$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3139322e302f32302d3230203d3e20323037363435.roa File: 352e38332e3139322e302f32302d3230203d3e20323037363435.roa (raw, json) Hash identifier: Uip/74wyM/m9d+G5pBMB5ADlmk+YagBn/0QUsYcwjbY= Subject key identifier: 05:2C:8D:F9:B1:75:A4:8F:BE:FE:1D:25:F3:B3:13:C4:97:F7:A0:7F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 127250511EA348D6B5F56740A68DFF9CD36514B4 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3139322e302f32302d3230203d3e20323037363435.roa Signing time: Thu 11 Sep 2025 16:55:07 +0000 ROA not before: Thu 11 Sep 2025 16:50:07 +0000 ROA not after: Thu 10 Sep 2026 16:55:07 +0000 asID: 207645 IP address blocks: 5.83.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Sep 2025 06:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:72:50:51:1e:a3:48:d6:b5:f5:67:40:a6:8d:ff:9c:d3:65:14:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 11 16:50:07 2025 GMT Not After : Sep 10 16:55:07 2026 GMT Subject: CN=052C8DF9B175A48FBEFE1D25F3B313C497F7A07F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:85:e1:6b:b8:f7:96:90:2f:52:48:9e:a8: b2:04:45:79:6f:dd:f3:dd:c8:4c:46:7e:be:c8:55: 6d:83:76:97:38:6a:ab:e4:e5:0d:ce:4d:98:0f:03: df:2a:24:e2:bf:a8:48:27:c8:e9:58:80:b7:22:46: e9:de:e4:bd:56:12:b0:85:2a:13:a3:8a:b3:ed:26: 99:b0:92:c7:92:11:79:be:39:5a:86:00:10:f4:0c: 2f:b8:b7:80:b0:74:12:fe:2d:65:02:03:35:9c:e0: 81:ad:1e:77:aa:76:94:84:7c:b8:99:6e:da:a7:ba: 73:c2:72:aa:f7:4c:5a:f7:9f:95:9c:57:69:6a:d5: 09:8d:c1:9c:b8:ce:26:28:4d:ae:99:0a:7c:7a:7a: 95:41:c4:54:bc:99:5e:4c:65:ed:85:ed:03:da:8a: 85:97:19:9b:83:0e:c3:6f:8c:9e:98:1c:7a:39:22: c3:e7:38:c1:01:f4:56:d1:ca:56:cf:95:67:42:2a: c9:64:3a:b8:5b:ea:fd:a1:42:46:6d:b1:55:e8:3e: 7f:b3:d8:b8:93:a9:ab:71:54:3e:bf:7e:aa:0b:86: fc:7f:c0:4c:68:64:24:87:a0:9c:de:54:03:fe:e1: b0:1c:e7:02:f8:bc:6c:0e:4b:3b:1b:2e:53:05:38: 04:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:2C:8D:F9:B1:75:A4:8F:BE:FE:1D:25:F3:B3:13:C4:97:F7:A0:7F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3139322e302f32302d3230203d3e20323037363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.192.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:ca:3c:5d:5e:ef:5f:ae:a9:87:78:77:4c:f1:72:ff:02:72: a9:67:06:0c:4f:b7:86:cc:12:b5:48:77:45:f1:e7:12:cb:b6: db:f8:79:1b:f1:bf:d9:85:28:3b:0e:63:3e:84:63:d8:f6:ef: 9a:9d:4a:aa:36:61:3a:d9:01:3f:1c:f5:ea:a9:25:9d:e3:87: f6:4b:cd:df:74:69:04:00:01:25:a3:71:a5:04:bd:38:83:fa: e7:3e:59:29:d7:84:f9:ff:1e:ac:8a:21:68:3f:81:55:0b:9d: 41:30:2f:93:66:32:4f:c0:b5:78:75:69:35:71:f7:2e:7e:59: 03:06:e2:34:14:a6:d6:3b:8c:59:1c:3e:38:12:c4:e2:3e:1f: 30:09:0d:da:c9:a7:a4:48:16:03:ad:13:de:30:47:b3:70:84: 83:d8:d5:e1:63:99:e8:12:31:87:ea:38:9d:bf:40:a9:be:34: f4:9e:ba:b1:78:f6:da:2b:22:08:50:e2:3c:c2:4f:5c:ad:1e: c4:b9:78:05:e2:1d:25:2a:18:98:f0:fa:0d:29:71:87:e0:f3: 6e:73:f0:22:ea:c2:22:7f:c5:7b:c5:40:84:70:25:a5:bb:22: ae:34:73:48:3f:20:81:e2:fe:52:fe:ed:fe:30:7d:d9:3d:2d: 1b:be:34:14 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEnJQUR6jSNa19WdApo3/nNNlFLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MTExNjUwMDdaFw0yNjA5MTAxNjU1MDdaMDMxMTAvBgNV BAMTKDA1MkM4REY5QjE3NUE0OEZCRUZFMUQyNUYzQjMxM0M0OTdGN0EwN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4SoXha7j3lpAvUkieqLIERXlv 3fPdyExGfr7IVW2Ddpc4aqvk5Q3OTZgPA98qJOK/qEgnyOlYgLciRune5L1WErCF KhOjirPtJpmwkseSEXm+OVqGABD0DC+4t4CwdBL+LWUCAzWc4IGtHneqdpSEfLiZ btqnunPCcqr3TFr3n5WcV2lq1QmNwZy4ziYoTa6ZCnx6epVBxFS8mV5MZe2F7QPa ioWXGZuDDsNvjJ6YHHo5IsPnOMEB9FbRylbPlWdCKslkOrhb6v2hQkZtsVXoPn+z 2LiTqatxVD6/fqoLhvx/wExoZCSHoJzeVAP+4bAc5wL4vGwOSzsbLlMFOARLAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUBSyN+bF1pI++/h0l87MTxJf3oH8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMTM5MzIyZTMwMmYzMjMwMmQz MjMwMjAzZDNlMjAzMjMwMzczNjM0MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQFU8AwDQYJKoZIhvcN AQELBQADggEBAC7KPF1e71+uqYd4d0zxcv8CcqlnBgxPt4bMErVId0Xx5xLLttv4 eRvxv9mFKDsOYz6EY9j275qdSqo2YTrZAT8c9eqpJZ3jh/ZLzd90aQQAASWjcaUE vTiD+uc+WSnXhPn/HqyKIWg/gVULnUEwL5NmMk/AtXh1aTVx9y5+WQMG4jQUptY7 jFkcPjgSxOI+HzAJDdrJp6RIFgOtE94wR7NwhIPY1eFjmegSMYfqOJ2/QKm+NPSe urF49torIghQ4jzCT1ytHsS5eAXiHSUqGJjw+g0pcYfg825z8CLqwiJ/xXvFQIRw JaW7Iq40c0g/IIHi/lL+7f4wfdk9LRu+NBQ= -----END CERTIFICATE-----Generated at Tue Sep 16 21:45:44 2025 by rpki-client