$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e2032393134.roa File: 3130392e3130372e34382e302f32312d3234203d3e2032393134.roa (raw, json) Hash identifier: NK8xHg4V9sB8IYkatZoEkbrwOT1uVDvkIqjTqTVZhN4= Subject key identifier: FD:FB:C8:5B:19:EF:7B:F6:DC:A6:42:66:3C:B8:8A:EC:74:81:4D:6D Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 41E72AA2BDEE37149748770CB74B7E16F1FDA7BD Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e2032393134.roa Signing time: Mon 04 May 2026 14:03:25 +0000 ROA not before: Mon 04 May 2026 13:58:25 +0000 ROA not after: Mon 03 May 2027 14:03:25 +0000 asID: 2914 IP address blocks: 109.107.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 04:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e7:2a:a2:bd:ee:37:14:97:48:77:0c:b7:4b:7e:16:f1:fd:a7:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 4 13:58:25 2026 GMT Not After : May 3 14:03:25 2027 GMT Subject: CN=FDFBC85B19EF7BF6DCA642663CB88AEC74814D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:26:a0:86:bd:10:38:f0:92:df:3d:29:05:f5: 44:46:97:47:f1:f3:54:1e:43:ed:49:f5:aa:03:c4: de:44:4e:a2:85:ef:b7:89:fe:b4:29:38:a0:e7:a5: 93:b0:73:93:38:3c:c2:73:1a:b4:ac:10:c2:a6:bb: 6c:45:e7:45:38:5b:b1:b9:98:36:4b:b2:f7:76:86: 2a:6d:28:09:0d:d8:16:d2:70:97:07:75:aa:96:6c: 58:1e:c8:6f:08:29:36:73:1f:2b:42:84:90:48:2b: 7e:a6:51:23:14:00:4d:1d:5f:d1:db:6d:30:4f:4e: 77:2a:ab:71:07:ae:41:0f:51:20:e3:62:85:5b:26: b5:0c:12:04:a5:26:64:30:16:f1:20:07:52:eb:4a: 80:7d:24:1d:d1:11:d3:cf:7b:3a:67:56:ea:cf:df: ff:ca:3e:85:b1:b4:9c:5f:28:48:fd:8c:40:9d:99: 8e:de:43:d0:d1:db:99:55:52:c5:ce:86:75:9c:e6: 85:c6:4e:bc:91:91:df:a7:5b:ff:41:7f:5e:0f:e0: b7:39:02:72:e4:8a:40:12:c4:2f:cf:e3:79:38:f8: b3:ac:da:fc:fe:87:e8:08:18:3d:cf:7d:42:fa:06: c4:b5:d6:08:73:cc:a8:97:b1:86:ab:84:7e:9b:ca: c9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FB:C8:5B:19:EF:7B:F6:DC:A6:42:66:3C:B8:8A:EC:74:81:4D:6D X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e2032393134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.48.0/21 Signature Algorithm: sha256WithRSAEncryption 72:2b:12:b7:32:65:fb:0f:f6:4b:0d:27:ef:93:98:5c:b1:60: 1f:f0:52:57:25:e6:88:60:47:f4:d3:6f:d7:66:1c:25:48:f6: 7d:d5:54:41:ea:43:8a:50:6c:cb:dc:82:67:d3:9c:35:dc:24: 5e:fc:1b:fc:36:b4:4a:fa:2d:7c:51:a5:b3:4f:c0:2f:b6:e9: 31:31:85:0c:fa:13:74:22:4b:af:4a:0a:d4:cb:19:a9:f4:de: 1a:d1:b9:3e:93:6a:7d:59:82:86:58:14:20:96:c4:be:ad:65: 2f:76:29:fb:c3:de:e1:a8:3d:a1:5a:36:4f:81:cc:f0:be:1e: a0:2f:9c:11:de:fd:fe:a1:8b:c2:37:8d:05:74:64:dc:c0:bd: 80:03:86:0d:73:15:4d:e0:17:7c:0a:b1:7d:ee:6a:87:18:d8: c8:6b:40:94:b6:b6:c5:ac:23:3e:01:ad:75:d3:57:fd:e0:b0: 0c:65:45:9a:9e:d3:fb:5f:42:0c:39:fb:0e:28:17:2d:59:5a: 9b:a1:ed:bf:d6:c3:ca:28:9d:34:a7:75:a0:60:51:4b:a7:51: f6:34:0f:6d:20:dc:62:52:4e:b1:9e:23:f0:c0:83:2a:37:6d: 70:7c:ce:c9:bf:5c:fa:76:d9:27:2b:ad:2e:cd:fb:9e:ec:c8: 99:be:5c:50 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUQecqor3uNxSXSHcMt0t+FvH9p70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDQxMzU4MjVaFw0yNzA1MDMxNDAzMjVaMDMxMTAvBgNV BAMTKEZERkJDODVCMTlFRjdCRjZEQ0E2NDI2NjNDQjg4QUVDNzQ4MTRENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzJqCGvRA48JLfPSkF9URGl0fx 81QeQ+1J9aoDxN5ETqKF77eJ/rQpOKDnpZOwc5M4PMJzGrSsEMKmu2xF50U4W7G5 mDZLsvd2hiptKAkN2BbScJcHdaqWbFgeyG8IKTZzHytChJBIK36mUSMUAE0dX9Hb bTBPTncqq3EHrkEPUSDjYoVbJrUMEgSlJmQwFvEgB1LrSoB9JB3REdPPezpnVurP 3//KPoWxtJxfKEj9jECdmY7eQ9DR25lVUsXOhnWc5oXGTryRkd+nW/9Bf14P4Lc5 AnLkikASxC/P43k4+LOs2vz+h+gIGD3PfUL6BsS11ghzzKiXsYarhH6byslxAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU/fvIWxnve/bcpkJmPLiK7HSBTW0wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzOTMxMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANtazAwDQYJKoZIhvcN AQELBQADggEBAHIrErcyZfsP9ksNJ++TmFyxYB/wUlcl5ohgR/TTb9dmHCVI9n3V VEHqQ4pQbMvcgmfTnDXcJF78G/w2tEr6LXxRpbNPwC+26TExhQz6E3QiS69KCtTL Gan03hrRuT6Tan1ZgoZYFCCWxL6tZS92KfvD3uGoPaFaNk+BzPC+HqAvnBHe/f6h i8I3jQV0ZNzAvYADhg1zFU3gF3wKsX3uaocY2MhrQJS2tsWsIz4BrXXTV/3gsAxl RZqe0/tfQgw5+w4oFy1ZWpuh7b/Ww8oonTSndaBgUUunUfY0D20g3GJSTrGeI/DA gyo3bXB8zsm/XPp22ScrrS7N+57syJm+XFA= -----END CERTIFICATE-----Generated at Tue May 12 22:17:13 2026 by rpki-client