$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203231383539.roa File: 33372e3233302e36332e302f32342d3234203d3e203231383539.roa (raw, json) Hash identifier: oNKdrOo6mCaqei8Q583thQWjiMi8NN5ehyTKIvoArD8= Subject key identifier: 02:02:C2:D8:83:3E:79:A7:F5:E7:58:C4:78:CC:E6:77:95:34:94:09 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 64F8B1E592D1C2F721D2E8C925F7B47B7F8FF14B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203231383539.roa Signing time: Tue 16 Sep 2025 06:29:04 +0000 ROA not before: Tue 16 Sep 2025 06:24:04 +0000 ROA not after: Tue 15 Sep 2026 06:29:04 +0000 asID: 21859 IP address blocks: 37.230.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Sep 2025 22:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f8:b1:e5:92:d1:c2:f7:21:d2:e8:c9:25:f7:b4:7b:7f:8f:f1:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 16 06:24:04 2025 GMT Not After : Sep 15 06:29:04 2026 GMT Subject: CN=0202C2D8833E79A7F5E758C478CCE67795349409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ad:e4:b3:3a:25:d3:58:46:1a:6b:a1:6a:8e: 0d:c4:42:27:9e:89:61:03:bc:a5:b3:63:a3:14:9d: 1f:58:db:3d:b8:6b:5a:5e:22:74:47:58:05:b3:29: d0:15:81:6d:43:59:cf:09:af:9b:9f:32:58:65:01: 05:ae:0d:f1:d8:d0:33:5f:c2:4f:b9:3f:14:51:61: 21:f8:77:b3:79:a6:52:71:9e:3e:24:16:00:71:5a: 6a:f7:00:bb:95:7c:4e:fc:ee:09:02:22:4e:37:9f: 32:20:e5:a0:97:06:b6:31:42:c8:1b:e4:b4:c3:0a: b8:7a:55:14:9b:2e:fd:8a:45:c6:ee:cb:af:54:ee: 74:27:0d:dd:49:db:77:94:46:a5:0d:bd:b3:b5:e0: f5:f1:61:7e:1a:ca:1c:96:93:a1:f3:8c:d4:ed:35: cd:f6:a1:a1:08:dc:61:d7:a7:a1:9d:14:e9:81:9a: 3b:86:24:7d:6c:de:e7:71:a9:5e:8a:e3:fa:8b:5d: 92:11:dc:fb:c8:a5:9f:15:c2:6e:60:06:ae:cd:4f: 1a:ef:33:76:23:76:8f:fa:d5:0a:f8:91:5c:bf:c2: e9:7a:05:1b:c3:80:f3:e4:99:ba:d0:b9:7a:09:ba: 80:d3:6d:55:e7:be:71:83:3b:e3:d6:f1:b0:1c:04: 1d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:02:C2:D8:83:3E:79:A7:F5:E7:58:C4:78:CC:E6:77:95:34:94:09 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.63.0/24 Signature Algorithm: sha256WithRSAEncryption 86:86:d8:19:58:18:6f:7d:55:86:fb:dc:0e:22:bc:3d:a6:59: 2f:cb:1e:88:f8:f1:ee:b4:5b:63:aa:dc:ed:d7:ae:a7:3d:93: 9b:4a:86:5f:f7:7e:a5:57:62:08:40:78:71:60:6c:40:c9:c6: 8b:c5:4b:9f:f7:78:5b:53:56:d2:d4:b5:81:0d:b2:b9:e4:47: 07:78:35:b1:19:0b:75:7e:fe:02:45:b3:04:34:43:48:c8:65: 79:18:2d:b9:bc:95:79:bc:ac:b9:f2:54:60:c0:fd:ad:ca:bc: d5:a0:ea:e8:bc:d7:40:ce:fc:b3:53:e8:dc:87:30:c9:94:fa: cb:03:46:56:8f:d3:5c:e3:2a:8d:9c:46:c0:fe:6d:a2:02:5c: 1f:f8:12:87:7b:bd:5c:44:d2:36:1c:cd:e7:24:fe:46:d7:2f: ce:84:b7:a9:5c:74:53:91:9b:a2:57:d0:91:d7:22:5b:e7:ab: 9d:d8:84:ad:3e:52:78:d4:4a:3a:ac:5f:4d:80:4f:58:f4:73: 5b:96:2d:49:cb:1a:7c:15:f2:ab:99:cf:75:c9:17:07:db:a5: b2:09:54:58:37:44:c0:30:f8:29:c9:78:17:12:c8:14:b0:e7: f2:95:a5:3e:9f:df:ce:66:51:34:9e:07:b6:01:02:69:07:ea: f7:ef:2f:90 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUZPix5ZLRwvch0ujJJfe0e3+P8UswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MTYwNjI0MDRaFw0yNjA5MTUwNjI5MDRaMDMxMTAvBgNV BAMTKDAyMDJDMkQ4ODMzRTc5QTdGNUU3NThDNDc4Q0NFNjc3OTUzNDk0MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpreSzOiXTWEYaa6Fqjg3EQiee iWEDvKWzY6MUnR9Y2z24a1peInRHWAWzKdAVgW1DWc8Jr5ufMlhlAQWuDfHY0DNf wk+5PxRRYSH4d7N5plJxnj4kFgBxWmr3ALuVfE787gkCIk43nzIg5aCXBrYxQsgb 5LTDCrh6VRSbLv2KRcbuy69U7nQnDd1J23eURqUNvbO14PXxYX4ayhyWk6HzjNTt Nc32oaEI3GHXp6GdFOmBmjuGJH1s3udxqV6K4/qLXZIR3PvIpZ8Vwm5gBq7NTxrv M3Yjdo/61Qr4kVy/wul6BRvDgPPkmbrQuXoJuoDTbVXnvnGDO+PW8bAcBB3tAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUAgLC2IM+eaf151jEeMzmd5U0lAkwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5j8wDQYJKoZIhvcN AQELBQADggEBAIaG2BlYGG99VYb73A4ivD2mWS/LHoj48e60W2Oq3O3Xrqc9k5tK hl/3fqVXYghAeHFgbEDJxovFS5/3eFtTVtLUtYENsrnkRwd4NbEZC3V+/gJFswQ0 Q0jIZXkYLbm8lXm8rLnyVGDA/a3KvNWg6ui810DO/LNT6NyHMMmU+ssDRlaP01zj Ko2cRsD+baICXB/4Eod7vVxE0jYczeck/kbXL86Et6lcdFORm6JX0JHXIlvnq53Y hK0+UnjUSjqsX02AT1j0c1uWLUnLGnwV8quZz3XJFwfbpbIJVFg3RMAw+CnJeBcS yBSw5/KVpT6f385mUTSeB7YBAmkH6vfvL5A= -----END CERTIFICATE-----Generated at Fri Sep 19 02:53:24 2025 by rpki-client