$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e20323134313433.roa File: 3130392e3130372e34382e302f32312d3234203d3e20323134313433.roa (raw, json) Hash identifier: obOT5bGp8fGtClppBIrvOQ0p7BjgEVKdMtMxMrzoMSs= Subject key identifier: 4E:20:36:CD:1A:99:E1:FE:EB:FE:64:AC:60:0D:4C:8F:34:BF:FB:CE Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 57ABC39053678A1A74904095FCE76760745BDAE7 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e20323134313433.roa Signing time: Mon 04 May 2026 12:31:40 +0000 ROA not before: Mon 04 May 2026 12:26:40 +0000 ROA not after: Mon 03 May 2027 12:31:40 +0000 asID: 214143 IP address blocks: 109.107.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 04:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ab:c3:90:53:67:8a:1a:74:90:40:95:fc:e7:67:60:74:5b:da:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 4 12:26:40 2026 GMT Not After : May 3 12:31:40 2027 GMT Subject: CN=4E2036CD1A99E1FEEBFE64AC600D4C8F34BFFBCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c5:23:73:fc:e3:6c:f6:f9:d1:eb:0e:03:9d: 75:84:a9:7d:bc:82:f6:57:8a:e0:a8:5d:fe:68:35: 68:65:e3:dc:63:3e:3a:fa:05:13:e9:a4:b0:1b:42: 60:fd:8f:4d:2e:82:34:4c:19:12:79:73:22:c6:3e: 4f:c0:b9:be:a1:07:24:4c:ee:04:1c:b0:c4:16:95: 57:19:32:38:f4:d1:e5:e7:c6:ee:7c:80:99:0b:47: 55:75:0a:cc:5b:f4:b9:58:b3:d7:34:41:ee:19:10: ed:02:4f:dd:07:e4:2c:dc:f5:00:95:cf:d3:b4:d6: 17:5a:a1:db:24:e7:a7:39:0d:0c:44:ae:9c:f7:06: d9:28:4e:45:5a:46:d4:ce:23:7f:27:ae:9e:00:3b: c0:df:e7:7e:95:07:97:3b:b7:63:56:e0:95:0d:f6: 9b:83:2a:21:43:88:77:0d:96:23:0b:b4:35:43:56: 54:0e:9b:73:48:0f:27:ee:fb:48:8d:ef:05:14:ab: e3:69:d9:23:b7:2b:a9:25:79:2e:11:a8:0a:07:82: be:94:ba:79:e7:c3:fc:da:b7:cd:61:1c:1c:1e:8a: 30:8d:1d:be:5f:52:c5:77:c4:59:21:ff:18:fe:d6: d4:b4:6c:27:a8:aa:cf:3e:82:42:c0:3d:3f:a8:2d: b6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:20:36:CD:1A:99:E1:FE:EB:FE:64:AC:60:0D:4C:8F:34:BF:FB:CE X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e20323134313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.48.0/21 Signature Algorithm: sha256WithRSAEncryption 29:46:1f:58:5f:0d:64:4a:9a:ee:d2:06:b2:4e:35:95:e7:d7: 18:be:71:b7:bf:5c:d9:20:a5:a8:d8:ae:7c:ab:b0:b4:11:4f: 3c:25:87:e8:5d:4e:28:f0:55:6e:5c:08:8f:5f:be:ae:b2:4d: 62:d2:5c:93:01:4d:8c:eb:40:60:f2:15:e6:e3:a3:2f:1d:ce: b6:3b:b5:19:22:54:a4:72:af:88:6f:65:39:e8:86:69:d8:3a: e6:ea:8b:dc:3c:d0:55:ec:2c:9c:0e:ba:e6:2d:24:43:5c:33: f4:bf:a4:59:c8:65:10:9a:99:4a:9c:b8:ab:00:d7:cf:a9:55: e1:ee:6b:0a:d1:29:a9:d6:6f:03:26:5a:5c:a6:4e:7c:12:30: be:d0:d6:f0:8e:95:7a:89:e2:f5:25:bf:46:ed:2d:94:60:08: 26:96:44:0f:ee:83:c2:01:3d:f0:94:91:90:89:bd:55:74:e0: 28:b0:79:1d:0c:76:59:30:7b:ea:7e:1b:cb:b4:c9:d2:c4:9b: 48:99:88:87:a1:a1:7f:60:fb:6a:1f:a5:5c:94:75:14:5f:1c: c4:03:69:18:68:ef:97:e0:74:b9:c6:b5:64:4c:23:fe:28:f7: 73:e3:41:90:7d:72:89:2e:80:80:b0:97:d1:bb:f4:d1:1f:a2: 05:00:e8:07 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUV6vDkFNnihp0kECV/OdnYHRb2ucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDQxMjI2NDBaFw0yNzA1MDMxMjMxNDBaMDMxMTAvBgNV BAMTKDRFMjAzNkNEMUE5OUUxRkVFQkZFNjRBQzYwMEQ0QzhGMzRCRkZCQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYxSNz/ONs9vnR6w4DnXWEqX28 gvZXiuCoXf5oNWhl49xjPjr6BRPppLAbQmD9j00ugjRMGRJ5cyLGPk/Aub6hByRM 7gQcsMQWlVcZMjj00eXnxu58gJkLR1V1Csxb9LlYs9c0Qe4ZEO0CT90H5Czc9QCV z9O01hdaodsk56c5DQxErpz3BtkoTkVaRtTOI38nrp4AO8Df536VB5c7t2NW4JUN 9puDKiFDiHcNliMLtDVDVlQOm3NIDyfu+0iN7wUUq+Np2SO3K6kleS4RqAoHgr6U unnnw/zat81hHBweijCNHb5fUsV3xFkh/xj+1tS0bCeoqs8+gkLAPT+oLbbvAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUTiA2zRqZ4f7r/mSsYA1MjzS/+84wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzMTM0MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbWswMA0GCSqG SIb3DQEBCwUAA4IBAQApRh9YXw1kSpru0gayTjWV59cYvnG3v1zZIKWo2K58q7C0 EU88JYfoXU4o8FVuXAiPX76usk1i0lyTAU2M60Bg8hXm46MvHc62O7UZIlSkcq+I b2U56IZp2Drm6ovcPNBV7CycDrrmLSRDXDP0v6RZyGUQmplKnLirANfPqVXh7msK 0Smp1m8DJlpcpk58EjC+0NbwjpV6ieL1Jb9G7S2UYAgmlkQP7oPCAT3wlJGQib1V dOAosHkdDHZZMHvqfhvLtMnSxJtImYiHoaF/YPtqH6VclHUUXxzEA2kYaO+X4HS5 xrVkTCP+KPdz40GQfXKJLoCAsJfRu/TRH6IFAOgH -----END CERTIFICATE-----Generated at Tue May 12 21:53:32 2026 by rpki-client