$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36312e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e36312e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: 0gIDeA4S8L0JOqulEVUJJMAnudhy70U2ODU5oj92FqA= Subject key identifier: F2:26:F0:78:DB:9A:2C:E3:76:28:7A:41:04:53:AE:3B:73:43:9A:17 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 142C6199D6AB746F6A2C851276C453BA53AFFF22 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36312e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:40:23 +0000 ROA not before: Thu 17 Jul 2025 10:35:23 +0000 ROA not after: Thu 16 Jul 2026 10:40:23 +0000 asID: 395793 IP address blocks: 109.107.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:2c:61:99:d6:ab:74:6f:6a:2c:85:12:76:c4:53:ba:53:af:ff:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:35:23 2025 GMT Not After : Jul 16 10:40:23 2026 GMT Subject: CN=F226F078DB9A2CE376287A410453AE3B73439A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e3:3c:87:4f:67:ce:f5:ab:5a:62:7f:53:12: e7:7b:34:14:dd:76:af:19:e0:af:b0:04:cc:6d:9d: 1a:30:a5:8a:11:80:f1:d9:a5:9c:b4:28:77:8a:97: d5:65:20:f8:24:17:75:fc:f6:bc:0e:08:9e:cc:15: 72:15:77:6e:aa:18:31:8c:08:46:b5:0c:f0:75:3e: 73:49:c9:ae:c6:2a:7a:67:f1:7f:43:90:ef:c1:7b: 39:fe:e6:2e:06:71:4a:f2:d4:16:a0:2c:4e:17:f0: 8c:c3:55:59:a0:9f:e6:1e:f9:71:8f:c4:c6:f0:f9: c3:5d:7a:54:48:b4:14:0b:61:6c:e5:e4:a3:e6:4e: dd:35:e2:88:9f:7f:7d:76:7e:d3:f5:bc:c5:8f:ff: 1a:09:d7:d4:06:e2:17:b1:51:26:ee:6f:73:34:e4: 41:a9:de:df:54:8d:11:b3:b8:3f:70:97:53:b9:66: f5:54:a4:57:0c:f8:29:bc:a5:56:7c:2d:49:66:5f: 45:61:64:67:01:81:28:b1:08:67:1d:9a:52:85:2b: 26:0d:03:98:37:0f:b1:87:ec:35:d7:7b:a3:0d:f1: a2:40:f9:94:e6:21:b1:0e:f7:ae:e3:4b:8d:0a:3e: b4:e1:f4:d3:90:49:a9:10:19:d5:7e:e9:e2:6c:e5: 44:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:26:F0:78:DB:9A:2C:E3:76:28:7A:41:04:53:AE:3B:73:43:9A:17 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36312e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.61.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b6:41:4a:b1:1d:7b:ed:c6:e7:51:f3:f9:57:28:91:21:f7: 89:c9:17:c9:dc:66:dc:bf:fb:a9:77:5c:e6:30:b5:6e:a7:78: fb:57:ae:10:19:fa:a4:b4:50:a9:18:1f:82:c2:1c:87:8e:2b: 9e:7d:7d:30:36:eb:04:24:26:24:ed:c0:f4:6c:e8:66:46:5d: 90:a6:d8:f9:11:93:5e:e9:ac:b2:a6:a1:d6:1c:92:65:b9:0d: e4:bd:e8:68:31:6b:13:3d:50:4c:10:84:b9:30:c2:d5:4e:c7: 2a:d9:3c:85:71:17:0a:0e:4a:94:35:c6:69:97:54:d6:8a:77: 13:4b:c9:2a:d4:00:d4:5e:42:53:43:c2:37:59:d9:47:2c:44: cc:01:f3:d7:50:f5:92:fd:ba:73:69:8c:ae:cf:0a:96:dc:df: 0e:f0:ae:5a:ca:f3:0b:00:d8:54:88:53:f1:10:26:0a:f6:90: 2a:c1:4c:3e:94:d2:94:e8:22:df:32:32:b7:10:c1:3c:df:f4: 86:10:af:c9:2b:2e:d5:99:7b:0c:5e:a2:71:d6:c7:80:ae:43: aa:02:bb:e0:c4:54:4d:d9:75:17:db:86:7f:03:bd:10:8a:fc: 1f:ec:db:cc:31:16:d8:a1:92:a8:c0:d7:16:68:9b:c5:98:8c: 20:6f:ee:e9 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUFCxhmdardG9qLIUSdsRTulOv/yIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM1MjNaFw0yNjA3MTYxMDQwMjNaMDMxMTAvBgNV BAMTKEYyMjZGMDc4REI5QTJDRTM3NjI4N0E0MTA0NTNBRTNCNzM0MzlBMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa4zyHT2fO9ataYn9TEud7NBTd dq8Z4K+wBMxtnRowpYoRgPHZpZy0KHeKl9VlIPgkF3X89rwOCJ7MFXIVd26qGDGM CEa1DPB1PnNJya7GKnpn8X9DkO/Bezn+5i4GcUry1BagLE4X8IzDVVmgn+Ye+XGP xMbw+cNdelRItBQLYWzl5KPmTt014oiff312ftP1vMWP/xoJ19QG4hexUSbub3M0 5EGp3t9UjRGzuD9wl1O5ZvVUpFcM+Cm8pVZ8LUlmX0VhZGcBgSixCGcdmlKFKyYN A5g3D7GH7DXXe6MN8aJA+ZTmIbEO967jS40KPrTh9NOQSakQGdV+6eJs5USBAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQU8ibweNuaLON2KHpBBFOuO3NDmhcwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs9MA0GCSqG SIb3DQEBCwUAA4IBAQBRtkFKsR177cbnUfP5VyiRIfeJyRfJ3Gbcv/upd1zmMLVu p3j7V64QGfqktFCpGB+CwhyHjiuefX0wNusEJCYk7cD0bOhmRl2Qptj5EZNe6ayy pqHWHJJluQ3kvehoMWsTPVBMEIS5MMLVTscq2TyFcRcKDkqUNcZpl1TWincTS8kq 1ADUXkJTQ8I3WdlHLETMAfPXUPWS/bpzaYyuzwqW3N8O8K5ayvMLANhUiFPxECYK 9pAqwUw+lNKU6CLfMjK3EME83/SGEK/JKy7VmXsMXqJx1seArkOqArvgxFRN2XUX 24Z/A70Qivwf7NvMMRbYoZKowNcWaJvFmIwgb+7p -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:09 2025 by rpki-client