$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35312e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35312e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: OsxV8EMe7Cr7yLATz/lNBHIaGRXJnyMRk+Ye0qCHsB4= Subject key identifier: 5D:24:0D:DA:F1:10:E6:B2:DF:86:9F:B6:C4:0A:6A:8A:61:20:95:D3 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 07ED8FB486BF98A6E9EEDD98FB048C106D79FC9B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35312e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:38:00 +0000 ROA not before: Thu 17 Jul 2025 10:33:00 +0000 ROA not after: Thu 16 Jul 2026 10:38:00 +0000 asID: 395793 IP address blocks: 109.107.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ed:8f:b4:86:bf:98:a6:e9:ee:dd:98:fb:04:8c:10:6d:79:fc:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:33:00 2025 GMT Not After : Jul 16 10:38:00 2026 GMT Subject: CN=5D240DDAF110E6B2DF869FB6C40A6A8A612095D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0d:2a:54:bc:48:88:c6:c9:e1:f2:36:d3:5e: 92:c7:8b:a6:2b:60:6c:75:41:d5:fe:21:cc:9c:99: c2:60:c8:b2:c2:12:4e:d4:17:bb:8f:8d:93:e3:16: 9c:2b:62:91:b3:25:fe:c2:40:06:a9:b6:f9:62:03: 95:a6:21:0e:8a:f3:b0:73:c1:b4:16:da:4b:f0:bf: e6:de:1d:55:10:3e:cf:e1:65:46:53:e1:77:94:c8: bd:5b:90:d9:f9:21:0b:22:1e:97:c2:79:c1:48:72: c4:18:ce:a1:0d:e5:1d:42:a8:12:2d:89:0f:d0:98: fa:d3:06:86:1b:a7:a6:bd:b8:6f:0b:6a:04:62:3f: c4:e4:d5:4d:f3:08:a3:3a:76:f1:c9:ff:f2:a2:3c: 63:fb:ce:d7:35:34:a5:d3:fc:e2:40:d1:a5:5d:99: 03:32:59:33:6a:6a:16:67:52:c6:79:50:ce:42:af: 0c:8d:95:2e:9f:cf:68:80:3a:e1:e3:77:72:c9:59: 22:9b:8d:b2:fd:28:55:1f:8c:50:c4:cd:4b:23:70: f1:f5:b4:35:3a:15:01:8b:76:f6:6a:95:95:dd:d5: 29:f6:0a:a8:c7:2c:16:92:70:0f:0a:f9:c3:f1:2b: dc:a0:fd:56:7c:70:6e:d7:de:fc:d4:4a:67:10:60: 96:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:24:0D:DA:F1:10:E6:B2:DF:86:9F:B6:C4:0A:6A:8A:61:20:95:D3 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35312e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.51.0/24 Signature Algorithm: sha256WithRSAEncryption a3:06:c9:9d:a3:58:5e:91:b8:f1:af:b1:9d:88:20:e3:7b:0c: 61:ac:58:a2:ba:9b:92:4d:a6:7e:64:73:0c:3d:69:78:df:a0: 67:3c:b9:66:e9:e6:1d:cc:35:ca:99:e9:f8:5e:49:a8:f3:8d: 3f:4f:aa:17:5d:2f:ea:d0:04:b0:d3:a3:c0:d3:d4:ae:a6:b0: 77:2f:47:c1:27:fc:64:79:ec:d8:a9:47:68:5c:95:7a:3d:e7: 4f:a5:fa:20:dc:af:cf:e7:2d:7d:a9:0d:05:2f:1c:35:de:fc: 93:4d:03:79:f9:a9:35:57:3f:5d:c0:44:56:38:78:5a:8b:53: 2f:0f:0d:f1:b8:f7:5b:d3:09:d7:8d:11:ce:43:8f:42:3d:07: 90:2b:6d:49:33:13:87:80:60:bb:00:1a:8c:a8:af:3b:05:02: 08:05:3c:b2:a1:ee:da:e0:34:cf:5d:22:a2:d4:e6:45:16:bd: dd:5c:1f:ff:be:07:de:9c:4d:a8:37:d4:47:69:6c:7e:c8:30: ad:29:55:4f:bf:d1:26:40:2e:1c:dd:6e:f1:7d:ae:8e:bf:46: 56:28:06:85:30:00:1e:74:69:09:60:49:e9:95:c2:2c:a6:43: 4b:3d:19:bf:3a:86:6f:94:fc:93:f7:01:75:c2:6a:8d:f2:6d: 21:84:dc:f9 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUB+2PtIa/mKbp7t2Y+wSMEG15/JswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDMzMDBaFw0yNjA3MTYxMDM4MDBaMDMxMTAvBgNV BAMTKDVEMjQwRERBRjExMEU2QjJERjg2OUZCNkM0MEE2QThBNjEyMDk1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcDSpUvEiIxsnh8jbTXpLHi6Yr YGx1QdX+IcycmcJgyLLCEk7UF7uPjZPjFpwrYpGzJf7CQAaptvliA5WmIQ6K87Bz wbQW2kvwv+beHVUQPs/hZUZT4XeUyL1bkNn5IQsiHpfCecFIcsQYzqEN5R1CqBIt iQ/QmPrTBoYbp6a9uG8LagRiP8Tk1U3zCKM6dvHJ//KiPGP7ztc1NKXT/OJA0aVd mQMyWTNqahZnUsZ5UM5CrwyNlS6fz2iAOuHjd3LJWSKbjbL9KFUfjFDEzUsjcPH1 tDU6FQGLdvZqlZXd1Sn2CqjHLBaScA8K+cPxK9yg/VZ8cG7X3vzUSmcQYJZPAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUXSQN2vEQ5rLfhp+2xApqimEgldMwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWszMA0GCSqG SIb3DQEBCwUAA4IBAQCjBsmdo1hekbjxr7GdiCDjewxhrFiiupuSTaZ+ZHMMPWl4 36BnPLlm6eYdzDXKmen4Xkmo840/T6oXXS/q0ASw06PA09SuprB3L0fBJ/xkeezY qUdoXJV6PedPpfog3K/P5y19qQ0FLxw13vyTTQN5+ak1Vz9dwERWOHhai1MvDw3x uPdb0wnXjRHOQ49CPQeQK21JMxOHgGC7ABqMqK87BQIIBTyyoe7a4DTPXSKi1OZF Fr3dXB//vgfenE2oN9RHaWx+yDCtKVVPv9EmQC4c3W7xfa6Ov0ZWKAaFMAAedGkJ YEnplcIspkNLPRm/OoZvlPyT9wF1wmqN8m0hhNz5 -----END CERTIFICATE-----Generated at Sun Jul 20 11:30:27 2025 by rpki-client