$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e20383334.roa File: 33372e312e3232342e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: NXbmP2j+rQlUPPa7hPBE8kjgFmV11rNWGU9SSShFoFc= Subject key identifier: 60:D4:F8:2D:53:84:20:2D:69:75:1C:9B:D9:06:CA:85:41:F6:C5:CF Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 47415D9E348F35F40B873A13FF6B26B4920DE660 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e20383334.roa Signing time: Tue 26 Aug 2025 00:02:53 +0000 ROA not before: Mon 25 Aug 2025 23:57:53 +0000 ROA not after: Tue 25 Aug 2026 00:02:53 +0000 asID: 834 IP address blocks: 37.1.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 07:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:41:5d:9e:34:8f:35:f4:0b:87:3a:13:ff:6b:26:b4:92:0d:e6:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Aug 25 23:57:53 2025 GMT Not After : Aug 25 00:02:53 2026 GMT Subject: CN=60D4F82D5384202D69751C9BD906CA8541F6C5CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:c2:e3:12:fa:12:74:0a:86:63:ff:37:4e: 32:b3:1a:2c:e1:52:58:6d:72:1a:87:f5:13:bd:73: 43:f6:4d:f2:6e:e4:72:75:46:22:c1:c2:0d:09:bb: 94:b0:29:d3:9a:a2:1e:b1:c6:0d:ce:f7:00:ce:c3: 0d:8c:2e:0f:48:3e:9a:d3:1c:77:fe:97:42:c5:83: e5:51:5b:ac:6b:98:36:02:09:b5:e6:d0:5c:1e:e4: 95:5e:f5:72:d7:f0:89:37:94:96:1f:f2:4c:2d:82: 2c:cc:dd:7c:36:9e:80:cc:c7:35:af:70:f0:3b:83: 7a:09:38:b4:5d:cf:df:f7:84:97:02:1d:54:14:a8: 2b:47:54:2e:7c:ce:f8:99:72:4a:41:e4:ff:eb:7d: 07:65:a4:04:c6:1d:d5:b4:d0:de:e0:08:be:df:ea: 54:c2:52:3f:79:bd:31:fb:fb:15:4d:a1:4b:1b:95: 96:94:37:7e:9a:9b:6f:19:48:b9:a6:32:ce:5d:ee: 06:f1:eb:0c:95:a0:6f:8a:90:af:80:38:c0:d0:f2: 8f:dd:b1:17:cd:4b:ea:86:71:1f:38:61:d1:81:a2: ea:db:a1:b3:41:90:bf:d6:29:d3:ae:eb:63:0a:96: a4:83:27:53:41:f9:76:81:41:c9:e9:ee:20:da:a0: 29:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D4:F8:2D:53:84:20:2D:69:75:1C:9B:D9:06:CA:85:41:F6:C5:CF X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.224.0/24 Signature Algorithm: sha256WithRSAEncryption 74:54:e0:e1:f5:2e:42:32:d0:cf:38:9d:2e:8c:13:64:d9:67: a1:a5:7a:5b:e7:c7:2a:0a:dd:07:43:76:59:e2:5f:0b:3f:97: 20:f8:aa:df:7d:24:03:87:fb:ca:32:89:28:6a:75:69:35:5f: 74:4c:af:ae:7b:29:08:a3:cb:86:ca:a9:96:8b:60:ea:65:29: 46:fd:15:9f:56:92:dc:8e:3d:81:16:dd:69:d8:8e:66:af:c3: 99:e4:71:79:1a:5c:7b:99:f0:ff:4e:16:24:ab:95:3b:78:ae: 54:a8:c2:2d:43:93:a2:ea:f0:3a:12:f5:3b:81:77:d6:91:3e: 1e:f7:ad:2a:03:f0:68:0e:0b:da:30:50:54:2d:df:0b:c3:46: f6:94:03:97:52:c2:f3:67:4a:87:b1:52:2f:06:9f:1a:e0:0b: 95:50:a6:f3:1d:2b:02:11:9f:78:5e:5a:f7:95:20:37:63:f8: 7f:e5:e6:a2:2e:b7:0f:ab:62:29:4c:27:09:0b:c7:7b:1f:e0: 4d:91:d8:9c:ca:a7:b4:65:b7:67:71:9d:89:04:79:38:3c:69: 15:f5:bb:82:4c:1e:57:8d:f8:ad:b4:e6:0d:83:c8:4f:a3:54: ae:56:f3:c1:c0:77:a1:6a:33:65:a2:4d:c1:32:6c:03:18:0a: 78:21:37:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUR0FdnjSPNfQLhzoT/2smtJIN5mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA4MjUyMzU3NTNaFw0yNjA4MjUwMDAyNTNaMDMxMTAvBgNV BAMTKDYwRDRGODJENTM4NDIwMkQ2OTc1MUM5QkQ5MDZDQTg1NDFGNkM1Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMdcLjEvoSdAqGY/83TjKzGizh UlhtchqH9RO9c0P2TfJu5HJ1RiLBwg0Ju5SwKdOaoh6xxg3O9wDOww2MLg9IPprT HHf+l0LFg+VRW6xrmDYCCbXm0Fwe5JVe9XLX8Ik3lJYf8kwtgizM3Xw2noDMxzWv cPA7g3oJOLRdz9/3hJcCHVQUqCtHVC58zviZckpB5P/rfQdlpATGHdW00N7gCL7f 6lTCUj95vTH7+xVNoUsblZaUN36am28ZSLmmMs5d7gbx6wyVoG+KkK+AOMDQ8o/d sRfNS+qGcR84YdGBourbobNBkL/WKdOu62MKlqSDJ1NB+XaBQcnp7iDaoCkPAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUYNT4LVOEIC1pdRyb2QbKhUH2xc8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzEyZTMyMzIzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACUB4DANBgkqhkiG9w0BAQsFAAOC AQEAdFTg4fUuQjLQzzidLowTZNlnoaV6W+fHKgrdB0N2WeJfCz+XIPiq330kA4f7 yjKJKGp1aTVfdEyvrnspCKPLhsqplotg6mUpRv0Vn1aS3I49gRbdadiOZq/DmeRx eRpce5nw/04WJKuVO3iuVKjCLUOTourwOhL1O4F31pE+HvetKgPwaA4L2jBQVC3f C8NG9pQDl1LC82dKh7FSLwafGuALlVCm8x0rAhGfeF5a95UgN2P4f+Xmoi63D6ti KUwnCQvHex/gTZHYnMqntGW3Z3GdiQR5ODxpFfW7gkweV434rbTmDYPIT6NUrlbz wcB3oWozZaJNwTJsAxgKeCE3Lg== -----END CERTIFICATE-----Generated at Fri Sep 5 22:01:12 2025 by rpki-client