$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36332e302f32342d3234203d3e20333935373933.roa File: 3130392e3130372e36332e302f32342d3234203d3e20333935373933.roa (raw, json) Hash identifier: PveNTyAiFpTO0dykJ2US7r/rfpHrioncoO+283KxcA0= Subject key identifier: 2C:F9:A2:51:28:27:6B:33:84:0B:20:EB:04:1A:BE:B9:49:16:B8:D2 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7840A1F5523AEE8656BC949AA5533FEA45DD161F Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36332e302f32342d3234203d3e20333935373933.roa Signing time: Thu 17 Jul 2025 10:40:43 +0000 ROA not before: Thu 17 Jul 2025 10:35:43 +0000 ROA not after: Thu 16 Jul 2026 10:40:43 +0000 asID: 395793 IP address blocks: 109.107.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:40:a1:f5:52:3a:ee:86:56:bc:94:9a:a5:53:3f:ea:45:dd:16:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 17 10:35:43 2025 GMT Not After : Jul 16 10:40:43 2026 GMT Subject: CN=2CF9A25128276B33840B20EB041ABEB94916B8D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:92:48:a8:ad:90:71:d5:1c:44:46:65:27:47: ca:01:e7:0b:cb:c8:7e:6f:cb:fb:be:11:c5:ef:b5: 0e:c2:77:b7:f3:dc:12:40:84:23:03:a5:c6:33:28: eb:d6:79:ee:6a:03:f6:08:df:34:15:f7:eb:ae:83: 37:5d:de:a6:ae:ce:10:1a:e4:42:2a:22:17:d1:48: 65:25:ad:f0:ff:30:7b:ea:ed:e1:93:fe:e9:b6:9b: e3:1e:5d:46:4e:de:fe:9e:5a:06:a8:e9:4c:73:89: 22:ee:1b:2b:b4:37:fa:b2:88:70:43:1a:7b:db:4c: f8:62:e0:07:20:57:67:10:19:f0:48:c2:17:b5:95: 98:41:45:ab:5f:61:7a:c4:b4:de:ca:b8:c2:d3:d3: 5f:6c:a1:de:ab:c0:2b:6d:79:b3:07:60:85:c0:6d: 85:81:b9:7d:d2:df:8d:59:aa:49:00:c9:9d:1f:d8: 83:98:b6:25:35:22:ff:b7:8a:7e:49:08:84:7e:0a: b9:1f:39:8a:64:6b:64:43:ca:fc:b6:32:3e:1f:2a: 79:65:f1:ee:7e:ab:55:68:26:29:a3:6b:74:8a:e1: c8:fd:be:ca:44:35:ac:97:e1:28:1f:fa:76:82:f7: 01:83:a0:de:5d:70:7f:c0:ad:85:fa:2f:fe:82:6e: f7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F9:A2:51:28:27:6B:33:84:0B:20:EB:04:1A:BE:B9:49:16:B8:D2 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e36332e302f32342d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.63.0/24 Signature Algorithm: sha256WithRSAEncryption 81:fb:81:54:48:e2:1c:77:f9:bf:e3:34:2a:b4:30:10:ac:4c: a4:1d:ca:be:76:c3:75:2a:75:ec:80:d3:3f:30:ec:03:ae:ae: 7b:d0:f6:0d:97:85:3d:3d:31:86:87:35:d6:1f:33:86:c2:00: f4:5e:7a:0e:e3:0e:1e:18:a5:75:41:98:16:3a:c1:f9:45:b4: 1a:9a:c1:24:86:a1:4a:6d:ac:39:6e:df:62:9e:34:d3:55:f0: 0a:28:7f:98:95:0f:0f:b7:9f:67:ba:94:17:75:09:89:18:7a: 9b:9d:37:99:8d:b0:be:8a:c2:4c:01:f5:fe:b5:a0:cc:04:40: 08:21:ea:25:d3:56:3d:89:af:46:2c:71:1e:2d:fa:cd:ce:0c: 46:47:3c:f3:8f:e7:dd:bf:2a:f1:d2:bf:84:b6:da:54:db:43: 89:ff:e1:91:f6:0e:45:27:d4:ec:cd:d6:c5:61:75:7f:f9:29: f5:89:ab:3d:c7:42:b5:f7:b9:43:b0:c5:d4:86:57:7a:25:0a: ac:87:26:2d:e0:fb:8c:1d:be:6d:83:c6:f5:0f:db:0a:62:be: 58:47:67:c9:11:a2:ae:90:91:cd:ff:8a:c0:1b:eb:ac:e4:b8: f1:4d:78:ff:34:05:58:7d:05:62:64:af:d5:39:8d:4f:13:5a: c2:ba:0f:0d -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUeECh9VI67oZWvJSapVM/6kXdFh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MTcxMDM1NDNaFw0yNjA3MTYxMDQwNDNaMDMxMTAvBgNV BAMTKDJDRjlBMjUxMjgyNzZCMzM4NDBCMjBFQjA0MUFCRUI5NDkxNkI4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCykkiorZBx1RxERmUnR8oB5wvL yH5vy/u+EcXvtQ7Cd7fz3BJAhCMDpcYzKOvWee5qA/YI3zQV9+uugzdd3qauzhAa 5EIqIhfRSGUlrfD/MHvq7eGT/um2m+MeXUZO3v6eWgao6UxziSLuGyu0N/qyiHBD GnvbTPhi4AcgV2cQGfBIwhe1lZhBRatfYXrEtN7KuMLT019sod6rwCttebMHYIXA bYWBuX3S341ZqkkAyZ0f2IOYtiU1Iv+3in5JCIR+CrkfOYpka2RDyvy2Mj4fKnll 8e5+q1VoJimja3SK4cj9vspENayX4Sgf+naC9wGDoN5dcH/ArYX6L/6CbvchAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQULPmiUSgnazOECyDrBBq+uUkWuNIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbWs/MA0GCSqG SIb3DQEBCwUAA4IBAQCB+4FUSOIcd/m/4zQqtDAQrEykHcq+dsN1KnXsgNM/MOwD rq570PYNl4U9PTGGhzXWHzOGwgD0XnoO4w4eGKV1QZgWOsH5RbQamsEkhqFKbaw5 bt9injTTVfAKKH+YlQ8Pt59nupQXdQmJGHqbnTeZjbC+isJMAfX+taDMBEAIIeol 01Y9ia9GLHEeLfrNzgxGRzzzj+fdvyrx0r+EttpU20OJ/+GR9g5FJ9TszdbFYXV/ +Sn1ias9x0K197lDsMXUhld6JQqshyYt4PuMHb5tg8b1D9sKYr5YR2fJEaKukJHN /4rAG+us5LjxTXj/NAVYfQViZK/VOY1PE1rCug8N -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:40 2025 by rpki-client