$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35392e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e35392e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: 25FzUB6TyNgmctynARDYxPoyUB2hNcbLfLxFEThqgTQ= Subject key identifier: 0E:AE:3F:04:75:12:D3:AB:76:EF:81:DF:C1:5C:C3:43:50:52:7B:48 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7AD75EB1C752B81212A7994E4C0C8E36703E2918 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35392e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:40:00 +0000 ROA not before: Thu 17 Jul 2025 10:35:00 +0000 ROA not after: Thu 16 Jul 2026 10:40:00 +0000 asID: 395793 IP address blocks: 109.107.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d7:5e:b1:c7:52:b8:12:12:a7:99:4e:4c:0c:8e:36:70:3e:29:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:35:00 2025 GMT Not After : Jul 16 10:40:00 2026 GMT Subject: CN=0EAE3F047512D3AB76EF81DFC15CC34350527B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:03:75:c9:a7:65:97:64:fb:95:fa:33:ea: a5:d8:af:e9:fe:57:ed:7d:f9:0e:87:35:68:dc:81: 1a:33:db:43:d3:3f:5d:46:b9:74:12:0e:ee:50:03: 61:a0:b9:88:de:7f:f3:ab:94:96:86:16:2d:d5:6d: 92:48:4a:91:92:ba:99:04:8b:56:35:3b:3d:97:2f: ed:bc:3e:94:a0:d5:cc:6a:2e:a1:a9:ec:e5:64:ab: d7:a4:ff:4e:a1:99:b7:3a:98:f8:5c:1a:88:38:fc: 6a:30:58:64:b6:1d:50:be:f0:76:3b:0f:3b:80:2c: 65:5c:22:90:bc:09:ee:78:9c:f6:29:93:09:a1:b1: 53:d2:37:c2:6d:63:ce:49:29:81:d5:3b:d5:a4:48: af:c4:bc:b2:cc:52:c5:30:0e:ff:71:69:32:21:87: 8a:1c:bc:9a:98:c0:4f:2f:d8:03:bb:af:dc:42:7d: 7c:ed:c8:74:fa:c3:34:02:b6:21:ed:10:d9:24:07: e8:2f:27:91:4e:7c:0b:86:bc:09:6f:ef:1a:23:ff: a2:71:2e:5a:1b:61:bf:c3:c3:ff:e1:0f:5f:80:2a: 39:f0:57:69:3a:8a:e6:a5:aa:71:b1:94:b5:0a:1d: 65:de:10:d4:af:b3:c7:f5:52:4d:13:2e:30:9d:14: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AE:3F:04:75:12:D3:AB:76:EF:81:DF:C1:5C:C3:43:50:52:7B:48 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35392e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.59.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:3e:91:1d:5a:ac:19:29:3b:c2:d0:e1:31:29:5e:b4:bb:01: 03:b1:9e:6a:3e:fa:e7:0a:a4:5e:7c:99:68:80:46:b4:3e:3c: bf:65:30:f2:20:86:17:3b:fb:b6:62:f3:f5:c2:e4:1d:d3:69: ec:8f:02:d8:de:a5:20:ad:60:cd:b2:58:a4:82:b4:09:62:6e: 00:c8:ef:9d:be:0b:40:00:39:ec:92:06:e8:fe:75:90:9d:9a: 84:9d:a2:c7:d7:a9:43:75:8f:cd:be:08:b4:22:1f:b6:3b:f3: 2b:92:e8:d4:f8:8b:ac:97:67:9b:16:40:91:83:34:75:8f:a8: ee:cd:c3:55:0d:f5:2d:0d:1f:b7:e8:c6:aa:e5:6f:20:6a:6d: 1a:c4:36:88:18:a5:39:e6:35:8e:10:a9:68:93:e5:a8:6b:5c: b5:b5:29:8a:a7:21:a5:ce:f7:93:ee:0e:11:83:f8:6f:84:e9: 9f:34:68:0b:13:d4:a9:98:de:e2:98:67:13:96:da:0d:ad:62: 86:ad:cb:52:0d:41:d6:e0:18:81:ff:54:c8:f7:95:09:d6:f1: db:f8:43:59:12:08:c4:b1:3c:90:60:cd:fb:9c:be:c2:85:53: 38:09:d0:01:9a:0a:ab:3a:48:1f:95:36:8b:b9:9e:60:ee:5e: 39:d7:5e:fd -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUetdescdSuBISp5lOTAyONnA+KRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM1MDBaFw0yNjA3MTYxMDQwMDBaMDMxMTAvBgNV BAMTKDBFQUUzRjA0NzUxMkQzQUI3NkVGODFERkMxNUNDMzQzNTA1MjdCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxsQN1yadll2T7lfoz6qXYr+n+ V+19+Q6HNWjcgRoz20PTP11GuXQSDu5QA2GguYjef/OrlJaGFi3VbZJISpGSupkE i1Y1Oz2XL+28PpSg1cxqLqGp7OVkq9ek/06hmbc6mPhcGog4/GowWGS2HVC+8HY7 DzuALGVcIpC8Ce54nPYpkwmhsVPSN8JtY85JKYHVO9WkSK/EvLLMUsUwDv9xaTIh h4ocvJqYwE8v2AO7r9xCfXztyHT6wzQCtiHtENkkB+gvJ5FOfAuGvAlv7xoj/6Jx LlobYb/Dw//hD1+AKjnwV2k6iualqnGxlLUKHWXeENSvs8f1Uk0TLjCdFOQpAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUDq4/BHUS06t274HfwVzDQ1BSe0gwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs7MA0GCSqG SIb3DQEBCwUAA4IBAQBKPpEdWqwZKTvC0OExKV60uwEDsZ5qPvrnCqRefJlogEa0 Pjy/ZTDyIIYXO/u2YvP1wuQd02nsjwLY3qUgrWDNslikgrQJYm4AyO+dvgtAADns kgbo/nWQnZqEnaLH16lDdY/Nvgi0Ih+2O/MrkujU+Iusl2ebFkCRgzR1j6juzcNV DfUtDR+36Maq5W8gam0axDaIGKU55jWOEKlok+Woa1y1tSmKpyGlzveT7g4Rg/hv hOmfNGgLE9SpmN7imGcTltoNrWKGrctSDUHW4BiB/1TI95UJ1vHb+ENZEgjEsTyQ YM37nL7ChVM4CdABmgqrOkgflTaLuZ5g7l451179 -----END CERTIFICATE-----Generated at Sun Jul 20 11:30:26 2025 by rpki-client