$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS20648.roa File: AS20648.roa (raw, json) Hash identifier: yry6Ba/8I2Nf+amb1xJFoqq/6ouwpRMt735olOQ+Ry4= Subject key identifier: D2:E2:12:27:38:BC:75:D1:80:1B:04:68:9D:98:8D:72:DA:C3:E4:7D Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 41327A09B875F38991D1D1C08B57D1E02618E03D Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS20648.roa Signing time: Fri 27 Feb 2026 08:46:33 +0000 ROA not before: Fri 27 Feb 2026 08:41:33 +0000 ROA not after: Fri 26 Feb 2027 08:46:33 +0000 asID: 20648 IP address blocks: 86.38.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 10:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:32:7a:09:b8:75:f3:89:91:d1:d1:c0:8b:57:d1:e0:26:18:e0:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Feb 27 08:41:33 2026 GMT Not After : Feb 26 08:46:33 2027 GMT Subject: CN=D2E2122738BC75D1801B04689D988D72DAC3E47D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b6:d9:47:2a:80:49:86:cf:ce:b0:54:2d:f4: ae:32:9c:c0:0e:6c:d5:9c:e6:87:84:aa:b9:f0:ac: 3e:c5:74:79:b6:48:f4:5d:c3:86:30:fb:40:d3:63: ce:8f:3b:92:40:d9:47:f0:ff:7b:5f:ef:15:c3:6e: 36:35:f9:fa:7d:f7:c2:44:6e:86:f9:30:c2:0f:f6: 75:cb:75:54:8a:8f:fd:c9:5d:9f:1e:75:3e:1b:d3: 90:16:70:9f:0d:47:2a:5a:39:61:67:48:3b:03:76: 9e:77:6b:95:a6:6f:9a:b6:ba:60:1c:c9:d5:e2:ac: 00:88:55:5e:c3:b1:61:15:2d:e6:4c:64:1e:53:14: 73:73:1a:6d:82:d5:8b:ff:30:22:4d:d2:27:70:61: 0a:85:33:46:74:5c:f4:02:4a:c4:aa:9c:dc:40:87: ab:d4:fa:36:7a:e6:f3:9b:48:6f:22:fe:0a:d3:72: f1:ef:7f:ed:83:c6:aa:dd:af:a2:11:15:ba:7d:46: a7:1e:de:ac:77:34:54:cd:89:23:39:06:4b:10:03: cc:6f:70:aa:22:3a:cd:8c:2d:64:7b:a6:73:26:e1: ed:3c:2d:85:2a:22:31:ae:59:ec:a2:89:a4:dc:ad: b6:98:13:92:dd:9f:57:4f:3e:a0:4c:02:60:06:c1: bf:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E2:12:27:38:BC:75:D1:80:1B:04:68:9D:98:8D:72:DA:C3:E4:7D X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS20648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.249.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:c2:51:1f:a6:de:17:5b:d8:d0:0d:56:e5:7d:d4:aa:c1:d3: 6a:05:37:fb:2a:8e:41:75:1b:6a:7b:d7:c2:da:d4:77:ac:de: cd:4f:f1:db:15:67:df:17:e0:98:5c:43:37:bd:cf:e2:07:85: 77:77:65:3d:18:9c:6a:96:31:30:76:88:14:cc:22:a8:b0:6c: 98:5b:50:4a:56:c8:73:1c:29:40:92:45:63:f5:45:c7:be:ce: fb:33:99:1f:bd:f7:33:63:dc:e7:07:33:c5:f6:ce:7c:fa:3d: 9c:3c:15:b8:7d:29:ff:98:28:aa:f7:2e:e9:9b:08:a1:21:e8: 8d:0f:6f:d3:84:21:31:0c:25:a4:ab:1a:ae:6e:6b:ee:f4:c0: 85:26:a8:5f:cc:c0:87:d6:33:37:7e:27:4d:72:c7:0a:25:01: 47:b9:43:2d:e3:e2:5c:91:ff:7d:53:a2:76:bf:60:0e:36:22: ad:45:4c:05:ee:b0:0b:9e:36:7b:56:6e:a9:7f:ca:8a:b4:8c: 5c:e6:57:48:d1:3d:9d:28:a2:b8:98:86:e2:b6:51:7e:16:8d: 05:35:07:bb:ea:00:86:2b:c2:94:c5:f0:45:2a:c3:f8:fd:2c: 37:4e:43:2e:e0:51:4e:a7:00:29:32:09:b7:4d:fb:67:fc:68: d6:32:a0:28 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUQTJ6Cbh184mR0dHAi1fR4CYY4D0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjAyMjcwODQxMzNaFw0yNzAyMjYwODQ2MzNaMDMxMTAvBgNV BAMTKEQyRTIxMjI3MzhCQzc1RDE4MDFCMDQ2ODlEOTg4RDcyREFDM0U0N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSttlHKoBJhs/OsFQt9K4ynMAO bNWc5oeEqrnwrD7FdHm2SPRdw4Yw+0DTY86PO5JA2Ufw/3tf7xXDbjY1+fp998JE bob5MMIP9nXLdVSKj/3JXZ8edT4b05AWcJ8NRypaOWFnSDsDdp53a5Wmb5q2umAc ydXirACIVV7DsWEVLeZMZB5TFHNzGm2C1Yv/MCJN0idwYQqFM0Z0XPQCSsSqnNxA h6vU+jZ65vObSG8i/grTcvHvf+2Dxqrdr6IRFbp9Rqce3qx3NFTNiSM5BksQA8xv cKoiOs2MLWR7pnMm4e08LYUqIjGuWeyiiaTcrbaYE5Ldn1dPPqBMAmAGwb/zAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQU0uISJzi8ddGAGwRonZiNctrD5H0wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwNjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVib5MA0GCSqGSIb3DQEB CwUAA4IBAQCOwlEfpt4XW9jQDVblfdSqwdNqBTf7Ko5BdRtqe9fC2tR3rN7NT/Hb FWffF+CYXEM3vc/iB4V3d2U9GJxqljEwdogUzCKosGyYW1BKVshzHClAkkVj9UXH vs77M5kfvfczY9znBzPF9s58+j2cPBW4fSn/mCiq9y7pmwihIeiND2/ThCExDCWk qxqubmvu9MCFJqhfzMCH1jM3fidNcscKJQFHuUMt4+Jckf99U6J2v2AONiKtRUwF 7rALnjZ7Vm6pf8qKtIxc5ldI0T2dKKK4mIbitlF+Fo0FNQe76gCGK8KUxfBFKsP4 /Sw3TkMu4FFOpwApMgm3Tftn/GjWMqAo -----END CERTIFICATE-----Generated at Mon Mar 2 01:23:40 2026 by rpki-client