$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/3136342e33372e3234302e302f32302d3234203d3e20383334.roa File: 3136342e33372e3234302e302f32302d3234203d3e20383334.roa (raw, json) Hash identifier: HAOK9ej+m/nCF/t1oqful0BuJy47oKdkMfCg7YB4cfk= Subject key identifier: 84:E6:C2:EF:E6:B7:D4:3F:B4:80:E6:58:5D:A2:52:F7:0B:72:BB:7F Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 63F9541C82DF7E8E2C4DD52FD3D562D1BBF6B069 Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/3136342e33372e3234302e302f32302d3234203d3e20383334.roa Signing time: Fri 26 Jun 2026 02:43:43 +0000 ROA not before: Fri 26 Jun 2026 02:38:43 +0000 ROA not after: Fri 25 Jun 2027 02:43:43 +0000 asID: 834 IP address blocks: 164.37.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Jun 2026 20:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f9:54:1c:82:df:7e:8e:2c:4d:d5:2f:d3:d5:62:d1:bb:f6:b0:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Jun 26 02:38:43 2026 GMT Not After : Jun 25 02:43:43 2027 GMT Subject: CN=84E6C2EFE6B7D43FB480E6585DA252F70B72BB7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f3:3c:56:b9:9f:d0:f1:77:9c:d8:53:d8:aa: f0:3d:ba:64:49:73:f1:d9:de:a1:a6:ea:86:43:60: e3:0f:1e:89:9a:8b:fa:9d:ed:08:56:24:0b:c6:cd: 4e:c3:eb:e4:58:c8:ca:98:18:b9:e0:1a:a9:65:07: 56:e2:90:93:06:71:9f:0f:10:e1:84:fe:c5:a7:7c: 2c:c1:c2:51:b4:dc:83:26:10:3b:77:03:ba:fc:12: 58:94:14:b4:c3:2d:ce:34:fd:81:77:af:1b:0e:f2: 63:2b:43:95:b5:85:f3:63:04:f4:69:0c:0a:ed:32: 13:94:81:d1:92:8d:6f:f8:f8:c2:bd:56:07:a2:ff: f3:2c:db:22:97:7c:ca:ca:ef:09:f4:c6:6e:61:87: 43:e4:2c:f2:c5:ac:9c:3c:d1:ff:44:9b:41:12:cd: 04:b7:ce:2b:5f:87:a1:44:f5:5e:98:07:4c:20:b7: 82:5f:98:8b:8d:d4:58:c4:d4:f1:1e:42:c4:e6:0f: 51:99:e0:13:9d:66:88:71:7a:b6:b8:bf:81:3b:49: 64:58:ee:80:48:0a:dc:31:e1:41:a9:f1:35:2f:83: df:bd:f9:a7:9b:f2:9d:1e:00:5d:50:7c:43:9a:67: 50:05:2c:2a:48:e3:c5:81:53:8b:46:cb:7a:60:92: 30:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E6:C2:EF:E6:B7:D4:3F:B4:80:E6:58:5D:A2:52:F7:0B:72:BB:7F X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/3136342e33372e3234302e302f32302d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.37.240.0/20 Signature Algorithm: sha256WithRSAEncryption c1:c7:c8:dc:4a:38:a0:67:fc:b6:f1:d3:af:0f:0b:08:92:e1: d7:b2:78:84:cb:f1:84:a9:d0:17:1c:af:a8:b9:00:0b:52:f1: 15:65:1c:50:83:cd:07:d0:0b:93:51:d7:3c:86:21:a9:e9:1d: d5:9d:94:c1:31:a5:94:6f:67:7f:f4:5c:35:c1:0f:b2:96:9a: 48:f0:c7:7d:19:cf:60:41:bb:dc:d6:e8:5b:a0:8c:85:bf:ce: f9:33:90:d2:a8:5f:91:59:8f:b8:fa:52:6c:b1:e3:74:40:71: 20:98:69:b1:df:44:55:8d:8e:c3:3d:da:c1:e5:8f:8f:7a:28: 22:c5:28:59:af:c7:8e:dc:04:c5:db:b9:2a:b3:82:a4:43:58: b5:76:75:c9:a4:aa:12:ab:83:1f:35:a7:23:6f:ae:01:29:68: e9:43:43:61:14:d3:9d:09:81:0d:4a:db:0b:9e:a0:fd:d1:14: b4:f0:43:d0:78:f9:55:0b:5c:db:7f:19:26:03:fa:3f:b0:b4: b5:91:b5:2b:c9:a6:42:40:92:06:d2:2b:f0:6f:5e:5e:a9:88: 59:e1:8d:d3:ae:09:e5:8b:c4:39:ea:76:76:79:78:ba:e3:20: a9:79:e5:66:f2:9b:6a:c0:9a:1e:47:36:af:6e:9a:d0:3f:cf: e5:22:cb:65 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUY/lUHILffo4sTdUv09Vi0bv2sGkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjA2MjYwMjM4NDNaFw0yNzA2MjUwMjQzNDNaMDMxMTAvBgNV BAMTKDg0RTZDMkVGRTZCN0Q0M0ZCNDgwRTY1ODVEQTI1MkY3MEI3MkJCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT8zxWuZ/Q8Xec2FPYqvA9umRJ c/HZ3qGm6oZDYOMPHomai/qd7QhWJAvGzU7D6+RYyMqYGLngGqllB1bikJMGcZ8P EOGE/sWnfCzBwlG03IMmEDt3A7r8EliUFLTDLc40/YF3rxsO8mMrQ5W1hfNjBPRp DArtMhOUgdGSjW/4+MK9Vgei//Ms2yKXfMrK7wn0xm5hh0PkLPLFrJw80f9Em0ES zQS3zitfh6FE9V6YB0wgt4JfmIuN1FjE1PEeQsTmD1GZ4BOdZohxera4v4E7SWRY 7oBICtwx4UGp8TUvg9+9+aeb8p0eAF1QfEOaZ1AFLCpI48WBU4tGy3pgkjD7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUhObC7+a31D+0gOZYXaJS9wtyu38wHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzMxMzYzNDJlMzMzNzJlMzIzNDMwMmUzMDJmMzIz MDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEpCXwMA0GCSqGSIb3DQEB CwUAA4IBAQDBx8jcSjigZ/y28dOvDwsIkuHXsniEy/GEqdAXHK+ouQALUvEVZRxQ g80H0AuTUdc8hiGp6R3VnZTBMaWUb2d/9Fw1wQ+ylppI8Md9Gc9gQbvc1uhboIyF v875M5DSqF+RWY+4+lJsseN0QHEgmGmx30RVjY7DPdrB5Y+PeigixShZr8eO3ATF 27kqs4KkQ1i1dnXJpKoSq4MfNacjb64BKWjpQ0NhFNOdCYENStsLnqD90RS08EPQ ePlVC1zbfxkmA/o/sLS1kbUryaZCQJIG0ivwb15eqYhZ4Y3Trgnli8Q56nZ2eXi6 4yCpeeVm8ptqwJoeRzavbprQP8/lIstl -----END CERTIFICATE-----Generated at Mon Jun 29 10:00:18 2026 by rpki-client