$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20313533363232.roa File: 33372e3233302e35302e302f32342d3234203d3e20313533363232.roa (raw, json) Hash identifier: sVaijaJ55f0G2GMi/op826fXEvbmAkw0kCy8Q/9B698= Subject key identifier: FD:44:9E:DE:82:A2:57:9A:C5:D1:09:F0:EC:3C:D8:A5:1A:23:4E:21 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 35CFC8E891D8C82C5BCAB2E9FE32F84709845D22 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20313533363232.roa Signing time: Wed 20 May 2026 07:02:49 +0000 ROA not before: Wed 20 May 2026 06:57:49 +0000 ROA not after: Wed 19 May 2027 07:02:49 +0000 asID: 153622 IP address blocks: 37.230.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 May 2026 21:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:cf:c8:e8:91:d8:c8:2c:5b:ca:b2:e9:fe:32:f8:47:09:84:5d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 20 06:57:49 2026 GMT Not After : May 19 07:02:49 2027 GMT Subject: CN=FD449EDE82A2579AC5D109F0EC3CD8A51A234E21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a3:55:76:6a:f3:30:be:55:4e:8c:80:60:75: 49:b3:96:1b:7b:81:d6:f8:f1:cd:9c:e3:2a:c9:49: 93:dc:2c:51:de:e3:53:5c:63:fe:d1:b1:6d:38:94: de:27:8f:4b:e5:ba:78:04:83:6d:ac:e8:1a:eb:02: 82:f6:04:6a:39:8f:2c:8f:e7:ad:c9:d7:02:65:f7: b1:44:a6:f2:78:4a:5e:2a:04:eb:7b:2c:e4:6e:34: 71:24:da:f4:39:1d:72:54:78:b7:d5:d6:42:1b:c5: 23:bb:cc:cb:d1:1c:f6:a3:cd:d7:87:79:11:74:79: 3a:58:27:23:a7:25:63:83:70:b0:5e:34:0c:b9:0f: 53:f8:6a:54:bc:dc:01:17:8c:56:1e:bf:82:89:fa: 19:bb:8d:bb:28:04:49:ab:bc:ac:3e:3c:44:4a:e4: 96:41:83:15:5e:56:21:8b:7a:e4:62:7f:e9:d3:b8: d9:d4:fd:53:9b:4a:62:cd:28:51:4f:1b:09:ad:88: 30:df:b9:22:79:1f:d2:d5:90:18:48:06:1d:2b:ed: cd:f1:e9:dc:80:11:f1:e6:b1:f7:f1:ff:c6:e8:eb: be:07:6e:ae:59:e6:ae:5b:12:a7:32:f9:4b:3c:f8: e8:78:1d:75:06:36:4f:b9:c5:77:ea:f3:c7:86:7b: 87:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:44:9E:DE:82:A2:57:9A:C5:D1:09:F0:EC:3C:D8:A5:1A:23:4E:21 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20313533363232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.50.0/24 Signature Algorithm: sha256WithRSAEncryption 68:f8:bf:43:4a:0e:38:92:47:c6:02:a1:2b:1b:db:8c:6a:82: 67:8a:a9:71:f4:4c:9a:95:33:b6:b1:5e:f4:b4:18:2b:20:fd: 62:2c:8c:02:3f:12:f4:0b:e5:3c:9f:48:41:05:88:af:11:9d: 03:59:a7:8e:57:de:0e:d1:cf:22:b7:59:a6:46:ca:7e:1e:ca: 6e:6a:05:66:11:56:4e:75:4b:f8:fc:d6:65:78:6a:1b:c4:e4: 31:17:11:5c:ce:77:08:3f:8b:53:ef:1c:8e:3b:b0:f3:42:34: dc:86:66:4d:da:91:0b:b5:1c:42:e7:ee:8c:ce:92:e2:4f:f4: a6:69:cb:04:9e:c3:83:65:06:c9:25:ce:c2:94:00:22:9a:87: 6b:23:df:f1:96:da:8e:5f:90:e9:76:53:59:ba:a3:72:1b:31: 4d:5d:3e:fd:09:7a:e4:66:63:48:a8:20:16:18:fc:c0:48:46: e5:70:6c:1b:e7:b2:51:af:31:ae:e3:3b:61:02:65:21:45:31: 79:37:f4:d9:f8:4b:f2:9e:86:fe:72:e9:31:32:74:80:98:1a: ed:61:a7:a3:bc:f7:af:5e:7a:63:42:3e:de:b8:32:5c:47:49: e9:0b:2b:2e:1f:7b:f9:bb:30:0d:b4:4a:4f:88:46:08:d6:4e: 49:80:ad:2a -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUNc/I6JHYyCxbyrLp/jL4RwmEXSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MjAwNjU3NDlaFw0yNzA1MTkwNzAyNDlaMDMxMTAvBgNV BAMTKEZENDQ5RURFODJBMjU3OUFDNUQxMDlGMEVDM0NEOEE1MUEyMzRFMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbo1V2avMwvlVOjIBgdUmzlht7 gdb48c2c4yrJSZPcLFHe41NcY/7RsW04lN4nj0vlungEg22s6BrrAoL2BGo5jyyP 563J1wJl97FEpvJ4Sl4qBOt7LORuNHEk2vQ5HXJUeLfV1kIbxSO7zMvRHPajzdeH eRF0eTpYJyOnJWODcLBeNAy5D1P4alS83AEXjFYev4KJ+hm7jbsoBEmrvKw+PERK 5JZBgxVeViGLeuRif+nTuNnU/VObSmLNKFFPGwmtiDDfuSJ5H9LVkBhIBh0r7c3x 6dyAEfHmsffx/8bo674Hbq5Z5q5bEqcy+Us8+Oh4HXUGNk+5xXfq88eGe4d9AgMB AAGjggJiMIICXjAdBgNVHQ4EFgQU/USe3oKiV5rF0Qnw7DzYpRojTiEwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMzM2MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmMjANBgkqhkiG 9w0BAQsFAAOCAQEAaPi/Q0oOOJJHxgKhKxvbjGqCZ4qpcfRMmpUztrFe9LQYKyD9 YiyMAj8S9AvlPJ9IQQWIrxGdA1mnjlfeDtHPIrdZpkbKfh7KbmoFZhFWTnVL+PzW ZXhqG8TkMRcRXM53CD+LU+8cjjuw80I03IZmTdqRC7UcQufujM6S4k/0pmnLBJ7D g2UGySXOwpQAIpqHayPf8Zbajl+Q6XZTWbqjchsxTV0+/Ql65GZjSKggFhj8wEhG 5XBsG+eyUa8xruM7YQJlIUUxeTf02fhL8p6G/nLpMTJ0gJga7WGno7z3r156Y0I+ 3rgyXEdJ6QsrLh97+bswDbRKT4hGCNZOSYCtKg== -----END CERTIFICATE-----Generated at Fri May 22 11:23:18 2026 by rpki-client