:09:a0: 7e:bc:e3:52:da:fa:35:29:14:8b:e7:fe:ea:cf:74: 95:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2F:25:A1:1E:D1:CF:61:28:3C:0E:3B:D2:1A:39:A2:17:E9:7E:0C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.46.236.0/22 86.38.180.0/22 86.38.246.0/24 89.116.64.0/22 89.116.72.0/23 89.116.148.0/23 89.116.210.0/23 89.117.0.0/22 89.117.12.0/23 89.117.81.0/24 89.117.94.0-89.117.99.255 89.117.112.0/22 89.117.120.0/22 89.117.132.0/22 89.117.142.0/23 89.117.158.0/23 89.117.172.0/22 89.117.216.0/23 Signature Algorithm: sha256WithRSAEncryption b9:48:2c:e1:33:e1:20:19:2d:2e:8b:00:e0:f1:12:3c:d5:3c: 87:db:a4:be:4e:c0:d9:62:e5:8e:27:c1:12:df:11:43:89:b8: a0:f9:be:87:c5:98:1b:28:0c:7f:7a:60:8e:7f:47:80:91:5b: 62:ed:4a:a5:91:0f:a8:b7:f8:ac:bc:26:6d:63:e4:99:16:49: 62:04:48:68:00:bd:ab:26:e2:28:a0:b4:8c:4d:1e:1a:11:e3: 30:0e:c9:11:db:a6:6e:ef:79:40:20:45:d7:e2:d6:4b:c6:5c: 72:2c:32:85:cd:85:22:6b:76:a5:d5:c7:92:3d:8c:7e:25:1b: c0:a9:ee:00:d5:2e:13:26:8c:6a:fb:82:bc:d8:fa:d9:6d:2f: cc:23:76:f8:fc:d6:ed:8a:6c:2c:66:3b:23:b9:2d:9a:e4:7a: 91:de:0a:55:9d:12:ae:66:ee:81:11:e3:7b:70:34:2a:63:6c: 36:88:2b:44:79:05:d8:82:0b:92:ea:54:34:c4:db:e9:fe:cf: 7d:f0:59:1f:1e:88:55:66:ea:c0:c5:54:f4:7d:f5:13:2f:b8: fc:99:a0:cf:72:98:97:42:af:3b:14:c7:0e:5c:3b:67:22:d2: 80:0b:b0:94:2b:68:e7:f6:0f:14:75:da:7b:f2:f8:70:17:81: 24:27:38:89 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgIUfcV79rnbddgKrL3nISe1hUrR1bowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEwMjAxMjE3MjlaFw0yNjEwMTkxMjIyMjlaMDMxMTAvBgNV BAMTKEE3MkYyNUExMUVEMUNGNjEyODNDMEUzQkQyMUEzOUEyMTdFOTdFMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb/JsMBa0RPfIpw1wJvgL9Cff+ XiCjWYEU91Kayzd7UayBn5dNRvZ6C5EmKTlMO29oIpJYnK6vEyV7H24IpERcwD0i QiR4FqgQuzo8LJkM/h60KA8vMNJgNAYhFJSJDOR4lHsLo0jz0QwNYVW8DAv1kxcv 0DaTKf5VT0EgJQ2a35llMny49g5LcD9W9zhA6vTXe8hAkYE4zleZVSRfMHpAWYf9 izJzjH2TTviGZbo7ptpdbLaRJoxARBDNJ/UJwcSVOhLslPhBu1q/SrGgPKnWO5sa GR2sO45S0TTrfVyatQYMpyWvS2gKFg/3PacJoH6841La+jUpFIvn/urPdJXTAgMB AAGjggKbMIIClzAdBgNVHQ4EFgQUpy8loR7Rz2EoPA470ho5ohfpfgwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMG8GCCsGAQUFBwELBGMwYTBfBggrBgEFBQcwC4ZTcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO AjCBjQYIKwYBBQUHAQcBAf8EfjB8MHoEAgABMHQDBAJULuwDBAJWJrQDBABWJvYD BAJZdEADBAFZdEgDBAFZdJQDBAFZdNIDBAJZdQADBAFZdQwDBABZdVEwDAMEAVl1 XgMEAll1YAMEAll1cAMEAll1eAMEAll1hAMEAVl1jgMEAVl1ngMEAll1rAMEAVl1 2DANBgkqhkiG9w0BAQsFAAOCAQEAuUgs4TPhIBktLosA4PESPNU8h9ukvk7A2WLl jifBEt8RQ4m4oPm+h8WYGygMf3pgjn9HgJFbYu1KpZEPqLf4rLwmbWPkmRZJYgRI aAC9qybiKKC0jE0eGhHjMA7JEdumbu95QCBF1+LWS8Zcciwyhc2FImt2pdXHkj2M fiUbwKnuANUuEyaMavuCvNj62W0vzCN2+PzW7YpsLGY7I7ktmuR6kd4KVZ0Srmbu gRHje3A0KmNsNogrRHkF2IILkupUNMTb6f7PffBZHx6IVWbqwMVU9H31Ey+4/Jmg z3KYl0KvOxTHDlw7ZyLSgAuwlCto5/YPFHXae/L4cBeBJCc4iQ== -----END CERTIFICATE-----Generated at Wed Oct 22 03:09:11 2025 by rpki-client