$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS63023.roa File: AS63023.roa (raw, json) Hash identifier: qtVREhJEmQ2vhPJT4EfxGSAb2ZNPTw6Sjm0espCPYQM= Subject key identifier: 47:5A:07:8A:67:EE:02:57:B5:E1:10:7C:84:1E:22:7D:AF:B6:4E:56 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 39A96372458EC8518EE59AE95E9C3320477D4292 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS63023.roa Signing time: Mon 21 Apr 2025 00:54:03 +0000 ROA not before: Mon 21 Apr 2025 00:49:03 +0000 ROA not after: Mon 20 Apr 2026 00:54:03 +0000 asID: 63023 IP address blocks: 89.116.144.0/24 maxlen: 24 89.116.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 01:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a9:63:72:45:8e:c8:51:8e:e5:9a:e9:5e:9c:33:20:47:7d:42:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 21 00:49:03 2025 GMT Not After : Apr 20 00:54:03 2026 GMT Subject: CN=475A078A67EE0257B5E1107C841E227DAFB64E56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:59:58:f6:19:18:63:2d:f5:e4:5f:05:b2:40: ad:0b:29:15:f6:9b:e6:58:a2:2f:42:ab:25:85:50: 99:70:b2:a1:10:74:2c:3d:91:8c:98:6d:ed:5c:39: 18:5c:77:50:57:25:09:72:c7:8f:1c:cc:2a:45:15: fe:96:2b:0d:6f:61:e5:6f:75:c6:de:61:9c:d1:56: c6:21:cf:3f:12:13:e1:78:88:a0:91:8b:ba:da:f7: 7c:74:4c:68:7c:23:60:1d:93:de:09:ea:65:e8:0e: 90:a9:13:9b:c9:40:83:af:59:3f:fe:44:54:2e:a7: 05:c6:5e:14:72:a8:0d:0e:15:ca:8a:f9:9b:67:24: da:58:0e:8f:c9:62:3b:09:e8:bf:91:22:fc:79:31: 06:97:d4:1d:50:6e:05:38:85:07:f6:19:0e:ee:1e: c5:52:1c:6e:d4:12:6a:ed:a1:05:a8:21:6a:27:9f: 1b:12:b3:ce:93:20:a9:fc:97:13:fc:14:82:3d:6d: c5:6e:fb:1d:43:08:20:78:d0:ed:c4:e7:50:5c:0d: 2d:b3:2b:f3:e6:d3:1b:a0:d5:6c:a9:17:49:81:85: 28:cf:2d:d4:a2:f4:02:91:e6:0e:c8:68:38:4e:19: 9d:c9:99:d2:0a:13:27:d9:84:a4:f8:3c:35:15:12: ec:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5A:07:8A:67:EE:02:57:B5:E1:10:7C:84:1E:22:7D:AF:B6:4E:56 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS63023.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.144.0/24 89.116.149.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:c6:5d:a5:14:16:41:3a:f3:7e:fe:49:77:b0:58:3c:10:05: cc:12:0b:81:e2:74:13:16:ce:41:1a:40:95:3e:6a:13:f6:6f: f3:58:e5:3c:41:84:47:2b:97:03:5d:4f:b2:d5:f3:c4:10:15: 84:03:ae:05:6b:9b:b0:d5:92:26:89:6e:db:7c:df:9c:82:5b: 25:82:39:6a:d3:35:d4:97:d7:47:b4:33:d6:00:21:df:52:0b: ab:66:2f:45:d5:5a:1a:73:dc:06:4d:20:1f:e9:c9:bc:c9:aa: 9a:c4:d8:6f:d7:fb:0a:26:69:82:35:16:f3:68:0f:36:49:6b: 51:5f:77:e7:c9:5e:a6:44:ca:90:9c:47:ed:db:24:eb:e5:eb: 31:22:45:4c:e8:ed:1f:e9:22:25:86:b4:86:a8:a0:b4:a0:79: 83:ba:b6:70:e9:de:03:e3:42:d6:3d:46:e1:b9:13:5b:53:f4: 2e:68:d8:b7:3a:64:56:4b:2c:1d:56:af:d0:0c:fe:58:0e:00: 87:78:39:61:43:f9:d1:78:6b:b6:db:c1:ba:63:3e:42:87:26: 00:fb:bd:2a:1b:65:49:72:65:df:c9:43:b8:0e:cf:f7:86:cc: 70:40:48:58:ee:79:53:12:c8:39:fe:6b:15:87:6f:76:33:85: 19:ff:84:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOaljckWOyFGO5ZrpXpwzIEd9QpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA0MjEwMDQ5MDNaFw0yNjA0MjAwMDU0MDNaMDMxMTAvBgNV BAMTKDQ3NUEwNzhBNjdFRTAyNTdCNUUxMTA3Qzg0MUUyMjdEQUZCNjRFNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnWVj2GRhjLfXkXwWyQK0LKRX2 m+ZYoi9CqyWFUJlwsqEQdCw9kYyYbe1cORhcd1BXJQlyx48czCpFFf6WKw1vYeVv dcbeYZzRVsYhzz8SE+F4iKCRi7ra93x0TGh8I2Adk94J6mXoDpCpE5vJQIOvWT/+ RFQupwXGXhRyqA0OFcqK+ZtnJNpYDo/JYjsJ6L+RIvx5MQaX1B1QbgU4hQf2GQ7u HsVSHG7UEmrtoQWoIWonnxsSs86TIKn8lxP8FII9bcVu+x1DCCB40O3E51BcDS2z K/Pm0xug1WypF0mBhSjPLdSi9AKR5g7IaDhOGZ3JmdIKEyfZhKT4PDUVEuy5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR1oHimfuAle14RB8hB4ifa+2TlYwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzYzMDIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWXSQAwQAWXSVMA0GCSqG SIb3DQEBCwUAA4IBAQBLxl2lFBZBOvN+/kl3sFg8EAXMEguB4nQTFs5BGkCVPmoT 9m/zWOU8QYRHK5cDXU+y1fPEEBWEA64Fa5uw1ZImiW7bfN+cglslgjlq0zXUl9dH tDPWACHfUgurZi9F1Voac9wGTSAf6cm8yaqaxNhv1/sKJmmCNRbzaA82SWtRX3fn yV6mRMqQnEft2yTr5esxIkVM6O0f6SIlhrSGqKC0oHmDurZw6d4D40LWPUbhuRNb U/QuaNi3OmRWSywdVq/QDP5YDgCHeDlhQ/nReGu228G6Yz5ChyYA+70qG2VJcmXf yUO4Ds/3hsxwQEhY7nlTEsg5/msVh292M4UZ/4Qm -----END CERTIFICATE-----Generated at Sat Apr 26 16:37:20 2025 by rpki-client