$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e20323135313532.roa File: 33372e3233302e36332e302f32342d3234203d3e20323135313532.roa (raw, json) Hash identifier: dlO092b0FKBGErphnRiY7j5aKbQHYn5bE75jgpahcO0= Subject key identifier: 73:E3:04:4B:55:43:4B:B9:71:3A:DA:C6:33:42:E5:10:10:93:62:5A Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7022F8478765E470C384E4BD0587D9EA30067DED Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e20323135313532.roa Signing time: Sat 28 Mar 2026 13:19:09 +0000 ROA not before: Sat 28 Mar 2026 13:14:09 +0000 ROA not after: Sat 27 Mar 2027 13:19:09 +0000 asID: 215152 IP address blocks: 37.230.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 14 Apr 2026 00:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:22:f8:47:87:65:e4:70:c3:84:e4:bd:05:87:d9:ea:30:06:7d:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 28 13:14:09 2026 GMT Not After : Mar 27 13:19:09 2027 GMT Subject: CN=73E3044B55434BB9713ADAC63342E5101093625A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f4:5a:77:bc:0a:7b:45:2e:6f:ac:c8:2e:1d: b5:ba:c5:20:6e:17:30:e5:6f:ab:32:1f:9a:31:be: d8:e3:a0:bc:30:72:44:7e:81:15:0c:b8:94:2d:17: a7:78:ab:3e:bd:85:65:0c:66:9a:8c:70:6e:bb:4d: 28:b4:f6:21:e8:45:06:3f:8a:75:b5:78:92:8e:78: 74:56:e5:3d:6d:73:0b:42:36:7c:3a:8e:4f:43:d3: c5:d8:72:12:db:3d:39:9c:e5:a1:40:88:d9:28:13: 8d:76:62:cd:56:3e:5d:d8:b4:65:41:94:98:b8:15: aa:bd:c8:b3:a2:84:8c:9d:91:b4:d7:b3:9b:4f:93: b4:9a:b4:7b:37:0b:21:49:d9:ed:af:60:76:6e:9b: 5a:70:b0:c4:67:da:49:e4:96:16:3c:62:21:5b:42: e5:e7:93:2f:74:04:1e:f9:52:f2:9a:a2:6c:5c:d1: dc:2d:15:bc:88:13:08:3e:25:4d:54:35:de:c8:a0: b6:8b:80:ee:1e:d2:f1:67:9f:a6:ba:a3:40:d3:60: 71:15:eb:b6:28:54:46:50:08:b2:7e:2a:f8:c6:cc: fb:fa:61:b7:90:7e:8e:35:8b:32:7d:72:3c:5a:89: bd:86:b4:07:97:08:8d:7a:25:2e:a9:2e:bf:89:48: 1d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E3:04:4B:55:43:4B:B9:71:3A:DA:C6:33:42:E5:10:10:93:62:5A X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e20323135313532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.63.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:58:e5:4d:f6:80:75:06:bd:29:20:83:f5:e8:e8:cc:82:c0: 3c:27:cc:78:e1:4c:dc:06:ba:c5:fd:77:c0:b7:16:a6:e9:41: 29:95:9d:9d:65:5b:88:7e:dd:2f:4e:83:93:95:99:e3:00:d9: a9:96:6b:02:55:5e:9c:01:83:dd:9a:61:9b:9b:7d:fc:e4:bd: ed:40:a2:c7:b1:d0:e8:6b:90:a3:df:58:d2:be:51:99:1b:9d: 55:f8:b9:6e:e4:19:f8:aa:28:10:fd:20:32:7f:d8:a1:39:0e: 6b:56:9a:11:17:6b:96:69:92:26:b9:09:20:fe:a2:ea:85:4c: a8:94:0f:ce:2a:50:0e:ce:52:62:f2:db:85:94:69:a7:63:df: 36:7d:fe:17:15:78:c8:77:e7:24:c1:1f:a4:02:dc:12:1d:87: 20:28:71:41:79:c2:f7:8d:b3:f9:a4:4f:c4:9a:18:b6:fc:33: ec:62:94:36:64:7f:0c:ef:3e:15:ff:5e:e0:09:dc:82:40:67: f6:85:e2:e6:a7:1a:ab:d1:f6:ea:63:8c:f7:52:19:fd:2a:5e: 1c:7a:4e:02:79:14:a0:34:f0:bd:4a:86:9b:00:7b:29:2e:c4: 90:b9:cf:db:a0:c0:1e:5f:ed:b5:5b:82:64:f7:4a:28:3c:10: 31:a4:27:8a -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUcCL4R4dl5HDDhOS9BYfZ6jAGfe0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjgxMzE0MDlaFw0yNzAzMjcxMzE5MDlaMDMxMTAvBgNV BAMTKDczRTMwNDRCNTU0MzRCQjk3MTNBREFDNjMzNDJFNTEwMTA5MzYyNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu9Fp3vAp7RS5vrMguHbW6xSBu FzDlb6syH5oxvtjjoLwwckR+gRUMuJQtF6d4qz69hWUMZpqMcG67TSi09iHoRQY/ inW1eJKOeHRW5T1tcwtCNnw6jk9D08XYchLbPTmc5aFAiNkoE412Ys1WPl3YtGVB lJi4Faq9yLOihIydkbTXs5tPk7SatHs3CyFJ2e2vYHZum1pwsMRn2knklhY8YiFb QuXnky90BB75UvKaomxc0dwtFbyIEwg+JU1UNd7IoLaLgO4e0vFnn6a6o0DTYHEV 67YoVEZQCLJ+KvjGzPv6YbeQfo41izJ9cjxaib2GtAeXCI16JS6pLr+JSB3zAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUc+MES1VDS7lxOtrGM0LlEBCTYlowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNTMxMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmPzANBgkqhkiG 9w0BAQsFAAOCAQEAK1jlTfaAdQa9KSCD9ejozILAPCfMeOFM3Aa6xf13wLcWpulB KZWdnWVbiH7dL06Dk5WZ4wDZqZZrAlVenAGD3Zphm5t9/OS97UCix7HQ6GuQo99Y 0r5RmRudVfi5buQZ+KooEP0gMn/YoTkOa1aaERdrlmmSJrkJIP6i6oVMqJQPzipQ Ds5SYvLbhZRpp2PfNn3+FxV4yHfnJMEfpALcEh2HIChxQXnC942z+aRPxJoYtvwz 7GKUNmR/DO8+Ff9e4AncgkBn9oXi5qcaq9H26mOM91IZ/SpeHHpOAnkUoDTwvUqG mwB7KS7EkLnP26DAHl/ttVuCZPdKKDwQMaQnig== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:33 2026 by rpki-client