$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5650.roa File: AS5650.roa (raw, json) Hash identifier: X/kLJwGL1ky3q8HCj16o2Qfru8jzlXEN/N2IEGzxbA4= Subject key identifier: 4F:9D:17:79:CB:E7:4D:61:14:FC:1E:61:5B:49:B3:31:6A:8B:FA:82 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 1DF475D8A3D2447E8DD8F42EC8D44C3F89BCF44C Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5650.roa Signing time: Wed 22 Oct 2025 14:55:09 +0000 ROA not before: Wed 22 Oct 2025 14:50:09 +0000 ROA not after: Wed 21 Oct 2026 14:55:09 +0000 asID: 5650 IP address blocks: 89.116.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 00:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f4:75:d8:a3:d2:44:7e:8d:d8:f4:2e:c8:d4:4c:3f:89:bc:f4:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Oct 22 14:50:09 2025 GMT Not After : Oct 21 14:55:09 2026 GMT Subject: CN=4F9D1779CBE74D6114FC1E615B49B3316A8BFA82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3e:3e:9f:e6:a3:83:f8:8d:e1:2f:34:28:22: 7d:e7:fe:30:8d:80:3d:4f:97:30:b3:df:ff:d8:81: a6:b7:2d:c5:6b:2b:5a:bc:6e:3f:22:50:90:e3:c6: ff:be:ed:95:53:3a:3a:1d:58:13:dc:e7:1a:7a:04: 3b:3f:64:d7:cd:4b:a3:82:04:a0:1b:a2:40:5e:ec: d0:75:e1:48:92:b5:1f:fc:61:d4:e2:a8:54:1f:b2: c7:f0:bb:5c:f7:b8:ac:bc:b9:88:38:75:32:4c:f1: f6:5d:1d:45:f1:78:2a:27:cd:de:d8:0b:2b:88:14: 9c:fc:d4:87:94:fd:22:98:e3:00:c6:79:5c:69:20: e9:36:56:cd:12:8d:a4:79:b9:db:e4:a1:61:52:17: f3:67:b9:99:43:7c:58:d5:58:e4:6e:38:8c:2a:a9: d6:45:f0:11:1e:a0:83:2d:21:7f:d1:f1:e3:78:45: 98:5b:80:4a:4e:c2:80:48:73:3c:98:cf:1c:5a:5b: 68:cf:d6:c1:df:8e:1e:cf:75:c5:1a:44:c1:b5:6e: e9:73:fa:9a:ad:1c:06:de:26:ef:02:d0:e2:6f:98: 7b:1c:39:c1:a7:db:cb:6e:08:1e:f4:d9:bd:0b:30: 31:ec:2f:dd:09:44:ea:96:f8:dc:cd:29:79:16:39: 1d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9D:17:79:CB:E7:4D:61:14:FC:1E:61:5B:49:B3:31:6A:8B:FA:82 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.189.0/24 Signature Algorithm: sha256WithRSAEncryption 80:d3:fd:b7:ed:98:fd:6d:6a:4d:9e:2d:83:ab:51:a2:40:f8: df:dd:0a:ba:cc:09:6f:cc:46:b4:0d:12:14:3b:6a:db:3d:25: 5d:53:63:7e:0d:20:93:79:02:45:8a:bc:b8:28:be:4b:3a:ca: 84:be:09:12:cc:31:fc:f3:d0:85:ae:7d:13:a5:4a:32:ef:30: c8:35:33:bd:01:e4:b2:31:fb:af:9c:c5:61:83:43:f1:29:c1: 8c:a4:b0:37:f7:ae:ff:e3:29:ec:37:13:2c:4f:a9:cc:61:c3: 32:27:45:58:31:a2:b7:19:5b:86:ea:fc:d0:72:08:12:21:fc: 45:9d:be:d3:8c:b3:12:50:78:34:8b:52:82:4f:5e:ca:c4:1b: f8:96:d1:02:31:e7:31:55:64:dc:22:ad:be:26:3b:cb:d5:3e: 56:6d:8f:5e:f8:92:f4:75:b9:9a:c9:b0:0b:74:00:8b:c6:87: 35:56:0a:f6:ae:58:8a:4b:99:df:7b:49:ec:3f:69:e2:2e:65: 46:94:93:2c:fe:74:41:83:2c:1d:fe:b9:44:51:3e:99:82:b8: cc:d1:7c:9d:92:42:be:ae:2d:81:53:b5:69:da:9d:61:10:1c: 7e:6d:b7:6d:2f:95:bf:26:06:b8:cd:fa:63:22:d4:a2:e2:46: b9:7d:16:2b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHfR12KPSRH6N2PQuyNRMP4m89EwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEwMjIxNDUwMDlaFw0yNjEwMjExNDU1MDlaMDMxMTAvBgNV BAMTKDRGOUQxNzc5Q0JFNzRENjExNEZDMUU2MTVCNDlCMzMxNkE4QkZBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmPj6f5qOD+I3hLzQoIn3n/jCN gD1PlzCz3//Ygaa3LcVrK1q8bj8iUJDjxv++7ZVTOjodWBPc5xp6BDs/ZNfNS6OC BKAbokBe7NB14UiStR/8YdTiqFQfssfwu1z3uKy8uYg4dTJM8fZdHUXxeConzd7Y CyuIFJz81IeU/SKY4wDGeVxpIOk2Vs0SjaR5udvkoWFSF/NnuZlDfFjVWORuOIwq qdZF8BEeoIMtIX/R8eN4RZhbgEpOwoBIczyYzxxaW2jP1sHfjh7PdcUaRMG1bulz +pqtHAbeJu8C0OJvmHscOcGn28tuCB702b0LMDHsL90JROqW+NzNKXkWOR3NAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUT50XecvnTWEU/B5hW0mzMWqL+oIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzU2NTAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZdL0wDQYJKoZIhvcNAQEL BQADggEBAIDT/bftmP1tak2eLYOrUaJA+N/dCrrMCW/MRrQNEhQ7ats9JV1TY34N IJN5AkWKvLgovks6yoS+CRLMMfzz0IWufROlSjLvMMg1M70B5LIx+6+cxWGDQ/Ep wYyksDf3rv/jKew3EyxPqcxhwzInRVgxorcZW4bq/NByCBIh/EWdvtOMsxJQeDSL UoJPXsrEG/iW0QIx5zFVZNwirb4mO8vVPlZtj174kvR1uZrJsAt0AIvGhzVWCvau WIpLmd97Sew/aeIuZUaUkyz+dEGDLB3+uURRPpmCuMzRfJ2SQr6uLYFTtWnanWEQ HH5tt20vlb8mBrjN+mMi1KLiRrl9Fis= -----END CERTIFICATE-----Generated at Wed Nov 5 14:44:40 2025 by rpki-client