$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS63023.roa File: AS63023.roa (raw, json) Hash identifier: kncSsVe4bxlhVfs/2t1x1I3E66Y9JB5+rWI/lSqy8vI= Subject key identifier: 26:D8:3F:3D:02:30:79:C4:A7:93:83:74:0A:B4:8C:88:CF:D8:CE:0E Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 09FCD6F6FF208651433A7545E92391DCE379A63E Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS63023.roa Signing time: Sun 29 Jun 2025 10:18:29 +0000 ROA not before: Sun 29 Jun 2025 10:13:29 +0000 ROA not after: Sun 28 Jun 2026 10:18:29 +0000 asID: 63023 IP address blocks: 86.38.255.0/24 maxlen: 24 89.116.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 02 Jul 2025 08:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:fc:d6:f6:ff:20:86:51:43:3a:75:45:e9:23:91:dc:e3:79:a6:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 29 10:13:29 2025 GMT Not After : Jun 28 10:18:29 2026 GMT Subject: CN=26D83F3D023079C4A79383740AB48C88CFD8CE0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:08:25:6c:a6:be:20:3f:74:12:4d:9b:c3:57: 2b:f1:af:d6:4f:2f:67:46:06:f8:9c:40:6a:98:f5: 04:20:3c:b4:60:65:ac:31:ee:69:fe:66:c4:2a:4f: e7:7d:95:9e:9a:82:63:b1:cf:1d:77:03:23:71:00: ae:d9:da:cc:8a:44:99:07:f8:a7:0d:f8:ab:2b:bb: 51:2d:28:50:96:1f:c4:6e:85:92:cc:53:69:87:8f: 54:06:0f:8e:d7:a6:93:65:ed:67:93:57:55:ec:d1: 35:8b:4d:c8:e9:95:c3:1a:fa:ba:e2:41:b7:6d:d2: 70:5c:44:40:97:de:53:0c:a2:68:8a:bc:b0:de:9a: 79:1c:f9:98:17:06:e0:89:af:7a:3c:ba:14:a1:1b: b9:33:94:e6:b6:9d:ae:68:00:7a:17:8c:73:0c:8d: 99:23:df:6c:0d:56:71:32:7e:e7:4f:2b:6f:b1:ff: d2:68:31:be:63:24:f3:b9:b2:03:75:5c:1e:23:d1: 11:50:30:ac:18:ea:20:b7:f6:ac:46:34:d4:c2:a3: 1a:90:fd:96:cd:ca:73:1c:02:4a:82:6a:8b:52:97: 76:27:b9:c9:a0:04:a4:e1:68:e1:07:49:dc:3f:81: 4f:bf:33:7b:d4:1f:b4:ac:db:57:a7:c1:e6:d3:41: 8f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D8:3F:3D:02:30:79:C4:A7:93:83:74:0A:B4:8C:88:CF:D8:CE:0E X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS63023.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.255.0/24 89.116.149.0/24 Signature Algorithm: sha256WithRSAEncryption 72:24:c3:eb:3e:26:85:07:9b:f2:64:2a:6a:58:b1:76:bc:ef: 74:84:10:5b:1a:f1:4c:8f:74:03:53:16:b6:c3:c2:ff:0a:67: 1c:0d:4d:10:1e:d5:4c:1d:de:84:49:00:e1:d2:de:69:e4:d0: 5f:b3:75:87:44:75:53:13:d5:bb:0f:c0:01:82:70:37:21:c1: d2:47:3f:3f:1b:9c:49:95:2e:da:0a:be:d4:ff:96:92:42:76: 8b:28:17:b6:22:d9:5e:a9:7e:d4:3e:32:81:d8:a2:29:b3:c9: 08:a2:25:22:55:b2:af:df:63:41:8e:20:d0:ca:62:11:51:3f: 77:c5:d0:c3:1e:53:04:df:3c:fc:ca:b0:a8:08:d9:5d:24:99: d1:f1:b7:d6:7c:d6:43:4c:e9:c5:cf:c9:b6:bf:c6:6c:a1:a8: 11:88:75:69:f9:ba:56:ee:78:40:3b:1d:06:8a:e1:ef:e0:76: f5:7b:b4:55:24:2c:3f:72:e6:de:82:e1:11:8e:48:ab:8a:22: 9d:d4:ca:e3:1a:20:95:6c:50:ad:39:64:4e:e2:66:83:b5:bc: e3:b0:18:06:c0:29:4f:a4:22:ed:ff:9a:49:09:0f:86:0c:f1: b1:8e:c1:16:fa:c7:84:79:95:fb:4d:78:6c:34:61:8a:7b:40: 23:a2:a8:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCfzW9v8ghlFDOnVF6SOR3ON5pj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA2MjkxMDEzMjlaFw0yNjA2MjgxMDE4MjlaMDMxMTAvBgNV BAMTKDI2RDgzRjNEMDIzMDc5QzRBNzkzODM3NDBBQjQ4Qzg4Q0ZEOENFMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaCCVspr4gP3QSTZvDVyvxr9ZP L2dGBvicQGqY9QQgPLRgZawx7mn+ZsQqT+d9lZ6agmOxzx13AyNxAK7Z2syKRJkH +KcN+Ksru1EtKFCWH8RuhZLMU2mHj1QGD47XppNl7WeTV1Xs0TWLTcjplcMa+rri Qbdt0nBcRECX3lMMomiKvLDemnkc+ZgXBuCJr3o8uhShG7kzlOa2na5oAHoXjHMM jZkj32wNVnEyfudPK2+x/9JoMb5jJPO5sgN1XB4j0RFQMKwY6iC39qxGNNTCoxqQ /ZbNynMcAkqCaotSl3YnucmgBKThaOEHSdw/gU+/M3vUH7Ss21enwebTQY+vAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJtg/PQIwecSnk4N0CrSMiM/Yzg4wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzYzMDIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVib/AwQAWXSVMA0GCSqG SIb3DQEBCwUAA4IBAQByJMPrPiaFB5vyZCpqWLF2vO90hBBbGvFMj3QDUxa2w8L/ CmccDU0QHtVMHd6ESQDh0t5p5NBfs3WHRHVTE9W7D8ABgnA3IcHSRz8/G5xJlS7a Cr7U/5aSQnaLKBe2ItleqX7UPjKB2KIps8kIoiUiVbKv32NBjiDQymIRUT93xdDD HlME3zz8yrCoCNldJJnR8bfWfNZDTOnFz8m2v8ZsoagRiHVp+bpW7nhAOx0GiuHv 4Hb1e7RVJCw/cubeguERjkiriiKd1MrjGiCVbFCtOWRO4maDtbzjsBgGwClPpCLt /5pJCQ+GDPGxjsEW+seEeZX7TXhsNGGKe0AjoqhG -----END CERTIFICATE-----Generated at Tue Jul 1 21:00:40 2025 by rpki-client