$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS216104.roa File: AS216104.roa (raw, json) Hash identifier: bNkiLlo7Yb95rYOO/tXYcLz7F9L+kHIE0arXejWemsU= Subject key identifier: A5:D3:43:B5:D6:C4:73:82:67:5C:C0:BD:EB:E0:3D:72:45:D4:A8:95 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 1D97E4A76F3E40CD9939469DB70DDE2085267038 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS216104.roa Signing time: Fri 26 Sep 2025 13:20:16 +0000 ROA not before: Fri 26 Sep 2025 13:15:16 +0000 ROA not after: Fri 25 Sep 2026 13:20:16 +0000 asID: 216104 IP address blocks: 89.117.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:97:e4:a7:6f:3e:40:cd:99:39:46:9d:b7:0d:de:20:85:26:70:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 26 13:15:16 2025 GMT Not After : Sep 25 13:20:16 2026 GMT Subject: CN=A5D343B5D6C47382675CC0BDEBE03D7245D4A895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:45:d5:05:db:e7:35:de:d6:09:9c:e3:99:14: bf:12:c0:d8:13:68:29:b6:7c:8e:55:1c:45:cc:50: f8:1f:7b:6d:88:c9:30:44:36:03:db:cf:f0:72:59: 8e:ee:db:7a:4e:fe:3b:96:1c:e5:3d:92:f8:8e:de: aa:f9:12:ee:aa:5e:a3:56:33:9d:48:d2:0d:8c:6b: 32:78:4a:71:e7:b9:15:1d:36:3d:87:af:34:46:27: 81:00:49:4c:68:93:37:f0:ea:50:17:c2:14:4a:ca: 22:bc:56:1e:bf:36:10:96:73:65:63:11:91:97:8c: ae:d7:b0:80:b0:b5:85:24:52:07:a4:36:cc:6a:2d: 05:8d:32:83:90:a5:f1:de:bb:94:fc:cc:7c:ef:18: 60:b6:0b:cb:7e:e9:25:f1:a6:f8:7b:cd:9a:fa:1c: 3f:a6:95:bf:cb:7b:ae:af:c0:2a:1d:6d:47:5f:d1: 37:ab:44:e9:0f:54:14:ea:9f:0a:bb:8c:01:0d:3c: ba:19:df:38:a2:94:b5:82:48:19:9a:1b:d7:7e:fc: 56:e3:41:9b:35:55:ce:a4:b6:44:95:1f:33:f1:a0: c8:1a:f2:1c:b2:c5:5e:62:4e:91:7b:1f:00:b4:f0: cc:94:67:92:d6:7c:89:16:96:d2:21:d3:56:61:35: e4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D3:43:B5:D6:C4:73:82:67:5C:C0:BD:EB:E0:3D:72:45:D4:A8:95 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS216104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.35.0/24 Signature Algorithm: sha256WithRSAEncryption 10:75:f4:2b:f3:98:4a:4d:e7:65:30:01:68:91:63:e4:c2:26: 07:36:25:99:8d:58:f2:58:4b:81:25:df:db:15:a1:a6:6e:c1: 7c:c5:e9:6a:c6:8c:35:b6:78:48:7f:3f:8d:39:45:5a:ee:b5: d5:40:90:c4:89:f1:ca:f2:c1:fb:5c:99:37:2a:a1:70:bb:a4: 9a:5c:e6:80:3a:bc:40:3d:57:ef:b8:42:79:67:14:8c:b1:3d: 09:72:2e:3b:f1:21:ff:f3:65:58:22:2e:40:84:57:e6:b9:48: 26:fd:f9:11:c5:4c:c2:e1:1d:c1:b6:a9:82:8d:1d:fe:c7:06: 39:b3:d0:2d:65:1f:14:d9:ff:02:d4:c5:32:93:af:f8:a1:79: 4e:d1:35:f9:83:63:5a:b7:b8:10:84:4b:6b:4d:dd:45:94:44: ab:81:33:24:f6:95:39:87:01:7d:76:05:84:5b:33:6f:4a:77: 2b:bf:b8:4e:b7:5e:69:a3:18:66:af:36:83:5f:85:d2:23:c3: 45:43:0b:ca:a5:5c:af:4d:9a:5a:67:96:08:a6:a0:e8:0a:37: 15:11:bc:3c:11:e5:2c:ea:99:11:4e:ac:c7:80:9f:b9:a6:43: 4e:0a:aa:3b:0e:68:ba:38:a9:dd:93:e1:b8:8a:59:1e:79:7a: d7:ee:95:7c -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUHZfkp28+QM2ZOUadtw3eIIUmcDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA5MjYxMzE1MTZaFw0yNjA5MjUxMzIwMTZaMDMxMTAvBgNV BAMTKEE1RDM0M0I1RDZDNDczODI2NzVDQzBCREVCRTAzRDcyNDVENEE4OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNRdUF2+c13tYJnOOZFL8SwNgT aCm2fI5VHEXMUPgfe22IyTBENgPbz/ByWY7u23pO/juWHOU9kviO3qr5Eu6qXqNW M51I0g2MazJ4SnHnuRUdNj2HrzRGJ4EASUxokzfw6lAXwhRKyiK8Vh6/NhCWc2Vj EZGXjK7XsICwtYUkUgekNsxqLQWNMoOQpfHeu5T8zHzvGGC2C8t+6SXxpvh7zZr6 HD+mlb/Le66vwCodbUdf0TerROkPVBTqnwq7jAENPLoZ3ziilLWCSBmaG9d+/Fbj QZs1Vc6ktkSVHzPxoMga8hyyxV5iTpF7HwC08MyUZ5LWfIkWltIh01ZhNeTdAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUpdNDtdbEc4JnXMC96+A9ckXUqJUwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxNjEwNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl1IzANBgkqhkiG9w0B AQsFAAOCAQEAEHX0K/OYSk3nZTABaJFj5MImBzYlmY1Y8lhLgSXf2xWhpm7BfMXp asaMNbZ4SH8/jTlFWu611UCQxInxyvLB+1yZNyqhcLukmlzmgDq8QD1X77hCeWcU jLE9CXIuO/Eh//NlWCIuQIRX5rlIJv35EcVMwuEdwbapgo0d/scGObPQLWUfFNn/ AtTFMpOv+KF5TtE1+YNjWre4EIRLa03dRZREq4EzJPaVOYcBfXYFhFszb0p3K7+4 TrdeaaMYZq82g1+F0iPDRUMLyqVcr02aWmeWCKag6Ao3FRG8PBHlLOqZEU6sx4Cf uaZDTgqqOw5oujip3ZPhuIpZHnl61+6VfA== -----END CERTIFICATE-----Generated at Mon Oct 20 01:04:28 2025 by rpki-client