$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209854.roa File: AS209854.roa (raw, json) Hash identifier: iMi3MNDoiWZv2CHic6fqQBVB21dKJoOai3skn/h+fUs= Subject key identifier: 8B:13:7A:D0:E3:9F:15:92:97:80:41:A4:7B:2B:8D:3D:79:27:DA:AA Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 4C4D4433685E9B27FF88AEC05F2431C94BB444A1 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209854.roa Signing time: Mon 09 Feb 2026 07:55:37 +0000 ROA not before: Mon 09 Feb 2026 07:50:37 +0000 ROA not after: Mon 08 Feb 2027 07:55:37 +0000 asID: 209854 IP address blocks: 89.117.40.0/24 maxlen: 24 89.117.41.0/24 maxlen: 24 89.117.42.0/24 maxlen: 24 89.117.43.0/24 maxlen: 24 89.117.44.0/24 maxlen: 24 89.117.45.0/24 maxlen: 24 89.117.46.0/24 maxlen: 24 89.117.47.0/24 maxlen: 24 89.117.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 10:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:4d:44:33:68:5e:9b:27:ff:88:ae:c0:5f:24:31:c9:4b:b4:44:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Feb 9 07:50:37 2026 GMT Not After : Feb 8 07:55:37 2027 GMT Subject: CN=8B137AD0E39F1592978041A47B2B8D3D7927DAAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a0:8b:2b:9f:83:b5:11:45:3e:03:2e:90:aa: 5d:36:ac:7b:45:bb:9f:29:42:01:ea:7a:d8:c2:eb: 6d:36:2f:53:ac:bd:84:e4:6c:8b:01:10:72:06:d7: 12:42:ff:4d:d4:7c:ef:69:60:1d:e1:26:fc:cb:20: d8:ce:e2:a8:99:30:94:23:15:39:19:a1:b1:52:1e: 6d:39:93:41:7b:a9:c1:c5:4b:14:1f:c4:b3:ef:44: 46:22:24:97:b0:f5:dd:c0:46:92:bd:b3:17:9e:f2: 0c:47:43:c9:59:a5:4d:f9:66:a3:f4:c4:2a:5f:fb: 6a:89:eb:9f:82:1d:d5:f4:cd:18:52:31:68:88:30: 75:2b:0a:e3:72:89:f4:4f:ca:72:01:cd:8b:ff:32: ac:74:35:b4:b5:1f:4d:0b:78:85:d6:60:11:1a:2b: 2d:d5:c7:41:75:27:a9:1b:14:c2:f4:46:c4:5e:51: b3:68:7c:d6:c0:13:d6:9e:bb:31:3d:c9:48:9f:a3: 8b:df:1a:3f:0a:df:5d:9c:4c:e1:cc:8d:27:cd:ed: f7:83:eb:14:3a:34:04:4b:2b:9f:75:ef:9c:ae:cd: fa:94:1b:8f:aa:03:6a:3c:dc:a7:42:35:1e:37:fe: ce:6e:f0:7c:7c:a5:7c:bc:5f:f1:e8:36:68:d3:0e: a4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:13:7A:D0:E3:9F:15:92:97:80:41:A4:7B:2B:8D:3D:79:27:DA:AA X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209854.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.40.0/21 89.117.104.0/24 Signature Algorithm: sha256WithRSAEncryption 28:4d:46:d1:21:d7:7a:68:fc:59:13:7e:81:d5:1c:ac:d6:aa: d1:6d:87:c7:04:d1:2d:d1:4d:ca:8e:e0:75:4e:5e:60:34:47: 52:ac:86:65:33:ae:b7:7c:36:43:80:1a:24:e8:73:15:2c:94: d0:dd:1d:84:0b:fd:e9:b9:3c:54:7f:6b:25:eb:85:14:19:b1: fd:7a:e0:1a:c3:92:01:a8:5c:b3:b8:92:af:a6:dd:af:a4:c5: 22:0f:b9:17:0d:ca:c0:13:bd:77:4d:13:0a:7b:61:0a:0d:97: 99:08:2a:61:90:83:a9:00:0a:35:c7:f8:32:c2:28:b6:20:e3: 68:4b:f5:14:a8:fa:c4:54:af:21:c0:3f:68:36:6b:34:e7:e9: a2:d6:32:9f:b2:ed:8a:26:79:58:a5:58:5c:ac:ee:48:b7:2f: da:27:66:10:3c:d1:b4:30:bc:f6:3b:37:e0:43:77:ac:02:23: 51:01:9e:a1:19:ed:7c:9e:b8:c5:20:93:9b:d8:34:39:7c:9a: eb:0a:25:0b:13:d5:d1:0d:61:cd:33:55:1a:38:31:6b:e2:58: 17:49:f5:4f:d4:6d:7d:7e:b5:a0:b0:ce:24:16:f8:d4:27:a3: b4:4a:15:72:da:0f:c6:1e:a9:cd:3c:ef:9f:3b:b1:22:ee:b5: bf:85:ce:e8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUTE1EM2hemyf/iK7AXyQxyUu0RKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjAyMDkwNzUwMzdaFw0yNzAyMDgwNzU1MzdaMDMxMTAvBgNV BAMTKDhCMTM3QUQwRTM5RjE1OTI5NzgwNDFBNDdCMkI4RDNENzkyN0RBQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEoIsrn4O1EUU+Ay6Qql02rHtF u58pQgHqetjC6202L1OsvYTkbIsBEHIG1xJC/03UfO9pYB3hJvzLINjO4qiZMJQj FTkZobFSHm05k0F7qcHFSxQfxLPvREYiJJew9d3ARpK9sxee8gxHQ8lZpU35ZqP0 xCpf+2qJ65+CHdX0zRhSMWiIMHUrCuNyifRPynIBzYv/Mqx0NbS1H00LeIXWYBEa Ky3Vx0F1J6kbFML0RsReUbNofNbAE9aeuzE9yUifo4vfGj8K312cTOHMjSfN7feD 6xQ6NARLK59175yuzfqUG4+qA2o83KdCNR43/s5u8Hx8pXy8X/HoNmjTDqTDAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUixN60OOfFZKXgEGkeyuNPXkn2qowHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTg1NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA1l1KAMEAFl1aDANBgkq hkiG9w0BAQsFAAOCAQEAKE1G0SHXemj8WRN+gdUcrNaq0W2HxwTRLdFNyo7gdU5e YDRHUqyGZTOut3w2Q4AaJOhzFSyU0N0dhAv96bk8VH9rJeuFFBmx/XrgGsOSAahc s7iSr6bdr6TFIg+5Fw3KwBO9d00TCnthCg2XmQgqYZCDqQAKNcf4MsIotiDjaEv1 FKj6xFSvIcA/aDZrNOfpotYyn7LtiiZ5WKVYXKzuSLcv2idmEDzRtDC89js34EN3 rAIjUQGeoRntfJ64xSCTm9g0OXya6wolCxPV0Q1hzTNVGjgxa+JYF0n1T9RtfX61 oLDOJBb41CejtEoVctoPxh6pzTzvnzuxIu61v4XO6A== -----END CERTIFICATE-----Generated at Mon Mar 2 04:48:57 2026 by rpki-client