$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35372e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35372e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: 78ezrcyXd29b5D0N00/9SgbBsORGivvDXVFlGyFgjyU= Subject key identifier: 4C:5E:50:95:DB:43:AF:73:84:05:06:A4:B9:59:E9:EF:10:7A:69:2B Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 32D55AE02EC2DE65267AB7F0445B760EC0105B7A Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35372e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:39:38 +0000 ROA not before: Thu 17 Jul 2025 10:34:38 +0000 ROA not after: Thu 16 Jul 2026 10:39:38 +0000 asID: 395793 IP address blocks: 109.107.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d5:5a:e0:2e:c2:de:65:26:7a:b7:f0:44:5b:76:0e:c0:10:5b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:34:38 2025 GMT Not After : Jul 16 10:39:38 2026 GMT Subject: CN=4C5E5095DB43AF73840506A4B959E9EF107A692B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ce:b7:c6:f6:26:1c:00:08:f5:1a:39:fa:ed: 9f:1d:ec:27:df:58:01:c5:26:4a:16:05:35:c4:3b: 4f:2d:2a:64:5f:6f:69:6e:51:61:ef:10:ec:f7:63: 18:5d:54:9d:68:52:e1:3f:0d:73:86:7d:54:88:a2: 94:b0:79:ea:a9:5d:6a:52:ec:cd:ce:d5:b1:7d:89: 43:fc:45:d0:28:62:d6:ea:d6:ae:33:96:ad:c7:8b: cd:bb:ac:78:ba:e6:1b:f8:b5:30:8f:50:9f:4b:ed: 5a:42:d2:2d:7e:0e:4b:f2:e7:56:85:26:8a:37:52: b0:de:5d:12:26:bd:3e:24:12:bf:63:b2:5b:9e:4d: f3:8f:12:02:1d:5c:22:41:e2:ec:7f:e7:b2:fd:61: 38:13:4d:4c:99:cb:a5:4f:ce:fd:c6:60:ed:20:08: 5c:c5:b8:48:4c:53:a8:a8:99:99:fa:5d:df:8f:3c: 93:cc:b4:21:95:fa:35:65:10:bc:55:3a:3f:26:9d: 4d:bf:4f:be:1f:98:60:1e:b0:ef:ec:e0:8b:50:a9: c0:e8:ad:54:94:38:b4:f6:cd:52:07:a3:81:08:9a: a6:ca:e9:93:34:86:3f:7e:95:d5:12:cd:cb:9e:82: 86:7b:97:d7:f6:8c:03:d9:61:64:34:cb:d0:e2:c8: 24:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5E:50:95:DB:43:AF:73:84:05:06:A4:B9:59:E9:EF:10:7A:69:2B X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35372e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.57.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:6e:64:33:44:6c:55:e7:db:9b:08:db:d4:95:f5:39:d6:7b: 07:06:92:ca:d0:fc:62:3c:ad:86:f4:6e:9b:62:cb:b9:df:6d: db:1c:b0:ba:33:3e:35:75:1e:b8:4d:ff:9f:ec:e9:0d:ad:96: d3:7c:85:a0:88:70:1b:38:e7:ea:f9:fe:76:9f:d4:2a:5a:d1: b2:eb:ee:7a:d9:45:99:41:56:43:7f:40:84:45:16:7f:59:a8: 4b:24:c6:be:77:3e:62:63:40:8c:38:1e:10:ac:b3:05:7a:2d: 68:78:6a:35:cf:d9:f2:3d:a8:54:8d:3b:52:a6:57:3c:91:60: fc:57:0a:9f:09:ed:96:67:f6:b5:61:aa:83:62:b6:ab:01:5a: 2d:36:97:80:34:3e:82:56:ec:32:bf:92:d9:17:bf:a2:01:da: ae:f6:cb:35:03:08:46:22:04:d5:ca:2c:92:63:3c:76:7c:cb: 78:51:cc:6d:1a:14:e2:d2:2f:95:48:3b:f7:a9:0d:e3:cd:6c: 49:44:d3:99:dd:09:44:6a:8f:dd:55:64:4d:72:ac:65:37:12: df:3a:b3:3c:c7:4d:72:04:a0:23:f0:4d:62:cc:30:3a:54:de: 43:2e:2e:e1:62:a2:d0:4f:4c:0b:16:5e:fa:ed:08:77:e1:9b: 00:ff:75:8b -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUMtVa4C7C3mUmerfwRFt2DsAQW3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM0MzhaFw0yNjA3MTYxMDM5MzhaMDMxMTAvBgNV BAMTKDRDNUU1MDk1REI0M0FGNzM4NDA1MDZBNEI5NTlFOUVGMTA3QTY5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXzrfG9iYcAAj1Gjn67Z8d7Cff WAHFJkoWBTXEO08tKmRfb2luUWHvEOz3YxhdVJ1oUuE/DXOGfVSIopSweeqpXWpS 7M3O1bF9iUP8RdAoYtbq1q4zlq3Hi827rHi65hv4tTCPUJ9L7VpC0i1+Dkvy51aF Joo3UrDeXRImvT4kEr9jslueTfOPEgIdXCJB4ux/57L9YTgTTUyZy6VPzv3GYO0g CFzFuEhMU6iomZn6Xd+PPJPMtCGV+jVlELxVOj8mnU2/T74fmGAesO/s4ItQqcDo rVSUOLT2zVIHo4EImqbK6ZM0hj9+ldUSzcuegoZ7l9f2jAPZYWQ0y9DiyCQBAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUTF5QldtDr3OEBQakuVnp7xB6aSswHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs5MA0GCSqG SIb3DQEBCwUAA4IBAQBebmQzRGxV59ubCNvUlfU51nsHBpLK0PxiPK2G9G6bYsu5 323bHLC6Mz41dR64Tf+f7OkNrZbTfIWgiHAbOOfq+f52n9QqWtGy6+562UWZQVZD f0CERRZ/WahLJMa+dz5iY0CMOB4QrLMFei1oeGo1z9nyPahUjTtSplc8kWD8Vwqf Ce2WZ/a1YaqDYrarAVotNpeAND6CVuwyv5LZF7+iAdqu9ss1AwhGIgTVyiySYzx2 fMt4UcxtGhTi0i+VSDv3qQ3jzWxJRNOZ3QlEao/dVWRNcqxlNxLfOrM8x01yBKAj 8E1izDA6VN5DLi7hYqLQT0wLFl767Qh34ZsA/3WL -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:34 2025 by rpki-client