$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS204894.roa File: AS204894.roa (raw, json) Hash identifier: mj4L1cqDTaSWIzVO06Uc1GqqXKFFHyU9oDtVfyOH5u8= Subject key identifier: C1:FD:84:C6:EC:37:7B:63:E8:0A:CE:5D:64:E0:1D:50:02:9C:FE:37 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 4AD44B959865E9303EB85C28312BB090B0E16CEB Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS204894.roa Signing time: Thu 17 Apr 2025 15:20:50 +0000 ROA not before: Thu 17 Apr 2025 15:15:50 +0000 ROA not after: Thu 16 Apr 2026 15:20:50 +0000 asID: 204894 IP address blocks: 89.117.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 May 2025 01:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d4:4b:95:98:65:e9:30:3e:b8:5c:28:31:2b:b0:90:b0:e1:6c:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 17 15:15:50 2025 GMT Not After : Apr 16 15:20:50 2026 GMT Subject: CN=C1FD84C6EC377B63E80ACE5D64E01D50029CFE37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:67:0b:a5:f1:5b:ef:60:6f:a2:c3:1e:b4:59: 55:7f:aa:de:26:72:74:cc:ac:9e:89:2b:c7:60:a1: 00:b4:58:b6:6a:0c:53:dc:e9:98:83:e7:0e:af:4c: f2:b9:52:f0:94:26:90:15:e4:41:95:c4:73:39:8c: 9e:67:4c:ab:b7:0e:c1:5f:74:cd:6b:57:8c:21:c7: 85:0e:53:3e:92:2d:9a:fe:4c:0e:3c:92:7b:8e:91: 0f:fd:7d:9a:29:e8:f7:44:d4:7a:8b:d4:d3:7a:52: 86:6e:3f:0e:bc:0f:e4:2b:76:c1:6b:04:41:c8:1f: 68:ae:7b:09:49:0f:48:96:71:18:40:4b:a6:b0:b4: c9:3d:a1:d6:77:98:3f:52:e7:4f:bd:da:a1:17:26: 20:38:fd:d4:60:16:0a:30:60:8b:92:10:a7:14:27: 3e:7b:c0:21:4f:83:ee:4f:3a:d5:18:66:26:4e:68: 33:26:9e:1e:f5:ed:62:be:a5:65:af:31:46:5b:11: 42:c9:94:6e:01:5f:b2:9f:d6:54:51:51:b7:f9:c5: 3a:f0:9c:a9:1a:76:24:7c:4e:67:d1:95:ff:c1:52: ff:45:ec:86:aa:86:92:0d:a4:1e:b9:5b:45:8e:2f: f8:e3:de:fb:02:b5:9a:cf:27:85:6a:6d:1d:8a:20: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FD:84:C6:EC:37:7B:63:E8:0A:CE:5D:64:E0:1D:50:02:9C:FE:37 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS204894.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.222.0/24 Signature Algorithm: sha256WithRSAEncryption 54:47:bb:f1:07:f3:91:1f:f1:98:e7:2f:00:0b:6d:3b:e0:88: b8:97:01:af:a9:ba:38:9e:12:ac:e7:9c:c8:7f:06:cf:44:f3: 07:fe:bf:05:ac:42:64:08:52:4e:f1:a1:62:fc:c0:ac:4a:ee: 8f:7a:ac:cd:f9:45:75:49:b2:0d:c8:ae:fd:a9:89:ac:48:8a: 48:8c:e9:e4:ef:30:c4:88:9d:bb:b8:80:55:cb:19:1c:25:71: 15:ec:3f:ae:2c:b1:ff:eb:9a:4d:d7:91:53:0e:f9:49:c6:98: 5c:c6:7c:9b:3b:9f:73:08:a1:49:26:a1:52:85:1a:6e:6a:4d: 1c:69:76:d0:e1:85:21:cd:fa:c2:47:ce:8b:7b:54:2e:b7:a6: 16:f3:3b:77:a3:15:8c:e1:72:48:06:f2:3a:2b:09:50:26:48: 86:8f:6a:64:b2:fa:40:5f:93:52:4a:fb:98:52:52:87:fd:b1: de:81:cf:d9:bb:69:4b:8b:b8:8e:80:f9:5e:b7:16:49:74:38: 01:1f:7f:7c:a0:08:26:ca:95:f1:af:9f:7d:25:75:57:f2:26: d2:3c:71:4b:91:27:88:9d:3b:9a:3f:d0:16:a7:b1:66:65:ed: 64:9d:71:31:12:60:24:ba:41:a2:16:a4:96:3b:e1:b5:4c:56: 09:9e:d3:3b -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUStRLlZhl6TA+uFwoMSuwkLDhbOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA0MTcxNTE1NTBaFw0yNjA0MTYxNTIwNTBaMDMxMTAvBgNV BAMTKEMxRkQ4NEM2RUMzNzdCNjNFODBBQ0U1RDY0RTAxRDUwMDI5Q0ZFMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChZwul8VvvYG+iwx60WVV/qt4m cnTMrJ6JK8dgoQC0WLZqDFPc6ZiD5w6vTPK5UvCUJpAV5EGVxHM5jJ5nTKu3DsFf dM1rV4whx4UOUz6SLZr+TA48knuOkQ/9fZop6PdE1HqL1NN6UoZuPw68D+QrdsFr BEHIH2iuewlJD0iWcRhAS6awtMk9odZ3mD9S50+92qEXJiA4/dRgFgowYIuSEKcU Jz57wCFPg+5POtUYZiZOaDMmnh717WK+pWWvMUZbEULJlG4BX7Kf1lRRUbf5xTrw nKkadiR8TmfRlf/BUv9F7IaqhpINpB65W0WOL/jj3vsCtZrPJ4VqbR2KILDNAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUwf2Exuw3e2PoCs5dZOAdUAKc/jcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwNDg5NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl13jANBgkqhkiG9w0B AQsFAAOCAQEAVEe78QfzkR/xmOcvAAttO+CIuJcBr6m6OJ4SrOecyH8Gz0TzB/6/ BaxCZAhSTvGhYvzArEruj3qszflFdUmyDciu/amJrEiKSIzp5O8wxIidu7iAVcsZ HCVxFew/riyx/+uaTdeRUw75ScaYXMZ8mzufcwihSSahUoUabmpNHGl20OGFIc36 wkfOi3tULremFvM7d6MVjOFySAbyOisJUCZIho9qZLL6QF+TUkr7mFJSh/2x3oHP 2btpS4u4joD5XrcWSXQ4AR9/fKAIJsqV8a+ffSV1V/Im0jxxS5EniJ07mj/QFqex ZmXtZJ1xMRJgJLpBohakljvhtUxWCZ7TOw== -----END CERTIFICATE-----Generated at Sun May 11 12:34:15 2025 by rpki-client