$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35362e302f32312d3234203d3e20323134313433.roa File: 3130392e3130372e35362e302f32312d3234203d3e20323134313433.roa (raw, json) Hash identifier: lhB0KzW/Z9/NSVayW5wSkpX6DHm/QWNvYa9qkKq1XFg= Subject key identifier: 32:94:B2:9F:2A:51:FE:70:1E:69:03:A3:4A:6D:C7:0A:51:65:D3:7B Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 64CF60E31CF464470E9930880BE8BB6BC7926462 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35362e302f32312d3234203d3e20323134313433.roa Signing time: Wed 06 May 2026 10:40:00 +0000 ROA not before: Wed 06 May 2026 10:35:00 +0000 ROA not after: Wed 05 May 2027 10:40:00 +0000 asID: 214143 IP address blocks: 109.107.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 04:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:cf:60:e3:1c:f4:64:47:0e:99:30:88:0b:e8:bb:6b:c7:92:64:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 6 10:35:00 2026 GMT Not After : May 5 10:40:00 2027 GMT Subject: CN=3294B29F2A51FE701E6903A34A6DC70A5165D37B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:de:32:71:64:75:8d:fb:f9:c2:7c:7e:48:66: af:e7:7b:42:ed:3f:13:c5:bb:79:b7:2e:a5:db:71: e5:1f:dc:ef:f2:66:a1:69:c5:38:29:27:41:6e:9f: 1b:c6:f8:b2:06:0e:59:df:8d:27:00:60:ef:e8:4f: 18:cf:65:77:b5:cd:64:9b:4e:69:d0:3f:85:f9:75: 6f:7d:77:7a:e3:90:97:41:fb:53:c8:8a:3c:51:ef: 1c:0a:1d:da:a6:28:0b:a3:d1:05:61:39:a6:9d:7e: 0c:ad:08:00:11:ed:0d:2b:ae:0b:b1:30:96:7f:ab: 8e:b6:fe:fe:37:e2:79:fd:c9:4b:9e:6b:95:55:71: 20:40:45:93:95:6a:00:d4:f2:cb:7f:4d:d6:66:33: a5:94:08:5d:ed:03:cc:91:47:bf:bb:8d:17:8c:1a: eb:fd:e3:be:f9:89:19:93:9a:3f:7a:02:51:c7:7a: e8:60:23:92:7c:e5:af:0f:84:6d:ca:fb:05:84:dc: de:b2:ba:c6:86:34:80:48:2c:f9:5a:16:b2:a6:f1: 6a:5a:02:47:37:14:b2:62:87:4c:45:f0:af:c0:ec: ef:df:1b:af:c2:cf:f0:4a:29:e1:89:8d:21:d4:40: 6d:11:98:80:73:22:d2:7b:a8:33:35:2f:35:ca:01: eb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:94:B2:9F:2A:51:FE:70:1E:69:03:A3:4A:6D:C7:0A:51:65:D3:7B X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/3130392e3130372e35362e302f32312d3234203d3e20323134313433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.107.56.0/21 Signature Algorithm: sha256WithRSAEncryption 08:53:4b:72:26:8d:91:3e:c8:62:51:0a:16:a5:df:f6:96:ad: 57:a1:4a:92:a8:87:b7:39:a0:17:92:2d:e0:c4:65:2d:2b:3c: 97:96:c6:e7:f0:50:f1:5e:8c:58:46:0f:b6:a7:ed:53:46:dc: 91:33:9f:8f:73:78:50:cc:64:6b:29:2a:a9:0e:59:43:89:f2: 05:81:d1:c5:fb:19:62:ce:41:c5:14:b8:cd:b7:1f:4f:56:f3: 76:ea:b9:1b:fc:73:9e:2f:70:1f:fe:41:0a:7b:92:bb:10:a2: 06:f6:fe:64:dc:e2:60:65:a5:c4:9e:0d:03:ba:66:7c:51:f4: 07:bd:4f:1f:d9:7c:72:bf:c7:99:8a:45:15:bc:83:dd:6f:34: 5d:1c:e7:6f:67:1e:51:c1:6b:b0:84:d0:f2:f4:a6:b0:1c:6f: 19:aa:72:0b:3a:44:a6:f6:09:9b:86:f5:fb:d0:59:fb:f1:26: 9c:fc:a4:e2:5e:e7:6b:43:04:44:06:23:b1:a0:e5:2c:09:ee: 38:ab:7e:6b:4c:a0:29:32:71:94:8f:e6:50:75:e4:e4:1a:ec: 4b:f2:b7:3f:8c:42:9e:61:24:65:21:6c:87:a3:a2:b2:57:8f: 12:fc:74:f4:14:a4:d6:60:cd:0a:ef:34:b5:9e:49:c2:a9:37: cb:d0:86:31 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUZM9g4xz0ZEcOmTCIC+i7a8eSZGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDYxMDM1MDBaFw0yNzA1MDUxMDQwMDBaMDMxMTAvBgNV BAMTKDMyOTRCMjlGMkE1MUZFNzAxRTY5MDNBMzRBNkRDNzBBNTE2NUQzN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93jJxZHWN+/nCfH5IZq/ne0Lt PxPFu3m3LqXbceUf3O/yZqFpxTgpJ0FunxvG+LIGDlnfjScAYO/oTxjPZXe1zWSb TmnQP4X5dW99d3rjkJdB+1PIijxR7xwKHdqmKAuj0QVhOaadfgytCAAR7Q0rrgux MJZ/q462/v434nn9yUuea5VVcSBARZOVagDU8st/TdZmM6WUCF3tA8yRR7+7jReM Guv94775iRmTmj96AlHHeuhgI5J85a8PhG3K+wWE3N6yusaGNIBILPlaFrKm8Wpa Akc3FLJih0xF8K/A7O/fG6/Cz/BKKeGJjSHUQG0RmIBzItJ7qDM1LzXKAeuzAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUMpSynypR/nAeaQOjSm3HClFl03swHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMxMzAzOTJlMzEzMDM3MmUzNTM2MmUzMDJmMzIz MTJkMzIzNDIwM2QzZTIwMzIzMTM0MzEzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDbWs4MA0GCSqG SIb3DQEBCwUAA4IBAQAIU0tyJo2RPshiUQoWpd/2lq1XoUqSqIe3OaAXki3gxGUt KzyXlsbn8FDxXoxYRg+2p+1TRtyRM5+Pc3hQzGRrKSqpDllDifIFgdHF+xlizkHF FLjNtx9PVvN26rkb/HOeL3Af/kEKe5K7EKIG9v5k3OJgZaXEng0DumZ8UfQHvU8f 2Xxyv8eZikUVvIPdbzRdHOdvZx5RwWuwhNDy9KawHG8ZqnILOkSm9gmbhvX70Fn7 8Sac/KTiXudrQwREBiOxoOUsCe44q35rTKApMnGUj+ZQdeTkGuxL8rc/jEKeYSRl IWyHo6KyV48S/HT0FKTWYM0K7zS1nknCqTfL0IYx -----END CERTIFICATE-----Generated at Tue May 12 21:53:34 2026 by rpki-client