$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232382e302f32342d3234203d3e203631333137.roa File: 33372e312e3232382e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: QoaWyl1D0AxLauE0a3yvh5kqVFmOGcmXwoZTrDqEmDs= Subject key identifier: E6:DC:02:64:33:5F:7A:45:D6:C5:AB:10:48:C4:C8:B0:52:AC:D5:6C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 38F8161C0C0E5D4DC0010720B90BE2A2528690FC Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232382e302f32342d3234203d3e203631333137.roa Signing time: Tue 09 Sep 2025 11:55:00 +0000 ROA not before: Tue 09 Sep 2025 11:50:00 +0000 ROA not after: Tue 08 Sep 2026 11:55:00 +0000 asID: 61317 IP address blocks: 37.1.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Sep 2025 13:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f8:16:1c:0c:0e:5d:4d:c0:01:07:20:b9:0b:e2:a2:52:86:90:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 9 11:50:00 2025 GMT Not After : Sep 8 11:55:00 2026 GMT Subject: CN=E6DC0264335F7A45D6C5AB1048C4C8B052ACD56C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b9:1b:77:b0:2c:86:c7:68:db:25:1c:65:b1: b7:bf:a8:91:2c:1f:32:cc:d3:ff:1a:bc:2e:9e:54: d8:57:d8:fb:68:02:89:f1:76:19:6e:7e:53:74:ab: 42:00:ce:80:26:d6:63:05:30:90:0b:54:5c:9d:1a: 5a:14:ce:e9:b4:40:1c:2a:23:26:76:e6:62:1c:59: e3:b1:91:2b:a2:ad:a4:13:61:7a:57:20:26:e4:dc: 89:9f:6f:a8:da:15:60:77:37:61:e8:15:2c:b0:8a: 5d:07:87:da:e5:24:b8:b7:c6:7f:ed:0b:e5:b8:77: 3b:37:dd:08:0d:fc:57:49:13:a8:60:91:91:f5:84: 36:47:3e:6a:33:1b:a0:6d:35:93:cc:17:e2:f3:ec: da:fb:1f:54:fd:ea:2a:55:bd:5c:44:03:7c:71:9f: 61:d4:a8:38:df:6d:9e:c8:c8:45:36:d7:b0:0d:30: 29:20:a3:8d:47:66:77:03:39:ac:aa:90:c0:3c:5a: 19:f9:ff:08:58:04:e7:a5:f1:55:95:14:28:0b:d7: 93:ee:41:e8:1b:42:73:0a:cd:d4:4f:3d:ae:de:c7: e3:68:b8:55:82:69:d9:4a:71:12:b3:e2:0d:63:0e: 92:23:1a:27:a0:38:12:99:f5:63:36:2c:b6:03:8b: f5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DC:02:64:33:5F:7A:45:D6:C5:AB:10:48:C4:C8:B0:52:AC:D5:6C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232382e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.228.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:33:28:54:84:fa:c7:f3:52:c1:d7:fd:ff:58:78:01:ef:c3: 72:02:2f:96:1f:90:cc:20:4c:1f:be:2f:1b:96:7a:27:ab:db: f6:38:b1:8b:36:e1:de:34:2f:73:2d:42:73:ea:e8:bb:ff:d2: f3:56:6b:73:f7:32:61:90:58:45:5b:91:6b:07:d7:d7:34:f4: 43:d0:77:06:f2:4e:8c:9b:7d:3c:e7:d4:a7:f9:d5:d7:94:8e: 03:e9:37:2f:39:72:7e:d5:62:c3:3d:f5:54:93:e6:4b:e0:1c: c4:19:36:62:59:e5:14:9c:ea:c3:dd:f2:0e:d1:61:d9:39:bc: 48:44:27:0f:2a:4d:f3:2f:04:3a:97:3d:4e:61:fd:1f:8a:1b: f4:7f:fa:3c:eb:0a:62:e2:c9:e0:eb:55:5b:e5:f0:0a:72:60: 03:ab:0b:82:30:26:0f:90:80:f4:43:56:68:68:f6:b2:8b:d5: 83:66:87:b3:44:19:22:a7:7b:a1:ef:a2:9e:f6:24:28:f0:7a: 4b:a4:e6:2b:37:a3:fd:ed:b6:7b:6f:07:ab:2e:8e:d5:93:89: 58:a1:16:bc:37:e0:de:0f:77:e5:d5:27:8e:04:6c:f5:af:a0: 05:60:93:60:e7:99:63:8a:93:40:c2:0d:ef:dc:1b:62:a4:1a: 20:2d:c8:b7 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUOPgWHAwOXU3AAQcguQviolKGkPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MDkxMTUwMDBaFw0yNjA5MDgxMTU1MDBaMDMxMTAvBgNV BAMTKEU2REMwMjY0MzM1RjdBNDVENkM1QUIxMDQ4QzRDOEIwNTJBQ0Q1NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyuRt3sCyGx2jbJRxlsbe/qJEs HzLM0/8avC6eVNhX2PtoAonxdhluflN0q0IAzoAm1mMFMJALVFydGloUzum0QBwq IyZ25mIcWeOxkSuiraQTYXpXICbk3Imfb6jaFWB3N2HoFSywil0Hh9rlJLi3xn/t C+W4dzs33QgN/FdJE6hgkZH1hDZHPmozG6BtNZPMF+Lz7Nr7H1T96ipVvVxEA3xx n2HUqDjfbZ7IyEU217ANMCkgo41HZncDOayqkMA8Whn5/whYBOel8VWVFCgL15Pu QegbQnMKzdRPPa7ex+NouFWCadlKcRKz4g1jDpIjGiegOBKZ9WM2LLYDi/VXAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU5twCZDNfekXWxasQSMTIsFKs1WwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzgyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHkMA0GCSqGSIb3DQEB CwUAA4IBAQAfMyhUhPrH81LB1/3/WHgB78NyAi+WH5DMIEwfvi8blnonq9v2OLGL NuHeNC9zLUJz6ui7/9LzVmtz9zJhkFhFW5FrB9fXNPRD0HcG8k6Mm30859Sn+dXX lI4D6TcvOXJ+1WLDPfVUk+ZL4BzEGTZiWeUUnOrD3fIO0WHZObxIRCcPKk3zLwQ6 lz1OYf0fihv0f/o86wpi4sng61Vb5fAKcmADqwuCMCYPkID0Q1ZoaPayi9WDZoez RBkip3uh76Ke9iQo8HpLpOYrN6P97bZ7bwerLo7Vk4lYoRa8N+DeD3fl1SeOBGz1 r6AFYJNg55ljipNAwg3v3BtipBogLci3 -----END CERTIFICATE-----Generated at Thu Sep 18 04:02:29 2025 by rpki-client