$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS400866.roa File: AS400866.roa (raw, json) Hash identifier: kK00ZNW1ylbkDBNIKFK4AbAIB3IrgUjP+svvSVN9WtM= Subject key identifier: 83:4B:7A:96:F5:2B:4A:20:37:FC:B8:C8:35:65:49:84:2D:F1:ED:E3 Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 5E2900CBC8EAB4C891F171A7D0227A9C1A9C0DF5 Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS400866.roa Signing time: Thu 12 Mar 2026 15:11:00 +0000 ROA not before: Thu 12 Mar 2026 15:06:00 +0000 ROA not after: Thu 11 Mar 2027 15:11:00 +0000 asID: 400866 IP address blocks: 2.59.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:29:00:cb:c8:ea:b4:c8:91:f1:71:a7:d0:22:7a:9c:1a:9c:0d:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Mar 12 15:06:00 2026 GMT Not After : Mar 11 15:11:00 2027 GMT Subject: CN=834B7A96F52B4A2037FCB8C8356549842DF1EDE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:77:71:2d:80:70:fa:9c:c5:7b:e9:46:1a:7d: 7c:63:58:9d:db:92:b3:67:ad:42:3c:43:ea:cb:dd: a7:04:3b:a9:1a:97:f1:64:22:58:49:60:9c:85:4c: 36:77:91:dc:f7:7a:12:f6:ac:d1:02:89:fb:53:eb: c0:60:01:a2:3e:18:09:06:41:54:e1:13:53:c1:65: bf:85:46:8c:f7:58:87:85:a7:7a:d6:74:25:7b:4a: ab:3d:3e:91:c4:19:52:e5:27:5a:83:8a:94:50:5c: cf:32:fc:4a:aa:f1:9e:61:38:d0:43:2a:91:8d:a2: 38:a6:99:a4:92:c3:bd:53:55:8c:96:d0:bc:a8:d9: 87:35:66:33:48:97:43:9d:95:ec:24:29:b8:95:4d: 5b:78:a4:ed:7a:84:cf:68:63:05:c0:28:2f:62:e2: b7:35:4c:2a:ea:e5:a1:fb:92:a7:40:b2:88:61:13: 5b:51:87:90:77:55:9e:19:a2:0e:fd:4d:ed:6b:45: fc:4a:ef:15:77:25:5e:f7:09:39:dd:51:51:86:ee: 88:f3:ca:16:da:13:fa:54:34:35:8a:f3:43:82:7f: 9d:e1:ed:79:7c:a5:f0:6d:88:a8:0b:78:cf:40:bb: 48:8e:cd:fc:5d:0d:7b:b6:7d:e7:9e:71:40:a5:0b: 4a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4B:7A:96:F5:2B:4A:20:37:FC:B8:C8:35:65:49:84:2D:F1:ED:E3 X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS400866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.148.0/23 Signature Algorithm: sha256WithRSAEncryption 20:cc:28:7f:ad:d1:b9:db:a7:5d:9e:02:30:b9:55:98:bd:23: 3c:9a:46:eb:da:6d:5c:5c:b4:9e:bf:97:20:8c:4a:32:b6:8b: 98:0a:15:11:27:2b:4e:35:43:4e:02:ca:09:27:22:d5:ff:57: ea:c5:58:21:3f:b2:1b:72:fd:35:5a:3b:cd:ab:75:03:b0:93: 97:2c:1d:1b:25:d9:c7:40:93:db:f9:ea:a5:d5:d5:2c:bb:9c: 1d:75:7d:2f:fc:03:b4:41:8b:77:86:6d:a6:9e:bc:00:ee:09: c1:48:aa:c4:be:bd:ac:c6:83:88:9d:2c:9a:56:26:64:f5:00: 48:d9:23:94:fa:30:49:d6:0a:3b:fb:32:f2:79:2d:0c:6b:cc: 4e:fe:48:7d:0d:40:0c:26:15:b6:87:b3:f2:64:ee:fe:08:86: 7a:88:36:a9:21:a7:5c:3d:86:9d:e9:d3:3a:e0:f5:8b:7f:c7: ca:7e:14:70:f7:07:7e:1c:0d:92:4a:40:2c:e7:5f:dc:4b:e7: 92:38:27:7f:99:2f:ff:e4:c4:68:75:40:57:79:b3:72:27:9f: eb:53:b6:5f:4d:02:43:e5:bc:0b:2f:af:a3:8d:46:c6:65:85: dd:49:d1:56:b1:d9:75:39:e3:0e:da:ca:a6:df:e9:64:75:fc: 23:5a:94:7f -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUXikAy8jqtMiR8XGn0CJ6nBqcDfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjAzMTIxNTA2MDBaFw0yNzAzMTExNTExMDBaMDMxMTAvBgNV BAMTKDgzNEI3QTk2RjUyQjRBMjAzN0ZDQjhDODM1NjU0OTg0MkRGMUVERTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCod3EtgHD6nMV76UYafXxjWJ3b krNnrUI8Q+rL3acEO6kal/FkIlhJYJyFTDZ3kdz3ehL2rNECiftT68BgAaI+GAkG QVThE1PBZb+FRoz3WIeFp3rWdCV7Sqs9PpHEGVLlJ1qDipRQXM8y/Eqq8Z5hONBD KpGNojimmaSSw71TVYyW0Lyo2Yc1ZjNIl0OdlewkKbiVTVt4pO16hM9oYwXAKC9i 4rc1TCrq5aH7kqdAsohhE1tRh5B3VZ4Zog79Te1rRfxK7xV3JV73CTndUVGG7ojz yhbaE/pUNDWK80OCf53h7Xl8pfBtiKgLeM9Au0iOzfxdDXu2feeecUClC0qVAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUg0t6lvUrSiA3/LjINWVJhC3x7eMwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzQwMDg2Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQI7lDANBgkqhkiG9w0B AQsFAAOCAQEAIMwof63RudunXZ4CMLlVmL0jPJpG69ptXFy0nr+XIIxKMraLmAoV EScrTjVDTgLKCSci1f9X6sVYIT+yG3L9NVo7zat1A7CTlywdGyXZx0CT2/nqpdXV LLucHXV9L/wDtEGLd4Ztpp68AO4JwUiqxL69rMaDiJ0smlYmZPUASNkjlPowSdYK O/sy8nktDGvMTv5IfQ1ADCYVtoez8mTu/giGeog2qSGnXD2GnenTOuD1i3/Hyn4U cPcHfhwNkkpALOdf3Evnkjgnf5kv/+TEaHVAV3mzcief61O2X00CQ+W8Cy+vo41G xmWF3UnRVrHZdTnjDtrKpt/pZHX8I1qUfw== -----END CERTIFICATE-----Generated at Thu Mar 26 12:31:13 2026 by rpki-client