$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e2037303138.roa File: 352e38332e3231332e302f32342d3234203d3e2037303138.roa (raw, json) Hash identifier: ZJPBlzN6NeYYZpuqQmKpxIIpE7gFPmK1Td8KbcnVKBc= Subject key identifier: 4E:85:E2:2A:9D:23:1B:6C:97:94:76:A0:1A:23:10:99:20:8D:67:86 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 15C2F7EAD78BCD9727B0EDC7F4D5D9CA5CE5EC Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e2037303138.roa Signing time: Mon 20 Oct 2025 15:55:09 +0000 ROA not before: Mon 20 Oct 2025 15:50:09 +0000 ROA not after: Mon 19 Oct 2026 15:55:09 +0000 asID: 7018 IP address blocks: 5.83.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 16:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c2:f7:ea:d7:8b:cd:97:27:b0:ed:c7:f4:d5:d9:ca:5c:e5:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 20 15:50:09 2025 GMT Not After : Oct 19 15:55:09 2026 GMT Subject: CN=4E85E22A9D231B6C979476A01A231099208D6786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:91:c6:d7:91:d6:94:05:ad:2d:93:d1:3b:83: d7:5b:c7:e7:bf:3f:24:5b:75:f1:cc:76:cb:fa:db: c9:f0:e2:d7:0a:50:d0:01:76:13:31:14:d7:4a:d3: 8a:6f:1a:30:47:f0:f8:7f:e9:b8:3a:6d:4f:bf:f0: 24:4c:08:da:ce:c6:0b:b2:e6:a4:ee:e8:51:fa:32: c1:ef:31:1a:ea:72:89:ce:09:2d:22:75:a4:57:6d: 24:0a:ef:21:79:aa:d5:2c:5b:77:8d:16:33:25:f8: ac:6b:5b:3c:b1:f7:51:26:19:cc:08:22:d0:22:55: d0:cd:ec:86:30:51:16:52:73:b5:0d:b8:23:8e:8f: 56:c3:8a:44:51:d4:75:3c:fd:6c:5c:f7:21:15:05: 89:66:ab:43:80:20:17:4f:1d:a3:87:86:ce:88:3b: 16:59:01:8d:93:18:34:e8:67:16:3f:12:6d:4e:bc: 1b:bb:40:97:60:29:a0:c1:c9:ce:be:2d:ef:17:23: a0:e9:68:a6:4f:26:88:06:b1:fc:ad:38:55:56:18: b3:ec:ae:7e:3f:6e:e3:bc:4f:6a:79:c1:d9:4e:67: f5:1a:a5:1d:96:22:c8:a0:27:02:26:49:a1:ac:9d: c2:a3:4a:5b:87:35:f0:ac:fa:13:8b:14:9f:23:8f: d2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:85:E2:2A:9D:23:1B:6C:97:94:76:A0:1A:23:10:99:20:8D:67:86 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e2037303138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.213.0/24 Signature Algorithm: sha256WithRSAEncryption 57:c4:1c:bf:a1:ef:b7:55:cf:d2:3a:1c:6c:e6:5d:1e:00:a9: 02:13:fa:87:29:b6:b2:a7:d9:5a:80:1e:bc:46:6e:d2:26:33: 54:93:43:14:55:79:41:f0:f3:c6:79:13:23:d2:e0:35:d6:7c: 34:15:d2:28:9c:e4:76:4f:b3:30:75:a9:d2:c4:b9:11:90:3d: 60:bf:ac:75:59:ee:f7:a1:4d:67:a7:6c:8f:ff:48:dc:c3:f1: 49:f2:6a:38:e5:cb:2c:8e:41:e5:6f:f0:72:28:3c:6a:a3:da: 4d:8d:a6:92:dd:ed:e3:45:bd:b0:b4:fb:5d:34:ee:f4:82:cf: 02:46:5d:a3:a8:24:10:bd:69:cf:c1:c7:b7:c0:eb:ce:9c:ee: a8:87:88:b4:83:05:bc:90:64:f6:56:6e:cb:8a:bd:2c:9b:5d: 9f:4d:2b:73:41:80:76:96:39:10:a1:8e:a8:16:1b:ae:e6:79: 29:43:4f:c4:56:be:21:c0:3c:5e:92:01:d5:85:3e:79:d8:7b: 08:66:6f:ea:8d:ad:5c:fe:d4:3c:84:4c:7a:71:e7:20:6d:27: 1b:c5:98:c2:ea:06:92:9e:5e:2e:cb:e1:2f:1f:29:0a:1f:88: 78:c6:73:30:d5:5d:98:95:4e:5f:d6:47:33:0d:86:e3:98:fe: 8b:32:de:85 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgITFcL36teLzZcnsO3H9NXZylzl7DANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygyQTJGQjREQjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRF MEZEMEJFMB4XDTI1MTAyMDE1NTAwOVoXDTI2MTAxOTE1NTUwOVowMzExMC8GA1UE AxMoNEU4NUUyMkE5RDIzMUI2Qzk3OTQ3NkEwMUEyMzEwOTkyMDhENjc4NjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANSRxteR1pQFrS2T0TuD11vH578/ JFt18cx2y/rbyfDi1wpQ0AF2EzEU10rTim8aMEfw+H/puDptT7/wJEwI2s7GC7Lm pO7oUfoywe8xGupyic4JLSJ1pFdtJArvIXmq1Sxbd40WMyX4rGtbPLH3USYZzAgi 0CJV0M3shjBRFlJztQ24I46PVsOKRFHUdTz9bFz3IRUFiWarQ4AgF08do4eGzog7 FlkBjZMYNOhnFj8SbU68G7tAl2ApoMHJzr4t7xcjoOlopk8miAax/K04VVYYs+yu fj9u47xPannB2U5n9RqlHZYiyKAnAiZJoaydwqNKW4c18Kz6E4sUnyOP0jMCAwEA AaOCAlswggJXMB0GA1UdDgQWBBROheIqnSMbbJeUdqAaIxCZII1nhjAfBgNVHSME GDAWgBQqL7TbCqTQBpWDFocuRntVTg/QvjAOBgNVHQ8BAf8EBAMCB4AwgYgGA1Ud HwSBgDB+MHygeqB4hnZyc3luYzovL3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9h NmYyMTQ3YS1kZThhLTQ0NDAtYmNhMi02ZDhiN2M4NzZmZGEtMC8wLzJBMkZCNERC MEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQwQkUuY3JsMIGeBggrBgEFBQcB AQSBkTCBjjCBiwYIKwYBBQUHMAKGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvOWRmMzNhNTctN2U0Zi00ODQ0LTg0ZTItYjcxNTNi NTUxMWI0LzAvMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0RTBGRDBC RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6Ly9y Lm1hZ2VsbGFuLmlweG8uY29tL3JlcG8vYTZmMjE0N2EtZGU4YS00NDQwLWJjYTIt NmQ4YjdjODc2ZmRhLTAvMC8zNTJlMzgzMzJlMzIzMTMzMmUzMDJmMzIzNDJkMzIz NDIwM2QzZTIwMzczMDMxMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFU9UwDQYJKoZIhvcNAQELBQAD ggEBAFfEHL+h77dVz9I6HGzmXR4AqQIT+ocptrKn2VqAHrxGbtImM1STQxRVeUHw 88Z5EyPS4DXWfDQV0iic5HZPszB1qdLEuRGQPWC/rHVZ7vehTWenbI//SNzD8Uny ajjlyyyOQeVv8HIoPGqj2k2NppLd7eNFvbC0+1007vSCzwJGXaOoJBC9ac/Bx7fA 686c7qiHiLSDBbyQZPZWbsuKvSybXZ9NK3NBgHaWORChjqgWG67meSlDT8RWviHA PF6SAdWFPnnYewhmb+qNrVz+1DyETHpx5yBtJxvFmMLqBpKeXi7L4S8fKQofiHjG czDVXZiVTl/WRzMNhuOY/osy3oU= -----END CERTIFICATE-----Generated at Tue Oct 21 03:04:00 2025 by rpki-client