$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e2037303138.roa File: 352e38332e3231322e302f32342d3234203d3e2037303138.roa (raw, json) Hash identifier: UcN0R7REgWqPYjZtZB5JxOhrdNbYBVZaOnSUTAZLBBQ= Subject key identifier: E3:3A:F1:85:F4:4C:CD:C8:A1:3F:26:9B:B0:81:20:BE:86:40:BE:B6 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0D4466F839A82EDBEF9E0360B823EFD7B5C4D9CC Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e2037303138.roa Signing time: Mon 20 Oct 2025 15:55:09 +0000 ROA not before: Mon 20 Oct 2025 15:50:09 +0000 ROA not after: Mon 19 Oct 2026 15:55:09 +0000 asID: 7018 IP address blocks: 5.83.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 16:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:44:66:f8:39:a8:2e:db:ef:9e:03:60:b8:23:ef:d7:b5:c4:d9:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 20 15:50:09 2025 GMT Not After : Oct 19 15:55:09 2026 GMT Subject: CN=E33AF185F44CCDC8A13F269BB08120BE8640BEB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3d:c8:79:35:fa:09:88:8b:de:36:49:a1:81: bd:f3:eb:02:59:df:d0:92:8d:dd:07:eb:9f:4e:f8: 6f:00:96:dd:cb:8f:c7:0e:da:b3:7c:9a:06:50:92: 75:5a:96:2c:85:21:92:e8:43:cb:ac:0d:20:8e:b9: 50:dd:1f:f2:a9:1e:8f:1c:e4:34:4c:53:a1:ae:22: b2:18:77:fd:71:19:7c:66:9a:09:00:1d:d9:0f:c3: ea:ec:4b:bc:93:5a:13:3f:7c:70:4a:c9:73:04:42: 50:fe:69:0a:60:e3:23:14:28:99:f6:ac:21:92:f2: ea:fb:6b:56:32:15:7b:14:02:e7:e3:22:ae:f9:06: 98:14:83:b2:fd:3d:86:0f:6d:18:97:5d:c6:ed:f7: fc:19:f8:01:a9:e0:65:26:a9:e2:e3:6f:32:fd:8d: 93:ba:e1:73:ab:aa:3f:ac:a5:f2:86:a6:c3:9a:d7: 31:d5:f2:21:78:46:7c:78:34:3e:6d:f6:fb:6b:be: 57:43:8f:eb:86:15:41:e1:ac:98:1f:b5:98:ec:59: 81:9e:d7:16:28:c0:91:46:c3:c1:4c:d7:34:ac:9f: 07:12:8a:98:42:72:94:ca:51:e3:69:9d:f4:7f:62: c3:28:0d:2c:8c:c1:70:bc:14:d7:7b:35:4f:25:8e: 90:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:3A:F1:85:F4:4C:CD:C8:A1:3F:26:9B:B0:81:20:BE:86:40:BE:B6 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e2037303138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.212.0/24 Signature Algorithm: sha256WithRSAEncryption a3:8a:49:48:5a:3b:1e:7b:77:90:ad:62:cc:8c:d0:1d:cb:96: 45:4d:fc:dc:ad:fd:04:43:e4:6b:c8:ec:46:30:a4:d9:da:21: b2:2a:3d:4a:ea:aa:2b:a8:df:4f:8b:0a:9b:b1:4e:e7:5f:36: 94:32:4a:ec:5d:d0:33:c3:c5:11:14:9a:42:bf:2b:c5:78:53: 37:24:83:6d:03:89:9a:ec:cd:77:54:c5:84:ca:0e:3c:30:6a: ac:83:29:f5:aa:42:ce:ad:47:62:d6:bb:3c:52:fb:f4:57:f5: 59:2d:f3:4d:e9:26:c7:44:89:ce:f0:ff:3b:b3:9c:9d:59:6d: 33:d9:48:e9:90:41:32:5d:73:03:c3:cb:68:d3:71:fe:2d:b7: 5c:0e:df:98:ea:01:8f:c2:a0:cd:d0:29:9f:b0:9c:28:a6:1d: c8:da:f1:0c:17:c9:80:c2:ba:10:01:08:30:01:d0:91:ce:52: 0d:17:53:54:32:d0:26:2c:e9:b5:38:2d:e1:65:67:95:4f:ce: ff:5a:24:ad:70:71:8e:3b:4d:2a:ce:db:f9:74:ca:25:49:9a: 6b:06:36:9f:1a:2c:f5:05:a1:c5:3b:a0:35:3a:1d:00:fb:80: e0:d4:00:c5:f9:81:82:4e:02:d9:89:ac:63:f1:61:1c:9f:a7: 31:50:92:ec -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUDURm+DmoLtvvngNguCPv17XE2cwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTEwMjAxNTUwMDlaFw0yNjEwMTkxNTU1MDlaMDMxMTAvBgNV BAMTKEUzM0FGMTg1RjQ0Q0NEQzhBMTNGMjY5QkIwODEyMEJFODY0MEJFQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbPch5NfoJiIveNkmhgb3z6wJZ 39CSjd0H659O+G8Alt3Lj8cO2rN8mgZQknValiyFIZLoQ8usDSCOuVDdH/KpHo8c 5DRMU6GuIrIYd/1xGXxmmgkAHdkPw+rsS7yTWhM/fHBKyXMEQlD+aQpg4yMUKJn2 rCGS8ur7a1YyFXsUAufjIq75BpgUg7L9PYYPbRiXXcbt9/wZ+AGp4GUmqeLjbzL9 jZO64XOrqj+spfKGpsOa1zHV8iF4Rnx4ND5t9vtrvldDj+uGFUHhrJgftZjsWYGe 1xYowJFGw8FM1zSsnwcSiphCcpTKUeNpnfR/YsMoDSyMwXC8FNd7NU8ljpALAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU4zrxhfRMzcihPyabsIEgvoZAvrYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzEzMjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM3MzAzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPUMA0GCSqGSIb3DQEBCwUA A4IBAQCjiklIWjsee3eQrWLMjNAdy5ZFTfzcrf0EQ+RryOxGMKTZ2iGyKj1K6qor qN9PiwqbsU7nXzaUMkrsXdAzw8URFJpCvyvFeFM3JINtA4ma7M13VMWEyg48MGqs gyn1qkLOrUdi1rs8Uvv0V/VZLfNN6SbHRInO8P87s5ydWW0z2UjpkEEyXXMDw8to 03H+LbdcDt+Y6gGPwqDN0CmfsJwoph3I2vEMF8mAwroQAQgwAdCRzlINF1NUMtAm LOm1OC3hZWeVT87/WiStcHGOO00qztv5dMolSZprBjafGiz1BaHFO6A1Oh0A+4Dg 1ADF+YGCTgLZiaxj8WEcn6cxUJLs -----END CERTIFICATE-----Generated at Tue Oct 21 03:03:57 2025 by rpki-client