$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: AWSXQ0FwVm2szw13US3VrSTZArT6stzWbk9cfbhEwsY= Subject key identifier: 66:13:69:07:10:04:B1:F3:CC:77:38:BC:6B:D5:83:15:EF:57:C9:DC Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 29A5A8B5ACCBE75D5A0918C03FE6441C72F04D96 Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS214025.roa Signing time: Wed 15 Apr 2026 15:19:08 +0000 ROA not before: Wed 15 Apr 2026 15:14:08 +0000 ROA not after: Wed 14 Apr 2027 15:19:08 +0000 asID: 214025 IP address blocks: 169.40.42.0/24 maxlen: 24 169.40.43.0/24 maxlen: 24 169.40.56.0/24 maxlen: 24 169.40.96.0/24 maxlen: 24 169.40.98.0/24 maxlen: 24 169.40.100.0/24 maxlen: 24 169.40.116.0/24 maxlen: 24 169.40.117.0/24 maxlen: 24 169.40.121.0/24 maxlen: 24 169.40.136.0/24 maxlen: 24 169.40.152.0/24 maxlen: 24 169.40.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 20:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a5:a8:b5:ac:cb:e7:5d:5a:09:18:c0:3f:e6:44:1c:72:f0:4d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Apr 15 15:14:08 2026 GMT Not After : Apr 14 15:19:08 2027 GMT Subject: CN=661369071004B1F3CC7738BC6BD58315EF57C9DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9f:76:7a:b3:81:fb:67:5e:0a:3d:24:70:5f: 1d:d6:60:41:47:74:f9:76:21:a3:59:20:a7:2e:0c: 59:96:7e:e6:6b:25:ed:1c:6f:74:65:0e:c8:4c:f4: 4f:fc:63:54:01:5a:34:ed:9a:8a:75:8b:4a:45:01: 3b:7d:1b:65:1d:a5:c9:d7:00:9e:d6:e3:75:e3:17: cf:0e:9c:9a:10:e1:81:82:bc:f7:ba:a1:75:ff:af: 71:db:16:c4:aa:66:6d:ae:46:05:90:c4:80:77:4b: ea:b2:5e:fe:4b:80:dd:05:c2:39:17:eb:ad:05:33: 9c:76:f3:02:05:c8:b2:6c:07:1e:82:b4:e8:fc:d2: e8:19:2a:a6:ea:fb:15:1e:fa:49:94:2e:b5:5f:e7: 5e:fc:9c:30:39:c1:f0:6c:b4:60:e0:06:6c:5f:b1: 03:ce:9d:e0:9d:85:85:d6:ee:6c:0c:e1:ab:b8:24: 86:d5:90:18:fd:d1:0c:b4:7d:70:31:0b:7d:4c:38: db:1d:6e:fe:6e:42:9d:bc:1d:e0:42:51:a5:e7:55: ec:e5:7c:92:fa:b3:20:86:bc:24:5a:d8:b1:65:ca: 28:21:b3:5b:9c:92:e2:8b:61:fc:75:31:4a:fc:0c: 55:3a:61:fa:8f:a7:28:dd:5d:ad:64:ec:65:53:b3: dc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:13:69:07:10:04:B1:F3:CC:77:38:BC:6B:D5:83:15:EF:57:C9:DC X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.42.0/23 169.40.56.0/24 169.40.96.0/24 169.40.98.0/24 169.40.100.0/24 169.40.116.0/23 169.40.121.0/24 169.40.136.0/24 169.40.152.0/24 169.40.159.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:aa:0c:6b:01:0e:49:11:18:4b:8d:49:3c:9a:d6:33:79:4c: 16:e3:19:75:ca:03:07:c5:9c:60:38:f6:48:a7:23:c8:55:da: 79:98:82:c3:7c:48:2a:a2:b1:74:f9:5c:36:43:02:3b:8b:7b: c8:6b:35:7d:9c:73:60:03:1f:bd:6f:24:ab:09:13:68:99:db: fe:f0:eb:1d:b4:9c:82:3c:5e:e0:1a:0b:41:fd:15:9a:77:e7: f1:89:c3:b2:f5:d2:18:dd:66:1c:4f:4d:f3:f9:34:c3:09:d2: 76:05:20:8d:a6:21:dc:8e:d9:51:d9:a7:f2:87:0e:1b:92:87: 7d:0d:19:19:b1:89:80:ce:f8:f9:0b:20:17:a9:2a:49:c2:d3: f7:e1:cc:53:cf:f2:cb:d0:82:89:3f:9a:85:cc:e6:49:1f:e7: 32:57:84:3b:77:2d:5c:19:b9:e9:4c:ca:13:e1:e1:75:de:89: 2b:18:02:46:d6:68:d4:68:c7:f2:c5:12:86:b6:fe:7b:70:38: 25:59:ae:f3:10:e9:4f:8d:67:f9:10:59:81:17:b1:ea:da:24: 97:bb:ed:36:f1:01:14:f7:a6:38:51:e3:89:7a:94:06:03:3b: df:de:ba:ec:eb:7c:60:3e:01:5c:69:10:fa:5f:ee:7d:6c:d1: 44:a2:76:94 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgIUKaWotazL511aCRjAP+ZEHHLwTZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjA0MTUxNTE0MDhaFw0yNzA0MTQxNTE5MDhaMDMxMTAvBgNV BAMTKDY2MTM2OTA3MTAwNEIxRjNDQzc3MzhCQzZCRDU4MzE1RUY1N0M5REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvn3Z6s4H7Z14KPSRwXx3WYEFH dPl2IaNZIKcuDFmWfuZrJe0cb3RlDshM9E/8Y1QBWjTtmop1i0pFATt9G2UdpcnX AJ7W43XjF88OnJoQ4YGCvPe6oXX/r3HbFsSqZm2uRgWQxIB3S+qyXv5LgN0FwjkX 660FM5x28wIFyLJsBx6CtOj80ugZKqbq+xUe+kmULrVf5178nDA5wfBstGDgBmxf sQPOneCdhYXW7mwM4au4JIbVkBj90Qy0fXAxC31MONsdbv5uQp28HeBCUaXnVezl fJL6syCGvCRa2LFlyighs1uckuKLYfx1MUr8DFU6YfqPpyjdXa1k7GVTs9wNAgMB AAGjggJlMIICYTAdBgNVHQ4EFgQUZhNpBxAEsfPMdzi8a9WDFe9XydwwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzIxNDAyNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjBVBggrBgEFBQcBBwEB/wRGMEQwQgQCAAEwPAMEAakoKgMEAKkoOAMEAKko YAMEAKkoYgMEAKkoZAMEAakodAMEAKkoeQMEAKkoiAMEAKkomAMEAKkonzANBgkq hkiG9w0BAQsFAAOCAQEAbKoMawEOSREYS41JPJrWM3lMFuMZdcoDB8WcYDj2SKcj yFXaeZiCw3xIKqKxdPlcNkMCO4t7yGs1fZxzYAMfvW8kqwkTaJnb/vDrHbScgjxe 4BoLQf0Vmnfn8YnDsvXSGN1mHE9N8/k0wwnSdgUgjaYh3I7ZUdmn8ocOG5KHfQ0Z GbGJgM74+QsgF6kqScLT9+HMU8/yy9CCiT+ahczmSR/nMleEO3ctXBm56UzKE+Hh dd6JKxgCRtZo1GjH8sUShrb+e3A4JVmu8xDpT41n+RBZgRex6tokl7vtNvEBFPem OFHjiXqUBgM739667Ot8YD4BXGkQ+l/ufWzRRKJ2lA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:37:44 2026 by rpki-client