$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32332d3234203d3e20383334.roa File: 352e38332e3232302e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: u/a8joL3l5nyKSxA8Zjk+kpA5jiWJTol2xWai6RcK5g= Subject key identifier: BD:7A:ED:D7:95:38:DC:C5:91:3C:88:E4:91:30:91:7A:75:7B:AC:2D Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7CB93503FA1D6D5B6D9E82081805FC917E65D945 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32332d3234203d3e20383334.roa Signing time: Sat 20 Jun 2026 03:17:46 +0000 ROA not before: Sat 20 Jun 2026 03:12:46 +0000 ROA not after: Sat 19 Jun 2027 03:17:46 +0000 asID: 834 IP address blocks: 5.83.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 01:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:b9:35:03:fa:1d:6d:5b:6d:9e:82:08:18:05:fc:91:7e:65:d9:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jun 20 03:12:46 2026 GMT Not After : Jun 19 03:17:46 2027 GMT Subject: CN=BD7AEDD79538DCC5913C88E49130917A757BAC2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:3d:0e:3c:9f:60:a7:23:14:29:27:53:f3: 24:07:e8:5d:bf:ed:05:8c:3b:ff:3a:a8:88:73:24: c0:02:52:e5:63:e3:5a:58:62:fd:10:49:eb:f6:08: 30:80:df:ba:11:90:13:37:c8:d1:01:2a:29:9e:ad: ab:a6:13:b9:03:25:ed:ae:09:b6:f5:6a:f5:32:34: 7d:c1:04:29:62:8e:ac:ce:04:2e:2f:2d:76:76:b7: 75:cf:86:23:38:2d:12:a6:70:79:68:22:f4:6f:3b: e4:ff:83:ad:47:d1:66:69:40:13:b8:b5:59:c7:c0: da:95:2c:54:f9:b1:2c:42:8f:86:b1:21:08:e3:84: 26:3e:38:58:ed:98:60:a1:6f:52:76:ed:09:aa:4a: 6a:05:3d:2b:a2:d8:29:a0:cd:f4:3c:c1:d9:d3:59: 2e:6b:71:11:a1:4b:55:9a:fb:3f:25:b7:55:71:85: 6e:36:ba:e4:b9:f4:e7:c0:0a:ba:f1:30:e6:9c:27: e5:e5:84:6a:37:4b:1d:dd:ea:da:b3:56:99:66:9d: 17:f1:83:ce:a9:29:8b:72:c8:91:71:eb:c0:a4:52: 6f:c1:23:04:0b:07:91:94:27:89:1c:6e:1b:f3:51: ef:90:2c:14:b8:19:fd:a1:36:c2:19:14:bb:1d:24: 26:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:7A:ED:D7:95:38:DC:C5:91:3C:88:E4:91:30:91:7A:75:7B:AC:2D X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.220.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:4f:a8:85:0c:d8:af:05:75:64:6d:7c:ed:3d:a8:11:68:86: db:a6:2b:98:7f:32:a3:6c:e0:93:ce:ad:58:2b:17:92:45:0f: 4f:94:0e:b3:12:00:b8:0a:34:bf:59:52:b8:94:b6:72:23:ee: 0e:48:9d:37:61:60:c1:57:1f:81:ec:ac:d8:76:51:4c:62:c0: cf:21:64:11:9a:49:9b:3f:75:a3:9a:d8:35:ff:d3:d7:e7:12: 93:02:c8:3f:39:45:3e:5a:30:a8:7d:16:11:dd:26:a3:4b:82: db:0d:ba:a6:fd:6f:b8:4b:22:6c:9f:7b:57:b2:61:78:a6:fc: 12:6f:44:d8:42:89:8c:47:86:41:3a:fe:57:6c:7f:47:e9:b0: 04:9a:4d:84:91:30:a3:62:98:cc:cf:75:74:2c:9e:6d:71:0f: 38:54:85:73:5e:7e:53:77:66:73:9f:c6:a4:80:85:bd:44:70: c4:be:3e:8f:10:35:e6:81:cf:a5:2a:05:5a:98:77:02:67:12: 31:b2:f8:9a:48:d3:66:44:bb:f2:d7:0b:69:2a:a9:c6:06:2f: 78:61:9e:b4:a5:dd:62:0f:49:2c:0f:bb:4f:9d:57:79:59:76: 4f:9c:d9:a8:f7:72:f8:27:91:1f:a7:9f:90:b4:8b:ee:86:99: c9:9a:46:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUfLk1A/odbVttnoIIGAX8kX5l2UUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA2MjAwMzEyNDZaFw0yNzA2MTkwMzE3NDZaMDMxMTAvBgNV BAMTKEJEN0FFREQ3OTUzOERDQzU5MTNDODhFNDkxMzA5MTdBNzU3QkFDMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBSD0OPJ9gpyMUKSdT8yQH6F2/ 7QWMO/86qIhzJMACUuVj41pYYv0QSev2CDCA37oRkBM3yNEBKimeraumE7kDJe2u Cbb1avUyNH3BBClijqzOBC4vLXZ2t3XPhiM4LRKmcHloIvRvO+T/g61H0WZpQBO4 tVnHwNqVLFT5sSxCj4axIQjjhCY+OFjtmGChb1J27QmqSmoFPSui2CmgzfQ8wdnT WS5rcRGhS1Wa+z8lt1VxhW42uuS59OfACrrxMOacJ+XlhGo3Sx3d6tqzVplmnRfx g86pKYtyyJFx68CkUm/BIwQLB5GUJ4kcbhvzUe+QLBS4Gf2hNsIZFLsdJCZDAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUvXrt15U43MWRPIjkkTCRenV7rC0wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzIzMDJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQVT3DANBgkqhkiG9w0BAQsFAAOC AQEATk+ohQzYrwV1ZG187T2oEWiG26YrmH8yo2zgk86tWCsXkkUPT5QOsxIAuAo0 v1lSuJS2ciPuDkidN2FgwVcfgeys2HZRTGLAzyFkEZpJmz91o5rYNf/T1+cSkwLI PzlFPlowqH0WEd0mo0uC2w26pv1vuEsibJ97V7JheKb8Em9E2EKJjEeGQTr+V2x/ R+mwBJpNhJEwo2KYzM91dCyebXEPOFSFc15+U3dmc5/GpICFvURwxL4+jxA15oHP pSoFWph3AmcSMbL4mkjTZkS78tcLaSqpxgYveGGetKXdYg9JLA+7T51XeVl2T5zZ qPdy+CeRH6efkLSL7oaZyZpGog== -----END CERTIFICATE-----Generated at Mon Jun 29 10:00:57 2026 by rpki-client