$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS64267.roa File: AS64267.roa (raw, json) Hash identifier: Fq6uFwvRbCb0q8lfQxdr6WIe3NCx/hfhKuPOTSNTAWY= Subject key identifier: 4C:AC:95:8B:2F:56:F6:98:93:93:82:D6:E4:6B:20:7C:30:E0:0A:7C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3342A5D97346CF526649F821DA6509003F00386C Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS64267.roa Signing time: Tue 19 Aug 2025 16:58:03 +0000 ROA not before: Tue 19 Aug 2025 16:53:03 +0000 ROA not after: Tue 18 Aug 2026 16:58:03 +0000 asID: 64267 IP address blocks: 86.38.156.0/24 maxlen: 24 86.38.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:42:a5:d9:73:46:cf:52:66:49:f8:21:da:65:09:00:3f:00:38:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 19 16:53:03 2025 GMT Not After : Aug 18 16:58:03 2026 GMT Subject: CN=4CAC958B2F56F698939382D6E46B207C30E00A7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:eb:71:2d:1e:c5:94:6b:74:b4:23:4b:be:25: 41:46:54:80:e6:6d:8e:79:42:c3:d4:a6:6c:b5:41: 76:e7:dd:2c:a9:82:58:28:61:87:d3:71:1f:ec:da: bd:ec:36:d0:e1:48:21:a2:2a:fc:bf:a6:f8:c4:4f: 26:b5:3b:98:26:11:56:7e:a2:84:ee:85:91:db:a2: 6f:8d:3c:5d:b7:2f:eb:61:04:a6:8d:d9:4b:68:14: 9f:d3:02:18:80:16:84:33:6f:2d:10:b2:c1:cb:e8: 44:c2:9e:f1:93:a2:71:13:44:ab:42:65:29:6a:03: a4:29:77:bf:7d:28:e9:29:76:8a:a2:1f:16:c9:0a: a9:88:cc:3d:5f:c7:de:2a:f3:ff:ee:d0:5d:78:d2: 7c:9e:29:b1:0c:da:30:b3:40:15:a9:8b:86:46:f6: 65:cc:e3:35:e2:ed:4f:d9:9b:97:1b:80:2a:eb:e0: 0a:61:bb:2f:73:18:eb:2e:c2:3e:cb:2f:eb:09:03: 27:f8:a4:26:7a:00:4f:0b:cf:5e:99:8c:61:d9:e6: 50:f4:0d:eb:43:d8:cc:71:c2:89:f1:e0:69:f3:5a: 9a:c0:0a:48:c4:62:c3:59:29:2a:aa:25:d8:e8:c3: 46:77:36:48:6a:76:c0:43:eb:88:a4:8c:86:eb:a0: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AC:95:8B:2F:56:F6:98:93:93:82:D6:E4:6B:20:7C:30:E0:0A:7C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS64267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.156.0/24 86.38.255.0/24 Signature Algorithm: sha256WithRSAEncryption 71:f4:14:b3:2c:e9:46:ec:d1:07:ce:b0:f2:30:7a:c7:7a:4f: 4b:4b:45:66:6d:b8:77:f3:a8:53:00:bd:9c:bd:0a:aa:0b:cb: 40:a6:aa:24:f4:f3:fd:d3:6d:c1:a4:c1:56:bd:1c:db:a5:b6: 66:7e:5e:58:6e:1d:25:7b:59:fa:10:ab:9a:b8:65:2b:10:02: 5d:a9:74:a3:b3:6d:4a:28:44:26:a4:9d:52:5c:f8:b8:a8:ea: b5:a3:55:32:2e:2f:88:d8:6d:7e:45:58:b2:46:59:90:0b:b1: 8c:a1:03:48:13:36:42:67:0f:04:41:0d:1d:7e:49:15:b5:df: 17:b7:5d:a4:ae:a3:b8:c6:23:a4:d0:ce:38:38:1d:0d:64:19: 74:ba:45:ac:b6:6d:1f:d5:78:92:4a:7c:55:5e:65:b6:77:37: 03:e2:0a:a0:b2:ea:f3:e4:f7:f6:04:c1:60:2e:fa:fc:11:2d: cf:db:96:dc:bc:e0:32:63:6a:e3:fd:a8:5f:5b:80:7b:1c:c0: 2b:ee:e0:6e:30:33:d6:37:de:e6:f8:3f:4e:63:a9:52:74:1e: cb:c1:65:7a:9f:f3:7d:b6:f3:06:11:42:e3:1f:cd:95:c1:4d: 0d:4c:98:db:c8:f0:68:3a:1b:20:c5:2d:5e:1c:ca:50:70:e6: 3b:4f:89:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM0Kl2XNGz1JmSfgh2mUJAD8AOGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTA4MTkxNjUzMDNaFw0yNjA4MTgxNjU4MDNaMDMxMTAvBgNV BAMTKDRDQUM5NThCMkY1NkY2OTg5MzkzODJENkU0NkIyMDdDMzBFMDBBN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH63EtHsWUa3S0I0u+JUFGVIDm bY55QsPUpmy1QXbn3SypglgoYYfTcR/s2r3sNtDhSCGiKvy/pvjETya1O5gmEVZ+ ooTuhZHbom+NPF23L+thBKaN2UtoFJ/TAhiAFoQzby0QssHL6ETCnvGTonETRKtC ZSlqA6Qpd799KOkpdoqiHxbJCqmIzD1fx94q8//u0F140nyeKbEM2jCzQBWpi4ZG 9mXM4zXi7U/Zm5cbgCrr4Aphuy9zGOsuwj7LL+sJAyf4pCZ6AE8Lz16ZjGHZ5lD0 DetD2Mxxwonx4GnzWprACkjEYsNZKSqqJdjow0Z3NkhqdsBD64ikjIbroPNbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTKyViy9W9piTk4LW5GsgfDDgCnwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzY0MjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAViacAwQAVib/MA0GCSqG SIb3DQEBCwUAA4IBAQBx9BSzLOlG7NEHzrDyMHrHek9LS0Vmbbh386hTAL2cvQqq C8tApqok9PP9023BpMFWvRzbpbZmfl5Ybh0le1n6EKuauGUrEAJdqXSjs21KKEQm pJ1SXPi4qOq1o1UyLi+I2G1+RViyRlmQC7GMoQNIEzZCZw8EQQ0dfkkVtd8Xt12k rqO4xiOk0M44OB0NZBl0ukWstm0f1XiSSnxVXmW2dzcD4gqgsurz5Pf2BMFgLvr8 ES3P25bcvOAyY2rj/ahfW4B7HMAr7uBuMDPWN97m+D9OY6lSdB7LwWV6n/N9tvMG EULjH82VwU0NTJjbyPBoOhsgxS1eHMpQcOY7T4l+ -----END CERTIFICATE-----Generated at Sat Aug 23 14:30:57 2025 by rpki-client