$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35382e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: adUyV3FwRf+X+lGIaqJTUKRuhfK4QeNXuik37qTC/rY= Subject key identifier: 89:08:E9:A4:09:76:DA:E9:7B:81:F7:1B:5D:5B:B0:E6:0E:51:2D:6F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1E0819078C797E046272C19D943D70C33C47E951 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32342d3234203d3e20323730303532.roa Signing time: Thu 26 Mar 2026 13:46:55 +0000 ROA not before: Thu 26 Mar 2026 13:41:55 +0000 ROA not after: Thu 25 Mar 2027 13:46:55 +0000 asID: 270052 IP address blocks: 37.230.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 31 Mar 2026 06:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:08:19:07:8c:79:7e:04:62:72:c1:9d:94:3d:70:c3:3c:47:e9:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 26 13:41:55 2026 GMT Not After : Mar 25 13:46:55 2027 GMT Subject: CN=8908E9A40976DAE97B81F71B5D5BB0E60E512D6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:46:73:1a:a4:46:03:1e:77:2a:b2:26:cb:de: 3c:ef:9f:a1:81:8f:e8:e0:e7:c9:2b:74:e8:6c:4c: 02:b2:63:81:04:3b:55:70:c4:0e:d8:0a:f7:d3:7d: 91:7a:a9:ba:aa:ff:1b:c5:d1:81:4b:78:47:fd:8c: d9:ca:bc:84:37:9d:8c:ef:f2:fa:e5:3b:3a:eb:08: 69:80:b0:ec:70:09:9c:19:51:63:a4:22:a3:2a:64: 91:bd:94:de:e6:59:18:73:6f:b5:c3:30:d4:61:7c: f6:78:2d:85:c6:a8:e3:25:4e:e7:47:69:ac:1b:57: d1:2a:04:f4:41:a5:da:42:b2:a4:46:eb:57:49:7f: 23:d8:93:e4:e1:3d:4b:e5:24:e7:2c:5c:9e:af:3c: 42:18:dd:cc:61:ed:c9:88:f1:19:a6:03:30:96:4c: ad:bb:a7:83:19:b8:9c:8b:9a:09:fc:85:82:fd:83: 4a:72:00:29:c5:1e:3a:3d:d2:57:78:18:35:3d:22: ff:9d:bc:c4:09:97:71:7b:f0:c8:75:3f:27:23:09: 1e:9f:a7:db:08:21:0b:9e:5a:11:33:ba:d2:6a:d2: 4f:e5:48:00:28:1b:33:d7:53:dc:46:2b:4e:f7:77: bc:22:b9:50:20:58:d5:95:7a:28:f0:15:69:b8:48: 5a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:08:E9:A4:09:76:DA:E9:7B:81:F7:1B:5D:5B:B0:E6:0E:51:2D:6F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.58.0/24 Signature Algorithm: sha256WithRSAEncryption a0:21:9d:16:77:21:a8:13:ca:12:1a:b5:b8:a9:00:d5:85:6e: 51:9d:93:6c:d4:d0:bb:97:24:d3:02:4f:83:98:41:39:84:2a: ac:07:c9:b2:f4:e3:97:34:51:f7:f8:1b:fa:bc:f7:66:b9:b5: 8b:42:4c:29:b3:9d:f3:03:3a:1c:7f:b1:90:6c:15:d6:b9:0c: 91:25:b9:3a:00:bb:47:30:1d:10:60:22:7c:9d:20:38:c2:b2: 01:d4:09:f0:a6:5d:a2:33:96:9e:48:61:c0:ff:42:5d:94:92: 90:f4:b0:4a:65:08:94:b5:ac:89:68:f7:7d:b3:88:b3:f7:d0: 33:67:4f:b9:27:67:4d:5a:04:07:06:63:1e:6b:dc:f2:ad:6a: 0e:29:a0:2b:66:c1:c8:3f:0f:2a:10:c8:27:0e:9b:6d:9d:c2: 58:74:09:24:f8:da:e4:4a:74:b7:6c:68:f4:13:09:d0:57:9c: 6f:a4:29:d4:a7:35:a8:51:2d:27:9b:06:57:f0:6a:e7:f2:0c: f9:3c:2c:b3:19:d9:25:dc:bd:b4:de:f5:b7:d7:cf:be:dc:30: 3f:f6:4a:9f:cb:5d:4d:a0:e7:c2:39:2d:58:c3:fa:e6:29:96: f6:08:31:e3:20:3e:c4:a0:cb:7c:e6:c3:24:43:62:29:99:f4: 88:cc:f2:c5 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUHggZB4x5fgRicsGdlD1wwzxH6VEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjYxMzQxNTVaFw0yNzAzMjUxMzQ2NTVaMDMxMTAvBgNV BAMTKDg5MDhFOUE0MDk3NkRBRTk3QjgxRjcxQjVENUJCMEU2MEU1MTJENkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbRnMapEYDHncqsibL3jzvn6GB j+jg58krdOhsTAKyY4EEO1VwxA7YCvfTfZF6qbqq/xvF0YFLeEf9jNnKvIQ3nYzv 8vrlOzrrCGmAsOxwCZwZUWOkIqMqZJG9lN7mWRhzb7XDMNRhfPZ4LYXGqOMlTudH aawbV9EqBPRBpdpCsqRG61dJfyPYk+ThPUvlJOcsXJ6vPEIY3cxh7cmI8RmmAzCW TK27p4MZuJyLmgn8hYL9g0pyACnFHjo90ld4GDU9Iv+dvMQJl3F78Mh1PycjCR6f p9sIIQueWhEzutJq0k/lSAAoGzPXU9xGK073d7wiuVAgWNWVeijwFWm4SFo9AgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUiQjppAl22ul7gfcbXVuw5g5RLW8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOjANBgkqhkiG 9w0BAQsFAAOCAQEAoCGdFnchqBPKEhq1uKkA1YVuUZ2TbNTQu5ck0wJPg5hBOYQq rAfJsvTjlzRR9/gb+rz3Zrm1i0JMKbOd8wM6HH+xkGwV1rkMkSW5OgC7RzAdEGAi fJ0gOMKyAdQJ8KZdojOWnkhhwP9CXZSSkPSwSmUIlLWsiWj3fbOIs/fQM2dPuSdn TVoEBwZjHmvc8q1qDimgK2bByD8PKhDIJw6bbZ3CWHQJJPja5Ep0t2xo9BMJ0Fec b6Qp1Kc1qFEtJ5sGV/Bq5/IM+TwssxnZJdy9tN71t9fPvtwwP/ZKn8tdTaDnwjkt WMP65imW9ggx4yA+xKDLfObDJENiKZn0iMzyxQ== -----END CERTIFICATE-----Generated at Mon Mar 30 21:41:55 2026 by rpki-client