$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20323037393934.roa File: 33372e312e3232362e302f32342d3234203d3e20323037393934.roa (raw, json) Hash identifier: TZsN/3dYToQduYadgdHDbeU8nO2Ql3qZp7M3cctP5IU= Subject key identifier: 66:6F:09:A3:44:84:A3:BB:13:DB:84:46:39:2E:D5:92:1A:66:83:C5 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5F2A2566AC2AD2085FFA5048C2C621A62A393267 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20323037393934.roa Signing time: Tue 02 Jun 2026 18:47:25 +0000 ROA not before: Tue 02 Jun 2026 18:42:25 +0000 ROA not after: Tue 01 Jun 2027 18:47:25 +0000 asID: 207994 IP address blocks: 37.1.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Jun 2026 13:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:2a:25:66:ac:2a:d2:08:5f:fa:50:48:c2:c6:21:a6:2a:39:32:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jun 2 18:42:25 2026 GMT Not After : Jun 1 18:47:25 2027 GMT Subject: CN=666F09A34484A3BB13DB8446392ED5921A6683C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:09:f7:3a:9c:b0:ab:cc:90:ec:8e:1c:6e:39: b5:75:ba:fd:31:95:5b:2f:a5:91:3e:0e:ae:06:2d: 5d:6e:f4:69:5b:ca:58:df:aa:76:ab:66:dc:da:77: 3a:2b:ef:12:83:f5:04:07:92:95:52:f1:8a:f0:8d: 93:59:c8:93:87:e5:93:bf:99:30:5d:d2:f2:d2:35: 8b:de:75:ba:eb:19:c0:6f:86:f3:40:06:a3:9d:79: b5:95:eb:fc:f1:7a:60:c3:d0:0d:df:93:1b:4f:62: c9:90:24:ad:4a:34:51:84:0d:84:f2:7d:e6:d4:9d: d1:7d:44:7a:39:fd:56:15:02:a6:61:33:57:85:10: fa:05:fd:18:92:b1:16:7f:88:ed:af:8a:08:df:0c: f1:9f:0e:84:2e:88:a1:0b:53:dd:ad:dc:15:2f:b9: 44:3e:39:ee:a5:3d:45:15:e6:9e:a3:b5:b1:1e:57: 83:53:1d:4c:1e:92:a4:2a:ca:fc:4b:8b:67:0b:8a: 6a:ad:ed:8b:b5:a7:99:4b:3c:71:af:da:f7:7d:fe: 3b:ff:c6:81:1a:33:36:26:52:50:6b:10:98:66:26: 35:a2:45:14:5b:ba:eb:2e:2a:49:c3:12:f6:96:fa: 4d:8d:76:83:8b:e9:41:bc:1c:66:09:aa:44:33:c0: 6f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6F:09:A3:44:84:A3:BB:13:DB:84:46:39:2E:D5:92:1A:66:83:C5 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20323037393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.226.0/24 Signature Algorithm: sha256WithRSAEncryption 37:a0:d8:6e:cb:09:8d:ba:84:b2:b4:c9:8b:02:6a:33:7b:68: 45:96:56:06:37:fd:d0:b2:25:81:9a:4a:ef:48:d2:33:d0:63: 05:c7:b7:dc:57:48:b3:a3:a4:44:57:1b:8b:47:49:a5:00:ef: 3d:ea:77:c9:64:2f:86:5b:ac:f5:07:a0:18:12:1b:c5:40:81: f0:7f:e1:b5:47:2e:b5:f3:72:98:a6:f5:db:91:00:f7:bc:9b: db:2a:cf:9e:a0:16:0d:76:c0:bb:95:a5:de:07:7b:9c:fb:e2: 9e:03:e8:b2:92:62:32:3e:55:e8:58:95:50:b9:cc:67:b4:a0: 08:66:f0:4d:94:f9:ff:38:fb:50:09:29:fd:68:86:9f:25:a0: 9a:ea:a7:ed:f3:0c:c9:d6:2e:59:8d:2b:8f:fa:7c:98:f9:41: 25:5f:04:16:4b:1a:ea:40:82:f1:06:ab:f7:fd:64:47:76:6c: 4e:c9:12:9c:94:ab:1f:59:1c:fb:cc:39:96:da:ed:00:82:a8: c8:05:c9:d1:df:1f:4e:25:28:79:71:fe:d8:58:7c:5d:d1:6b: 30:91:96:62:8c:dd:ed:77:e4:fe:30:16:3f:88:f6:40:37:9f: 08:bf:15:cb:ac:7c:2a:6c:a9:43:0e:e5:40:ae:ae:4c:c0:e0: 6c:4f:f8:24 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUXyolZqwq0ghf+lBIwsYhpio5MmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA2MDIxODQyMjVaFw0yNzA2MDExODQ3MjVaMDMxMTAvBgNV BAMTKDY2NkYwOUEzNDQ4NEEzQkIxM0RCODQ0NjM5MkVENTkyMUE2NjgzQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqCfc6nLCrzJDsjhxuObV1uv0x lVsvpZE+Dq4GLV1u9GlbyljfqnarZtzadzor7xKD9QQHkpVS8YrwjZNZyJOH5ZO/ mTBd0vLSNYvedbrrGcBvhvNABqOdebWV6/zxemDD0A3fkxtPYsmQJK1KNFGEDYTy febUndF9RHo5/VYVAqZhM1eFEPoF/RiSsRZ/iO2vigjfDPGfDoQuiKELU92t3BUv uUQ+Oe6lPUUV5p6jtbEeV4NTHUwekqQqyvxLi2cLimqt7Yu1p5lLPHGv2vd9/jv/ xoEaMzYmUlBrEJhmJjWiRRRbuusuKknDEvaW+k2NdoOL6UG8HGYJqkQzwG/RAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUZm8Jo0SEo7sT24RGOS7Vkhpmg8UwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzYyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMwMzczOTM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAlAeIwDQYJKoZIhvcN AQELBQADggEBADeg2G7LCY26hLK0yYsCajN7aEWWVgY3/dCyJYGaSu9I0jPQYwXH t9xXSLOjpERXG4tHSaUA7z3qd8lkL4ZbrPUHoBgSG8VAgfB/4bVHLrXzcpim9duR APe8m9sqz56gFg12wLuVpd4He5z74p4D6LKSYjI+VehYlVC5zGe0oAhm8E2U+f84 +1AJKf1ohp8loJrqp+3zDMnWLlmNK4/6fJj5QSVfBBZLGupAgvEGq/f9ZEd2bE7J EpyUqx9ZHPvMOZba7QCCqMgFydHfH04lKHlx/thYfF3RazCRlmKM3e135P4wFj+I 9kA3nwi/FcusfCpsqUMO5UCurkzA4GxP+CQ= -----END CERTIFICATE-----Generated at Thu Jun 4 05:13:18 2026 by rpki-client