$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS203446.roa File: AS203446.roa (raw, json) Hash identifier: xolj/yOEwsm40N+l0fj3XXK+9tiGibHGnM2jUl90Yg4= Subject key identifier: 63:E2:B9:DB:03:CD:66:B2:B7:4B:B3:9F:2D:36:B5:BF:B8:C2:93:D6 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 717D5AAC4CD1C3CEE2E870A2CDAC5ABFDBBEA57F Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS203446.roa Signing time: Wed 22 Apr 2026 10:59:19 +0000 ROA not before: Wed 22 Apr 2026 10:54:19 +0000 ROA not after: Wed 21 Apr 2027 10:59:19 +0000 asID: 203446 IP address blocks: 86.38.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7d:5a:ac:4c:d1:c3:ce:e2:e8:70:a2:cd:ac:5a:bf:db:be:a5:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 22 10:54:19 2026 GMT Not After : Apr 21 10:59:19 2027 GMT Subject: CN=63E2B9DB03CD66B2B74BB39F2D36B5BFB8C293D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:27:47:83:aa:57:6a:d2:74:75:c6:36:96:bb: 74:11:bc:ea:00:a8:d9:f2:16:37:2e:c0:3e:7c:c1: 64:22:59:a9:30:7e:40:b1:29:60:0d:f3:ab:50:06: 9f:72:b6:a7:3f:c2:52:3f:a0:7d:ea:3f:16:35:ed: 23:58:78:c3:50:0a:48:66:dd:3f:86:12:dd:88:d0: cb:25:52:f4:61:c0:c9:00:10:d0:45:e1:77:23:15: c5:e7:ed:03:d9:ae:f8:02:14:a3:46:0a:df:00:ad: d1:65:47:1f:2a:7c:c0:1d:ca:d6:92:64:90:1e:e0: 84:e6:4c:88:4a:6c:e5:71:85:e9:fb:dc:01:69:7e: 46:c2:29:45:1e:14:23:7b:92:7c:6e:a3:07:f7:2f: d7:bf:ad:08:19:2e:fa:06:47:5d:98:98:f7:c8:1a: 59:86:84:84:6d:1f:40:9c:3f:b6:4b:2f:2a:7a:4f: 27:a5:08:87:2b:84:d5:74:6f:6b:7e:3b:aa:f6:1e: 9f:6d:d0:27:7e:ff:9f:ab:a0:38:56:c5:e7:8d:b2: 08:a1:5b:3d:da:67:9b:8d:af:6c:23:5b:8a:2f:17: b4:a9:f1:54:48:e5:56:57:f2:30:61:44:2f:8b:be: 9b:d1:fe:6c:b5:7b:03:42:a3:ff:bf:ec:2e:f2:9a: 6f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E2:B9:DB:03:CD:66:B2:B7:4B:B3:9F:2D:36:B5:BF:B8:C2:93:D6 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS203446.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.156.0/24 Signature Algorithm: sha256WithRSAEncryption ad:5b:ea:2c:51:41:12:88:21:78:0f:b8:af:b7:52:0e:22:ef: e2:b7:91:ef:3d:6f:a0:d9:e3:e0:85:79:cc:6d:3a:cf:cc:0a: ae:8b:16:0f:e6:8b:55:27:03:01:10:e1:49:dd:51:f8:82:2c: e1:18:5e:62:f5:25:b5:ed:6d:27:6f:de:33:32:6d:01:af:9a: 3f:a6:71:c5:eb:b8:4a:91:3a:e5:7e:03:98:e4:ad:e3:c7:19: bd:30:34:ce:d4:cd:ba:02:fb:22:88:ce:bc:0e:3c:f2:f2:61: 6b:1c:16:ef:7a:c0:57:8c:e8:4d:89:c1:44:d0:a1:3c:61:de: 11:de:28:03:32:c5:10:31:23:76:64:bf:d7:24:46:63:71:85: 61:4c:7b:93:3b:f0:c9:e9:12:25:ed:87:80:ee:98:3c:b9:9b: 9d:38:6a:4e:18:2b:18:41:0f:14:46:e1:e6:95:b7:a2:b5:96: ff:76:3c:64:10:46:ff:05:67:dc:39:51:53:f0:96:2e:a4:ce: fb:38:e2:46:d7:62:4c:fc:90:7e:8d:d7:d2:ca:4a:02:2a:d8: 78:94:ab:81:71:41:e3:44:d4:98:3b:7e:6d:4b:50:d3:9b:4f: 92:c5:88:82:90:17:36:a0:1c:f8:45:08:69:99:c9:5f:36:ac: b6:60:d8:13 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUcX1arEzRw87i6HCizaxav9u+pX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjA0MjIxMDU0MTlaFw0yNzA0MjExMDU5MTlaMDMxMTAvBgNV BAMTKDYzRTJCOURCMDNDRDY2QjJCNzRCQjM5RjJEMzZCNUJGQjhDMjkzRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPJ0eDqldq0nR1xjaWu3QRvOoA qNnyFjcuwD58wWQiWakwfkCxKWAN86tQBp9ytqc/wlI/oH3qPxY17SNYeMNQCkhm 3T+GEt2I0MslUvRhwMkAENBF4XcjFcXn7QPZrvgCFKNGCt8ArdFlRx8qfMAdytaS ZJAe4ITmTIhKbOVxhen73AFpfkbCKUUeFCN7knxuowf3L9e/rQgZLvoGR12YmPfI GlmGhIRtH0CcP7ZLLyp6TyelCIcrhNV0b2t+O6r2Hp9t0Cd+/5+roDhWxeeNsgih Wz3aZ5uNr2wjW4ovF7Sp8VRI5VZX8jBhRC+LvpvR/my1ewNCo/+/7C7ymm/7AgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUY+K52wPNZrK3S7OfLTa1v7jCk9YwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwMzQ0Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYmnDANBgkqhkiG9w0B AQsFAAOCAQEArVvqLFFBEogheA+4r7dSDiLv4reR7z1voNnj4IV5zG06z8wKrosW D+aLVScDARDhSd1R+IIs4RheYvUlte1tJ2/eMzJtAa+aP6Zxxeu4SpE65X4DmOSt 48cZvTA0ztTNugL7IojOvA488vJhaxwW73rAV4zoTYnBRNChPGHeEd4oAzLFEDEj dmS/1yRGY3GFYUx7kzvwyekSJe2HgO6YPLmbnThqThgrGEEPFEbh5pW3orWW/3Y8 ZBBG/wVn3DlRU/CWLqTO+zjiRtdiTPyQfo3X0spKAirYeJSrgXFB40TUmDt+bUtQ 05tPksWIgpAXNqAc+EUIaZnJXzastmDYEw== -----END CERTIFICATE-----Generated at Tue May 12 22:53:29 2026 by rpki-client