$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36312e302f32342d3234203d3e2033333230.roa File: 33372e3233302e36312e302f32342d3234203d3e2033333230.roa (raw, json) Hash identifier: 987v/JnforErLPLr0sASuJwxQox423mre1xzKIszdnU= Subject key identifier: D2:F0:71:97:D2:5F:BD:A5:0C:18:2E:36:0A:98:4E:F0:FF:2D:AF:75 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1270EAB0D87087E27D14F142A20D488B8AA7BB90 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36312e302f32342d3234203d3e2033333230.roa Signing time: Tue 26 Aug 2025 03:54:13 +0000 ROA not before: Tue 26 Aug 2025 03:49:13 +0000 ROA not after: Tue 25 Aug 2026 03:54:13 +0000 asID: 3320 IP address blocks: 37.230.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 07:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:70:ea:b0:d8:70:87:e2:7d:14:f1:42:a2:0d:48:8b:8a:a7:bb:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Aug 26 03:49:13 2025 GMT Not After : Aug 25 03:54:13 2026 GMT Subject: CN=D2F07197D25FBDA50C182E360A984EF0FF2DAF75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c9:4d:a2:a9:a5:d6:bd:7c:24:8c:ce:3f:a9: 65:d9:48:30:3c:dd:cf:13:39:6a:0a:19:51:31:65: 07:f2:a4:ea:b0:cb:cf:db:f0:86:17:f8:11:25:9e: 7e:c7:84:e8:36:b7:b2:57:7f:c7:42:8c:22:4f:ca: 66:a0:87:8c:27:3a:88:df:37:df:ae:6f:39:dc:36: 1c:da:60:49:64:5e:44:f7:a7:05:2f:3e:e8:cf:fb: a6:32:83:57:27:b5:d2:0e:d1:c3:6f:f7:aa:bd:53: 13:c8:10:50:ff:16:b5:60:3b:4c:4b:22:2c:93:99: 08:2a:67:30:5e:c4:2e:13:d0:ca:37:65:31:3e:53: 9c:c9:5a:73:2d:de:54:c4:37:b2:a5:93:e6:0e:42: 1c:66:0d:0e:64:1e:f9:8e:c4:06:c6:c5:9e:23:84: 82:98:68:a2:b8:bb:d4:c3:20:32:81:e6:dd:d7:38: 53:2b:75:e6:c5:71:9a:7a:61:a3:80:b7:75:6f:98: 11:ee:96:df:3a:02:fc:f1:37:49:73:88:b4:df:7d: e3:dd:a5:e1:ee:a9:e2:02:f2:ee:fa:57:9e:04:34: 4f:52:d2:51:49:98:92:bb:61:1c:1a:99:f0:4b:9a: 56:9f:48:5f:e2:d1:05:e0:58:0b:da:68:d0:4a:5c: 27:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F0:71:97:D2:5F:BD:A5:0C:18:2E:36:0A:98:4E:F0:FF:2D:AF:75 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36312e302f32342d3234203d3e2033333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.61.0/24 Signature Algorithm: sha256WithRSAEncryption 51:bb:c9:37:43:e1:ba:f8:dd:fd:c3:5c:d8:c8:2b:83:53:3b: bf:df:0a:51:f5:4a:3f:eb:6a:6b:d9:7f:70:9f:5b:e5:80:8a: 80:3f:af:f1:15:5b:1f:de:67:8d:ff:70:5f:43:b8:8c:6c:36: 74:e3:8d:00:8f:e7:b6:1e:3d:69:d9:81:a7:cf:d5:29:b7:11: 5d:53:2b:93:eb:df:0a:9a:98:a0:dd:65:1c:25:07:67:02:d4: bc:1a:47:1c:56:2f:73:d4:c3:a8:d7:32:0e:42:b4:ae:1d:25: 48:24:8b:86:4b:05:a4:97:19:d1:47:81:16:26:d9:2f:d8:c2: a9:cc:97:c8:c1:d5:f7:a1:0b:08:af:a1:2b:b0:39:c6:dc:fb: fc:b4:1b:ca:85:be:c1:13:a0:5c:89:25:16:a9:27:0c:e9:93: 05:08:92:b5:79:e9:e4:05:7a:96:2c:4c:e4:b5:95:e6:bb:52: 6c:73:58:a9:95:74:3b:98:2d:92:b5:10:39:ac:c9:8f:18:79: 21:d8:ea:9e:5f:ba:d0:2b:5a:f5:3b:49:d8:57:59:f4:9b:18: 0e:36:c1:56:9f:7d:8c:7b:6d:0a:b2:0a:e6:59:e2:98:ed:47: 43:cd:89:fc:b2:b6:51:72:3a:8e:d5:59:79:4a:6d:74:3e:ec: d3:c5:5d:3c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEnDqsNhwh+J9FPFCog1Ii4qnu5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA4MjYwMzQ5MTNaFw0yNjA4MjUwMzU0MTNaMDMxMTAvBgNV BAMTKEQyRjA3MTk3RDI1RkJEQTUwQzE4MkUzNjBBOTg0RUYwRkYyREFGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2yU2iqaXWvXwkjM4/qWXZSDA8 3c8TOWoKGVExZQfypOqwy8/b8IYX+BElnn7HhOg2t7JXf8dCjCJPymagh4wnOojf N9+ubzncNhzaYElkXkT3pwUvPujP+6Yyg1cntdIO0cNv96q9UxPIEFD/FrVgO0xL IiyTmQgqZzBexC4T0Mo3ZTE+U5zJWnMt3lTEN7Klk+YOQhxmDQ5kHvmOxAbGxZ4j hIKYaKK4u9TDIDKB5t3XOFMrdebFcZp6YaOAt3VvmBHult86AvzxN0lziLTffePd peHuqeIC8u76V54ENE9S0lFJmJK7YRwamfBLmlafSF/i0QXgWAvaaNBKXCfpAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU0vBxl9JfvaUMGC42CphO8P8tr3UwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeY9MA0GCSqGSIb3DQEB CwUAA4IBAQBRu8k3Q+G6+N39w1zYyCuDUzu/3wpR9Uo/62pr2X9wn1vlgIqAP6/x FVsf3meN/3BfQ7iMbDZ0440Aj+e2Hj1p2YGnz9UptxFdUyuT698Kmpig3WUcJQdn AtS8GkccVi9z1MOo1zIOQrSuHSVIJIuGSwWklxnRR4EWJtkv2MKpzJfIwdX3oQsI r6ErsDnG3Pv8tBvKhb7BE6BciSUWqScM6ZMFCJK1eenkBXqWLEzktZXmu1Jsc1ip lXQ7mC2StRA5rMmPGHkh2OqeX7rQK1r1O0nYV1n0mxgONsFWn32Me20KsgrmWeKY 7UdDzYn8srZRcjqO1Vl5Sm10PuzTxV08 -----END CERTIFICATE-----Generated at Fri Sep 5 22:02:43 2025 by rpki-client