$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa File: AS212609.roa (raw, json) Hash identifier: 1vZpiAJJcwyPlJ1+DHzjKu95G5LGOmUGAoaibukdDyg= Subject key identifier: 3B:2C:C0:52:92:61:68:E1:3E:7D:4C:C2:78:FD:D9:30:A0:F7:01:5E Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7830EEEE8965E9DE129B225CB7775AADF86A9ACF Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa Signing time: Tue 18 Mar 2025 14:14:18 +0000 ROA not before: Tue 18 Mar 2025 14:09:18 +0000 ROA not after: Tue 17 Mar 2026 14:14:18 +0000 asID: 212609 IP address blocks: 82.140.183.0/24 maxlen: 24 86.38.24.0/24 maxlen: 24 89.116.137.0/24 maxlen: 24 89.116.242.0/24 maxlen: 24 89.117.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 13:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:30:ee:ee:89:65:e9:de:12:9b:22:5c:b7:77:5a:ad:f8:6a:9a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 18 14:09:18 2025 GMT Not After : Mar 17 14:14:18 2026 GMT Subject: CN=3B2CC052926168E13E7D4CC278FDD930A0F7015E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:fc:ad:59:63:7e:72:7a:fe:12:f7:4e:d6: ae:f7:f0:a3:45:76:da:3c:ea:14:1b:ef:2d:10:51: 12:2b:6b:2e:b5:b9:32:27:68:d6:d3:b8:72:9a:e7: 7c:e9:8c:b3:83:fd:c3:30:e1:04:e2:23:3b:4b:84: e6:48:f4:a0:8a:67:43:a4:92:26:3f:b1:25:36:6c: 0d:9a:15:a7:87:0a:c7:34:f1:2c:ec:37:e7:be:5c: dd:c7:dd:76:d3:56:5d:6d:62:c6:32:16:71:b5:a9: da:71:0c:2f:cc:65:5a:91:d7:ce:82:18:f2:e4:05: 89:4e:bc:c0:a3:ef:d8:3b:2e:56:a7:f4:87:66:81: 14:1c:ac:d6:b7:ed:e7:a3:46:77:33:b9:10:ae:0c: d5:1f:c5:19:e6:0a:65:b4:7b:87:6e:9f:41:5f:42: 71:5a:36:cf:89:61:f2:05:db:5a:1b:73:7d:f3:f9: 1d:a4:92:65:f6:24:59:b7:7d:f6:5c:f5:9c:f6:de: 59:7c:76:e2:bc:2f:5e:13:fc:00:d1:3d:4a:3f:84: fc:8a:20:d5:aa:22:e2:67:0c:0f:28:71:b1:ed:92: d9:ae:44:7c:de:62:d8:48:6e:47:9b:06:4a:73:75: a1:f8:ff:b3:f6:a4:70:d8:3d:7b:21:57:19:2a:18: be:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2C:C0:52:92:61:68:E1:3E:7D:4C:C2:78:FD:D9:30:A0:F7:01:5E X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.140.183.0/24 86.38.24.0/24 89.116.137.0/24 89.116.242.0/24 89.117.5.0/24 Signature Algorithm: sha256WithRSAEncryption 62:bf:57:03:96:41:d1:8d:d9:10:15:84:12:26:36:ce:5f:dc: 7f:4f:9a:55:f2:f1:56:95:ef:04:84:61:4e:86:63:78:73:75: 89:8e:08:8f:11:f3:cd:84:18:8a:96:45:37:0a:d3:59:60:7b: 0b:5f:96:82:0a:d3:d5:1a:5d:c3:d3:82:82:a1:6a:30:e5:83: 0f:dc:94:db:48:0f:64:21:20:83:b1:f9:cd:d8:5a:1d:22:4d: 50:9a:b6:49:c4:c7:36:19:67:67:15:12:f2:9c:32:9e:fe:96: 3c:f8:3e:56:c9:1e:f5:6a:2a:83:78:54:8e:b2:98:3e:98:14: b1:6c:a3:f3:a6:aa:37:32:ee:51:54:eb:dd:35:ab:0c:9e:a3: 22:82:43:08:3a:6a:54:81:ea:74:35:41:3a:5b:90:6c:63:00: 79:1b:43:a2:4b:af:50:2b:4f:a9:38:6d:c3:0d:47:63:25:3d: 27:a9:4c:92:34:95:a4:6b:e5:0b:d0:54:f8:8e:0d:a8:53:27: 51:a4:67:08:cd:bc:91:b9:2f:a4:de:9e:37:d2:74:6e:33:e0: ed:7b:e7:e6:1d:24:87:6f:28:b0:ea:31:ce:a6:28:19:39:2c: 30:b5:d2:be:bd:f1:e0:20:30:c0:ae:e4:47:68:eb:45:3f:3f: e7:7b:d3:75 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUeDDu7oll6d4SmyJct3darfhqms8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAzMTgxNDA5MThaFw0yNjAzMTcxNDE0MThaMDMxMTAvBgNV BAMTKDNCMkNDMDUyOTI2MTY4RTEzRTdENENDMjc4RkREOTMwQTBGNzAxNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8qfytWWN+cnr+EvdO1q738KNF dto86hQb7y0QURIray61uTInaNbTuHKa53zpjLOD/cMw4QTiIztLhOZI9KCKZ0Ok kiY/sSU2bA2aFaeHCsc08SzsN+e+XN3H3XbTVl1tYsYyFnG1qdpxDC/MZVqR186C GPLkBYlOvMCj79g7Llan9IdmgRQcrNa37eejRnczuRCuDNUfxRnmCmW0e4dun0Ff QnFaNs+JYfIF21obc33z+R2kkmX2JFm3ffZc9Zz23ll8duK8L14T/ADRPUo/hPyK INWqIuJnDA8ocbHtktmuRHzeYthIbkebBkpzdaH4/7P2pHDYPXshVxkqGL7RAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUOyzAUpJhaOE+fUzCeP3ZMKD3AV4wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMjYwOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA3BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAFKMtwMEAFYmGAMEAFl0 iQMEAFl08gMEAFl1BTANBgkqhkiG9w0BAQsFAAOCAQEAYr9XA5ZB0Y3ZEBWEEiY2 zl/cf0+aVfLxVpXvBIRhToZjeHN1iY4IjxHzzYQYipZFNwrTWWB7C1+WggrT1Rpd w9OCgqFqMOWDD9yU20gPZCEgg7H5zdhaHSJNUJq2ScTHNhlnZxUS8pwynv6WPPg+ Vske9Woqg3hUjrKYPpgUsWyj86aqNzLuUVTr3TWrDJ6jIoJDCDpqVIHqdDVBOluQ bGMAeRtDokuvUCtPqThtww1HYyU9J6lMkjSVpGvlC9BU+I4NqFMnUaRnCM28kbkv pN6eN9J0bjPg7Xvn5h0kh28osOoxzqYoGTksMLXSvr3x4CAwwK7kR2jrRT8/53vT dQ== -----END CERTIFICATE-----Generated at Sun Apr 27 04:09:56 2025 by rpki-client