$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS152672.roa File: AS152672.roa (raw, json) Hash identifier: xjH5P4PAE8Ai+25C35SK0lfyXs0RyWKD4uK/xZuV1kE= Subject key identifier: C5:3D:46:6D:37:4D:C3:C1:79:65:EC:C7:79:C8:F1:C1:EE:8A:55:CC Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 19B1A726EE3F31AEBD6EA56C05FC10CDDFB9AE27 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS152672.roa Signing time: Mon 30 Jun 2025 06:02:48 +0000 ROA not before: Mon 30 Jun 2025 05:57:48 +0000 ROA not after: Mon 29 Jun 2026 06:02:48 +0000 asID: 152672 IP address blocks: 89.116.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 16:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b1:a7:26:ee:3f:31:ae:bd:6e:a5:6c:05:fc:10:cd:df:b9:ae:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 30 05:57:48 2025 GMT Not After : Jun 29 06:02:48 2026 GMT Subject: CN=C53D466D374DC3C17965ECC779C8F1C1EE8A55CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2c:82:89:2f:70:c0:6b:84:2d:4c:ad:1c:6b: 0c:13:9a:52:3b:30:32:57:bb:57:a7:75:ef:cc:3a: 2a:58:9a:4c:6c:f9:ad:06:5d:d1:a3:ec:45:40:f7: 39:19:9f:aa:03:37:a9:94:87:c3:43:1c:dd:d0:1c: df:d9:7e:b5:47:26:01:67:2f:97:88:24:31:f1:6b: 77:b5:9d:48:34:00:88:d8:04:f0:55:0a:86:f6:3f: af:63:9a:a9:0c:33:97:36:6f:05:1a:a2:6d:b9:8b: 51:ac:c7:d1:f9:66:2e:59:fb:a8:5a:b6:10:ae:0b: 99:1d:6f:4b:e6:8e:5a:df:db:dd:95:78:ba:a5:6b: 6c:ad:02:9d:94:32:0b:d6:a4:a3:8e:f0:f8:1c:86: a1:5d:18:e3:08:b2:84:79:77:46:a5:d6:91:b6:e0: 8d:b4:12:92:16:a2:d3:d5:e0:a8:6a:db:91:89:9c: 4a:ff:98:4a:b1:e6:cc:35:51:9e:15:85:47:9b:e3: 70:26:b7:32:b7:75:55:5b:9e:e3:33:74:bf:c4:df: 3d:f3:70:88:39:01:da:cd:ae:64:ee:8a:bc:ad:81: df:80:c0:d3:43:d2:d9:2c:b1:5c:f0:0f:f7:5e:ef: e5:11:57:49:76:41:f0:2d:8b:7e:de:74:1d:83:3a: 8f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3D:46:6D:37:4D:C3:C1:79:65:EC:C7:79:C8:F1:C1:EE:8A:55:CC X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS152672.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.144.0/24 Signature Algorithm: sha256WithRSAEncryption 28:d5:21:ef:52:a4:8d:b5:bf:6c:dd:86:01:54:47:a4:3d:52: 38:b3:84:56:fc:3a:7c:d1:68:32:36:25:36:db:0f:1d:44:b8: d8:c0:d6:db:cf:90:ac:6d:38:31:02:a2:ab:2b:b3:83:2b:0c: e8:fa:9b:e9:b9:fa:98:9d:c1:5c:b0:fd:cd:a3:dc:2f:4e:ba: 8b:04:92:f7:0d:b9:1c:84:a6:2c:97:30:cf:2c:40:4a:4f:e1: 88:fa:93:ed:60:e5:12:6f:3e:4d:77:49:1e:c0:17:0e:bf:e8: 06:6f:5e:b0:8f:c8:1e:92:94:af:0d:a8:e5:3b:55:a9:17:d4: 1c:15:c2:02:0b:25:9b:3a:9e:77:67:6f:de:ee:20:26:8a:c7: cb:34:68:27:ff:7a:f2:79:83:24:c9:eb:e7:bc:2a:18:2e:bb: 14:f7:b5:ea:e0:b6:99:5e:30:da:4d:d3:71:fb:f7:3e:bf:5c: 8c:8b:53:32:cd:4c:97:ca:c8:f1:48:75:dd:07:21:21:7d:fe: 10:a2:b9:b3:4a:09:b5:d8:35:30:c7:81:a6:13:db:67:4b:c3: 69:26:ab:62:02:d7:57:88:0f:08:84:83:9a:f2:cf:7f:d4:be: a9:54:30:1d:fd:e7:b6:a0:7c:c5:c1:8c:69:78:a0:83:5a:d7: 21:99:7f:de -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUGbGnJu4/Ma69bqVsBfwQzd+5ricwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA2MzAwNTU3NDhaFw0yNjA2MjkwNjAyNDhaMDMxMTAvBgNV BAMTKEM1M0Q0NjZEMzc0REMzQzE3OTY1RUNDNzc5QzhGMUMxRUU4QTU1Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlLIKJL3DAa4QtTK0cawwTmlI7 MDJXu1ende/MOipYmkxs+a0GXdGj7EVA9zkZn6oDN6mUh8NDHN3QHN/ZfrVHJgFn L5eIJDHxa3e1nUg0AIjYBPBVCob2P69jmqkMM5c2bwUaom25i1Gsx9H5Zi5Z+6ha thCuC5kdb0vmjlrf292VeLqla2ytAp2UMgvWpKOO8PgchqFdGOMIsoR5d0al1pG2 4I20EpIWotPV4Khq25GJnEr/mEqx5sw1UZ4VhUeb43AmtzK3dVVbnuMzdL/E3z3z cIg5AdrNrmTuirytgd+AwNND0tkssVzwD/de7+URV0l2QfAti37edB2DOo9nAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUxT1GbTdNw8F5ZezHecjxwe6KVcwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE1MjY3Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl0kDANBgkqhkiG9w0B AQsFAAOCAQEAKNUh71KkjbW/bN2GAVRHpD1SOLOEVvw6fNFoMjYlNtsPHUS42MDW 28+QrG04MQKiqyuzgysM6Pqb6bn6mJ3BXLD9zaPcL066iwSS9w25HISmLJcwzyxA Sk/hiPqT7WDlEm8+TXdJHsAXDr/oBm9esI/IHpKUrw2o5TtVqRfUHBXCAgslmzqe d2dv3u4gJorHyzRoJ/968nmDJMnr57wqGC67FPe16uC2mV4w2k3Tcfv3Pr9cjItT Ms1Ml8rI8Uh13QchIX3+EKK5s0oJtdg1MMeBphPbZ0vDaSarYgLXV4gPCISDmvLP f9S+qVQwHf3ntqB8xcGMaXigg1rXIZl/3g== -----END CERTIFICATE-----Generated at Tue Jul 1 08:17:36 2025 by rpki-client