$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36322e302f32342d3234203d3e20333936333536.roa File: 33372e3233302e36322e302f32342d3234203d3e20333936333536.roa (raw, json) Hash identifier: 5a0YHpS0PiwSovEKguV5KWAUbevNPlenEOzb/k2haNM= Subject key identifier: DD:E8:58:96:93:0F:52:30:A5:BC:4C:7C:BB:54:4E:A4:1D:3D:C6:08 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 119337CC51C815397D9ECA86B8DA89DB59000E76 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36322e302f32342d3234203d3e20333936333536.roa Signing time: Mon 06 Apr 2026 07:47:01 +0000 ROA not before: Mon 06 Apr 2026 07:42:01 +0000 ROA not after: Mon 05 Apr 2027 07:47:01 +0000 asID: 396356 IP address blocks: 37.230.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 08 Apr 2026 21:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:93:37:cc:51:c8:15:39:7d:9e:ca:86:b8:da:89:db:59:00:0e:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 6 07:42:01 2026 GMT Not After : Apr 5 07:47:01 2027 GMT Subject: CN=DDE85896930F5230A5BC4C7CBB544EA41D3DC608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:6b:a6:64:c2:e8:40:57:b1:5c:94:f3:90:2b: 92:3e:2a:ff:b7:96:8b:8e:19:fc:0c:a3:05:76:98: bf:ab:5c:63:4a:8c:88:2a:5a:7e:52:5d:d4:f6:28: 63:29:ab:d4:70:e3:f7:2a:e4:19:4e:11:33:61:6a: 64:9b:b0:e1:49:bf:35:ca:ff:8f:38:56:5e:eb:ac: 8c:39:f9:5e:26:fa:2a:ed:f1:52:8b:5a:31:d5:fa: 21:38:1c:ef:6f:60:61:54:5e:db:46:55:94:d8:cb: ec:e8:7e:b0:f8:f5:ab:8f:b5:b6:2b:92:c1:b9:39: b1:e3:2e:e3:8c:8a:6e:42:7a:73:fe:34:8f:7e:02: ff:fb:19:1c:9c:80:40:00:a2:c3:af:e6:de:34:6f: 90:65:d1:0c:f6:eb:f5:99:50:d2:ba:ec:80:fb:ed: 9d:95:49:21:4d:4a:d6:99:7c:1d:29:0d:50:e0:dc: 73:d5:1b:66:5c:1a:21:58:bd:44:e1:a4:3c:bc:e8: 36:9c:a4:a3:80:50:cf:98:08:af:53:b0:ae:3a:f0: ba:de:85:0a:30:44:53:45:86:98:97:7e:4a:c6:9b: e7:7d:ad:07:67:45:fb:cd:bc:88:f1:c4:61:9f:ad: 86:17:2d:f6:da:51:99:e9:25:f8:90:01:bf:20:96: 3b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E8:58:96:93:0F:52:30:A5:BC:4C:7C:BB:54:4E:A4:1D:3D:C6:08 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36322e302f32342d3234203d3e20333936333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.62.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:13:72:96:2a:64:40:f3:39:fe:ab:f4:2c:f9:45:c7:3d:15: a0:ca:01:26:29:b6:5a:b0:b9:fa:ea:5e:10:ad:65:fb:f1:09: 4e:ed:82:fe:3f:36:0e:8e:0b:82:a1:b5:b3:a2:71:00:5f:ba: 67:35:00:ab:d4:d7:50:95:34:65:39:b4:d3:a4:17:73:2e:78: 91:11:f5:43:30:1c:f2:27:f3:d8:1b:0c:05:58:78:62:5d:aa: 08:3e:ef:d6:ae:e4:2d:3c:a3:19:7b:9b:03:a0:a9:4c:da:b4: 91:b1:ed:f2:1e:8a:9c:32:9a:98:05:46:ec:17:85:1b:d4:34: ef:83:94:34:17:81:fe:10:15:37:fc:e3:93:7a:eb:48:62:bd: 36:dd:42:cb:ac:e7:40:2c:75:de:ae:25:85:49:39:8d:e7:2b: 52:93:ba:56:de:12:e5:a0:93:f1:57:ec:90:76:c2:85:fb:fc: 81:77:b2:c5:f7:a3:9f:5d:63:a0:b8:80:b4:a2:5b:cc:33:9d: 0a:af:57:87:b4:0e:72:0b:53:50:b0:02:cd:44:cc:d2:4f:d5: 77:03:35:d0:ae:3a:cb:74:32:b8:82:e9:74:ac:80:a2:fc:c6: f9:53:86:e9:87:9b:6d:a6:0b:99:e3:b5:7c:86:0b:a2:f1:1b: fe:d1:32:6d -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUEZM3zFHIFTl9nsqGuNqJ21kADnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA0MDYwNzQyMDFaFw0yNzA0MDUwNzQ3MDFaMDMxMTAvBgNV BAMTKERERTg1ODk2OTMwRjUyMzBBNUJDNEM3Q0JCNTQ0RUE0MUQzREM2MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDua6ZkwuhAV7FclPOQK5I+Kv+3 louOGfwMowV2mL+rXGNKjIgqWn5SXdT2KGMpq9Rw4/cq5BlOETNhamSbsOFJvzXK /484Vl7rrIw5+V4m+irt8VKLWjHV+iE4HO9vYGFUXttGVZTYy+zofrD49auPtbYr ksG5ObHjLuOMim5CenP+NI9+Av/7GRycgEAAosOv5t40b5Bl0Qz26/WZUNK67ID7 7Z2VSSFNStaZfB0pDVDg3HPVG2ZcGiFYvUThpDy86DacpKOAUM+YCK9TsK468Lre hQowRFNFhpiXfkrGm+d9rQdnRfvNvIjxxGGfrYYXLfbaUZnpJfiQAb8gljsDAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQU3ehYlpMPUjClvEx8u1ROpB09xggwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzkzNjMzMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmPjANBgkqhkiG 9w0BAQsFAAOCAQEAThNylipkQPM5/qv0LPlFxz0VoMoBJim2WrC5+upeEK1l+/EJ Tu2C/j82Do4LgqG1s6JxAF+6ZzUAq9TXUJU0ZTm006QXcy54kRH1QzAc8ifz2BsM BVh4Yl2qCD7v1q7kLTyjGXubA6CpTNq0kbHt8h6KnDKamAVG7BeFG9Q074OUNBeB /hAVN/zjk3rrSGK9Nt1Cy6znQCx13q4lhUk5jecrUpO6Vt4S5aCT8VfskHbChfv8 gXeyxfejn11joLiAtKJbzDOdCq9Xh7QOcgtTULACzUTM0k/VdwM10K46y3QyuILp dKyAovzG+VOG6YebbaYLmeO1fIYLovEb/tEybQ== -----END CERTIFICATE-----Generated at Wed Apr 8 03:56:29 2026 by rpki-client