$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e20333935373933.roa File: 3130392e3130372e34382e302f32312d3234203d3e20333935373933.roa (raw, json) Hash identifier: ZJ6npJD7XLSfUSCV+bUqcHlnpZK1mvaBVdxKAuTvYQE= Subject key identifier: 9C:91:F7:26:79:C3:3B:BB:9E:4A:AB:7E:5C:3C:82:47:12:70:9F:28 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7F1DBF357665044D98A4AB3578C75F2D251F107F Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e20333935373933.roa Signing time: Mon 04 May 2026 13:47:29 +0000 ROA not before: Mon 04 May 2026 13:42:29 +0000 ROA not after: Mon 03 May 2027 13:47:29 +0000 asID: 395793 IP address blocks: 109.107.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 04:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:1d:bf:35:76:65:04:4d:98:a4:ab:35:78:c7:5f:2d:25:1f:10:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 4 13:42:29 2026 GMT Not After : May 3 13:47:29 2027 GMT Subject: CN=9C91F72679C33BBB9E4AAB7E5C3C824712709F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:10:87:77:3a:b8:7e:8e:16:8d:a7:a7:3f:f3: 62:06:07:c1:a5:59:f7:18:37:02:fa:53:42:5d:d8: db:8b:71:7b:a0:c0:1d:b8:5d:c4:78:04:3d:3d:6e: 7b:6d:d7:f1:f5:06:75:b3:a6:92:ba:1c:a0:8c:6a: 95:f4:e5:73:54:83:12:53:47:79:a2:d8:b8:d4:e8: a9:fe:e1:18:fe:1e:0c:f3:79:69:90:14:cb:7e:94: 30:3b:bf:ec:47:0e:07:92:ce:03:61:7c:6d:68:b0: 60:fb:83:10:d5:f8:7d:05:d6:b7:38:4d:5f:61:e5: d4:24:c6:59:5e:cc:05:6f:29:19:2a:ee:b8:a3:06: ad:c5:d6:b7:52:fc:81:a2:0b:5f:00:78:d8:3f:8c: 0d:fc:eb:bf:4c:33:2c:3b:d6:08:ae:93:ae:fe:4e: a5:a4:b8:97:57:ae:b5:d8:83:61:91:ad:6c:9a:91: 1e:df:9b:9f:8a:2d:05:95:53:e6:be:13:82:be:5e: c3:45:ad:f7:c3:e1:9e:b8:2f:6b:8a:69:b7:8e:3f: 33:10:ae:6c:63:ce:a6:0c:29:34:4f:f5:45:6c:f6: 42:e3:06:e8:dd:1e:f6:a0:cf:73:cb:a7:f9:a0:a4: 9f:ba:2f:3f:57:91:c0:3c:68:fa:3b:b4:b2:18:78: 5c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:91:F7:26:79:C3:3B:BB:9E:4A:AB:7E:5C:3C:82:47:12:70:9F:28 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e34382e302f32312d3234203d3e20333935373933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.48.0/21 Signature Algorithm: sha256WithRSAEncryption 05:fa:af:13:4b:66:b9:a7:8b:11:f9:c3:00:6d:53:06:ac:c7: 5d:4f:56:db:31:40:5a:ee:ee:90:39:c7:07:69:b7:03:80:62: 74:e1:7b:fb:69:4e:51:a3:50:ae:7a:b4:fc:78:12:82:91:21: 61:54:ca:ec:47:58:26:ae:70:03:ba:31:f6:de:c3:91:bf:e1: a2:14:1d:26:5f:5d:62:f2:92:0e:8a:f3:3f:fb:22:ec:24:95: 83:a2:12:f1:3c:fc:34:07:90:18:90:7d:c9:bf:1c:e7:a0:b5: 9a:fd:3c:dd:0a:d0:b5:1b:78:c8:f0:c2:64:17:72:70:0c:90: e7:e6:d3:94:4b:a1:02:7b:23:a6:80:09:6a:0d:da:f4:0b:df: 07:56:42:44:34:35:5b:ac:b3:e3:73:2c:b9:56:39:fa:a9:92: 83:29:fb:1b:f4:59:ba:b5:9a:fd:98:9b:ff:e2:9b:75:56:85: 38:a8:2e:7f:ed:fe:82:e5:6c:fd:22:6f:fc:fb:d0:99:07:bb: 8c:c6:9f:d0:1a:36:e6:38:42:28:e8:4b:c0:11:91:6e:07:2b: 72:25:1f:b5:32:f8:21:35:a1:94:e7:f6:1b:a0:08:35:28:6f: 28:c4:09:38:4e:7c:6a:ca:55:83:d0:3a:67:c7:dd:51:e3:15: 00:97:f9:56 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUfx2/NXZlBE2YpKs1eMdfLSUfEH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDQxMzQyMjlaFw0yNzA1MDMxMzQ3MjlaMDMxMTAvBgNV BAMTKDlDOTFGNzI2NzlDMzNCQkI5RTRBQUI3RTVDM0M4MjQ3MTI3MDlGMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBEId3Orh+jhaNp6c/82IGB8Gl WfcYNwL6U0Jd2NuLcXugwB24XcR4BD09bntt1/H1BnWzppK6HKCMapX05XNUgxJT R3mi2LjU6Kn+4Rj+HgzzeWmQFMt+lDA7v+xHDgeSzgNhfG1osGD7gxDV+H0F1rc4 TV9h5dQkxllezAVvKRkq7rijBq3F1rdS/IGiC18AeNg/jA38679MMyw71giuk67+ TqWkuJdXrrXYg2GRrWyakR7fm5+KLQWVU+a+E4K+XsNFrffD4Z64L2uKabeOPzMQ rmxjzqYMKTRP9UVs9kLjBujdHvagz3PLp/mgpJ+6Lz9XkcA8aPo7tLIYeFyRAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUnJH3JnnDO7ueSqt+XDyCRxJwnygwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNDM4MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzMzOTM1MzczOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbWswMA0GCSqG SIb3DQEBCwUAA4IBAQAF+q8TS2a5p4sR+cMAbVMGrMddT1bbMUBa7u6QOccHabcD gGJ04Xv7aU5Ro1CuerT8eBKCkSFhVMrsR1gmrnADujH23sORv+GiFB0mX11i8pIO ivM/+yLsJJWDohLxPPw0B5AYkH3JvxznoLWa/TzdCtC1G3jI8MJkF3JwDJDn5tOU S6ECeyOmgAlqDdr0C98HVkJENDVbrLPjcyy5Vjn6qZKDKfsb9Fm6tZr9mJv/4pt1 VoU4qC5/7f6C5Wz9Im/8+9CZB7uMxp/QGjbmOEIo6EvAEZFuBytyJR+1MvghNaGU 5/YboAg1KG8oxAk4TnxqylWD0Dpnx91R4xUAl/lW -----END CERTIFICATE-----Generated at Tue May 12 22:17:09 2026 by rpki-client