$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa File: AS209043.roa (raw, json) Hash identifier: XuzKeOXZHkyvPc72jSBWKlJknLPURExEPGwsEHsPV4w= Subject key identifier: B2:F6:B5:D6:FC:E1:1E:08:FC:26:7E:B5:96:3C:56:54:03:73:C4:23 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 294CCFAF03BD4B6EDF0A403EB07E10E56A40CEB9 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa Signing time: Wed 11 Jun 2025 15:05:29 +0000 ROA not before: Wed 11 Jun 2025 15:00:29 +0000 ROA not after: Wed 10 Jun 2026 15:05:29 +0000 asID: 209043 IP address blocks: 89.116.92.0/24 maxlen: 24 89.116.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Jun 2025 01:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4c:cf:af:03:bd:4b:6e:df:0a:40:3e:b0:7e:10:e5:6a:40:ce:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 11 15:00:29 2025 GMT Not After : Jun 10 15:05:29 2026 GMT Subject: CN=B2F6B5D6FCE11E08FC267EB5963C56540373C423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cc:69:9f:c3:5e:f2:02:fe:1e:46:c4:35:62: fc:9d:a1:5e:89:82:73:dd:e5:a2:f4:58:9d:2a:f2: 89:13:70:17:ee:4e:a8:85:7b:a3:4e:87:62:17:fa: f8:8d:de:c5:f1:50:87:72:37:5a:5b:05:a6:75:67: b5:4d:e4:70:f5:32:8f:6f:95:e0:41:45:88:40:96: 67:4c:dc:d7:b2:6d:c5:3d:d2:5a:6a:a5:04:a3:cf: 58:3c:46:6d:a4:53:e3:5c:71:ea:6e:81:31:f4:90: f0:9b:7c:4d:93:d2:97:b0:d4:a2:81:36:fa:0b:a0: 37:ba:64:be:df:cc:4d:82:e9:08:9c:2f:aa:3c:20: 8c:fc:f9:4d:07:b8:87:44:f4:33:78:50:b7:89:19: cb:fa:46:15:38:9e:96:37:43:5b:d3:fe:c4:32:6f: 51:83:b1:47:fb:8f:43:f8:cd:c9:14:1c:6a:55:14: f7:c9:a4:78:05:8c:91:8f:86:12:0c:e2:80:02:34: d1:04:82:98:54:15:99:f4:d3:86:5d:0c:51:71:64: f7:de:50:32:33:b1:3f:ee:82:52:01:19:52:91:1f: 81:eb:8e:f0:28:40:ec:b5:7a:56:14:46:f0:04:03: f0:e1:70:58:03:20:4b:cd:5a:e6:bc:2c:f5:78:fa: d9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F6:B5:D6:FC:E1:1E:08:FC:26:7E:B5:96:3C:56:54:03:73:C4:23 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.92.0/24 89.116.137.0/24 Signature Algorithm: sha256WithRSAEncryption b1:25:c2:a2:26:71:85:4c:6a:74:87:89:49:a1:73:cd:e6:2e: f0:9a:fa:bb:fb:1c:52:99:71:74:2e:9c:43:cb:2a:11:f4:a8: a0:aa:8a:54:87:78:38:8e:d3:38:a4:3e:a3:e5:f4:ae:46:26: c9:78:5f:74:3b:75:20:c0:a0:eb:02:82:c5:83:e2:87:7d:c4: d4:26:01:31:08:c8:eb:27:34:60:f7:8f:d3:07:89:56:19:41: 78:bc:5d:10:ed:4f:99:f2:92:61:28:94:96:09:12:93:47:18: 7b:a5:ee:25:b3:c1:47:19:30:bc:58:70:07:1e:11:6b:46:f0: c3:92:e7:b8:30:0f:cf:2e:97:1c:e3:e6:c8:37:d3:10:ea:8a: 88:e8:b9:93:78:e3:26:ea:83:a1:af:8f:dc:9b:db:88:d2:33: 78:48:74:f1:6c:25:16:89:16:8a:e7:4e:28:00:5c:91:2e:d7: 14:63:ab:1e:73:d8:38:61:ce:d7:fa:6e:68:d4:35:5e:88:69: ff:ec:fe:58:69:91:8f:8b:fa:75:a2:27:be:7c:8d:93:9d:8b: 97:bc:73:82:2f:96:59:6b:44:33:8b:5a:ec:af:52:42:0d:6d: 42:b0:70:8e:97:48:92:53:78:94:86:cb:50:f9:70:86:71:fb: 38:81:3d:f8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUKUzPrwO9S27fCkA+sH4Q5WpAzrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA2MTExNTAwMjlaFw0yNjA2MTAxNTA1MjlaMDMxMTAvBgNV BAMTKEIyRjZCNUQ2RkNFMTFFMDhGQzI2N0VCNTk2M0M1NjU0MDM3M0M0MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClzGmfw17yAv4eRsQ1YvydoV6J gnPd5aL0WJ0q8okTcBfuTqiFe6NOh2IX+viN3sXxUIdyN1pbBaZ1Z7VN5HD1Mo9v leBBRYhAlmdM3NeybcU90lpqpQSjz1g8Rm2kU+NccepugTH0kPCbfE2T0pew1KKB NvoLoDe6ZL7fzE2C6QicL6o8IIz8+U0HuIdE9DN4ULeJGcv6RhU4npY3Q1vT/sQy b1GDsUf7j0P4zckUHGpVFPfJpHgFjJGPhhIM4oACNNEEgphUFZn004ZdDFFxZPfe UDIzsT/uglIBGVKRH4HrjvAoQOy1elYURvAEA/DhcFgDIEvNWua8LPV4+tnNAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUsva11vzhHgj8Jn61ljxWVANzxCMwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTA0My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFl0XAMEAFl0iTANBgkq hkiG9w0BAQsFAAOCAQEAsSXCoiZxhUxqdIeJSaFzzeYu8Jr6u/scUplxdC6cQ8sq EfSooKqKVId4OI7TOKQ+o+X0rkYmyXhfdDt1IMCg6wKCxYPih33E1CYBMQjI6yc0 YPeP0weJVhlBeLxdEO1PmfKSYSiUlgkSk0cYe6XuJbPBRxkwvFhwBx4Ra0bww5Ln uDAPzy6XHOPmyDfTEOqKiOi5k3jjJuqDoa+P3JvbiNIzeEh08WwlFokWiudOKABc kS7XFGOrHnPYOGHO1/puaNQ1Xohp/+z+WGmRj4v6daInvnyNk52Ll7xzgi+WWWtE M4ta7K9SQg1tQrBwjpdIklN4lIbLUPlwhnH7OIE9+A== -----END CERTIFICATE-----Generated at Mon Jun 16 14:54:54 2025 by rpki-client