$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS214025.roa File: AS214025.roa (raw, json) Hash identifier: o2gdlYGELTvteXVOUr4zgTTHCZLn6/7JAV4VXJEdkdw= Subject key identifier: 51:02:89:4A:90:F3:3E:7C:A9:B2:E8:A6:BD:98:16:03:3C:DD:A9:4C Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 33B880CE85FE8FC9D9175857E6FA2C1689A5BAE5 Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS214025.roa Signing time: Tue 12 May 2026 19:42:49 +0000 ROA not before: Tue 12 May 2026 19:37:49 +0000 ROA not after: Tue 11 May 2027 19:42:49 +0000 asID: 214025 IP address blocks: 169.40.43.0/24 maxlen: 24 169.40.98.0/24 maxlen: 24 169.40.100.0/24 maxlen: 24 169.40.116.0/24 maxlen: 24 169.40.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 12:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:b8:80:ce:85:fe:8f:c9:d9:17:58:57:e6:fa:2c:16:89:a5:ba:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: May 12 19:37:49 2026 GMT Not After : May 11 19:42:49 2027 GMT Subject: CN=5102894A90F33E7CA9B2E8A6BD9816033CDDA94C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:29:80:18:d0:ee:73:56:14:ed:be:c9:e1:80: c2:f7:9a:34:12:47:05:79:c8:7a:37:44:3c:1d:29: 56:da:98:87:75:be:02:90:7d:ad:dd:71:b9:7a:24: 6c:25:2a:1b:ff:47:99:3f:26:f2:15:ad:b5:40:f4: 6b:82:72:54:46:c0:91:b7:35:bb:50:8b:76:f0:57: b1:4d:71:d4:b0:13:55:1b:ba:8c:e0:2c:10:21:59: 9c:bc:6f:ef:87:61:19:06:ca:2f:ac:04:a0:8c:bd: 7f:b2:ef:9e:b6:ef:a5:76:8b:89:b4:c6:eb:54:6e: b7:47:bc:1e:b5:93:c6:ab:d6:91:61:bb:7e:78:f5: 42:b8:95:92:71:a5:08:bd:f8:a4:c8:b6:b3:0b:48: bd:9c:b7:13:c3:15:cb:2b:64:87:f4:fe:0a:96:b6: bd:8a:a9:f7:1b:4b:dc:52:71:5b:40:bb:e5:20:33: b7:13:af:f2:bf:95:8b:ed:9a:32:9b:27:24:96:c5: 42:93:10:4b:31:9d:93:76:51:79:08:29:6e:b2:56: 36:32:5d:6d:94:51:35:64:70:04:99:60:c4:40:a9: 55:c7:f9:7d:13:3d:ec:49:09:12:ec:6e:58:28:09: 02:7c:75:e4:58:8a:ab:6e:6c:45:60:ff:d7:c4:a1: cc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:02:89:4A:90:F3:3E:7C:A9:B2:E8:A6:BD:98:16:03:3C:DD:A9:4C X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS214025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.43.0/24 169.40.98.0/24 169.40.100.0/24 169.40.116.0/24 169.40.121.0/24 Signature Algorithm: sha256WithRSAEncryption 25:48:68:23:91:c7:2b:dc:35:ac:fb:1f:37:f2:6a:f9:87:7a: 7f:f8:7b:58:bb:f7:b3:e7:f8:15:c2:bf:c4:90:14:0d:20:a5: f7:5a:f0:35:35:a4:00:82:a5:7b:b6:56:b7:96:8f:f1:c9:97: c6:69:8e:fe:37:e0:2e:f9:d9:1d:7f:3b:5d:96:15:0d:15:a9: 10:97:e7:42:b9:cd:0c:4f:55:9b:66:76:e8:7f:04:f1:e8:82: f7:8b:95:ed:2e:aa:20:d1:84:c0:50:b9:3e:d7:53:66:44:9e: 33:9f:56:3f:4d:06:06:6c:45:91:a4:ca:73:fe:95:7b:ab:cf: 1f:d2:b3:b6:73:c4:12:de:34:92:a3:27:1a:b9:4a:3c:87:bc: 29:d5:79:44:4d:7c:25:f2:1a:eb:e7:4a:3e:e1:f2:44:87:07: eb:d4:84:71:9a:c4:1b:8c:05:19:7a:d0:c0:33:a1:f9:b2:5e: a7:16:a1:c2:e7:1b:0d:c8:c0:b9:65:cd:93:b6:4c:9e:19:bc: 76:0c:70:89:70:5b:d6:41:07:00:f5:fb:bb:3d:6e:af:55:dc: cb:86:37:35:a3:2f:bd:51:ec:f4:4d:89:ae:2a:36:01:9d:b2: 9d:28:a7:bf:6e:66:18:63:6f:93:ab:9a:c0:db:41:0a:a5:1e: 22:40:c0:ba -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUM7iAzoX+j8nZF1hX5vosFomluuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjA1MTIxOTM3NDlaFw0yNzA1MTExOTQyNDlaMDMxMTAvBgNV BAMTKDUxMDI4OTRBOTBGMzNFN0NBOUIyRThBNkJEOTgxNjAzM0NEREE5NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCKYAY0O5zVhTtvsnhgML3mjQS RwV5yHo3RDwdKVbamId1vgKQfa3dcbl6JGwlKhv/R5k/JvIVrbVA9GuCclRGwJG3 NbtQi3bwV7FNcdSwE1UbuozgLBAhWZy8b++HYRkGyi+sBKCMvX+y756276V2i4m0 xutUbrdHvB61k8ar1pFhu3549UK4lZJxpQi9+KTItrMLSL2ctxPDFcsrZIf0/gqW tr2KqfcbS9xScVtAu+UgM7cTr/K/lYvtmjKbJySWxUKTEEsxnZN2UXkIKW6yVjYy XW2UUTVkcASZYMRAqVXH+X0TPexJCRLsblgoCQJ8deRYiqtubEVg/9fEocynAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUUQKJSpDzPnypsuimvZgWAzzdqUwwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzIxNDAyNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA3BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAKkoKwMEAKkoYgMEAKko ZAMEAKkodAMEAKkoeTANBgkqhkiG9w0BAQsFAAOCAQEAJUhoI5HHK9w1rPsfN/Jq +Yd6f/h7WLv3s+f4FcK/xJAUDSCl91rwNTWkAIKle7ZWt5aP8cmXxmmO/jfgLvnZ HX87XZYVDRWpEJfnQrnNDE9Vm2Z26H8E8eiC94uV7S6qINGEwFC5PtdTZkSeM59W P00GBmxFkaTKc/6Ve6vPH9KztnPEEt40kqMnGrlKPIe8KdV5RE18JfIa6+dKPuHy RIcH69SEcZrEG4wFGXrQwDOh+bJepxahwucbDcjAuWXNk7ZMnhm8dgxwiXBb1kEH APX7uz1ur1Xcy4Y3NaMvvVHs9E2Jrio2AZ2ynSinv25mGGNvk6uawNtBCqUeIkDA ug== -----END CERTIFICATE-----Generated at Tue May 12 23:35:24 2026 by rpki-client