$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS137409.roa File: AS137409.roa (raw, json) Hash identifier: T2MyHLro8cLoza0sZrj3jBN0GJbwgoqbMzFBS+m/Oc8= Subject key identifier: DE:7B:C3:9A:CC:91:DC:01:97:BB:17:2F:A9:B7:ED:C4:A7:89:FA:DC Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 45A13B3D96B66618442E77E7912741FBBD69F280 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS137409.roa Signing time: Thu 17 Apr 2025 09:25:12 +0000 ROA not before: Thu 17 Apr 2025 09:20:12 +0000 ROA not after: Thu 16 Apr 2026 09:25:12 +0000 asID: 137409 IP address blocks: 89.116.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 01:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a1:3b:3d:96:b6:66:18:44:2e:77:e7:91:27:41:fb:bd:69:f2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 17 09:20:12 2025 GMT Not After : Apr 16 09:25:12 2026 GMT Subject: CN=DE7BC39ACC91DC0197BB172FA9B7EDC4A789FADC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3e:0a:eb:08:89:20:5f:11:01:4c:d6:05:e5: 2a:95:31:79:e2:55:af:09:a6:76:2f:76:c3:51:1e: c1:59:b4:fa:d0:62:09:08:72:8f:32:f1:db:88:a1: 51:2c:eb:d1:03:28:61:c7:1d:65:0f:15:6b:32:44: 22:11:0f:66:21:8a:bb:f4:90:31:91:43:15:86:05: f4:13:06:db:b3:41:8c:06:0d:60:72:3c:d0:7a:ca: 9d:e7:f9:2d:71:d9:3d:4d:3e:d2:c0:f1:a3:9e:dd: f2:9e:e2:2e:98:a6:2d:b7:0d:ba:8d:3e:04:12:83: 9e:f6:b2:4c:d0:99:6e:42:e2:12:ef:42:40:98:f0: b3:8a:3f:a1:cd:13:bf:de:8d:78:06:66:89:b9:b2: d6:ae:70:71:75:8c:88:85:d5:f2:26:c2:ff:44:10: c3:e8:5f:03:71:a9:96:61:c1:72:8d:a7:74:38:52: cf:9c:8d:6a:89:3a:1c:ae:d3:cb:4a:34:ad:e9:54: 9d:19:87:c1:60:3d:71:94:0f:b3:71:04:c9:8e:4c: 5a:41:df:00:9c:84:dc:47:58:41:2e:5f:15:e2:3b: 5a:be:bc:fe:e5:49:09:64:04:3b:fb:91:44:63:fc: d4:a1:bb:f7:76:80:9e:84:c1:7c:4d:42:6e:5a:7f: 03:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7B:C3:9A:CC:91:DC:01:97:BB:17:2F:A9:B7:ED:C4:A7:89:FA:DC X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS137409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.200.0/24 Signature Algorithm: sha256WithRSAEncryption 57:1e:24:bf:4f:73:f8:a5:86:aa:e2:d5:09:7a:e8:d9:02:aa: e9:41:9b:ed:45:c5:2c:e5:54:39:5b:20:b8:4d:cf:9d:c0:bb: 05:80:d3:21:f3:6d:3e:29:27:c6:fa:79:3c:76:28:a0:9e:24: 2d:1b:66:10:27:f5:2f:20:71:cc:62:42:a1:67:ca:68:59:ba: e4:ff:b1:09:79:2f:69:c9:69:32:14:7a:4b:de:f1:09:7c:ea: 60:36:3b:91:eb:ed:da:1a:40:eb:c2:c0:90:81:4c:5b:7c:cb: ab:75:8c:82:90:f5:ae:84:fb:80:7c:20:9e:67:ca:4c:f6:ca: 5b:bd:bf:0a:d2:3f:e1:d8:a9:10:f9:11:15:69:d7:70:35:21: 9f:29:f6:b0:8e:2c:34:92:e4:0c:b2:01:2f:a9:1a:b3:f6:c2: 7b:38:86:39:60:cc:ae:fa:ce:ca:51:ff:72:85:a7:f0:02:fc: 82:a5:03:34:52:27:5b:ab:4d:6c:87:6b:8a:ca:ab:24:00:e1: 0a:38:b1:19:8e:bd:8d:e9:e1:7c:33:57:59:b3:ed:23:d6:dd: d9:ca:58:71:84:62:c3:a9:e5:ae:7b:f2:15:4e:85:15:67:dd: bb:55:8c:e5:07:ad:15:d9:3a:bd:ea:3a:21:e4:04:df:14:26: af:2d:44:cf -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIURaE7PZa2ZhhELnfnkSdB+71p8oAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA0MTcwOTIwMTJaFw0yNjA0MTYwOTI1MTJaMDMxMTAvBgNV BAMTKERFN0JDMzlBQ0M5MURDMDE5N0JCMTcyRkE5QjdFREM0QTc4OUZBREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgPgrrCIkgXxEBTNYF5SqVMXni Va8JpnYvdsNRHsFZtPrQYgkIco8y8duIoVEs69EDKGHHHWUPFWsyRCIRD2Yhirv0 kDGRQxWGBfQTBtuzQYwGDWByPNB6yp3n+S1x2T1NPtLA8aOe3fKe4i6Ypi23DbqN PgQSg572skzQmW5C4hLvQkCY8LOKP6HNE7/ejXgGZom5staucHF1jIiF1fImwv9E EMPoXwNxqZZhwXKNp3Q4Us+cjWqJOhyu08tKNK3pVJ0Zh8FgPXGUD7NxBMmOTFpB 3wCchNxHWEEuXxXiO1q+vP7lSQlkBDv7kURj/NShu/d2gJ6EwXxNQm5afwMNAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQU3nvDmsyR3AGXuxcvqbftxKeJ+twwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEzNzQwOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl0yDANBgkqhkiG9w0B AQsFAAOCAQEAVx4kv09z+KWGquLVCXro2QKq6UGb7UXFLOVUOVsguE3PncC7BYDT IfNtPiknxvp5PHYooJ4kLRtmECf1LyBxzGJCoWfKaFm65P+xCXkvaclpMhR6S97x CXzqYDY7kevt2hpA68LAkIFMW3zLq3WMgpD1roT7gHwgnmfKTPbKW72/CtI/4dip EPkRFWnXcDUhnyn2sI4sNJLkDLIBL6kas/bCeziGOWDMrvrOylH/coWn8AL8gqUD NFInW6tNbIdrisqrJADhCjixGY69jenhfDNXWbPtI9bd2cpYcYRiw6nlrnvyFU6F FWfdu1WM5QetFdk6veo6IeQE3xQmry1Ezw== -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:16 2025 by rpki-client