$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS42831.roa File: AS42831.roa (raw, json) Hash identifier: 4L2r4hWevYySZcBzOsrAO63R/F6CugfQzPpGVzi2/mo= Subject key identifier: B9:17:27:C1:2E:F5:44:02:48:97:9E:1C:D9:73:0A:70:24:FB:1B:67 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 49C21B81041B432633B4094169D72DF9270FB37D Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS42831.roa Signing time: Sun 24 Aug 2025 14:54:13 +0000 ROA not before: Sun 24 Aug 2025 14:49:13 +0000 ROA not after: Sun 23 Aug 2026 14:54:13 +0000 asID: 42831 IP address blocks: 89.116.148.0/24 maxlen: 24 89.117.70.0/24 maxlen: 24 89.117.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 07:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:c2:1b:81:04:1b:43:26:33:b4:09:41:69:d7:2d:f9:27:0f:b3:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 24 14:49:13 2025 GMT Not After : Aug 23 14:54:13 2026 GMT Subject: CN=B91727C12EF5440248979E1CD9730A7024FB1B67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b6:f1:14:d5:d6:3b:14:8c:19:94:c3:7a:27: dc:25:6c:e6:3a:ab:a8:21:e7:4d:c3:64:9f:6c:77: dd:da:54:56:1e:8d:1e:9c:4c:8c:83:66:2c:5f:bc: 7d:bc:c9:90:d6:23:1c:3f:25:55:51:c4:e0:44:a2: 9c:49:5a:7e:c5:d8:58:16:47:2b:23:7a:b0:b0:1d: f1:b8:60:03:6e:da:9d:90:f9:f0:7a:85:76:09:4e: a5:cc:9e:be:89:e0:e5:0b:1c:9d:f1:b1:55:0a:09: 5b:18:2d:a3:4a:94:20:ef:ab:7d:08:56:f9:d4:f6: da:41:bd:59:ff:7c:fe:d5:72:73:69:eb:d9:d3:fd: ea:e3:8a:23:9b:40:c7:79:6f:b1:8f:5e:16:bb:12: f8:14:7c:97:c3:46:5a:c3:f7:30:8d:f8:fd:2a:55: a2:52:e5:a2:ee:03:00:c3:17:55:e6:fe:2b:a9:d9: a5:26:7c:a6:71:95:23:1e:2e:d5:1f:84:2a:98:57: 29:3b:7d:64:bd:79:2b:04:d7:e7:52:f0:2e:b7:42: 33:07:07:3e:9f:0e:65:ad:80:c2:be:81:73:98:64: 9f:24:35:3b:be:44:cc:f6:ae:f5:6a:c2:29:a6:12: 5a:49:4c:d1:ec:55:88:38:17:6c:a3:57:f9:60:a9: 2e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:17:27:C1:2E:F5:44:02:48:97:9E:1C:D9:73:0A:70:24:FB:1B:67 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS42831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.148.0/24 89.117.70.0/23 Signature Algorithm: sha256WithRSAEncryption d8:3c:c4:a3:67:3f:74:7f:11:ca:4a:d3:92:a9:ed:63:3a:2a: cd:2c:51:8d:21:27:05:d5:7f:09:97:0c:6b:4f:75:75:77:7a: 71:33:31:d7:a2:ec:34:e2:7b:7f:6e:a2:dc:02:f1:b1:c7:7a: 04:42:f6:f4:05:3e:bb:da:ae:43:a3:d5:fd:d7:0a:fc:4e:61: 26:be:7c:69:64:08:4b:69:5b:c8:fb:a9:24:ae:66:ae:7e:dd: 53:1b:d2:46:d2:e1:6e:21:87:3f:19:24:4d:e7:24:46:74:46: fe:43:4a:10:bd:b9:a1:85:f8:e2:ce:2f:d6:39:15:17:cb:35: 24:67:69:03:a2:cd:18:39:04:0d:8c:3b:47:99:8c:e5:39:b6: f3:1a:08:0f:0e:f5:c2:0f:b5:a0:97:8e:41:12:86:53:c4:9b: aa:9e:2d:0e:5e:6f:a8:70:9a:ae:e8:f0:14:96:a8:c7:6d:78: da:db:40:b8:a9:6c:06:d7:96:10:21:d6:73:2b:7a:98:f7:2a: 61:c9:fd:8a:7d:ee:8f:d3:91:03:5c:61:79:3c:3d:6d:b3:7c: a8:c0:67:59:eb:2d:c6:8b:79:13:d3:db:f6:20:4e:8b:ee:f0: 95:01:72:f0:fd:88:f9:4c:c7:99:2b:51:a4:b6:57:07:cb:aa: 50:b4:3f:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUScIbgQQbQyYztAlBadct+ScPs30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA4MjQxNDQ5MTNaFw0yNjA4MjMxNDU0MTNaMDMxMTAvBgNV BAMTKEI5MTcyN0MxMkVGNTQ0MDI0ODk3OUUxQ0Q5NzMwQTcwMjRGQjFCNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChtvEU1dY7FIwZlMN6J9wlbOY6 q6gh503DZJ9sd93aVFYejR6cTIyDZixfvH28yZDWIxw/JVVRxOBEopxJWn7F2FgW RysjerCwHfG4YANu2p2Q+fB6hXYJTqXMnr6J4OULHJ3xsVUKCVsYLaNKlCDvq30I VvnU9tpBvVn/fP7VcnNp69nT/erjiiObQMd5b7GPXha7EvgUfJfDRlrD9zCN+P0q VaJS5aLuAwDDF1Xm/iup2aUmfKZxlSMeLtUfhCqYVyk7fWS9eSsE1+dS8C63QjMH Bz6fDmWtgMK+gXOYZJ8kNTu+RMz2rvVqwimmElpJTNHsVYg4F2yjV/lgqS7zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuRcnwS71RAJIl54c2XMKcCT7G2cwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzQyODMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWXSUAwQBWXVGMA0GCSqG SIb3DQEBCwUAA4IBAQDYPMSjZz90fxHKStOSqe1jOirNLFGNIScF1X8JlwxrT3V1 d3pxMzHXouw04nt/bqLcAvGxx3oEQvb0BT672q5Do9X91wr8TmEmvnxpZAhLaVvI +6kkrmauft1TG9JG0uFuIYc/GSRN5yRGdEb+Q0oQvbmhhfjizi/WORUXyzUkZ2kD os0YOQQNjDtHmYzlObbzGggPDvXCD7Wgl45BEoZTxJuqni0OXm+ocJqu6PAUlqjH bXja20C4qWwG15YQIdZzK3qY9yphyf2Kfe6P05EDXGF5PD1ts3yowGdZ6y3Gi3kT 09v2IE6L7vCVAXLw/Yj5TMeZK1GktlcHy6pQtD9t -----END CERTIFICATE-----Generated at Sun Oct 19 20:16:06 2025 by rpki-client