$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34392e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e34392e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: SbXlpXyIOIEhI4QmVYnphtCNXp6qz6ciI1gN/VBG814= Subject key identifier: E3:E7:0A:E9:FF:CA:10:33:39:A0:67:85:23:B1:E5:70:28:0F:59:EA Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 75951FBC28A865E7D154ED7DFD3EFFA76018D8C9 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34392e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:37:32 +0000 ROA not before: Thu 17 Jul 2025 10:32:32 +0000 ROA not after: Thu 16 Jul 2026 10:37:32 +0000 asID: 395793 IP address blocks: 109.107.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:95:1f:bc:28:a8:65:e7:d1:54:ed:7d:fd:3e:ff:a7:60:18:d8:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:32:32 2025 GMT Not After : Jul 16 10:37:32 2026 GMT Subject: CN=E3E70AE9FFCA103339A0678523B1E570280F59EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:94:19:b7:75:c0:96:91:d2:f0:9b:f1:92:88: 89:82:78:60:1c:15:19:c7:1c:67:3f:c0:d2:77:72: 3d:ce:af:08:a0:15:70:60:fa:91:d3:80:db:c8:70: 0e:a1:ac:0c:5e:6d:80:7c:26:14:af:72:dc:b9:ce: 18:cd:20:bc:e3:1a:52:07:3a:7f:fa:88:21:c1:dc: aa:b7:3e:b7:a7:49:96:b3:6e:e4:38:36:b4:99:39: 46:38:5b:6e:f4:54:0a:10:df:28:f1:f3:fb:6a:d3: ac:2b:75:31:ca:bb:49:69:4c:de:05:36:c5:bb:b5: 4b:ca:2a:d5:7e:03:59:35:eb:8e:b4:04:24:5f:cd: b2:93:05:19:9e:eb:50:1b:7e:d4:88:59:b5:d5:04: e1:13:5d:e1:e1:7b:a1:4b:2c:ae:91:b8:5f:32:9b: f5:69:9d:e6:b7:4e:86:f4:6d:23:ad:44:0b:94:87: a8:16:4d:bb:a7:c7:17:24:ef:12:fa:a2:04:69:d3: 55:96:59:7b:1a:f5:ee:6c:7e:26:f0:dd:81:b0:6f: c8:b4:4d:24:16:7b:a1:ef:ae:33:e7:92:67:5f:a9: 7b:b0:7f:2f:3b:f6:89:70:60:5c:f1:58:2e:2f:94: 1e:fd:1f:ab:0a:9e:a1:d0:8f:78:91:f8:1d:bc:09: f6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E7:0A:E9:FF:CA:10:33:39:A0:67:85:23:B1:E5:70:28:0F:59:EA X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34392e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.49.0/24 Signature Algorithm: sha256WithRSAEncryption 58:22:12:1a:00:20:fc:4d:58:f0:6c:32:9b:a9:07:85:2e:49: 50:c8:2d:ff:ba:b0:60:5b:57:4e:5b:f2:b9:52:96:96:11:00: e1:a1:0e:9a:7d:c2:e7:9f:9b:71:c3:44:ca:be:af:ee:00:dd: 4b:ce:32:57:ea:f1:de:5f:cf:74:63:0a:89:b2:07:37:9d:c2: a1:3f:27:f3:ef:d7:35:12:62:f8:05:4f:00:0b:fb:a1:6f:8c: 4d:4d:a8:25:9e:14:35:25:44:b2:b3:cb:81:d3:b2:48:5f:0d: a7:55:fc:80:db:2a:b4:ca:0c:57:28:06:35:ea:6f:78:6a:4d: 19:dc:71:c8:a3:eb:4a:ab:60:41:9b:f9:90:c6:bc:95:22:2b: bf:98:4a:44:e7:79:0b:09:8b:f7:5c:b4:b9:e8:08:5c:05:f8: 1e:b0:23:ab:73:b9:43:9b:bf:8b:3f:3f:25:96:b1:6c:bd:f9: de:09:ca:db:2d:65:95:ad:ca:3b:49:bf:a8:ff:f0:1e:85:ac: f6:13:bf:5e:35:2f:78:8b:3e:c0:e6:53:4e:e3:1b:e2:40:d6: 15:f7:96:ca:4b:c7:d3:4e:93:f4:f7:d1:4e:5a:d4:cb:e5:6d: ad:41:57:27:36:8b:58:81:22:e9:31:e9:bf:7f:ed:70:80:f8: fe:71:5d:90 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUdZUfvCioZefRVO19/T7/p2AY2MkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDMyMzJaFw0yNjA3MTYxMDM3MzJaMDMxMTAvBgNV BAMTKEUzRTcwQUU5RkZDQTEwMzMzOUEwNjc4NTIzQjFFNTcwMjgwRjU5RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqlBm3dcCWkdLwm/GSiImCeGAc FRnHHGc/wNJ3cj3OrwigFXBg+pHTgNvIcA6hrAxebYB8JhSvcty5zhjNILzjGlIH On/6iCHB3Kq3PrenSZazbuQ4NrSZOUY4W270VAoQ3yjx8/tq06wrdTHKu0lpTN4F NsW7tUvKKtV+A1k16460BCRfzbKTBRme61AbftSIWbXVBOETXeHhe6FLLK6RuF8y m/Vpnea3Tob0bSOtRAuUh6gWTbunxxck7xL6ogRp01WWWXsa9e5sfibw3YGwb8i0 TSQWe6HvrjPnkmdfqXuwfy879olwYFzxWC4vlB79H6sKnqHQj3iR+B28CfYZAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQU4+cK6f/KEDM5oGeFI7HlcCgPWeowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWsxMA0GCSqG SIb3DQEBCwUAA4IBAQBYIhIaACD8TVjwbDKbqQeFLklQyC3/urBgW1dOW/K5UpaW EQDhoQ6afcLnn5txw0TKvq/uAN1LzjJX6vHeX890YwqJsgc3ncKhPyfz79c1EmL4 BU8AC/uhb4xNTaglnhQ1JUSys8uB07JIXw2nVfyA2yq0ygxXKAY16m94ak0Z3HHI o+tKq2BBm/mQxryVIiu/mEpE53kLCYv3XLS56AhcBfgesCOrc7lDm7+LPz8llrFs vfneCcrbLWWVrco7Sb+o//Aehaz2E79eNS94iz7A5lNO4xviQNYV95bKS8fTTpP0 99FOWtTL5W2tQVcnNotYgSLpMem/f+1wgPj+cV2Q -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:05 2025 by rpki-client