$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS402203.roa File: AS402203.roa (raw, json) Hash identifier: TM8wpK+7i8jGMg11BO8FrkswXrYSxmNA/59LZIHt8gU= Subject key identifier: 3D:72:00:A2:B2:AF:08:95:A7:5F:64:B2:96:25:1C:25:E8:79:E5:B8 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 71CF7AFBCE590772219DA5FEC5B62AFBB9C63BDB Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS402203.roa Signing time: Mon 16 Mar 2026 08:37:28 +0000 ROA not before: Mon 16 Mar 2026 08:32:28 +0000 ROA not after: Mon 15 Mar 2027 08:37:28 +0000 asID: 402203 IP address blocks: 89.117.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 21:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:cf:7a:fb:ce:59:07:72:21:9d:a5:fe:c5:b6:2a:fb:b9:c6:3b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 16 08:32:28 2026 GMT Not After : Mar 15 08:37:28 2027 GMT Subject: CN=3D7200A2B2AF0895A75F64B296251C25E879E5B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0f:af:23:e6:48:f0:e3:32:94:23:a3:39:b2: 5c:7b:6c:d0:6a:3a:b7:32:25:33:b7:75:25:cb:ea: 8c:18:20:5e:61:16:55:a9:6b:af:df:f0:e9:bb:1d: be:f5:4f:2e:8f:f8:03:82:cc:fb:ab:92:05:2a:39: b8:7e:34:19:a7:ab:c6:3e:34:09:95:06:3e:ab:75: 21:d3:39:df:17:7d:57:a7:14:4b:bc:79:8d:06:92: 88:5c:d0:24:6d:e3:64:18:d6:61:6c:68:33:a6:aa: d5:87:bd:2b:28:41:63:80:33:11:67:99:41:26:be: e5:e7:4b:c0:51:cc:e7:6b:63:b2:f8:c3:1f:cb:89: 52:88:98:5c:ba:75:3f:e3:b1:f3:0c:8f:6b:79:1e: eb:bb:fb:de:3f:95:c4:22:63:3f:54:cd:3a:15:58: 35:a9:45:fa:9e:58:36:aa:78:70:d2:e2:a2:b0:6f: 6a:ae:f2:d5:20:d5:8e:b8:ee:28:37:d9:41:0e:ba: 13:32:e9:f7:29:82:7d:0c:51:bb:60:b4:6b:be:b9: ee:cd:a2:96:17:ed:fc:d4:32:01:db:4e:f5:51:8f: cc:ad:62:3f:f3:b7:f4:c8:6e:81:4f:e8:c8:be:59: a6:46:d7:91:19:83:b7:06:3c:2e:e5:f9:bb:92:14: c2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:72:00:A2:B2:AF:08:95:A7:5F:64:B2:96:25:1C:25:E8:79:E5:B8 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS402203.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.81.0/24 Signature Algorithm: sha256WithRSAEncryption 24:4a:8f:a0:ae:c0:ee:55:c1:74:34:02:28:d4:89:23:4e:55: da:a8:b6:71:83:f9:01:f5:a5:26:22:c7:e8:34:8b:23:94:50: dd:00:05:9b:27:b4:8f:b8:01:36:d2:18:d6:7c:7a:9d:af:7c: 0b:9b:c5:f7:e2:cc:18:ac:83:b4:11:46:e6:72:0c:f4:9d:e1: 8a:12:58:05:a7:9c:2a:1e:d4:fb:77:b8:06:db:76:41:83:51: b9:2c:ee:0a:e8:06:bf:c2:93:0e:a3:0e:59:06:06:53:6e:5a: 2e:0a:20:96:e6:06:a8:e2:84:26:0b:d8:fb:00:e2:81:c9:f3: 17:89:62:5e:64:3d:1d:0f:56:bb:0b:67:dd:9d:7b:b5:40:fa: 1e:7f:3a:f4:1a:b5:93:e6:3e:45:db:12:e2:cc:c3:08:70:e9: aa:3c:59:b0:08:b9:24:6e:3c:e2:26:ad:51:85:a0:09:9d:ba: 73:72:0c:8c:e5:02:66:a3:a4:53:85:ed:eb:57:8b:bf:fd:6b: f3:f5:d3:35:81:b7:af:ab:18:97:fe:dd:6c:cd:42:a3:ba:85: f2:1a:31:32:32:51:4c:7d:b4:80:a0:5e:8f:cd:6a:41:bb:89: b9:d4:b8:85:48:9b:32:ad:a4:fd:fb:90:8d:a9:61:2e:b1:4c: 03:3f:57:43 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUcc96+85ZB3IhnaX+xbYq+7nGO9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNjAzMTYwODMyMjhaFw0yNzAzMTUwODM3MjhaMDMxMTAvBgNV BAMTKDNENzIwMEEyQjJBRjA4OTVBNzVGNjRCMjk2MjUxQzI1RTg3OUU1QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJD68j5kjw4zKUI6M5slx7bNBq OrcyJTO3dSXL6owYIF5hFlWpa6/f8Om7Hb71Ty6P+AOCzPurkgUqObh+NBmnq8Y+ NAmVBj6rdSHTOd8XfVenFEu8eY0Gkohc0CRt42QY1mFsaDOmqtWHvSsoQWOAMxFn mUEmvuXnS8BRzOdrY7L4wx/LiVKImFy6dT/jsfMMj2t5Huu7+94/lcQiYz9UzToV WDWpRfqeWDaqeHDS4qKwb2qu8tUg1Y647ig32UEOuhMy6fcpgn0MUbtgtGu+ue7N opYX7fzUMgHbTvVRj8ytYj/zt/TIboFP6Mi+WaZG15EZg7cGPC7l+buSFMJPAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUPXIAorKvCJWnX2SyliUcJeh55bgwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzQwMjIwMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl1UTANBgkqhkiG9w0B AQsFAAOCAQEAJEqPoK7A7lXBdDQCKNSJI05V2qi2cYP5AfWlJiLH6DSLI5RQ3QAF mye0j7gBNtIY1nx6na98C5vF9+LMGKyDtBFG5nIM9J3hihJYBaecKh7U+3e4Btt2 QYNRuSzuCugGv8KTDqMOWQYGU25aLgogluYGqOKEJgvY+wDigcnzF4liXmQ9HQ9W uwtn3Z17tUD6Hn869Bq1k+Y+RdsS4szDCHDpqjxZsAi5JG484iatUYWgCZ26c3IM jOUCZqOkU4Xt61eLv/1r8/XTNYG3r6sYl/7dbM1Co7qF8hoxMjJRTH20gKBej81q QbuJudS4hUibMq2k/fuQjalhLrFMAz9XQw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:04:51 2026 by rpki-client