$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211192.roa File: AS211192.roa (raw, json) Hash identifier: sihj04ZQTX6PmA1Wu8Fb4nJDzTLlIcSYJMjVn17ALLM= Subject key identifier: 75:4C:81:64:A4:9F:C7:0B:31:E8:15:D6:E2:C7:92:A7:74:9D:43:0B Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 2B428C935636DF87E00D0D71BB9534CAC091B614 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211192.roa Signing time: Wed 26 Feb 2025 09:53:55 +0000 ROA not before: Wed 26 Feb 2025 09:48:55 +0000 ROA not after: Wed 25 Feb 2026 09:53:55 +0000 asID: 211192 IP address blocks: 89.116.103.0/24 maxlen: 24 89.116.208.0/24 maxlen: 24 89.116.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 30 Apr 2025 02:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:42:8c:93:56:36:df:87:e0:0d:0d:71:bb:95:34:ca:c0:91:b6:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Feb 26 09:48:55 2025 GMT Not After : Feb 25 09:53:55 2026 GMT Subject: CN=754C8164A49FC70B31E815D6E2C792A7749D430B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:73:57:10:93:f3:fb:e6:b5:c6:4e:3b:2b:4e: bd:22:c8:d9:3f:12:e0:c7:54:df:d0:35:19:35:dc: 10:b6:06:b6:9b:f9:06:2a:5e:74:82:82:6f:e7:0f: 18:9c:45:88:63:ed:0d:ff:b9:aa:01:94:4c:40:96: 54:45:4b:bd:63:c0:53:7b:b7:06:53:d3:f8:de:f2: c1:de:ae:6b:31:9a:74:b4:82:b1:ee:84:6c:65:53: d6:8c:90:34:df:8e:c7:3f:39:a7:39:2d:18:73:cd: 81:02:6c:09:19:5e:af:dc:a4:0b:a0:a9:8e:d4:cf: ae:66:42:28:f4:30:6d:49:36:01:29:90:10:cb:78: d8:ec:99:58:1b:d3:91:fb:ca:bd:e0:7c:7e:df:73: 72:cf:b1:5c:e7:65:94:a7:43:70:fb:18:b8:38:7e: 6d:1d:39:1b:7a:d1:94:95:4c:52:83:12:2b:90:b0: 83:85:03:a5:25:16:b2:ab:ae:49:18:20:3f:31:5d: df:8b:11:20:42:1a:aa:29:82:a8:69:03:d2:00:80: 52:ee:ec:45:bb:66:b7:10:24:11:f8:95:71:da:37: 1e:1f:32:21:8d:53:20:7b:99:fb:8e:ff:be:f1:20: 16:1c:58:de:ce:d9:ec:bc:c9:4b:db:3c:fa:27:9c: a5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4C:81:64:A4:9F:C7:0B:31:E8:15:D6:E2:C7:92:A7:74:9D:43:0B X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211192.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.103.0/24 89.116.208.0/23 Signature Algorithm: sha256WithRSAEncryption 37:eb:ce:4b:cd:f2:dc:87:dc:5b:6c:1d:fd:3c:3b:29:00:a5: b2:05:8f:ff:83:09:27:9b:ea:60:e8:15:3a:48:af:22:2a:e3: 1b:3e:e0:5a:59:cd:f4:5b:c6:a2:89:eb:8c:4b:28:af:78:06: e8:6a:d8:26:b5:2f:f4:fe:64:8c:64:ce:6a:79:19:61:0d:ed: a5:2c:ff:96:88:74:92:be:77:5e:78:0d:ce:95:c1:ed:96:05: 67:fd:1d:7a:03:5d:15:89:f1:6c:53:95:3a:cd:c4:4d:2d:2a: 9b:0d:12:75:84:78:58:83:81:0c:75:15:42:3b:54:90:a0:b5: b1:ec:6f:0c:06:4c:21:07:e5:4d:87:10:1d:d4:ba:4d:ff:7c: db:72:86:02:e8:72:45:31:ee:43:46:4c:1f:f8:3f:12:ff:88: 6d:b6:96:a1:9c:76:80:5a:ab:96:2b:e5:98:79:62:ff:82:35: 64:58:22:50:b6:2c:08:d2:97:ca:22:af:7d:bc:f6:6e:b9:b9: d9:2b:14:22:ef:18:50:d6:3f:9f:76:74:2b:27:76:59:fd:a8: 63:af:4d:87:2f:75:9f:e3:d3:d1:a8:d0:51:1a:c0:13:2a:3a: 28:af:49:95:7a:43:7a:bb:3e:84:32:69:7a:8c:f7:d8:ee:fa: e4:16:e3:b2 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUK0KMk1Y234fgDQ1xu5U0ysCRthQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAyMjYwOTQ4NTVaFw0yNjAyMjUwOTUzNTVaMDMxMTAvBgNV BAMTKDc1NEM4MTY0QTQ5RkM3MEIzMUU4MTVENkUyQzc5MkE3NzQ5RDQzMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoc1cQk/P75rXGTjsrTr0iyNk/ EuDHVN/QNRk13BC2Brab+QYqXnSCgm/nDxicRYhj7Q3/uaoBlExAllRFS71jwFN7 twZT0/je8sHermsxmnS0grHuhGxlU9aMkDTfjsc/Oac5LRhzzYECbAkZXq/cpAug qY7Uz65mQij0MG1JNgEpkBDLeNjsmVgb05H7yr3gfH7fc3LPsVznZZSnQ3D7GLg4 fm0dORt60ZSVTFKDEiuQsIOFA6UlFrKrrkkYID8xXd+LESBCGqopgqhpA9IAgFLu 7EW7ZrcQJBH4lXHaNx4fMiGNUyB7mfuO/77xIBYcWN7O2ey8yUvbPPonnKV/AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUdUyBZKSfxwsx6BXW4seSp3SdQwswHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMTE5Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFl0ZwMEAVl00DANBgkq hkiG9w0BAQsFAAOCAQEAN+vOS83y3IfcW2wd/Tw7KQClsgWP/4MJJ5vqYOgVOkiv IirjGz7gWlnN9FvGoonrjEsor3gG6GrYJrUv9P5kjGTOankZYQ3tpSz/loh0kr53 XngNzpXB7ZYFZ/0degNdFYnxbFOVOs3ETS0qmw0SdYR4WIOBDHUVQjtUkKC1sexv DAZMIQflTYcQHdS6Tf9823KGAuhyRTHuQ0ZMH/g/Ev+IbbaWoZx2gFqrlivlmHli /4I1ZFgiULYsCNKXyiKvfbz2brm52SsUIu8YUNY/n3Z0Kyd2Wf2oY69Nhy91n+PT 0ajQURrAEyo6KK9JlXpDers+hDJpeoz32O765Bbjsg== -----END CERTIFICATE-----Generated at Tue Apr 29 17:27:57 2025 by rpki-client