$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36322e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e36322e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: ZXCDluluGv3VExnfYXtOmtejawbaleGY+y3Me8+up2U= Subject key identifier: 18:A3:78:13:DB:60:79:ED:03:3E:B1:81:1D:D0:BE:9C:83:66:AE:53 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 47EB8A05AAA6E5784714A0ED284AAFA2420DB06F Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36322e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:40:32 +0000 ROA not before: Thu 17 Jul 2025 10:35:32 +0000 ROA not after: Thu 16 Jul 2026 10:40:32 +0000 asID: 395793 IP address blocks: 109.107.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:eb:8a:05:aa:a6:e5:78:47:14:a0:ed:28:4a:af:a2:42:0d:b0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:35:32 2025 GMT Not After : Jul 16 10:40:32 2026 GMT Subject: CN=18A37813DB6079ED033EB1811DD0BE9C8366AE53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a6:30:1d:fd:62:10:71:f1:52:c0:5d:56:d5: 52:48:a7:0a:fb:d5:98:ac:ee:98:0e:9e:75:f7:9f: 66:e4:96:6a:71:e6:ed:d7:d4:7a:0c:2f:37:d2:a9: 95:fd:b3:72:ae:3a:2e:e5:f3:f5:ee:40:57:fa:59: e7:28:0b:29:f2:86:42:69:cb:7c:0c:f8:0d:a1:69: ec:01:21:57:66:74:1e:05:42:a8:57:4b:47:90:17: 5c:e5:f9:1f:b6:3a:d2:49:db:fd:be:20:7e:36:a5: 43:ed:5b:e7:f8:59:bd:e3:ae:cd:81:0f:a3:b7:26: 48:59:2d:0f:fc:d3:96:26:56:29:fc:43:7a:35:ea: f9:56:a8:97:83:f3:c9:1d:cf:d1:63:99:d9:10:50: 05:1b:ce:35:53:13:d3:be:08:84:5e:9d:2a:cc:9c: 06:b5:2f:1d:83:a4:e9:a9:4a:ae:99:88:d0:99:e9: 3a:4e:b3:e6:f3:72:f5:8a:09:50:a9:0c:6f:d2:04: f1:82:c9:b1:2b:3b:54:6c:cd:b8:c4:5e:82:82:e3: f1:7e:ef:22:e1:be:34:59:d1:74:8d:54:06:06:dd: c7:74:be:8a:2a:7a:81:98:61:12:e9:4b:8a:b7:50: c5:f3:10:f1:a1:b7:1f:54:94:9d:3d:87:63:d6:ec: aa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A3:78:13:DB:60:79:ED:03:3E:B1:81:1D:D0:BE:9C:83:66:AE:53 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36322e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.62.0/24 Signature Algorithm: sha256WithRSAEncryption 40:05:d0:19:67:a5:73:6d:9f:ae:b3:95:c7:08:e6:01:bd:00: 3c:a4:b0:58:2b:5c:e2:8c:db:c3:8e:a7:71:80:d6:78:48:f6: c5:d0:69:d3:49:e1:c0:16:0e:6b:c6:a4:f5:b9:60:f1:8f:9a: d5:23:1c:58:2d:8e:21:58:ba:44:77:d6:0b:cf:a8:ec:ac:c0: 4b:c8:1f:d9:4c:de:6a:8f:bf:2a:53:49:24:f8:bf:f9:bd:ea: 57:f2:9b:1f:ab:c1:6c:9f:4a:eb:1a:66:de:1c:6d:2f:9e:8e: 24:d8:e3:33:ae:1f:9b:61:2e:2e:66:aa:49:6e:28:2d:4e:6b: 96:91:f8:23:b3:59:96:c1:ee:ae:df:99:96:57:74:74:34:1c: 5f:06:a0:db:37:72:6c:46:9f:7b:4f:c4:76:8b:62:6f:8b:a5: 59:d5:a1:67:c6:2d:d4:0c:c9:29:fd:38:7a:dd:a7:99:74:73: 66:7b:c2:09:83:34:1b:40:98:90:e4:36:da:d0:2c:1b:d0:6f: 31:51:a8:d6:e7:c5:b4:f5:f4:2c:92:a7:58:32:09:8a:79:4a: 62:e8:ad:e9:ca:1e:ac:60:90:ad:20:c0:2e:f4:66:42:31:70: ee:3c:34:12:c8:20:0c:c2:ae:4e:fa:1a:60:89:8b:f2:4a:f2: 6b:e6:de:9d -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUR+uKBaqm5XhHFKDtKEqvokINsG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM1MzJaFw0yNjA3MTYxMDQwMzJaMDMxMTAvBgNV BAMTKDE4QTM3ODEzREI2MDc5RUQwMzNFQjE4MTFERDBCRTlDODM2NkFFNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDpjAd/WIQcfFSwF1W1VJIpwr7 1Zis7pgOnnX3n2bklmpx5u3X1HoMLzfSqZX9s3KuOi7l8/XuQFf6WecoCynyhkJp y3wM+A2haewBIVdmdB4FQqhXS0eQF1zl+R+2OtJJ2/2+IH42pUPtW+f4Wb3jrs2B D6O3JkhZLQ/805YmVin8Q3o16vlWqJeD88kdz9FjmdkQUAUbzjVTE9O+CIRenSrM nAa1Lx2DpOmpSq6ZiNCZ6TpOs+bzcvWKCVCpDG/SBPGCybErO1RszbjEXoKC4/F+ 7yLhvjRZ0XSNVAYG3cd0vooqeoGYYRLpS4q3UMXzEPGhtx9UlJ09h2PW7Ko/AgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUGKN4E9tgee0DPrGBHdC+nINmrlMwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs+MA0GCSqG SIb3DQEBCwUAA4IBAQBABdAZZ6VzbZ+us5XHCOYBvQA8pLBYK1zijNvDjqdxgNZ4 SPbF0GnTSeHAFg5rxqT1uWDxj5rVIxxYLY4hWLpEd9YLz6jsrMBLyB/ZTN5qj78q U0kk+L/5vepX8psfq8Fsn0rrGmbeHG0vno4k2OMzrh+bYS4uZqpJbigtTmuWkfgj s1mWwe6u35mWV3R0NBxfBqDbN3JsRp97T8R2i2Jvi6VZ1aFnxi3UDMkp/Th63aeZ dHNme8IJgzQbQJiQ5Dba0Cwb0G8xUajW58W09fQskqdYMgmKeUpi6K3pyh6sYJCt IMAu9GZCMXDuPDQSyCAMwq5O+hpgiYvySvJr5t6d -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:05 2025 by rpki-client