$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa File: AS212609.roa (raw, json) Hash identifier: avRTCKb0GuTWXMUnV0TuJMfkB7odeP+jueiBf4dd0LE= Subject key identifier: 29:80:52:3D:8F:F5:B9:01:02:5B:DD:E5:49:D9:9F:0F:28:BC:A1:EB Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 29F07419E779B3E306D975D600CB551796591269 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa Signing time: Thu 02 Apr 2026 00:46:58 +0000 ROA not before: Thu 02 Apr 2026 00:41:58 +0000 ROA not after: Thu 01 Apr 2027 00:46:58 +0000 asID: 212609 IP address blocks: 86.38.24.0/24 maxlen: 24 89.116.137.0/24 maxlen: 24 89.116.242.0/24 maxlen: 24 89.117.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 18:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f0:74:19:e7:79:b3:e3:06:d9:75:d6:00:cb:55:17:96:59:12:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 2 00:41:58 2026 GMT Not After : Apr 1 00:46:58 2027 GMT Subject: CN=2980523D8FF5B901025BDDE549D99F0F28BCA1EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:df:2b:b9:08:cd:71:4d:7a:6f:f5:22:1d:ea: ec:8a:50:7e:76:b9:c7:65:07:48:03:81:ad:90:49: 97:9e:4b:79:13:1a:9e:ce:e8:43:21:79:0e:51:32: 95:92:44:1a:45:86:38:2b:42:f0:9d:11:ed:51:36: 21:e9:8d:56:a7:2d:35:7c:d8:55:18:43:5e:7c:7c: 60:8e:62:07:43:cf:22:eb:88:11:4e:89:46:39:fd: c5:c8:12:e3:02:54:bd:bd:48:6c:a7:6f:23:38:1e: b0:8f:c2:2e:b2:2b:8a:ec:22:a4:62:bb:73:32:c5: 61:ad:11:f3:af:73:c9:f0:fe:d5:eb:8f:f4:99:5a: 0e:fc:3b:60:d4:22:77:a4:3d:f9:31:83:45:ae:d4: 25:66:b6:a0:8d:7a:cd:a2:cd:05:aa:8f:63:31:cc: 0a:c1:2d:a8:75:70:9e:d9:fa:ce:d3:b2:03:9c:ea: 7d:da:9e:fc:cb:60:8c:dc:31:45:a6:64:4a:28:87: 8e:0e:ab:e6:80:3a:0f:fd:6e:d7:31:c3:8a:3a:5e: 51:fc:1b:d7:6d:b1:3f:2d:88:a6:45:4d:82:bb:e5: 04:13:45:cf:30:5e:e9:42:a1:d9:f9:01:2e:96:cd: 63:e4:0b:08:3d:ec:d3:60:39:0c:63:1f:a6:f7:6a: 12:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:80:52:3D:8F:F5:B9:01:02:5B:DD:E5:49:D9:9F:0F:28:BC:A1:EB X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.24.0/24 89.116.137.0/24 89.116.242.0/24 89.117.5.0/24 Signature Algorithm: sha256WithRSAEncryption 63:d8:c9:55:b8:d2:47:98:ce:3f:35:91:89:e4:4e:98:92:9e: 53:e6:cd:8e:1d:6b:80:23:e7:b6:a7:c9:1e:ec:a2:65:68:e9: 77:07:8d:2f:68:80:7c:4a:d0:58:70:11:71:22:f8:68:ec:0c: 2c:1b:8d:bb:d9:f0:39:3b:72:dc:4d:d0:80:17:b6:74:ac:6d: 70:15:11:c5:89:57:46:4c:d0:b3:75:91:47:3d:9f:2f:78:2d: fc:e1:d0:3e:3d:c0:ad:94:18:33:cd:10:22:30:3d:40:10:51: 9d:b9:78:21:b6:7f:57:00:92:9a:1d:6f:f6:0f:1e:b0:b7:fb: 20:0a:be:4b:c7:08:f9:e3:77:5d:e9:8b:0e:98:bd:5d:7e:d9: 0f:ab:d7:2a:b2:41:c2:b7:d3:c5:e4:da:0f:4e:f9:83:e9:1d: f1:e1:9b:02:48:38:56:35:d1:e5:39:50:0b:eb:23:4a:51:83: b0:5b:a4:9e:e0:e8:45:f9:09:e0:de:49:6d:76:cf:ea:d2:d4: 8c:04:3d:14:f9:a0:9d:4d:67:a7:fc:2e:17:ef:59:74:fd:20: 9b:26:b8:79:00:f3:29:30:e3:59:63:05:0a:d6:90:55:c3:dd: 8b:08:ef:5d:1a:16:89:ad:79:d2:53:fb:2f:78:08:f8:33:e3: 58:9a:bd:3c -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUKfB0Ged5s+MG2XXWAMtVF5ZZEmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA0MDIwMDQxNThaFw0yNzA0MDEwMDQ2NThaMDMxMTAvBgNV BAMTKDI5ODA1MjNEOEZGNUI5MDEwMjVCRERFNTQ5RDk5RjBGMjhCQ0ExRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG3yu5CM1xTXpv9SId6uyKUH52 ucdlB0gDga2QSZeeS3kTGp7O6EMheQ5RMpWSRBpFhjgrQvCdEe1RNiHpjVanLTV8 2FUYQ158fGCOYgdDzyLriBFOiUY5/cXIEuMCVL29SGynbyM4HrCPwi6yK4rsIqRi u3MyxWGtEfOvc8nw/tXrj/SZWg78O2DUInekPfkxg0Wu1CVmtqCNes2izQWqj2Mx zArBLah1cJ7Z+s7TsgOc6n3anvzLYIzcMUWmZEooh44Oq+aAOg/9btcxw4o6XlH8 G9dtsT8tiKZFTYK75QQTRc8wXulCodn5AS6WzWPkCwg97NNgOQxjH6b3ahLfAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUKYBSPY/1uQECW93lSdmfDyi8oeswHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMjYwOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFYmGAMEAFl0iQMEAFl0 8gMEAFl1BTANBgkqhkiG9w0BAQsFAAOCAQEAY9jJVbjSR5jOPzWRieROmJKeU+bN jh1rgCPntqfJHuyiZWjpdweNL2iAfErQWHARcSL4aOwMLBuNu9nwOTty3E3QgBe2 dKxtcBURxYlXRkzQs3WRRz2fL3gt/OHQPj3ArZQYM80QIjA9QBBRnbl4IbZ/VwCS mh1v9g8esLf7IAq+S8cI+eN3XemLDpi9XX7ZD6vXKrJBwrfTxeTaD075g+kd8eGb Akg4VjXR5TlQC+sjSlGDsFuknuDoRfkJ4N5JbXbP6tLUjAQ9FPmgnU1np/wuF+9Z dP0gmya4eQDzKTDjWWMFCtaQVcPdiwjvXRoWia150lP7L3gI+DPjWJq9PA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:37:26 2026 by rpki-client