$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231372e302f32342d3234203d3e20313734.roa File: 352e38332e3231372e302f32342d3234203d3e20313734.roa (raw, json) Hash identifier: VP0WZSFLgctfHa2VU0QUiuZrCLsswyyNyZY3ri6hw7o= Subject key identifier: 4E:0F:87:DB:0A:D7:34:DF:27:C4:C0:C5:51:2C:CE:46:28:7A:98:6C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 3FF0AABF93AC6F3034740D0F5DC50BAA444F7A8B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231372e302f32342d3234203d3e20313734.roa Signing time: Tue 10 Feb 2026 10:07:12 +0000 ROA not before: Tue 10 Feb 2026 10:02:12 +0000 ROA not after: Tue 09 Feb 2027 10:07:12 +0000 asID: 174 IP address blocks: 5.83.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Feb 2026 00:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f0:aa:bf:93:ac:6f:30:34:74:0d:0f:5d:c5:0b:aa:44:4f:7a:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 10 10:02:12 2026 GMT Not After : Feb 9 10:07:12 2027 GMT Subject: CN=4E0F87DB0AD734DF27C4C0C5512CCE46287A986C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:5c:42:71:16:d4:79:c7:28:67:89:8d:c3: 93:be:c5:73:07:ef:72:1d:75:6c:12:ab:27:02:67: 92:e0:71:06:82:43:f6:46:59:9b:6f:c8:db:0a:a6: 4d:ca:72:19:3e:81:f5:6e:1c:ce:37:77:58:e3:41: 69:6e:8a:f1:23:f8:af:af:0f:9a:51:04:ea:31:09: 89:fd:93:fb:ad:c2:e0:a9:c7:5c:dd:94:36:67:cb: 32:42:3e:a5:e3:3d:c8:af:96:10:cc:e6:8f:ab:75: 9c:cc:5d:7f:b8:43:56:b8:93:f5:a1:53:a8:14:66: 4a:0e:d7:82:5d:cb:3e:62:dd:3c:ba:ca:54:e5:a0: 28:4c:59:b8:ed:25:3e:4f:ce:77:e3:4a:17:4c:37: 96:5d:c7:41:19:c6:56:0f:db:6c:9b:70:78:5d:b7: 69:ab:7a:53:34:2f:81:2e:52:46:14:56:8a:b8:5b: d8:b9:2e:2b:27:c9:db:a5:fd:27:e5:76:bb:dd:f1: 86:01:09:25:07:54:f6:c2:bf:6f:5b:2c:1e:80:7e: 8b:10:4d:88:19:e8:d8:dc:86:41:12:90:68:5d:fe: 27:37:e0:91:b1:b3:94:1c:7f:b7:31:85:91:e6:2d: 46:56:c0:b8:3b:00:b5:b7:54:27:4f:f8:58:52:e4: 5e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0F:87:DB:0A:D7:34:DF:27:C4:C0:C5:51:2C:CE:46:28:7A:98:6C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231372e302f32342d3234203d3e20313734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.217.0/24 Signature Algorithm: sha256WithRSAEncryption 91:b7:1b:1c:72:ab:1a:f4:b1:b4:14:5c:a1:7d:a1:f6:61:11: 53:c6:0f:b6:45:05:de:9d:a6:6f:00:35:6e:3e:b1:a1:9c:8d: 50:76:49:ae:da:d8:a7:43:3d:6c:11:0b:fe:f3:6d:db:0d:39: 1e:eb:3b:32:3b:83:8e:39:9f:e1:6f:2c:3a:5b:3b:7a:0e:4e: 6a:bd:cc:7d:93:b2:ab:46:9f:5f:25:d6:de:fd:5d:20:63:fb: e3:1e:13:7f:af:06:30:61:4c:bd:e7:40:bc:14:a6:b2:c2:8f: 3c:ae:76:a8:80:28:61:58:cb:72:bc:18:d4:16:6d:2a:a8:1e: 00:5d:7c:ff:cd:45:95:8d:b6:28:57:10:b3:5f:30:c1:38:9d: c5:2e:c8:97:2f:68:26:60:b0:5e:dc:f4:b8:ef:6a:55:ec:14: 4b:99:88:41:41:18:95:4a:8a:0f:a7:1a:52:52:ab:6e:99:2f: 47:09:d0:59:18:73:af:06:aa:cb:76:d2:1a:a5:fd:1c:be:f0: 6a:59:98:2d:bc:77:2a:b5:74:6e:87:b4:46:fc:93:60:04:5d: 74:19:90:05:70:13:d7:65:cc:02:ed:5a:d5:88:5f:07:a7:90: dc:c5:1b:62:31:99:8e:59:af:7e:82:12:d3:f9:1a:b9:2b:80: a8:9c:60:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUP/Cqv5OsbzA0dA0PXcULqkRPeoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAyMTAxMDAyMTJaFw0yNzAyMDkxMDA3MTJaMDMxMTAvBgNV BAMTKDRFMEY4N0RCMEFENzM0REYyN0M0QzBDNTUxMkNDRTQ2Mjg3QTk4NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5yFxCcRbUeccoZ4mNw5O+xXMH 73IddWwSqycCZ5LgcQaCQ/ZGWZtvyNsKpk3Kchk+gfVuHM43d1jjQWluivEj+K+v D5pRBOoxCYn9k/utwuCpx1zdlDZnyzJCPqXjPcivlhDM5o+rdZzMXX+4Q1a4k/Wh U6gUZkoO14Jdyz5i3Ty6ylTloChMWbjtJT5PznfjShdMN5Zdx0EZxlYP22ybcHhd t2mrelM0L4EuUkYUVoq4W9i5Lisnydul/Sfldrvd8YYBCSUHVPbCv29bLB6AfosQ TYgZ6NjchkESkGhd/ic34JGxs5Qcf7cxhZHmLUZWwLg7ALW3VCdP+FhS5F4LAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUTg+H2wrXNN8nxMDFUSzORih6mGwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzEzNzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMxMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVT2TANBgkqhkiG9w0BAQsFAAOC AQEAkbcbHHKrGvSxtBRcoX2h9mERU8YPtkUF3p2mbwA1bj6xoZyNUHZJrtrYp0M9 bBEL/vNt2w05Hus7MjuDjjmf4W8sOls7eg5Oar3MfZOyq0afXyXW3v1dIGP74x4T f68GMGFMvedAvBSmssKPPK52qIAoYVjLcrwY1BZtKqgeAF18/81FlY22KFcQs18w wTidxS7Ily9oJmCwXtz0uO9qVewUS5mIQUEYlUqKD6caUlKrbpkvRwnQWRhzrwaq y3bSGqX9HL7walmYLbx3KrV0boe0RvyTYARddBmQBXAT12XMAu1a1YhfB6eQ3MUb YjGZjlmvfoIS0/kauSuAqJxg3g== -----END CERTIFICATE-----Generated at Thu Feb 26 10:32:47 2026 by rpki-client