$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32332d3234203d3e20383334.roa File: 352e38332e3231302e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: Qq9dvm4CiA8Hx7q5DGd2w6cjqftMHryG3d23gYPaZFI= Subject key identifier: 2C:28:78:45:51:F8:A5:EE:68:35:39:49:C3:CC:42:D2:DB:73:A1:8A Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 68D527072CBD8E0A5A842CE3740935EED20469CD Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32332d3234203d3e20383334.roa Signing time: Fri 29 May 2026 13:03:45 +0000 ROA not before: Fri 29 May 2026 12:58:45 +0000 ROA not after: Fri 28 May 2027 13:03:45 +0000 asID: 834 IP address blocks: 5.83.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Jun 2026 13:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d5:27:07:2c:bd:8e:0a:5a:84:2c:e3:74:09:35:ee:d2:04:69:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 29 12:58:45 2026 GMT Not After : May 28 13:03:45 2027 GMT Subject: CN=2C28784551F8A5EE68353949C3CC42D2DB73A18A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:96:c7:b5:48:cd:a5:63:c9:1f:b7:0f:53:c0: 59:06:82:d4:1f:07:57:11:63:4b:a3:2c:bc:d8:50: 95:1f:96:8e:f8:22:c0:13:5e:99:80:f4:c1:f2:ec: 4d:fb:00:42:3d:7d:44:dd:f7:29:e3:a0:d7:4a:c7: 06:f7:5c:78:81:7b:8b:ce:79:4b:1d:d5:8a:41:c8: 2a:c3:f0:5a:fa:76:68:0e:03:11:6b:d7:8f:ef:19: 19:52:29:87:26:0b:89:f2:25:ad:b1:e7:c9:9c:0c: 01:a1:d2:f5:64:17:bc:50:22:48:0d:03:ea:25:fb: 09:0a:fc:e9:19:11:45:dc:f2:64:20:47:36:2c:74: a1:a6:c9:fa:e5:ef:56:8e:cf:4d:ec:01:f8:eb:2b: ba:cd:ed:8f:12:9c:4b:96:12:94:8a:9a:47:6e:ca: 10:a5:15:0e:78:43:94:f2:1d:4c:2a:23:90:df:48: 6c:52:ca:0c:8b:49:62:cb:79:a1:26:9d:23:e7:30: d3:6b:fe:02:98:34:98:a7:88:54:7e:5c:3a:b7:e2: 10:4f:03:36:ce:88:fa:b9:71:fe:56:f9:60:52:92: ad:1e:18:ae:df:cb:b1:c1:c4:24:84:01:9b:65:33: 8d:17:3f:eb:1e:14:20:d5:e1:17:c8:6a:9c:ad:36: 71:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:28:78:45:51:F8:A5:EE:68:35:39:49:C3:CC:42:D2:DB:73:A1:8A X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.210.0/23 Signature Algorithm: sha256WithRSAEncryption 10:85:c4:9b:82:8e:2a:91:9d:a0:5b:f6:5f:dd:c6:ea:2c:97: aa:45:5e:17:a7:95:a7:4e:9a:21:b5:c7:da:43:f2:f9:b7:da: 02:f1:0c:4a:c1:65:47:fa:7b:83:82:aa:fb:e9:08:a6:33:64: c4:83:f0:59:91:42:81:a7:9d:d0:c4:5d:cf:69:42:ef:a2:f3: 38:75:bf:3d:03:2b:cb:66:64:90:4e:02:37:3b:ca:a7:0e:48: e6:97:ce:49:8d:92:33:5d:bf:81:f3:aa:90:61:f4:0d:fc:db: 25:8d:91:f9:fa:b4:21:99:56:db:1f:2e:13:d6:ff:e7:d6:b5: 3c:df:97:37:74:84:be:75:d1:28:ca:10:2e:c5:e5:0b:a4:76: 01:c0:82:a6:e4:0e:00:e0:d5:98:92:bd:e7:19:4c:48:11:ca: 96:01:24:56:bf:f8:3b:ad:ac:34:64:45:e8:e8:41:70:74:e6: e3:c0:63:12:ef:a4:3c:d5:01:a2:a0:64:ac:3f:7d:cc:2c:76: 5d:a4:b3:9d:61:c2:2f:b2:a9:ca:0f:e0:ca:e6:ba:ee:6d:34: 1d:e8:ca:90:80:93:33:d7:42:5d:10:7e:61:a7:8e:72:a8:16: 0f:fb:53:e3:2f:c6:d5:21:18:cc:a4:16:89:c1:c8:b2:95:4f: f3:49:ad:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUaNUnByy9jgpahCzjdAk17tIEac0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MjkxMjU4NDVaFw0yNzA1MjgxMzAzNDVaMDMxMTAvBgNV BAMTKDJDMjg3ODQ1NTFGOEE1RUU2ODM1Mzk0OUMzQ0M0MkQyREI3M0ExOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0lse1SM2lY8kftw9TwFkGgtQf B1cRY0ujLLzYUJUflo74IsATXpmA9MHy7E37AEI9fUTd9ynjoNdKxwb3XHiBe4vO eUsd1YpByCrD8Fr6dmgOAxFr14/vGRlSKYcmC4nyJa2x58mcDAGh0vVkF7xQIkgN A+ol+wkK/OkZEUXc8mQgRzYsdKGmyfrl71aOz03sAfjrK7rN7Y8SnEuWEpSKmkdu yhClFQ54Q5TyHUwqI5DfSGxSygyLSWLLeaEmnSPnMNNr/gKYNJiniFR+XDq34hBP AzbOiPq5cf5W+WBSkq0eGK7fy7HBxCSEAZtlM40XP+seFCDV4RfIapytNnG5AgMB AAGjggJZMIICVTAdBgNVHQ4EFgQULCh4RVH4pe5oNTlJw8xC0ttzoYowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzEzMDJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQVT0jANBgkqhkiG9w0BAQsFAAOC AQEAEIXEm4KOKpGdoFv2X93G6iyXqkVeF6eVp06aIbXH2kPy+bfaAvEMSsFlR/p7 g4Kq++kIpjNkxIPwWZFCgaed0MRdz2lC76LzOHW/PQMry2ZkkE4CNzvKpw5I5pfO SY2SM12/gfOqkGH0DfzbJY2R+fq0IZlW2x8uE9b/59a1PN+XN3SEvnXRKMoQLsXl C6R2AcCCpuQOAODVmJK95xlMSBHKlgEkVr/4O62sNGRF6OhBcHTm48BjEu+kPNUB oqBkrD99zCx2XaSznWHCL7Kpyg/gyua67m00HejKkICTM9dCXRB+YaeOcqgWD/tT 4y/G1SEYzKQWicHIspVP80mt5w== -----END CERTIFICATE-----Generated at Thu Jun 4 05:11:54 2026 by rpki-client