$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS54252.roa File: AS54252.roa (raw, json) Hash identifier: XXB3+0yRDMHPgm7cpmAx6Y8Z3iZ11I2VhZR3QR/HECs= Subject key identifier: 8A:68:B2:35:F1:B7:D9:41:3F:1C:B3:90:47:7D:A4:30:A4:FB:C1:1B Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 41B3BF43300174442E2220003D63F3648CFF3647 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS54252.roa Signing time: Tue 19 Aug 2025 16:58:03 +0000 ROA not before: Tue 19 Aug 2025 16:53:03 +0000 ROA not after: Tue 18 Aug 2026 16:58:03 +0000 asID: 54252 IP address blocks: 86.38.156.0/24 maxlen: 24 86.38.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 09:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b3:bf:43:30:01:74:44:2e:22:20:00:3d:63:f3:64:8c:ff:36:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 19 16:53:03 2025 GMT Not After : Aug 18 16:58:03 2026 GMT Subject: CN=8A68B235F1B7D9413F1CB390477DA430A4FBC11B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:94:1a:d7:9c:be:c9:11:41:f5:bd:cf:6a:c1: 0c:aa:f9:92:48:df:d6:09:fd:d9:60:41:df:4a:1b: e7:ae:26:a7:29:69:f4:07:b9:3e:37:44:54:f9:6a: aa:09:0a:5d:89:eb:ce:ff:73:6f:60:77:db:fd:11: 12:65:80:e3:db:53:a7:e7:0e:44:b5:53:c9:6d:5c: f0:1b:79:ea:ca:9a:e5:69:00:b8:5d:32:45:b3:7d: 6a:22:ea:17:a8:dc:7e:8e:38:bc:c5:e8:97:25:31: 9b:d2:f3:74:8f:ed:bb:af:04:2a:f9:18:fa:4d:ec: c3:6b:9c:80:b6:ac:6c:32:8d:aa:d7:cb:b2:c3:e0: 8b:c3:ae:44:46:89:c8:bc:d2:9a:4b:8b:b5:ec:63: 1e:72:6a:63:cc:78:e2:64:54:be:cc:f9:77:98:3a: 21:ab:93:61:db:78:3f:6f:09:5a:b1:62:f5:c4:ed: cc:f3:d5:fe:f4:5e:77:27:71:ce:dc:0f:f5:66:9b: b2:c0:eb:11:a3:ca:d8:58:bf:2b:d6:b2:b5:76:df: e5:bd:1a:30:8c:68:39:0f:91:cc:58:a7:36:d4:a1: f0:20:8a:36:87:c1:14:c2:2c:50:61:79:58:e6:58: d4:09:b1:e7:fe:e4:b4:c4:88:0f:aa:77:f4:7d:a1: 1f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:68:B2:35:F1:B7:D9:41:3F:1C:B3:90:47:7D:A4:30:A4:FB:C1:1B X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS54252.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.156.0/24 86.38.255.0/24 Signature Algorithm: sha256WithRSAEncryption 30:5a:f2:7c:91:54:c0:6b:35:86:f0:6f:16:3b:38:84:65:f9: 7a:4c:6f:f8:17:61:4d:4f:8f:59:fc:51:0a:15:81:ae:6b:f7: 24:e8:4f:14:60:e1:dc:ad:0f:9d:82:53:98:ce:44:59:0f:3f: 79:4d:71:c9:76:f4:a5:26:1d:e1:18:c0:b9:ad:d6:f9:70:a5: 79:99:19:07:24:7e:00:09:af:b4:5f:91:62:d1:bb:5c:3f:82: 18:26:99:5b:b1:d4:25:da:18:44:5e:33:e4:3e:2f:9d:b2:81: ce:74:2f:97:b3:f6:70:98:88:74:00:fd:e7:b2:fe:df:06:b4: 3b:68:de:bd:2e:59:7d:93:7f:e6:df:6f:18:c9:75:d2:42:d1: b7:2f:98:3e:3b:71:91:32:d5:0f:a7:cc:2b:05:88:2c:85:f2: 59:1e:da:03:66:43:8a:6b:c7:5f:c5:b6:23:87:20:f0:4b:6e: c3:70:34:18:6e:96:06:83:8d:2a:98:03:43:cc:b3:13:93:1a: a2:a4:97:46:92:13:1e:bc:b7:ea:c5:65:cb:5f:fa:85:93:47: a0:d9:1b:7d:e7:57:b0:a4:d6:4e:ec:a5:78:bc:36:dd:10:57: cf:22:f4:2d:e2:6c:a2:2f:7a:2f:45:41:c7:44:35:0a:d5:65: 27:b2:7e:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQbO/QzABdEQuIiAAPWPzZIz/NkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA4MTkxNjUzMDNaFw0yNjA4MTgxNjU4MDNaMDMxMTAvBgNV BAMTKDhBNjhCMjM1RjFCN0Q5NDEzRjFDQjM5MDQ3N0RBNDMwQTRGQkMxMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmlBrXnL7JEUH1vc9qwQyq+ZJI 39YJ/dlgQd9KG+euJqcpafQHuT43RFT5aqoJCl2J687/c29gd9v9ERJlgOPbU6fn DkS1U8ltXPAbeerKmuVpALhdMkWzfWoi6heo3H6OOLzF6JclMZvS83SP7buvBCr5 GPpN7MNrnIC2rGwyjarXy7LD4IvDrkRGici80ppLi7XsYx5yamPMeOJkVL7M+XeY OiGrk2HbeD9vCVqxYvXE7czz1f70Xncncc7cD/Vmm7LA6xGjythYvyvWsrV23+W9 GjCMaDkPkcxYpzbUofAgijaHwRTCLFBheVjmWNQJsef+5LTEiA+qd/R9oR8ZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUimiyNfG32UE/HLOQR32kMKT7wRswHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzU0MjUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAViacAwQAVib/MA0GCSqG SIb3DQEBCwUAA4IBAQAwWvJ8kVTAazWG8G8WOziEZfl6TG/4F2FNT49Z/FEKFYGu a/ck6E8UYOHcrQ+dglOYzkRZDz95TXHJdvSlJh3hGMC5rdb5cKV5mRkHJH4ACa+0 X5Fi0btcP4IYJplbsdQl2hhEXjPkPi+dsoHOdC+Xs/ZwmIh0AP3nsv7fBrQ7aN69 Lll9k3/m328YyXXSQtG3L5g+O3GRMtUPp8wrBYgshfJZHtoDZkOKa8dfxbYjhyDw S27DcDQYbpYGg40qmANDzLMTkxqipJdGkhMevLfqxWXLX/qFk0eg2Rt951ewpNZO 7KV4vDbdEFfPIvQt4myiL3ovRUHHRDUK1WUnsn6x -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:06 2025 by rpki-client