$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35332e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35332e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: TAM5cM+/DqNob6YzweRujDgC9w1eBIfbr4fR2j40Bo0= Subject key identifier: 86:8D:E0:CE:26:76:34:C5:70:DA:D2:9D:11:44:E0:8D:F0:CF:5E:DF Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 24DA940647450ECE8F8514BF80A3A99533348C9B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35332e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:38:47 +0000 ROA not before: Thu 17 Jul 2025 10:33:47 +0000 ROA not after: Thu 16 Jul 2026 10:38:47 +0000 asID: 395793 IP address blocks: 109.107.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:da:94:06:47:45:0e:ce:8f:85:14:bf:80:a3:a9:95:33:34:8c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:33:47 2025 GMT Not After : Jul 16 10:38:47 2026 GMT Subject: CN=868DE0CE267634C570DAD29D1144E08DF0CF5EDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b9:34:a8:9c:41:9d:b6:a9:4e:0c:e4:e1:c1: ae:22:ee:9b:b7:ae:a0:23:17:0f:89:39:37:fa:9d: c9:13:a4:cd:9e:13:e0:32:a0:f4:2f:d8:ea:c2:00: 6e:84:ba:fb:bf:5d:c8:6d:84:ad:c1:2a:e7:5d:07: 0b:30:11:f2:1a:ed:74:08:d9:21:7a:1c:bb:56:ae: 41:21:62:dd:b2:8d:8b:b1:ec:ff:a1:fe:bb:a2:bf: 05:0d:00:6d:53:4f:41:d8:e7:84:95:12:e1:e9:bd: cd:4d:91:a8:3d:3a:d6:1e:70:e3:3d:4f:8b:65:9b: fe:c1:1a:09:fc:fc:21:1b:b9:f0:fb:c5:d1:dd:df: 39:e5:d6:3e:41:b4:7e:5f:43:46:80:c8:ae:52:45: e7:56:3f:01:9b:d2:62:f5:c6:73:64:c2:01:13:25: 71:7f:c1:48:05:2b:8c:6e:3c:f6:f0:f7:73:3d:62: a7:59:7f:5f:f3:dd:da:fe:5a:4b:39:3d:0b:1b:0e: 02:8a:dd:87:a2:61:b8:21:4f:31:11:66:72:a8:b9: 99:4e:1a:33:96:95:be:9c:02:b4:88:25:c3:49:03: 03:9c:11:25:cd:a5:ff:4b:02:de:e2:bd:0e:33:e1: 49:2b:99:29:77:ff:4f:8f:80:8d:bf:0f:74:cd:35: 88:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8D:E0:CE:26:76:34:C5:70:DA:D2:9D:11:44:E0:8D:F0:CF:5E:DF X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35332e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.53.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:bb:e1:2b:ac:53:d2:1c:4a:c9:ab:54:27:7c:bc:09:9d:2d: cf:f2:0a:ed:eb:6e:ce:af:47:cc:0f:96:b4:09:34:c0:b6:d5: c1:00:1a:ef:9e:65:b0:e3:7f:c4:53:b2:44:06:d4:3f:6c:ce: cb:81:77:4f:2c:15:a9:b8:10:9c:9a:be:9c:b6:ee:2c:aa:13: d8:f2:c3:5d:89:66:70:e4:71:13:e9:11:9c:ce:24:3e:af:ce: 3b:00:80:b4:29:e1:49:e7:da:95:64:f1:40:77:70:f7:7f:38: 3e:8c:0e:bf:a3:0c:56:0e:c7:58:8a:26:b1:40:20:e6:2b:16: 69:17:7c:52:1a:9f:e8:42:df:dc:29:a5:b2:1e:5b:08:1b:82: 7a:b3:59:45:6a:0b:31:91:e9:2f:57:1a:83:cc:1d:94:f1:2f: 80:b2:17:8d:f9:a3:51:36:01:26:a7:49:e2:c1:32:7b:bf:37: f4:75:bb:4d:c2:53:8e:c1:da:15:25:f1:6a:59:d2:b7:b5:e7: 13:d1:08:f4:80:1f:78:4b:8f:9d:f0:41:24:1e:29:81:82:10: e7:d7:99:25:61:c5:b9:78:95:a4:15:35:d6:dd:df:47:72:c7: e4:08:c5:68:e5:2f:7e:05:9f:0b:22:44:99:56:bf:c8:5c:7f: b7:91:f5:77 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUJNqUBkdFDs6PhRS/gKOplTM0jJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDMzNDdaFw0yNjA3MTYxMDM4NDdaMDMxMTAvBgNV BAMTKDg2OERFMENFMjY3NjM0QzU3MERBRDI5RDExNDRFMDhERjBDRjVFREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnuTSonEGdtqlODOThwa4i7pu3 rqAjFw+JOTf6nckTpM2eE+AyoPQv2OrCAG6Euvu/XchthK3BKuddBwswEfIa7XQI 2SF6HLtWrkEhYt2yjYux7P+h/ruivwUNAG1TT0HY54SVEuHpvc1Nkag9OtYecOM9 T4tlm/7BGgn8/CEbufD7xdHd3znl1j5BtH5fQ0aAyK5SRedWPwGb0mL1xnNkwgET JXF/wUgFK4xuPPbw93M9YqdZf1/z3dr+Wks5PQsbDgKK3YeiYbghTzERZnKouZlO GjOWlb6cArSIJcNJAwOcESXNpf9LAt7ivQ4z4UkrmSl3/0+PgI2/D3TNNYhZAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUho3gziZ2NMVw2tKdEUTgjfDPXt8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs1MA0GCSqG SIb3DQEBCwUAA4IBAQCNu+ErrFPSHErJq1QnfLwJnS3P8grt627Or0fMD5a0CTTA ttXBABrvnmWw43/EU7JEBtQ/bM7LgXdPLBWpuBCcmr6ctu4sqhPY8sNdiWZw5HET 6RGcziQ+r847AIC0KeFJ59qVZPFAd3D3fzg+jA6/owxWDsdYiiaxQCDmKxZpF3xS Gp/oQt/cKaWyHlsIG4J6s1lFagsxkekvVxqDzB2U8S+AsheN+aNRNgEmp0niwTJ7 vzf0dbtNwlOOwdoVJfFqWdK3tecT0Qj0gB94S4+d8EEkHimBghDn15klYcW5eJWk FTXW3d9HcsfkCMVo5S9+BZ8LIkSZVr/IXH+3kfV3 -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:04 2025 by rpki-client