$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35322e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35322e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: nHSy1Pf4HDLVl5HJdfAu0Qv32ZhemW/7odtx19a4vm8= Subject key identifier: CA:04:96:61:6C:79:8D:D7:00:99:4D:D6:97:25:D0:7D:03:2D:BF:E0 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0BB3194363C56634E6E25239B0CD5A61689B90EB Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35322e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:38:34 +0000 ROA not before: Thu 17 Jul 2025 10:33:34 +0000 ROA not after: Thu 16 Jul 2026 10:38:34 +0000 asID: 395793 IP address blocks: 109.107.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b3:19:43:63:c5:66:34:e6:e2:52:39:b0:cd:5a:61:68:9b:90:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:33:34 2025 GMT Not After : Jul 16 10:38:34 2026 GMT Subject: CN=CA0496616C798DD700994DD69725D07D032DBFE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:5d:12:d3:b6:d9:db:9e:1d:8b:92:7d:25: 24:96:de:bb:97:50:6d:5f:d4:2b:ff:c2:cf:7b:b2: 01:8c:86:07:ca:ae:15:2e:36:70:9f:83:c4:25:f2: 09:79:a0:b7:94:9a:24:1e:68:2a:d1:bf:b7:a1:0f: 24:11:d3:60:4c:bf:1b:7f:51:4e:14:0b:1c:73:ef: a8:2d:33:da:2b:f7:c2:44:97:01:aa:88:2c:46:62: 20:d0:ca:52:f8:88:6d:ad:97:79:1c:e5:4f:2c:72: fc:4b:46:c0:81:89:f3:30:07:aa:61:8f:c0:31:9c: 59:cd:71:79:6d:34:21:bd:3d:84:30:00:7a:9d:ea: 4b:1b:b5:73:d0:be:e3:29:4b:dc:20:5d:8b:67:d9: 37:00:41:a8:5e:93:ba:44:4c:48:50:87:5d:27:b8: 92:67:9a:f5:f5:cd:ac:06:eb:80:d6:d4:33:97:f3: 4b:61:78:e9:54:cf:22:f7:2b:7f:46:30:6c:91:38: f5:20:d2:db:8a:63:0d:63:31:76:a3:78:04:6b:00: e6:05:38:15:51:01:4c:e7:84:f5:f2:8e:d7:b5:a7: a8:0b:fb:9c:8a:7b:92:17:2a:47:f9:df:33:d2:48: 3f:64:31:0b:a6:f6:27:c0:3a:e6:1d:76:1f:b6:36: c7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:04:96:61:6C:79:8D:D7:00:99:4D:D6:97:25:D0:7D:03:2D:BF:E0 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35322e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.52.0/24 Signature Algorithm: sha256WithRSAEncryption 76:bb:0e:85:ec:34:b5:5e:59:af:c9:07:7c:f2:75:66:53:64: c2:97:0c:43:06:86:e1:8f:a5:24:1a:a4:66:ee:b3:85:f7:49: 98:a7:62:b5:25:a2:6e:0e:59:ba:f9:dc:ce:5a:96:50:d6:c1: bd:2d:42:f8:87:f6:06:0a:56:96:f7:5e:7a:a3:84:98:b3:79: b7:9c:10:8e:46:59:a9:e9:dc:f9:c9:ed:cb:42:94:f2:81:c0: 06:3c:cf:80:ad:a5:57:fa:6e:de:31:47:23:1f:88:0e:b5:a3: b2:49:e3:2e:94:06:97:60:7c:e0:33:8f:b0:92:ae:02:c7:8e: b1:36:07:ab:f4:d9:52:fe:fe:8e:1d:2d:b4:45:49:a5:df:f6: c8:76:aa:43:8b:98:80:45:13:41:6b:7d:d0:0b:09:50:7f:29: 30:9e:67:60:dd:76:37:fb:be:3e:58:76:a7:5f:b7:27:01:5d: f2:68:78:e5:32:58:70:92:bf:c6:58:95:20:7d:7b:fd:d0:88: 9c:17:86:22:99:8a:49:bc:63:d7:49:d7:dc:6e:b7:cf:c3:33: ca:b0:1c:d1:7e:f0:1f:53:2a:19:24:d2:97:cc:1c:b4:80:df: 3d:f8:5c:9c:f4:f1:ed:63:8b:79:ca:2e:22:33:8b:e9:1a:2a: d8:f9:e5:03 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUC7MZQ2PFZjTm4lI5sM1aYWibkOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDMzMzRaFw0yNjA3MTYxMDM4MzRaMDMxMTAvBgNV BAMTKENBMDQ5NjYxNkM3OThERDcwMDk5NERENjk3MjVEMDdEMDMyREJGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBkF0S07bZ254di5J9JSSW3ruX UG1f1Cv/ws97sgGMhgfKrhUuNnCfg8Ql8gl5oLeUmiQeaCrRv7ehDyQR02BMvxt/ UU4UCxxz76gtM9or98JElwGqiCxGYiDQylL4iG2tl3kc5U8scvxLRsCBifMwB6ph j8AxnFnNcXltNCG9PYQwAHqd6ksbtXPQvuMpS9wgXYtn2TcAQahek7pETEhQh10n uJJnmvX1zawG64DW1DOX80theOlUzyL3K39GMGyROPUg0tuKYw1jMXajeARrAOYF OBVRAUznhPXyjte1p6gL+5yKe5IXKkf53zPSSD9kMQum9ifAOuYddh+2NsfbAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUygSWYWx5jdcAmU3WlyXQfQMtv+AwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs0MA0GCSqG SIb3DQEBCwUAA4IBAQB2uw6F7DS1XlmvyQd88nVmU2TClwxDBobhj6UkGqRm7rOF 90mYp2K1JaJuDlm6+dzOWpZQ1sG9LUL4h/YGClaW9156o4SYs3m3nBCORlmp6dz5 ye3LQpTygcAGPM+AraVX+m7eMUcjH4gOtaOySeMulAaXYHzgM4+wkq4Cx46xNger 9NlS/v6OHS20RUml3/bIdqpDi5iARRNBa33QCwlQfykwnmdg3XY3+74+WHanX7cn AV3yaHjlMlhwkr/GWJUgfXv90IicF4YimYpJvGPXSdfcbrfPwzPKsBzRfvAfUyoZ JNKXzBy0gN89+Fyc9PHtY4t5yi4iM4vpGirY+eUD -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:06 2025 by rpki-client