$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232322e302f32342d3234203d3e203239383032.roa File: 352e38332e3232322e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: oH2bGoSJGfD4d1T6HuxpRh41RnGUdh0yzPpXXvTbkcs= Subject key identifier: B5:11:5B:80:0A:D1:41:74:FB:C2:FA:48:61:97:8D:F5:E6:70:0B:D2 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7BD462A9E915BDD8BD770CF6616D4AEBEDDA4EBD Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232322e302f32342d3234203d3e203239383032.roa Signing time: Wed 04 Jun 2025 21:54:08 +0000 ROA not before: Wed 04 Jun 2025 21:49:08 +0000 ROA not after: Wed 03 Jun 2026 21:54:08 +0000 asID: 29802 IP address blocks: 5.83.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 10:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d4:62:a9:e9:15:bd:d8:bd:77:0c:f6:61:6d:4a:eb:ed:da:4e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jun 4 21:49:08 2025 GMT Not After : Jun 3 21:54:08 2026 GMT Subject: CN=B5115B800AD14174FBC2FA4861978DF5E6700BD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:80:59:02:39:f2:8a:71:7b:77:11:9e:7f:68: ba:d3:9b:15:39:29:10:cc:b0:6f:2c:91:78:bd:ab: e4:a3:20:98:8d:02:23:91:86:84:c3:e3:46:87:ca: e3:d8:9d:66:22:88:81:b6:8e:77:66:77:b1:82:28: cd:89:bd:da:a5:05:02:6f:86:2f:82:e2:e2:73:6c: 56:df:fc:e4:e7:1b:2d:31:c4:2d:e6:ab:95:83:b4: 22:b8:04:43:e3:c7:4a:2e:1a:19:ff:e4:5a:58:aa: 26:4f:11:1e:f0:48:1b:c1:8f:ff:bd:f1:cd:8a:75: 0b:de:27:4e:f0:ed:1b:e8:c2:06:19:13:c1:d9:69: 23:8f:4c:9a:a9:56:a7:36:db:ba:21:24:1f:2e:71: bd:e0:a5:47:c0:ff:74:75:07:40:c6:55:f9:a9:a8: e3:8d:61:6d:72:a4:bb:f3:ae:0d:d6:19:68:ca:3b: de:83:33:15:f0:ba:82:09:f1:eb:ea:38:b6:eb:ad: 24:53:a0:02:ba:6c:c7:3a:b2:e3:f3:64:9a:1a:75: 6a:38:e6:ad:91:99:db:87:e9:97:06:2b:aa:6d:89: 31:05:30:55:f1:19:26:3d:7e:d8:6c:d5:a9:f2:3a: d7:bb:57:e8:3d:94:14:b1:d5:5f:ee:79:60:a4:b9: b3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:11:5B:80:0A:D1:41:74:FB:C2:FA:48:61:97:8D:F5:E6:70:0B:D2 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232322e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.222.0/24 Signature Algorithm: sha256WithRSAEncryption 13:69:21:69:5b:9d:a3:60:7a:7d:51:ed:fc:c5:9e:57:6e:fd: 41:d0:26:c6:07:33:7f:2f:5b:ad:02:94:dc:b1:40:64:35:91: 9f:9d:73:06:f7:56:2c:3f:9a:69:c5:a4:0b:8f:12:38:14:40: 29:38:ea:86:b3:8c:cb:b1:af:41:d4:84:a9:d1:ec:25:36:23: 88:c2:a9:35:9e:3d:f6:55:71:f1:f7:1f:8a:38:13:6d:f5:ac: 3b:6b:54:11:1b:da:03:15:3e:6c:92:eb:36:08:d0:99:e3:8c: 13:d3:c7:2e:17:b0:fd:29:ed:54:df:1c:5b:e8:99:c6:23:99: c2:4a:94:70:36:56:a3:b8:d7:a0:38:ae:f7:43:07:bf:72:f8: e4:39:6b:21:cc:eb:ed:da:8f:ea:7f:1f:c9:43:1d:1e:33:3e: 4f:08:55:9b:bd:64:a0:df:c7:6e:98:83:d9:82:ab:01:7d:ad: 7c:6f:dc:c6:1e:a1:6f:97:7e:f6:ec:5d:04:a8:8c:9b:d7:60: 08:54:4b:a3:49:01:d5:31:4c:47:3d:e2:8b:7f:e0:ac:25:59: 76:3d:64:6c:71:21:61:8f:c3:1c:7b:07:bc:f2:e4:46:4e:77: 4f:52:14:8e:52:4e:bc:ea:ab:ef:58:b1:35:14:ee:55:0d:2b: 92:1c:4e:8a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUe9RiqekVvdi9dwz2YW1K6+3aTr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA2MDQyMTQ5MDhaFw0yNjA2MDMyMTU0MDhaMDMxMTAvBgNV BAMTKEI1MTE1QjgwMEFEMTQxNzRGQkMyRkE0ODYxOTc4REY1RTY3MDBCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChgFkCOfKKcXt3EZ5/aLrTmxU5 KRDMsG8skXi9q+SjIJiNAiORhoTD40aHyuPYnWYiiIG2jndmd7GCKM2JvdqlBQJv hi+C4uJzbFbf/OTnGy0xxC3mq5WDtCK4BEPjx0ouGhn/5FpYqiZPER7wSBvBj/+9 8c2KdQveJ07w7RvowgYZE8HZaSOPTJqpVqc227ohJB8ucb3gpUfA/3R1B0DGVfmp qOONYW1ypLvzrg3WGWjKO96DMxXwuoIJ8evqOLbrrSRToAK6bMc6suPzZJoadWo4 5q2RmduH6ZcGK6ptiTEFMFXxGSY9fths1anyOte7V+g9lBSx1V/ueWCkubP7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUtRFbgArRQXT7wvpIYZeN9eZwC9IwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMyMzIyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjM5MzgzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPeMA0GCSqGSIb3DQEB CwUAA4IBAQATaSFpW52jYHp9Ue38xZ5Xbv1B0CbGBzN/L1utApTcsUBkNZGfnXMG 91YsP5ppxaQLjxI4FEApOOqGs4zLsa9B1ISp0ewlNiOIwqk1nj32VXHx9x+KOBNt 9aw7a1QRG9oDFT5skus2CNCZ44wT08cuF7D9Ke1U3xxb6JnGI5nCSpRwNlajuNeg OK73Qwe/cvjkOWshzOvt2o/qfx/JQx0eMz5PCFWbvWSg38dumIPZgqsBfa18b9zG HqFvl3727F0EqIyb12AIVEujSQHVMUxHPeKLf+CsJVl2PWRscSFhj8Mcewe88uRG TndPUhSOUk686qvvWLE1FO5VDSuSHE6K -----END CERTIFICATE-----Generated at Tue Jul 1 03:16:00 2025 by rpki-client