$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa File: AS209242.roa (raw, json) Hash identifier: c1fX+ZauWlDUxsTETsXRRO+61naqSqqY2voPnabFWUw= Subject key identifier: BC:DF:69:7A:FA:FF:52:3E:3E:B4:BB:93:6E:3F:CB:C5:38:4C:EC:F4 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3C6B8E450D1210735EEE84D3CD34E24F0C74A5C9 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa Signing time: Wed 18 Jun 2025 00:00:45 +0000 ROA not before: Tue 17 Jun 2025 23:55:45 +0000 ROA not after: Wed 17 Jun 2026 00:00:45 +0000 asID: 209242 IP address blocks: 86.38.214.0/24 maxlen: 24 89.116.46.0/23 maxlen: 24 89.116.161.0/24 maxlen: 24 89.116.180.0/24 maxlen: 24 89.117.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Jun 2025 06:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:6b:8e:45:0d:12:10:73:5e:ee:84:d3:cd:34:e2:4f:0c:74:a5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 17 23:55:45 2025 GMT Not After : Jun 17 00:00:45 2026 GMT Subject: CN=BCDF697AFAFF523E3EB4BB936E3FCBC5384CECF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:b7:fb:b0:d6:60:56:a7:47:6c:c5:e5:7b:60: c9:43:ea:62:3a:a7:39:ed:53:9f:a7:8d:1c:3c:ee: b8:af:c7:0a:96:d1:f7:4a:0a:60:48:ef:0e:93:6c: 89:b3:b6:0a:e9:31:7c:73:e9:d7:91:a3:a6:b0:f9: f0:85:c4:54:2d:83:75:bb:63:52:04:e9:f7:a3:c3: e1:e6:af:29:c5:b9:7e:07:d7:39:4b:73:aa:e5:04: f6:e2:96:f5:13:ce:73:7e:6a:96:f9:87:33:53:81: e8:b8:11:e9:a3:c3:14:3c:c1:ea:47:78:56:c5:e0: 57:b9:90:4b:6c:f8:69:57:b1:eb:f3:c4:5c:a1:fa: 87:3c:7a:46:8a:ab:e8:77:37:e3:5e:9d:22:53:93: 85:9e:9b:f7:4b:8a:4e:81:19:6a:05:f1:11:65:5f: ea:b9:73:7f:f9:0f:01:03:d3:90:b1:69:36:f9:55: 65:f5:9e:d4:d5:aa:79:90:da:4d:80:28:d0:a5:a7: 0d:6c:38:d2:bb:30:e4:35:a8:ff:2f:b3:1a:b4:6a: b8:1b:f2:c3:d0:29:b5:c5:b0:3b:c6:b9:55:4b:88: 21:6e:8b:b8:cc:2a:26:bd:e7:d4:cb:e5:07:1c:51: d4:ed:43:74:14:5b:25:7d:06:a1:65:76:c6:1d:38: 57:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:DF:69:7A:FA:FF:52:3E:3E:B4:BB:93:6E:3F:CB:C5:38:4C:EC:F4 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.214.0/24 89.116.46.0/23 89.116.161.0/24 89.116.180.0/24 89.117.112.0/24 Signature Algorithm: sha256WithRSAEncryption 40:bb:44:25:4d:90:42:db:a0:41:fd:de:75:c7:11:f2:ba:9e: 65:1c:34:c4:68:c0:58:3f:64:04:67:57:77:86:aa:a6:34:a1: df:01:52:66:fd:7e:26:11:99:85:5c:80:a6:07:54:cb:87:54: 44:3d:dd:1c:a6:b8:ef:c9:c7:ac:ee:30:c6:44:8e:8e:3a:cd: 5a:35:08:ef:6e:8f:d1:f4:50:4d:69:bf:23:72:0d:30:88:d3: fa:0d:89:cf:86:7e:60:fc:0b:2e:01:4f:06:64:a7:d3:33:a6: ed:85:58:66:33:40:cc:70:ff:a8:4e:39:54:6a:bc:17:c0:5c: 44:c6:78:7d:bf:a8:95:7e:91:b9:f5:5b:37:42:2d:5e:4a:51: fb:49:b9:38:c9:79:ab:9d:09:55:6d:05:11:00:d1:63:4b:9b: c4:37:b1:24:95:48:5e:cb:39:de:04:60:57:16:b6:5f:09:7b: 36:cf:61:2c:7c:47:5e:23:7e:7b:e9:80:5c:82:e9:be:91:3b: a0:f7:d7:cb:98:4a:21:7e:45:8d:da:5d:2f:1c:37:11:25:16: 53:bc:05:08:3e:9d:6c:7b:24:46:df:89:7c:8e:fb:6b:1d:13: c0:96:0a:af:6a:02:e2:bf:b3:e5:42:23:af:7f:0d:cf:d8:96: eb:75:0a:fd -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUPGuORQ0SEHNe7oTTzTTiTwx0pckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA2MTcyMzU1NDVaFw0yNjA2MTcwMDAwNDVaMDMxMTAvBgNV BAMTKEJDREY2OTdBRkFGRjUyM0UzRUI0QkI5MzZFM0ZDQkM1Mzg0Q0VDRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2t/uw1mBWp0dsxeV7YMlD6mI6 pzntU5+njRw87rivxwqW0fdKCmBI7w6TbImztgrpMXxz6deRo6aw+fCFxFQtg3W7 Y1IE6fejw+HmrynFuX4H1zlLc6rlBPbilvUTznN+apb5hzNTgei4EemjwxQ8wepH eFbF4Fe5kEts+GlXsevzxFyh+oc8ekaKq+h3N+NenSJTk4Wem/dLik6BGWoF8RFl X+q5c3/5DwED05CxaTb5VWX1ntTVqnmQ2k2AKNClpw1sONK7MOQ1qP8vsxq0argb 8sPQKbXFsDvGuVVLiCFui7jMKia959TL5QccUdTtQ3QUWyV9BqFldsYdOFdhAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUvN9pevr/Uj4+tLuTbj/LxThM7PQwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTI0Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA3BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAFYm1gMEAVl0LgMEAFl0 oQMEAFl0tAMEAFl1cDANBgkqhkiG9w0BAQsFAAOCAQEAQLtEJU2QQtugQf3edccR 8rqeZRw0xGjAWD9kBGdXd4aqpjSh3wFSZv1+JhGZhVyApgdUy4dURD3dHKa478nH rO4wxkSOjjrNWjUI726P0fRQTWm/I3INMIjT+g2Jz4Z+YPwLLgFPBmSn0zOm7YVY ZjNAzHD/qE45VGq8F8BcRMZ4fb+olX6RufVbN0ItXkpR+0m5OMl5q50JVW0FEQDR Y0ubxDexJJVIXss53gRgVxa2Xwl7Ns9hLHxHXiN+e+mAXILpvpE7oPfXy5hKIX5F jdpdLxw3ESUWU7wFCD6dbHskRt+JfI77ax0TwJYKr2oC4r+z5UIjr38Nz9iW63UK /Q== -----END CERTIFICATE-----Generated at Thu Jun 19 22:36:08 2025 by rpki-client