$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS20473.roa File: AS20473.roa (raw, json) Hash identifier: hrxvUNPAy9PusJ/SEukwAjbFW0udl8Ar4EyeKfJkV2M= Subject key identifier: F0:0E:F4:37:7C:AA:65:95:E1:8C:80:72:63:2C:0D:48:D1:2E:07:77 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7D34B6202ABF32517D7B2C42882C318247187424 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS20473.roa Signing time: Tue 29 Jul 2025 15:38:03 +0000 ROA not before: Tue 29 Jul 2025 15:33:03 +0000 ROA not after: Tue 28 Jul 2026 15:38:03 +0000 asID: 20473 IP address blocks: 86.38.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 07 Aug 2025 20:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:34:b6:20:2a:bf:32:51:7d:7b:2c:42:88:2c:31:82:47:18:74:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 29 15:33:03 2025 GMT Not After : Jul 28 15:38:03 2026 GMT Subject: CN=F00EF4377CAA6595E18C8072632C0D48D12E0777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1b:bd:1d:f2:3a:9c:00:00:4a:4c:6b:55:81: a7:73:fe:3c:c6:ad:1a:81:ca:aa:20:82:11:b9:25: 07:77:2b:65:0e:b5:d4:b6:21:af:a3:9e:de:fd:f7: d3:50:f8:09:77:1b:43:a7:76:b0:8c:6f:88:76:e7: 34:60:17:7b:a8:b7:b6:de:67:e1:f8:cc:c2:74:5f: be:ce:4a:81:f6:f2:c6:36:13:a5:13:07:45:01:4f: 79:ef:3f:53:20:9a:f0:5e:6b:dd:c6:d3:63:ed:7b: 50:62:57:71:cc:b3:03:f7:ef:54:f8:0b:17:1c:b9: a1:d9:bf:83:22:bb:e9:4c:e6:5f:aa:3d:95:9c:0e: da:3e:0a:72:fa:b3:35:8d:2c:b9:f7:f2:7a:08:1b: 49:f1:19:4c:36:c1:40:7b:d5:29:fd:73:4a:fa:b1: 61:d6:55:d5:43:c5:8e:73:58:45:9f:cf:41:b3:97: b8:33:03:72:ac:e9:5e:1c:7c:c7:e5:32:91:73:ff: 91:83:69:02:27:23:2b:07:a9:f1:f4:c1:16:bf:96: cc:a1:47:75:14:c1:60:a2:e6:04:62:2e:36:13:a8: 07:b0:d1:e6:1d:17:1f:02:b9:de:54:0c:37:9b:a0: e7:d8:6c:74:5b:3d:be:10:32:af:df:b3:1c:3d:5f: 8d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:0E:F4:37:7C:AA:65:95:E1:8C:80:72:63:2C:0D:48:D1:2E:07:77 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS20473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.232.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:9b:b3:6a:74:93:51:03:f5:e7:a7:c2:f5:c2:c6:1b:92:7c: 8f:b4:0f:d4:56:78:b9:31:00:e9:7b:dd:26:0d:05:76:10:6b: 1f:c2:4a:b5:9e:67:c2:a7:d6:e0:80:30:79:a8:07:a1:ba:64: 65:ec:93:27:6b:a2:b9:62:a0:6e:59:87:22:f0:d8:36:1e:1a: 7b:00:bf:fd:90:49:6d:00:0b:78:e5:d3:05:6d:2c:53:82:8e: 7d:f6:16:8d:12:b8:27:79:7d:0b:db:b3:53:9d:16:f3:95:b7: 7c:df:9e:77:9c:7c:5a:32:72:3a:19:64:d6:16:aa:ad:ae:96: a6:6b:08:32:6a:04:61:06:24:5d:f6:f0:ba:65:0e:87:5a:fc: c3:d8:10:55:be:49:2e:ac:a4:42:37:f1:92:d0:9b:f0:ac:7f: 63:92:67:1e:9f:6d:59:f1:1a:29:81:5b:29:5e:71:32:f4:92: 83:e8:54:d8:a3:48:b0:d1:b7:11:ff:b4:fd:e1:44:bb:22:19: c3:9f:01:8c:01:9a:92:c5:e1:f4:0e:be:2a:1e:70:a7:a6:04: cf:0e:af:ed:5b:53:3f:d2:04:d9:1c:71:22:2e:a0:32:e4:9b: 78:a6:3e:21:49:a7:f3:55:0f:cf:5f:ec:1a:58:46:0f:60:22: bd:5c:6e:f2 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUfTS2ICq/MlF9eyxCiCwxgkcYdCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA3MjkxNTMzMDNaFw0yNjA3MjgxNTM4MDNaMDMxMTAvBgNV BAMTKEYwMEVGNDM3N0NBQTY1OTVFMThDODA3MjYzMkMwRDQ4RDEyRTA3NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVG70d8jqcAABKTGtVgadz/jzG rRqByqogghG5JQd3K2UOtdS2Ia+jnt7999NQ+Al3G0OndrCMb4h25zRgF3uot7be Z+H4zMJ0X77OSoH28sY2E6UTB0UBT3nvP1MgmvBea93G02Pte1BiV3HMswP371T4 CxccuaHZv4Miu+lM5l+qPZWcDto+CnL6szWNLLn38noIG0nxGUw2wUB71Sn9c0r6 sWHWVdVDxY5zWEWfz0Gzl7gzA3Ks6V4cfMflMpFz/5GDaQInIysHqfH0wRa/lsyh R3UUwWCi5gRiLjYTqAew0eYdFx8Cud5UDDeboOfYbHRbPb4QMq/fsxw9X43NAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQU8A70N3yqZZXhjIByYywNSNEuB3cwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwNDczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAViboMA0GCSqGSIb3DQEB CwUAA4IBAQA+m7NqdJNRA/Xnp8L1wsYbknyPtA/UVni5MQDpe90mDQV2EGsfwkq1 nmfCp9bggDB5qAehumRl7JMna6K5YqBuWYci8Ng2Hhp7AL/9kEltAAt45dMFbSxT go599haNErgneX0L27NTnRbzlbd83553nHxaMnI6GWTWFqqtrpamawgyagRhBiRd 9vC6ZQ6HWvzD2BBVvkkurKRCN/GS0JvwrH9jkmcen21Z8RopgVspXnEy9JKD6FTY o0iw0bcR/7T94US7IhnDnwGMAZqSxeH0Dr4qHnCnpgTPDq/tW1M/0gTZHHEiLqAy 5Jt4pj4hSafzVQ/PX+waWEYPYCK9XG7y -----END CERTIFICATE-----Generated at Thu Aug 7 05:11:10 2025 by rpki-client