$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS216032.roa File: AS216032.roa (raw, json) Hash identifier: v672tqIG0/SavTGGpX41LuBKU6Q3cf7B34L1uAXFdWc= Subject key identifier: 72:F1:43:CC:12:EF:60:71:3F:86:80:05:9C:9D:EA:B0:35:B6:86:8E Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 0AE6C3C052478DA8BFBA0390E274F4BC4CB96B7D Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS216032.roa Signing time: Thu 12 Mar 2026 15:11:01 +0000 ROA not before: Thu 12 Mar 2026 15:06:01 +0000 ROA not after: Thu 11 Mar 2027 15:11:01 +0000 asID: 216032 IP address blocks: 169.40.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 15:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:e6:c3:c0:52:47:8d:a8:bf:ba:03:90:e2:74:f4:bc:4c:b9:6b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Mar 12 15:06:01 2026 GMT Not After : Mar 11 15:11:01 2027 GMT Subject: CN=72F143CC12EF60713F8680059C9DEAB035B6868E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a9:6b:d7:91:14:d6:72:72:14:af:ce:11:ca: 6b:60:f2:50:0e:8a:7f:b6:22:c9:75:10:fb:81:ea: a9:b1:9c:d2:60:8a:10:a7:15:aa:11:e4:66:69:43: 03:94:2c:d3:5a:83:0a:e6:87:a4:dc:8b:4a:48:e2: 71:7c:48:53:ba:07:c9:0c:6b:5f:68:c9:d0:ef:b0: ec:c0:1d:6b:de:d9:35:52:58:64:e7:d7:c4:e4:46: d0:0d:98:7d:c7:37:0c:40:bb:be:08:46:25:31:51: 5e:2a:6d:bb:04:b4:a6:e3:b6:e4:be:3c:42:16:e7: d8:4b:0c:7e:63:72:75:c0:b7:d3:c9:9b:d6:52:92: 3b:63:e2:33:52:63:61:89:3f:5b:82:ef:75:8a:12: 0a:ce:c4:86:6c:de:ee:18:27:da:bc:a6:93:b4:6e: 0e:24:28:b8:c8:44:00:c0:6c:fc:2c:d3:70:15:0a: 35:45:a2:8a:ee:c6:79:6c:00:11:6d:7b:70:d7:9a: c8:66:79:35:ea:6c:4c:8c:95:aa:75:d6:2d:9a:5a: cc:24:bc:e0:48:63:1c:88:40:e3:c2:0e:48:96:18: 9a:81:97:7e:8c:96:19:0d:ae:4c:41:93:3f:83:78: de:64:8e:c0:d1:10:49:4f:bf:bb:94:2d:c4:58:2c: 79:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F1:43:CC:12:EF:60:71:3F:86:80:05:9C:9D:EA:B0:35:B6:86:8E X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS216032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.120.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:df:53:b7:13:7e:49:ab:35:7b:a7:ed:fa:79:95:7a:61:89: 8e:ca:3d:ec:a4:26:99:78:51:d7:cd:1c:e1:7a:31:8b:2b:cb: 92:43:a3:48:9e:63:f2:12:94:bd:7e:ff:97:7f:d0:cf:4b:84: ac:1d:fd:c0:ea:47:8f:61:2f:30:5d:50:25:d1:c6:8f:37:97: f3:7a:96:22:ba:b1:f0:db:b7:0e:ff:2f:42:6e:43:f5:39:fa: ba:fd:38:41:29:e0:a3:30:47:d3:36:b1:99:12:6d:80:9c:61: ef:b8:31:fa:b7:2c:40:e5:5f:13:81:1e:31:33:be:04:47:47: d8:a4:ee:3f:5a:0d:48:87:b5:57:f6:cf:00:49:69:21:aa:bd: cc:38:2b:9c:11:13:30:fb:e5:72:35:e1:4a:90:ea:12:5c:d2: 64:21:32:a8:f1:63:91:de:56:25:2a:4a:14:59:f3:eb:98:4f: 03:4a:de:e4:7a:aa:68:08:4d:15:7b:7a:1d:99:0e:a3:50:80: 9c:b8:fe:37:ad:c3:a4:e4:5e:4a:ba:ef:19:b3:e3:12:cd:ac: ae:15:69:e8:a2:63:31:7d:47:d0:93:c7:7e:3b:b3:10:ba:c1: 33:9d:ea:2e:ea:b3:a6:ff:fc:7c:21:3a:13:a9:d2:b8:95:ff: ba:14:c8:74 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUCubDwFJHjai/ugOQ4nT0vEy5a30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjAzMTIxNTA2MDFaFw0yNzAzMTExNTExMDFaMDMxMTAvBgNV BAMTKDcyRjE0M0NDMTJFRjYwNzEzRjg2ODAwNTlDOURFQUIwMzVCNjg2OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfqWvXkRTWcnIUr84Rymtg8lAO in+2Isl1EPuB6qmxnNJgihCnFaoR5GZpQwOULNNagwrmh6Tci0pI4nF8SFO6B8kM a19oydDvsOzAHWve2TVSWGTn18TkRtANmH3HNwxAu74IRiUxUV4qbbsEtKbjtuS+ PEIW59hLDH5jcnXAt9PJm9ZSkjtj4jNSY2GJP1uC73WKEgrOxIZs3u4YJ9q8ppO0 bg4kKLjIRADAbPws03AVCjVFooruxnlsABFte3DXmshmeTXqbEyMlap11i2aWswk vOBIYxyIQOPCDkiWGJqBl36MlhkNrkxBkz+DeN5kjsDREElPv7uULcRYLHmBAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUcvFDzBLvYHE/hoAFnJ3qsDW2ho4wHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzIxNjAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKkoeDANBgkqhkiG9w0B AQsFAAOCAQEADd9TtxN+Sas1e6ft+nmVemGJjso97KQmmXhR180c4XoxiyvLkkOj SJ5j8hKUvX7/l3/Qz0uErB39wOpHj2EvMF1QJdHGjzeX83qWIrqx8Nu3Dv8vQm5D 9Tn6uv04QSngozBH0zaxmRJtgJxh77gx+rcsQOVfE4EeMTO+BEdH2KTuP1oNSIe1 V/bPAElpIaq9zDgrnBETMPvlcjXhSpDqElzSZCEyqPFjkd5WJSpKFFnz65hPA0re 5HqqaAhNFXt6HZkOo1CAnLj+N63DpOReSrrvGbPjEs2srhVp6KJjMX1H0JPHfjuz ELrBM53qLuqzpv/8fCE6E6nSuJX/uhTIdA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:13:35 2026 by rpki-client