$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS200019.roa File: AS200019.roa (raw, json) Hash identifier: kPgBV7ftWdfuQSBp3r1bV/FCmmMDpNTJUg7D1PtUhio= Subject key identifier: 84:67:FD:B8:C1:1E:C8:71:73:F8:05:FD:0A:CB:11:C9:43:5F:92:00 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7B65AC6431C20353E45DC3839320E6D8264CB5EC Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS200019.roa Signing time: Tue 14 Oct 2025 17:55:08 +0000 ROA not before: Tue 14 Oct 2025 17:50:08 +0000 ROA not after: Tue 13 Oct 2026 17:55:08 +0000 asID: 200019 IP address blocks: 89.117.64.0/22 maxlen: 24 89.117.104.0/22 maxlen: 24 89.117.132.0/22 maxlen: 24 89.117.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 07:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:65:ac:64:31:c2:03:53:e4:5d:c3:83:93:20:e6:d8:26:4c:b5:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Oct 14 17:50:08 2025 GMT Not After : Oct 13 17:55:08 2026 GMT Subject: CN=8467FDB8C11EC87173F805FD0ACB11C9435F9200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:b8:88:38:1b:62:ec:e3:19:51:56:48:69: 0c:01:01:76:f5:e8:76:64:9f:6e:30:4e:ac:80:7e: 37:08:a5:43:97:1d:3c:7e:77:dc:98:84:12:e0:b4: c5:4e:e9:78:2f:d1:e8:17:b3:db:e6:f8:47:c2:86: ec:13:b8:63:f2:db:30:18:66:49:41:09:96:77:d9: 7f:a7:9e:4c:e1:31:68:78:8f:da:d1:86:6a:41:6d: 86:1e:fb:e6:b6:4d:8a:a3:f5:4d:af:51:fa:47:4e: 80:de:cb:37:37:32:53:88:a4:a6:6f:fa:6b:25:ec: 05:a3:61:17:eb:d5:40:7f:61:2b:92:2a:81:6b:4c: ee:7d:8c:89:74:d7:58:c8:26:6b:16:f5:46:47:85: 62:f6:51:04:40:ed:fc:b5:7a:79:a9:2c:6f:65:4d: 08:d4:d5:23:69:13:3f:1e:77:25:ea:65:c1:ac:b1: e1:8a:75:9a:bb:92:91:f8:9a:4c:e6:41:16:d4:6a: 66:54:10:d4:6d:0b:af:3d:5d:78:08:e0:81:f5:21: 53:91:06:40:54:22:6b:17:47:a5:c8:2c:12:f9:b8: 2d:eb:bb:fa:d4:d2:34:3c:ef:96:05:cb:67:f2:30: d8:42:36:9f:d7:70:e0:7a:f3:d1:5a:eb:9d:50:b5: a2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:67:FD:B8:C1:1E:C8:71:73:F8:05:FD:0A:CB:11:C9:43:5F:92:00 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS200019.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.64.0/22 89.117.104.0/22 89.117.132.0/22 89.117.160.0/22 Signature Algorithm: sha256WithRSAEncryption 05:da:15:9f:ba:68:5b:11:c0:b1:17:12:52:93:93:d8:09:6d: 4d:84:5d:19:2f:ca:d0:93:9f:a7:a2:bf:af:af:14:b5:fb:f4: 18:f7:f4:4f:bf:f0:e6:1c:f8:a4:58:51:32:ae:97:98:2f:c4: 16:95:89:a3:4c:4f:8a:23:f3:ab:6b:f2:07:bf:eb:1a:5a:e3: 8c:0c:15:94:fa:3d:8b:7c:32:f6:82:da:92:1d:4a:64:cb:54: 12:dc:e0:56:e8:13:fc:dd:cd:3b:b7:65:0b:74:6b:4a:dc:a1: 0a:4b:be:26:d3:69:3f:38:24:31:6b:3f:93:32:73:bf:22:79: 37:f3:40:a4:dc:b4:96:f3:a9:c6:82:91:f7:87:2b:68:4f:1c: dd:c2:de:15:fc:a3:ce:27:39:f5:20:14:8f:e3:63:0a:9e:72: 88:8a:ca:82:20:99:bd:cc:91:6f:f1:bc:29:23:51:89:fd:63: c5:bd:a1:fb:8c:f8:57:ff:a3:e7:1c:66:50:e9:f2:18:17:48: 7c:a8:ab:52:16:94:27:d6:bb:29:92:66:2c:73:5a:15:29:89: 67:89:9f:30:49:ee:37:c1:b3:02:ed:cf:92:fd:11:8b:39:c4: 83:75:94:43:b8:bb:fd:91:5d:2b:af:ea:2a:99:34:d1:2b:fd: 12:0c:a6:ce -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUe2WsZDHCA1PkXcODkyDm2CZMtewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTEwMTQxNzUwMDhaFw0yNjEwMTMxNzU1MDhaMDMxMTAvBgNV BAMTKDg0NjdGREI4QzExRUM4NzE3M0Y4MDVGRDBBQ0IxMUM5NDM1RjkyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF1LiIOBti7OMZUVZIaQwBAXb1 6HZkn24wTqyAfjcIpUOXHTx+d9yYhBLgtMVO6Xgv0egXs9vm+EfChuwTuGPy2zAY ZklBCZZ32X+nnkzhMWh4j9rRhmpBbYYe++a2TYqj9U2vUfpHToDeyzc3MlOIpKZv +msl7AWjYRfr1UB/YSuSKoFrTO59jIl011jIJmsW9UZHhWL2UQRA7fy1enmpLG9l TQjU1SNpEz8edyXqZcGsseGKdZq7kpH4mkzmQRbUamZUENRtC689XXgI4IH1IVOR BkBUImsXR6XILBL5uC3ru/rU0jQ875YFy2fyMNhCNp/XcOB689Fa651QtaLFAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUhGf9uMEeyHFz+AX9CssRyUNfkgAwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwMDAxOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAll1QAMEAll1aAMEAll1 hAMEAll1oDANBgkqhkiG9w0BAQsFAAOCAQEABdoVn7poWxHAsRcSUpOT2AltTYRd GS/K0JOfp6K/r68Utfv0GPf0T7/w5hz4pFhRMq6XmC/EFpWJo0xPiiPzq2vyB7/r GlrjjAwVlPo9i3wy9oLakh1KZMtUEtzgVugT/N3NO7dlC3RrStyhCku+JtNpPzgk MWs/kzJzvyJ5N/NApNy0lvOpxoKR94craE8c3cLeFfyjzic59SAUj+NjCp5yiIrK giCZvcyRb/G8KSNRif1jxb2h+4z4V/+j5xxmUOnyGBdIfKirUhaUJ9a7KZJmLHNa FSmJZ4mfMEnuN8GzAu3Pkv0RiznEg3WUQ7i7/ZFdK6/qKpk00Sv9Egymzg== -----END CERTIFICATE-----Generated at Sun Oct 19 20:19:25 2025 by rpki-client