$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13335.roa File: AS13335.roa (raw, json) Hash identifier: xeD0xASVkSXz3GQVJqynnWVKVzIomHUWM/EERtGjP7Q= Subject key identifier: DD:F8:4E:72:A6:22:42:D7:23:5B:87:85:CA:A0:5A:44:95:3C:77:3F Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 0EF8931D4ADC40E83FF88110FA472D0C330CC2AD Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13335.roa Signing time: Wed 18 Jun 2025 09:04:10 +0000 ROA not before: Wed 18 Jun 2025 08:59:10 +0000 ROA not after: Wed 17 Jun 2026 09:04:10 +0000 asID: 13335 IP address blocks: 86.38.246.0/24 maxlen: 24 86.38.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 15:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f8:93:1d:4a:dc:40:e8:3f:f8:81:10:fa:47:2d:0c:33:0c:c2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 18 08:59:10 2025 GMT Not After : Jun 17 09:04:10 2026 GMT Subject: CN=DDF84E72A62242D7235B8785CAA05A44953C773F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:46:d0:b8:5c:01:2f:a9:5f:07:9d:71:e5:af: 5a:53:cf:34:3c:57:8d:4d:1b:10:cc:27:a7:ab:d8: d7:84:28:62:f2:50:f4:e9:fd:18:4c:e7:2f:12:47: 6e:41:7a:4d:4b:e5:a9:dd:59:5e:41:87:57:d3:76: 6a:cd:bd:6c:b7:52:43:e8:2e:14:6e:a1:bb:3a:92: 49:04:ad:5b:43:55:78:f1:ed:a0:70:8d:0a:ca:a3: 69:83:ae:63:1b:fb:61:c3:a5:fc:11:b2:40:ee:96: 9e:69:96:d0:7f:94:9c:bd:ed:d4:76:2f:b2:d0:1c: af:30:07:36:20:cf:8e:0b:32:7e:f5:68:37:78:9f: 1e:aa:b0:ae:a4:f7:74:dd:f8:f1:d3:8b:be:89:f6: c8:57:14:98:ee:92:bf:31:33:7f:1c:8a:dc:14:3c: cf:d2:8b:09:71:72:a0:9f:0a:a8:83:a1:d5:64:31: c5:12:ef:9c:0e:31:39:92:27:67:8b:25:83:24:30: 10:73:fb:a5:f8:cf:c5:e7:b8:b0:9e:31:9e:a6:92: b5:3d:7b:80:ba:b6:a6:9f:31:0d:7f:4a:aa:28:4f: b3:16:b0:b4:81:4f:c0:20:9e:ef:5b:25:50:8c:ec: a9:57:bd:02:d6:b9:b9:e1:c8:e9:54:dd:51:dd:2e: 0c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F8:4E:72:A6:22:42:D7:23:5B:87:85:CA:A0:5A:44:95:3C:77:3F X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.246.0/24 86.38.251.0/24 Signature Algorithm: sha256WithRSAEncryption 65:c4:e2:06:b2:2c:c1:8d:fc:f3:55:76:b1:09:4a:75:78:f3: e4:82:4c:42:79:a8:b3:30:06:3d:f7:03:81:45:83:ec:b8:d0: 99:2a:ac:b9:c9:f9:66:f2:ab:94:3c:31:44:6e:ec:bb:61:9f: 4e:83:3f:07:9f:6c:7d:e8:0e:dc:e3:73:e6:25:53:16:5f:1f: d5:0c:cc:9c:fd:d1:c8:25:9b:d7:9f:3f:c4:95:f4:94:cd:2b: 70:6c:93:26:87:e9:31:7d:10:b0:c8:ab:f8:a5:38:0c:58:ac: ec:39:69:9d:c8:14:de:90:0f:c3:b1:e4:50:63:7f:e0:27:1b: 69:5b:3a:93:c6:e6:3a:0c:e7:ec:a7:bb:88:5a:6e:46:9a:02: 93:c4:b8:cf:3f:2c:ea:b6:b1:e7:dc:70:63:52:dc:2e:26:d4: 70:38:ad:79:07:69:a1:a5:17:4a:a2:52:07:9a:9f:cb:87:3e: c0:83:9b:b0:32:7a:86:3e:a3:9b:17:be:14:63:43:1a:4c:01: ee:3e:a4:71:ab:ce:7f:2e:da:ac:86:c3:42:f5:ae:5a:59:2f: a9:d8:f0:cb:6f:1c:74:17:02:33:27:5b:c1:75:04:35:0e:d4: f4:b4:0d:0c:b6:b2:68:de:64:1f:e9:4c:99:b8:d4:6b:27:51: c2:d5:94:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDviTHUrcQOg/+IEQ+kctDDMMwq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA2MTgwODU5MTBaFw0yNjA2MTcwOTA0MTBaMDMxMTAvBgNV BAMTKERERjg0RTcyQTYyMjQyRDcyMzVCODc4NUNBQTA1QTQ0OTUzQzc3M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoRtC4XAEvqV8HnXHlr1pTzzQ8 V41NGxDMJ6er2NeEKGLyUPTp/RhM5y8SR25Bek1L5andWV5Bh1fTdmrNvWy3UkPo LhRuobs6kkkErVtDVXjx7aBwjQrKo2mDrmMb+2HDpfwRskDulp5pltB/lJy97dR2 L7LQHK8wBzYgz44LMn71aDd4nx6qsK6k93Td+PHTi76J9shXFJjukr8xM38citwU PM/SiwlxcqCfCqiDodVkMcUS75wOMTmSJ2eLJYMkMBBz+6X4z8XnuLCeMZ6mkrU9 e4C6tqafMQ1/SqooT7MWsLSBT8Agnu9bJVCM7KlXvQLWubnhyOlU3VHdLgy7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3fhOcqYiQtcjW4eFyqBaRJU8dz8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVib2AwQAVib7MA0GCSqG SIb3DQEBCwUAA4IBAQBlxOIGsizBjfzzVXaxCUp1ePPkgkxCeaizMAY99wOBRYPs uNCZKqy5yflm8quUPDFEbuy7YZ9Ogz8Hn2x96A7c43PmJVMWXx/VDMyc/dHIJZvX nz/ElfSUzStwbJMmh+kxfRCwyKv4pTgMWKzsOWmdyBTekA/DseRQY3/gJxtpWzqT xuY6DOfsp7uIWm5GmgKTxLjPPyzqtrHn3HBjUtwuJtRwOK15B2mhpRdKolIHmp/L hz7Ag5uwMnqGPqObF74UY0MaTAHuPqRxq85/LtqshsNC9a5aWS+p2PDLbxx0FwIz J1vBdQQ1DtT0tA0MtrJo3mQf6UyZuNRrJ1HC1ZS1 -----END CERTIFICATE-----Generated at Tue Jul 1 00:53:08 2025 by rpki-client