$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35362e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35362e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: 55PduZWBtII/0OwFruqgUDgeIIZFPEfjFF5mUsbK5PE= Subject key identifier: 86:CC:BF:82:5A:C8:4E:CF:09:60:0D:66:8F:74:00:B5:3A:92:88:98 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 479F95D14B4E764D31F493F8D50E981E40B50205 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35362e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:39:25 +0000 ROA not before: Thu 17 Jul 2025 10:34:25 +0000 ROA not after: Thu 16 Jul 2026 10:39:25 +0000 asID: 395793 IP address blocks: 109.107.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:9f:95:d1:4b:4e:76:4d:31:f4:93:f8:d5:0e:98:1e:40:b5:02:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:34:25 2025 GMT Not After : Jul 16 10:39:25 2026 GMT Subject: CN=86CCBF825AC84ECF09600D668F7400B53A928898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c3:6f:8c:f7:e4:93:6e:f5:8c:6f:42:0d:d9: bb:71:7b:7d:ae:91:68:22:c4:e3:35:4e:dd:d9:50: a9:d8:a0:10:7b:cb:0e:44:03:26:ce:f7:77:53:eb: df:68:ed:ce:38:fc:a5:90:35:72:78:ff:1e:5e:71: b5:7a:f9:d3:37:00:ec:78:ec:3d:ff:94:c0:32:c4: 17:bd:f6:b8:52:1b:da:fd:5d:0e:97:47:9e:6d:9f: 9a:06:ee:28:af:d7:94:ee:bf:2c:60:a6:0d:ef:96: 60:32:b4:34:9d:6f:01:42:a8:60:38:48:3d:bf:36: 8a:2c:65:b3:9e:0d:5c:c9:f9:b6:f5:d7:bd:2c:32: c4:d3:68:3c:93:6b:3e:0f:41:98:e9:0b:6c:7c:a1: 0b:d5:ab:c9:78:15:17:e8:16:66:da:b7:17:e7:6f: 1c:c7:51:94:0b:42:f2:4f:57:ff:c1:8d:8d:8a:8f: 07:c5:2f:7d:f3:79:37:ac:e6:91:4b:8b:1f:7c:e0: d7:12:ae:e1:c4:de:63:2c:53:1f:bb:76:c2:7f:b1: 84:20:da:de:95:cd:00:78:33:d8:95:53:b6:3f:a1: 16:da:20:0d:d5:c8:15:ef:b7:b7:11:09:cc:75:0b: b2:6c:2a:5d:8c:23:90:00:e6:67:39:30:3d:83:1e: 85:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CC:BF:82:5A:C8:4E:CF:09:60:0D:66:8F:74:00:B5:3A:92:88:98 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35362e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.56.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:35:57:5a:32:ed:21:82:dd:ec:2a:f7:4b:99:70:91:88:d3: 4c:9b:85:06:53:d4:d4:d2:e0:b0:a1:2b:86:32:f1:be:8f:84: 0f:2b:bc:83:2c:b6:86:cf:07:7d:5c:f1:68:7c:23:49:4e:4e: e7:fd:1b:77:4a:e0:6f:dd:d2:6f:5a:e6:e8:9b:e9:b6:38:f8: 1e:f9:c7:74:73:3f:04:25:fc:f6:cd:20:ca:ea:04:44:c5:08: c6:81:58:e5:43:45:19:da:e1:74:4f:2d:a5:39:b8:de:5b:2f: d3:ab:5c:4e:df:36:21:b4:d9:de:13:24:80:89:f7:88:c4:06: 8d:bf:5b:e9:7c:ea:92:ef:c6:70:d6:e7:4b:08:21:40:33:38: af:49:13:7e:f0:b6:71:7e:00:83:a9:b1:bc:5c:7a:af:d6:b5: e5:1e:62:2f:f1:5f:6b:7d:83:5c:99:17:fa:ce:47:76:4b:58: a4:9f:d2:94:8c:59:20:5f:28:2e:2f:50:d6:39:de:49:52:8a: 74:3e:31:fc:6f:68:48:8f:a3:5e:14:00:e3:5a:c2:c4:fb:34: f8:38:67:f9:1b:a5:2b:7e:79:ff:c1:38:aa:4b:2f:51:6a:62: 04:10:93:8f:60:fd:28:cb:7a:b8:69:c4:98:a2:87:00:30:94: 44:33:c4:7b -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUR5+V0UtOdk0x9JP41Q6YHkC1AgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM0MjVaFw0yNjA3MTYxMDM5MjVaMDMxMTAvBgNV BAMTKDg2Q0NCRjgyNUFDODRFQ0YwOTYwMEQ2NjhGNzQwMEI1M0E5Mjg4OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSw2+M9+STbvWMb0IN2btxe32u kWgixOM1Tt3ZUKnYoBB7yw5EAybO93dT699o7c44/KWQNXJ4/x5ecbV6+dM3AOx4 7D3/lMAyxBe99rhSG9r9XQ6XR55tn5oG7iiv15Tuvyxgpg3vlmAytDSdbwFCqGA4 SD2/NoosZbOeDVzJ+bb1170sMsTTaDyTaz4PQZjpC2x8oQvVq8l4FRfoFmbatxfn bxzHUZQLQvJPV//BjY2KjwfFL33zeTes5pFLix984NcSruHE3mMsUx+7dsJ/sYQg 2t6VzQB4M9iVU7Y/oRbaIA3VyBXvt7cRCcx1C7JsKl2MI5AA5mc5MD2DHoUpAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUhsy/glrITs8JYA1mj3QAtTqSiJgwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs4MA0GCSqG SIb3DQEBCwUAA4IBAQBfNVdaMu0hgt3sKvdLmXCRiNNMm4UGU9TU0uCwoSuGMvG+ j4QPK7yDLLaGzwd9XPFofCNJTk7n/Rt3SuBv3dJvWubom+m2OPge+cd0cz8EJfz2 zSDK6gRExQjGgVjlQ0UZ2uF0Ty2lObjeWy/Tq1xO3zYhtNneEySAifeIxAaNv1vp fOqS78Zw1udLCCFAMzivSRN+8LZxfgCDqbG8XHqv1rXlHmIv8V9rfYNcmRf6zkd2 S1ikn9KUjFkgXyguL1DWOd5JUop0PjH8b2hIj6NeFADjWsLE+zT4OGf5G6Urfnn/ wTiqSy9RamIEEJOPYP0oy3q4acSYoocAMJREM8R7 -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:03 2025 by rpki-client