$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS197685.roa File: AS197685.roa (raw, json) Hash identifier: 6qdqp3J6Gfn1LWorT3vTZEUl76oA+k56/58M55JflWM= Subject key identifier: 08:B4:19:1E:38:27:FD:D7:BC:8F:88:6B:F6:93:57:06:03:3E:5F:AB Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 0F0E0D5B35A62DF799D8E66C350C63AD824B11A4 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS197685.roa Signing time: Mon 22 Sep 2025 12:02:13 +0000 ROA not before: Mon 22 Sep 2025 11:57:13 +0000 ROA not after: Mon 21 Sep 2026 12:02:13 +0000 asID: 197685 IP address blocks: 89.116.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 00:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:0e:0d:5b:35:a6:2d:f7:99:d8:e6:6c:35:0c:63:ad:82:4b:11:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 22 11:57:13 2025 GMT Not After : Sep 21 12:02:13 2026 GMT Subject: CN=08B4191E3827FDD7BC8F886BF6935706033E5FAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4f:2e:dd:64:7a:fa:bc:ed:f2:b9:0b:c7:2b: df:b6:7f:c0:96:60:41:55:e6:aa:56:fb:b3:97:f9: 55:4e:04:ce:b3:01:c3:5f:0b:9c:b1:bd:6e:5c:9b: ff:9a:b5:ef:cb:d4:a1:98:02:0a:79:3d:2d:87:77: 9e:e8:ed:a9:77:c0:0f:90:08:13:1f:b0:65:93:03: 5d:e9:7c:9b:57:b1:fe:a9:a9:6e:d1:03:c6:e2:89: c8:04:ea:6a:71:5b:30:d6:75:ae:cb:11:00:ec:5e: a6:bd:c2:0a:0b:78:ed:b6:06:8d:8a:1d:5f:72:10: 65:15:cf:7d:77:d6:f7:3c:6c:52:16:51:33:91:c9: 7a:09:f7:d1:c9:0c:b4:d2:ef:76:43:dc:26:be:76: c1:12:2c:a5:a5:25:d2:b3:ea:4f:e0:74:4c:3a:3e: 8e:b4:1a:c6:14:04:ee:8a:94:d7:df:52:c2:de:65: 4d:a5:b3:68:8c:38:20:42:d4:b6:3e:c6:5c:61:8e: 97:f3:8c:52:12:65:52:d5:ad:13:3a:2f:27:11:a5: 6a:c9:7a:1a:43:f8:72:38:43:65:31:0f:03:b3:fb: ad:aa:d9:59:90:9a:10:7b:3e:c6:ec:08:56:a6:62: 54:59:25:0c:13:69:ab:35:bf:e1:47:c5:40:79:ae: d4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B4:19:1E:38:27:FD:D7:BC:8F:88:6B:F6:93:57:06:03:3E:5F:AB X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS197685.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.107.0/24 Signature Algorithm: sha256WithRSAEncryption 54:d8:1c:6a:93:1e:eb:3e:c2:82:aa:a2:3a:4f:39:30:fb:25: 2d:fa:f1:fb:e9:11:b9:88:72:ee:3c:ad:d6:11:be:47:a9:cf: c7:7c:1b:29:f7:9f:06:b4:ec:3d:98:ec:1d:ef:00:bd:5d:c3: f7:16:71:46:65:4e:01:1c:89:97:d5:cd:f6:80:84:79:d3:87: f0:ad:21:d2:b6:1c:65:1f:73:7b:5a:e4:0c:ec:99:58:78:46: e7:af:b1:57:53:33:df:76:e0:b1:62:7a:ec:4d:6d:3a:4a:59: e3:c4:f0:4d:a6:21:f6:34:ef:ba:db:ec:ed:27:4d:de:b7:10: e4:7a:ec:02:9e:05:39:5f:cd:8d:ad:a9:ec:44:09:e0:79:d4: 21:5c:67:f9:75:5a:11:13:75:c0:2f:54:81:f6:4c:0f:a2:04: e8:7e:25:8e:03:79:d4:3e:4b:71:aa:20:b6:a1:8d:ea:29:5d: b6:04:60:28:ae:19:11:5b:7a:9f:14:e3:a8:59:d5:2a:aa:f6: f9:38:b0:07:c9:11:21:dc:7a:61:65:68:d6:f5:16:f3:38:09: 23:4a:fc:e4:da:5c:39:ee:ad:cc:cb:ba:f9:14:b7:fd:c5:e8: 5d:0f:57:54:bc:79:d7:bc:99:7a:77:a3:47:c0:b5:80:7e:e9: 0c:8d:8f:fb -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUDw4NWzWmLfeZ2OZsNQxjrYJLEaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA5MjIxMTU3MTNaFw0yNjA5MjExMjAyMTNaMDMxMTAvBgNV BAMTKDA4QjQxOTFFMzgyN0ZERDdCQzhGODg2QkY2OTM1NzA2MDMzRTVGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYTy7dZHr6vO3yuQvHK9+2f8CW YEFV5qpW+7OX+VVOBM6zAcNfC5yxvW5cm/+ate/L1KGYAgp5PS2Hd57o7al3wA+Q CBMfsGWTA13pfJtXsf6pqW7RA8biicgE6mpxWzDWda7LEQDsXqa9wgoLeO22Bo2K HV9yEGUVz3131vc8bFIWUTORyXoJ99HJDLTS73ZD3Ca+dsESLKWlJdKz6k/gdEw6 Po60GsYUBO6KlNffUsLeZU2ls2iMOCBC1LY+xlxhjpfzjFISZVLVrRM6LycRpWrJ ehpD+HI4Q2UxDwOz+62q2VmQmhB7PsbsCFamYlRZJQwTaas1v+FHxUB5rtRDAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUCLQZHjgn/de8j4hr9pNXBgM+X6swHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE5NzY4NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl0azANBgkqhkiG9w0B AQsFAAOCAQEAVNgcapMe6z7CgqqiOk85MPslLfrx++kRuYhy7jyt1hG+R6nPx3wb KfefBrTsPZjsHe8AvV3D9xZxRmVOARyJl9XN9oCEedOH8K0h0rYcZR9ze1rkDOyZ WHhG56+xV1Mz33bgsWJ67E1tOkpZ48TwTaYh9jTvutvs7SdN3rcQ5HrsAp4FOV/N ja2p7EQJ4HnUIVxn+XVaERN1wC9UgfZMD6IE6H4ljgN51D5LcaogtqGN6ildtgRg KK4ZEVt6nxTjqFnVKqr2+TiwB8kRIdx6YWVo1vUW8zgJI0r85NpcOe6tzMu6+RS3 /cXoXQ9XVLx517yZenejR8C1gH7pDI2P+w== -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:44 2025 by rpki-client