$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS204894.roa File: AS204894.roa (raw, json) Hash identifier: fBiQnCiyPHA6X4IAk9Br8kLJbDPuxSrRnWDYeQtCSOs= Subject key identifier: AC:BF:55:07:95:92:3E:0F:11:40:44:77:9C:CD:E8:B3:51:87:D0:9F Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 41895BAC6AF74287FE57494D5220147A6C48C599 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS204894.roa Signing time: Thu 19 Mar 2026 15:46:49 +0000 ROA not before: Thu 19 Mar 2026 15:41:49 +0000 ROA not after: Thu 18 Mar 2027 15:46:49 +0000 asID: 204894 IP address blocks: 89.117.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 16:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:89:5b:ac:6a:f7:42:87:fe:57:49:4d:52:20:14:7a:6c:48:c5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 19 15:41:49 2026 GMT Not After : Mar 18 15:46:49 2027 GMT Subject: CN=ACBF550795923E0F114044779CCDE8B35187D09F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:17:50:d4:64:f6:fd:34:87:75:25:33:5b: 05:68:54:cc:58:74:f2:15:a5:2c:07:a8:8c:90:39: 33:0c:e0:4c:28:31:6b:ce:1f:16:b8:ad:8e:69:8d: 3e:5e:67:8c:2f:24:52:69:47:dc:32:4f:79:fd:31: 5e:ce:28:45:6d:65:6f:3e:b4:93:8b:eb:27:e3:b3: 13:f1:ca:dc:d1:33:6e:3f:75:1c:a4:38:09:03:8d: de:bb:1a:50:72:ef:c9:4a:5b:e1:02:f4:cf:1a:c0: 9e:4d:e0:1a:38:25:36:ec:3b:43:c0:b8:1b:5b:dd: 26:3b:e0:87:6f:66:fe:cf:25:5f:2e:7c:ce:8a:d6: a1:e7:90:e8:85:14:23:5a:f9:cd:59:0a:96:c8:36: 2e:9c:10:02:85:27:e9:95:7f:5c:68:7f:4e:2f:cc: ba:31:8e:a9:4e:b6:3a:01:ee:54:50:20:a8:a8:f1: 93:4d:35:eb:02:d4:d8:ce:75:07:f4:ba:53:a3:ad: 5b:5d:16:2a:92:a0:c8:7e:35:34:bb:fa:ac:f5:cc: 10:e3:e3:62:69:fc:80:0a:10:0a:fc:f2:82:34:5a: 34:14:1b:54:e9:d6:92:34:f5:c1:94:51:3c:d7:6f: ea:e9:7f:ce:b3:1c:4a:70:0f:93:55:5a:32:01:9d: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BF:55:07:95:92:3E:0F:11:40:44:77:9C:CD:E8:B3:51:87:D0:9F X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS204894.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.222.0/24 Signature Algorithm: sha256WithRSAEncryption 59:8a:9d:03:b4:ca:9b:60:9c:75:f4:9c:31:48:1a:5d:69:5f: dd:40:a8:d8:8b:65:d2:31:2b:9a:10:59:c2:54:b0:bb:a1:79: c1:34:6b:77:77:f3:84:aa:67:5e:17:f0:bf:35:7e:6d:86:5d: 98:e7:46:6e:a7:ab:3e:b3:ac:50:8a:72:a7:9e:9f:cf:2f:2f: 8d:72:50:9a:e8:c6:c9:64:3f:5b:8c:3e:08:17:95:27:99:2d: 0d:64:5e:d3:b3:e2:94:96:3e:d4:73:36:57:9c:e9:1e:17:4d: d8:a1:1a:bf:ab:0d:42:14:1d:d4:5e:dc:80:f5:12:71:c5:4c: 85:ca:a0:60:f4:15:e7:d2:05:94:fc:b0:44:99:56:3c:bd:f0: d9:f4:97:3f:0a:cf:2c:e0:74:33:4b:a6:b6:c3:eb:6d:7e:ee: c1:5b:06:57:c9:37:39:0a:0e:66:73:d5:18:dc:3f:03:27:4e: d3:72:31:ef:6d:5b:d6:ae:27:06:57:fe:3f:5d:c1:7f:91:2e: 71:0f:33:82:b6:14:37:b0:c6:34:39:50:fb:92:63:e9:95:01: fa:7e:f8:ef:fc:2d:71:5d:99:23:db:3e:e3:5d:0e:df:4d:b6: 5d:e2:f9:13:ac:2a:d8:f2:7c:98:29:d5:96:11:1f:6b:f3:8f: bc:82:a1:a9 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUQYlbrGr3Qof+V0lNUiAUemxIxZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjAzMTkxNTQxNDlaFw0yNzAzMTgxNTQ2NDlaMDMxMTAvBgNV BAMTKEFDQkY1NTA3OTU5MjNFMEYxMTQwNDQ3NzlDQ0RFOEIzNTE4N0QwOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOWhdQ1GT2/TSHdSUzWwVoVMxY dPIVpSwHqIyQOTMM4EwoMWvOHxa4rY5pjT5eZ4wvJFJpR9wyT3n9MV7OKEVtZW8+ tJOL6yfjsxPxytzRM24/dRykOAkDjd67GlBy78lKW+EC9M8awJ5N4Bo4JTbsO0PA uBtb3SY74IdvZv7PJV8ufM6K1qHnkOiFFCNa+c1ZCpbINi6cEAKFJ+mVf1xof04v zLoxjqlOtjoB7lRQIKio8ZNNNesC1NjOdQf0ulOjrVtdFiqSoMh+NTS7+qz1zBDj 42Jp/IAKEAr88oI0WjQUG1Tp1pI09cGUUTzXb+rpf86zHEpwD5NVWjIBnWOHAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUrL9VB5WSPg8RQER3nM3os1GH0J8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwNDg5NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl13jANBgkqhkiG9w0B AQsFAAOCAQEAWYqdA7TKm2CcdfScMUgaXWlf3UCo2Itl0jErmhBZwlSwu6F5wTRr d3fzhKpnXhfwvzV+bYZdmOdGbqerPrOsUIpyp56fzy8vjXJQmujGyWQ/W4w+CBeV J5ktDWRe07PilJY+1HM2V5zpHhdN2KEav6sNQhQd1F7cgPUSccVMhcqgYPQV59IF lPywRJlWPL3w2fSXPwrPLOB0M0umtsPrbX7uwVsGV8k3OQoOZnPVGNw/AydO03Ix 721b1q4nBlf+P13Bf5EucQ8zgrYUN7DGNDlQ+5Jj6ZUB+n747/wtcV2ZI9s+410O 3022XeL5E6wq2PJ8mCnVlhEfa/OPvIKhqQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:54:57 2026 by rpki-client