$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3320.roa File: AS3320.roa (raw, json) Hash identifier: H50Txqv1z4R3O13kf5ot6pzes9/h9PB27w3moDkXBXo= Subject key identifier: 84:F4:9E:A9:AF:18:17:A8:B0:5C:F1:11:B4:1D:FF:AC:CE:80:C6:62 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3D1F0E298A63EE569D2B48C0D468221C74B83B8F Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3320.roa Signing time: Tue 01 Jul 2025 00:02:17 +0000 ROA not before: Mon 30 Jun 2025 23:57:17 +0000 ROA not after: Tue 30 Jun 2026 00:02:17 +0000 asID: 3320 IP address blocks: 86.38.37.0/24 maxlen: 24 86.38.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 02 Jul 2025 01:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1f:0e:29:8a:63:ee:56:9d:2b:48:c0:d4:68:22:1c:74:b8:3b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 30 23:57:17 2025 GMT Not After : Jun 30 00:02:17 2026 GMT Subject: CN=84F49EA9AF1817A8B05CF111B41DFFACCE80C662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:80:b9:86:26:50:2d:73:ca:9f:7e:dd:ac:c0: 22:93:71:8b:63:be:f6:89:f4:65:58:05:0f:9e:92: ec:b0:5a:40:39:24:a8:a6:66:a4:0e:d7:aa:b5:69: 55:a7:94:25:28:50:36:8b:a6:38:49:7c:e8:26:dd: c3:43:2d:21:85:91:d5:07:5f:63:9b:0c:a6:0b:ed: ef:52:e0:a9:46:0d:0d:c2:8f:bb:ae:58:c5:df:71: 11:11:72:9c:59:31:2b:d7:2f:e8:3d:4c:0c:30:a9: 87:51:a3:01:6d:85:e2:4c:5d:98:df:80:25:78:30: 6f:24:1a:86:78:a5:1b:b4:59:54:7c:ce:e1:16:80: ec:68:d0:9e:05:ba:dc:c7:cd:64:80:61:d7:52:57: 23:13:c4:f5:5c:35:46:47:2b:de:27:3f:63:f0:f9: ce:46:8c:bd:ee:55:11:e9:b4:fe:ef:5d:07:cb:69: 2e:d6:b8:8a:84:32:36:03:70:01:ed:a5:6c:20:f6: 60:29:7b:fa:62:7e:ab:8c:6e:c4:48:4e:bc:28:eb: 31:92:d1:20:2f:71:6c:db:13:5d:de:8e:d3:b2:06: dd:a4:89:cc:36:5e:0a:49:70:13:84:5e:71:d1:90: c9:a6:1a:ae:96:29:3a:d1:8e:e9:90:fd:e2:36:dc: 36:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F4:9E:A9:AF:18:17:A8:B0:5C:F1:11:B4:1D:FF:AC:CE:80:C6:62 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3320.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.37.0/24 86.38.248.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:fc:58:66:ca:10:be:34:9d:1c:d4:7e:da:a5:2c:54:3a:3a: 0f:d3:44:b4:5a:d8:a4:e8:3f:0c:1a:ad:75:38:3e:7c:00:8b: 74:f3:b5:32:64:ba:7e:fa:27:30:ed:2f:f3:2a:17:dc:a0:1b: 44:10:28:33:52:ca:bc:91:5a:67:df:9d:71:bf:c5:5c:ea:79: 83:7d:27:f8:e3:86:cb:8f:c0:ce:3c:cd:c9:08:8b:82:2f:a7: f8:dd:ce:ed:8c:b9:be:56:9f:13:ee:2a:c4:fb:3b:9b:c7:e2: 78:2b:1f:08:af:e4:61:b9:f5:38:b4:56:15:4e:f0:bd:a6:07: b3:c0:fa:15:de:bf:4d:4e:3c:ae:65:9e:34:4e:d8:09:cb:2e: 4e:b7:1c:bb:fd:e0:20:b8:77:fe:f0:e3:9f:79:ec:4b:79:3c: 5b:ea:05:9f:26:2f:cf:55:30:a5:f3:54:61:6e:ee:d3:c1:d9: 64:48:6f:be:2e:9e:42:3f:d0:62:a8:50:a2:a6:48:a6:db:90: 5e:b5:81:6b:6e:9e:7f:19:fc:ef:13:d1:74:2e:6a:12:0a:b3: 88:88:30:a8:ef:3e:48:4b:8e:81:27:bd:89:02:4a:05:0b:7c: cb:7b:0b:b7:04:f8:2d:f3:59:08:5e:56:97:2c:9b:c6:6c:72: df:77:c5:64 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPR8OKYpj7ladK0jA1GgiHHS4O48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA2MzAyMzU3MTdaFw0yNjA2MzAwMDAyMTdaMDMxMTAvBgNV BAMTKDg0RjQ5RUE5QUYxODE3QThCMDVDRjExMUI0MURGRkFDQ0U4MEM2NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClgLmGJlAtc8qfft2swCKTcYtj vvaJ9GVYBQ+ekuywWkA5JKimZqQO16q1aVWnlCUoUDaLpjhJfOgm3cNDLSGFkdUH X2ObDKYL7e9S4KlGDQ3Cj7uuWMXfcRERcpxZMSvXL+g9TAwwqYdRowFtheJMXZjf gCV4MG8kGoZ4pRu0WVR8zuEWgOxo0J4FutzHzWSAYddSVyMTxPVcNUZHK94nP2Pw +c5GjL3uVRHptP7vXQfLaS7WuIqEMjYDcAHtpWwg9mApe/pifquMbsRITrwo6zGS 0SAvcWzbE13ejtOyBt2kicw2XgpJcBOEXnHRkMmmGq6WKTrRjumQ/eI23DbhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUhPSeqa8YF6iwXPERtB3/rM6AxmIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzMzMjAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBABWJiUDBANWJvgwDQYJKoZI hvcNAQELBQADggEBAG78WGbKEL40nRzUftqlLFQ6Og/TRLRa2KToPwwarXU4PnwA i3TztTJkun76JzDtL/MqF9ygG0QQKDNSyryRWmffnXG/xVzqeYN9J/jjhsuPwM48 zckIi4Ivp/jdzu2Mub5WnxPuKsT7O5vH4ngrHwiv5GG59Ti0VhVO8L2mB7PA+hXe v01OPK5lnjRO2AnLLk63HLv94CC4d/7w45957Et5PFvqBZ8mL89VMKXzVGFu7tPB 2WRIb74unkI/0GKoUKKmSKbbkF61gWtunn8Z/O8T0XQuahIKs4iIMKjvPkhLjoEn vYkCSgULfMt7C7cE+C3zWQheVpcsm8Zsct93xWQ= -----END CERTIFICATE-----Generated at Tue Jul 1 13:18:57 2025 by rpki-client