$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35342e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35342e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: /Aq2VDHAXEgBCtnGDJK+glWSTdmqSC8Kn9fWAOjGjK8= Subject key identifier: 18:2B:14:58:8D:66:56:8F:1C:12:12:B5:E6:F0:4D:FA:58:27:8B:59 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 694BA49E509FFDBED0C7B03D0A81BC78C5CCC102 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35342e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:39:03 +0000 ROA not before: Thu 17 Jul 2025 10:34:03 +0000 ROA not after: Thu 16 Jul 2026 10:39:03 +0000 asID: 395793 IP address blocks: 109.107.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:4b:a4:9e:50:9f:fd:be:d0:c7:b0:3d:0a:81:bc:78:c5:cc:c1:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:34:03 2025 GMT Not After : Jul 16 10:39:03 2026 GMT Subject: CN=182B14588D66568F1C1212B5E6F04DFA58278B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:e6:d7:72:04:18:6c:58:04:3a:4c:b7:4a:92: 43:37:ba:37:df:35:84:ad:b5:8e:23:05:8d:3f:b2: 04:2b:9a:38:b9:5b:d1:6a:d0:16:a5:96:6c:c9:80: 54:ac:56:bf:a8:fd:3c:0a:3f:b7:b9:2e:9f:fa:b2: a8:4c:1e:f9:cd:0f:09:59:f3:5f:d4:5e:f7:c2:e5: 35:3a:75:76:f3:d4:d3:f0:52:0c:92:d1:1c:3b:f9: 6a:5c:0d:51:a1:cf:d4:20:0c:d0:73:c2:3d:5f:ce: 58:17:4a:ee:45:04:ec:b2:c4:1d:55:60:c8:2a:6a: a5:b5:a1:2a:f9:9a:7f:db:97:57:8b:f5:a1:d7:fa: 01:2e:83:aa:73:9c:5f:b2:15:9d:32:7e:6a:c4:68: dc:67:41:fb:40:62:1e:a2:eb:92:b2:0a:52:0f:34: 41:a9:5c:28:35:08:f8:82:a4:35:f6:b4:f7:46:06: 2e:9c:85:18:77:52:9b:dc:57:f5:ed:21:e9:3d:80: 36:05:85:05:17:6f:57:86:47:3e:70:81:58:bf:bf: e2:a8:28:b7:ee:aa:11:0b:80:fc:6d:c2:e8:b0:80: 24:cd:9b:8a:ab:7b:28:9a:5a:4b:21:0d:e2:0e:f0: 82:b2:78:12:73:2f:c4:09:06:70:f0:6f:6b:81:80: c4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:2B:14:58:8D:66:56:8F:1C:12:12:B5:E6:F0:4D:FA:58:27:8B:59 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35342e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.54.0/24 Signature Algorithm: sha256WithRSAEncryption 77:02:61:d1:fc:e8:10:e4:f4:21:90:de:b5:59:82:f2:46:ff: f1:1e:12:b8:23:b8:6c:1a:b1:6d:6b:f9:64:31:26:3d:8c:d2: f2:50:db:75:48:15:70:6d:47:43:bc:3d:52:f5:5f:37:8a:9a: 9f:a8:e2:f4:9e:3c:b5:7a:c6:16:a2:c5:60:71:de:bc:26:26: e9:ee:f0:b5:e6:09:2e:61:7a:84:ed:8f:d1:57:67:9c:c6:dd: f7:1e:75:82:75:9c:60:dd:97:1b:8e:20:c1:4e:6b:6e:5e:ce: 80:fb:1d:fb:c8:93:7a:ef:3e:fb:34:65:74:e7:0a:a0:c4:35: 29:71:a7:db:63:73:1e:12:10:d5:a8:b3:f8:64:23:9b:4b:d4: 34:b0:13:18:f9:87:a7:ae:4f:2b:93:82:77:18:6e:53:59:2c: 0d:19:38:a6:14:20:e7:36:31:58:03:2c:54:11:08:57:86:72: 3d:79:8e:72:fd:15:6f:fc:9a:c2:e3:11:66:34:5f:c9:12:96: e0:f2:37:7c:04:72:b6:25:e9:7b:23:b5:27:64:a9:91:f0:14: 48:ec:45:90:c5:58:e6:f6:74:ba:fd:81:d6:99:b5:e2:cf:7b: 46:d4:8e:97:78:cf:31:86:ea:e9:a6:95:5b:60:be:b2:fe:02: c8:48:03:68 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUaUuknlCf/b7Qx7A9CoG8eMXMwQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM0MDNaFw0yNjA3MTYxMDM5MDNaMDMxMTAvBgNV BAMTKDE4MkIxNDU4OEQ2NjU2OEYxQzEyMTJCNUU2RjA0REZBNTgyNzhCNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCG5tdyBBhsWAQ6TLdKkkM3ujff NYSttY4jBY0/sgQrmji5W9Fq0BallmzJgFSsVr+o/TwKP7e5Lp/6sqhMHvnNDwlZ 81/UXvfC5TU6dXbz1NPwUgyS0Rw7+WpcDVGhz9QgDNBzwj1fzlgXSu5FBOyyxB1V YMgqaqW1oSr5mn/bl1eL9aHX+gEug6pznF+yFZ0yfmrEaNxnQftAYh6i65KyClIP NEGpXCg1CPiCpDX2tPdGBi6chRh3UpvcV/XtIek9gDYFhQUXb1eGRz5wgVi/v+Ko KLfuqhELgPxtwuiwgCTNm4qreyiaWkshDeIO8IKyeBJzL8QJBnDwb2uBgMSpAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUGCsUWI1mVo8cEhK15vBN+lgni1kwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs2MA0GCSqG SIb3DQEBCwUAA4IBAQB3AmHR/OgQ5PQhkN61WYLyRv/xHhK4I7hsGrFta/lkMSY9 jNLyUNt1SBVwbUdDvD1S9V83ipqfqOL0njy1esYWosVgcd68Jibp7vC15gkuYXqE 7Y/RV2ecxt33HnWCdZxg3ZcbjiDBTmtuXs6A+x37yJN67z77NGV05wqgxDUpcafb Y3MeEhDVqLP4ZCObS9Q0sBMY+Yenrk8rk4J3GG5TWSwNGTimFCDnNjFYAyxUEQhX hnI9eY5y/RVv/JrC4xFmNF/JEpbg8jd8BHK2Jel7I7UnZKmR8BRI7EWQxVjm9nS6 /YHWmbXiz3tG1I6XeM8xhurpppVbYL6y/gLISANo -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:34 2025 by rpki-client