$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS9457.roa File: AS9457.roa (raw, json) Hash identifier: rTMAtQ8P5NpLJuBXTwiuf7EwZ4ism+E9h2iE6ysTnGE= Subject key identifier: B5:D4:7A:A4:34:D6:42:C4:1C:2B:FF:7F:81:A2:1A:31:8E:CA:51:76 Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 3D8505106008C3DC04CD81436A688E28DB824DB7 Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS9457.roa Signing time: Thu 12 Mar 2026 15:11:00 +0000 ROA not before: Thu 12 Mar 2026 15:06:00 +0000 ROA not after: Thu 11 Mar 2027 15:11:00 +0000 asID: 9457 IP address blocks: 169.40.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 15:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:85:05:10:60:08:c3:dc:04:cd:81:43:6a:68:8e:28:db:82:4d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Mar 12 15:06:00 2026 GMT Not After : Mar 11 15:11:00 2027 GMT Subject: CN=B5D47AA434D642C41C2BFF7F81A21A318ECA5176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bf:63:43:03:c0:47:36:61:ec:e2:b8:80:68: 95:e2:25:13:4f:ea:f2:1a:37:b1:73:26:c9:fd:c4: c4:43:25:29:34:d9:41:52:c4:94:6e:ab:90:14:4f: a8:85:cb:e0:e1:fb:95:ad:b4:7d:f9:75:59:d9:7b: c1:01:e9:be:88:42:3e:19:5b:c0:72:37:e6:cd:a5: 60:ad:96:77:64:43:92:e4:16:46:1d:87:ef:bb:97: bd:20:7b:ef:f8:78:68:09:84:4f:f6:ca:a9:b7:da: 06:d7:b1:29:fd:a3:f9:d1:14:70:0c:de:14:88:75: 82:ee:c4:a5:78:7e:c6:b8:25:5d:c7:05:c1:94:fc: 80:cc:70:e9:7b:41:6b:2d:1c:c7:19:e9:75:93:b6: e7:11:48:55:9a:73:1a:8e:9b:3d:b4:30:36:0c:94: d0:00:c0:0d:12:c3:ae:21:0d:e1:ce:55:88:12:4c: b3:39:f6:af:f7:e2:b8:a6:90:0f:9d:e7:f5:04:e7: 29:c7:af:89:ce:3f:28:15:37:3a:5d:58:6a:5a:7f: b9:c8:30:e0:10:29:80:d4:88:31:85:c7:21:c8:d7: 3a:15:64:7b:99:5e:1e:14:db:51:b4:3a:bc:75:93: 0d:91:b1:ac:9b:d2:f9:01:67:0f:3a:42:88:38:f0: 12:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D4:7A:A4:34:D6:42:C4:1C:2B:FF:7F:81:A2:1A:31:8E:CA:51:76 X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS9457.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.96.0/22 Signature Algorithm: sha256WithRSAEncryption 39:32:bc:1f:04:53:4f:27:19:70:ce:36:88:f6:14:99:72:08: fb:60:d2:7f:67:5b:ee:fa:73:d9:fe:39:ac:09:f9:51:4d:61: df:21:c0:cc:c0:42:ce:f4:60:17:63:6e:ec:a7:93:3b:a0:ea: 22:35:c7:80:ea:47:42:d8:e8:e5:e4:c5:9d:aa:8d:58:45:58: 43:0a:b0:47:79:ca:c5:8a:7f:6b:db:b4:c0:fc:0c:9e:5b:89: 34:42:37:f3:ac:96:00:9a:3f:6c:c9:a1:f9:32:02:e8:e8:82: 71:57:70:15:69:49:85:26:7a:b9:1a:c6:f7:fa:83:cc:fe:67: 87:75:e8:d4:af:17:ea:65:c1:03:cf:6f:29:f5:42:22:57:d6: 2f:9d:f5:c4:27:71:03:20:1a:4b:0a:8f:e6:df:3c:b0:7d:02: 1f:8b:42:b2:87:7d:a2:be:7f:3b:91:5d:ad:ad:5a:cd:4c:f0: 7e:82:80:c8:03:f1:a6:46:bf:87:03:86:7a:fb:33:e6:a1:8f: fc:13:5d:03:2b:b9:c2:31:e7:da:3c:18:e8:75:2f:cf:a6:8b: b4:34:f7:e5:dc:df:76:99:73:60:5b:ec:20:7e:7b:4c:af:ec: f2:ea:44:ae:98:4b:5d:f9:11:07:5d:30:2a:31:5f:de:4b:22: 36:f8:7d:16 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUPYUFEGAIw9wEzYFDamiOKNuCTbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjAzMTIxNTA2MDBaFw0yNzAzMTExNTExMDBaMDMxMTAvBgNV BAMTKEI1RDQ3QUE0MzRENjQyQzQxQzJCRkY3RjgxQTIxQTMxOEVDQTUxNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRv2NDA8BHNmHs4riAaJXiJRNP 6vIaN7FzJsn9xMRDJSk02UFSxJRuq5AUT6iFy+Dh+5WttH35dVnZe8EB6b6IQj4Z W8ByN+bNpWCtlndkQ5LkFkYdh++7l70ge+/4eGgJhE/2yqm32gbXsSn9o/nRFHAM 3hSIdYLuxKV4fsa4JV3HBcGU/IDMcOl7QWstHMcZ6XWTtucRSFWacxqOmz20MDYM lNAAwA0Sw64hDeHOVYgSTLM59q/34rimkA+d5/UE5ynHr4nOPygVNzpdWGpaf7nI MOAQKYDUiDGFxyHI1zoVZHuZXh4U21G0Orx1kw2Rsayb0vkBZw86Qog48BKlAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUtdR6pDTWQsQcK/9/gaIaMY7KUXYwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5 ODA5NWRjOTI3LTAvMC9BUzk0NTcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKpKGAwDQYJKoZIhvcNAQEL BQADggEBADkyvB8EU08nGXDONoj2FJlyCPtg0n9nW+76c9n+OawJ+VFNYd8hwMzA Qs70YBdjbuynkzug6iI1x4DqR0LY6OXkxZ2qjVhFWEMKsEd5ysWKf2vbtMD8DJ5b iTRCN/OslgCaP2zJofkyAujognFXcBVpSYUmerkaxvf6g8z+Z4d16NSvF+plwQPP byn1QiJX1i+d9cQncQMgGksKj+bfPLB9Ah+LQrKHfaK+fzuRXa2tWs1M8H6CgMgD 8aZGv4cDhnr7M+ahj/wTXQMrucIx59o8GOh1L8+mi7Q09+Xc33aZc2Bb7CB+e0yv 7PLqRK6YS135EQddMCoxX95LIjb4fRY= -----END CERTIFICATE-----Generated at Thu Mar 26 05:13:36 2026 by rpki-client