$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e2039333034.roa File: 33372e312e3232342e302f32342d3234203d3e2039333034.roa (raw, json) Hash identifier: EZKhkof30j1yKxI3vZTQCfWYIYTJrg7f9GWU/MYsing= Subject key identifier: 70:B9:AF:70:CE:4B:84:41:DE:1F:04:F2:8C:CC:57:82:B4:25:B5:96 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 699C66AF19A92FC70168CED013FECB3E18330D78 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e2039333034.roa Signing time: Tue 09 Sep 2025 14:27:49 +0000 ROA not before: Tue 09 Sep 2025 14:22:49 +0000 ROA not after: Tue 08 Sep 2026 14:27:49 +0000 asID: 9304 IP address blocks: 37.1.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 05:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9c:66:af:19:a9:2f:c7:01:68:ce:d0:13:fe:cb:3e:18:33:0d:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 9 14:22:49 2025 GMT Not After : Sep 8 14:27:49 2026 GMT Subject: CN=70B9AF70CE4B8441DE1F04F28CCC5782B425B596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b2:ec:e9:ed:20:4d:1d:1f:ed:27:a2:3a:7b: 63:a0:dc:4d:b9:cb:8f:b6:54:4f:48:4b:a1:79:be: aa:f6:bb:20:81:da:b8:e6:f3:aa:d4:0a:d4:83:16: c3:ac:47:1c:cc:7e:f3:3f:f2:d8:0a:d3:66:f6:0b: b9:ee:69:04:06:87:46:c2:af:44:05:cd:6f:b4:ef: 64:ac:d2:19:79:34:0d:48:70:2e:37:43:84:6d:14: bf:fb:b4:66:57:15:5b:bf:20:78:38:48:3c:41:52: f7:02:ac:58:5e:27:bb:94:5b:e6:71:ab:f5:27:7e: b9:3c:3e:9e:4b:3e:56:e1:75:07:47:fb:d2:54:b3: b4:28:b5:5f:3d:a7:05:6d:ab:f4:11:7f:4d:0a:01: e4:23:95:17:1e:fb:5d:8b:b2:a4:f3:60:b1:42:2c: 27:4d:63:3f:e3:22:c4:f5:7d:0b:69:6f:5e:87:6a: 69:da:d9:bf:80:18:cc:8f:71:08:9e:62:00:84:a4: 80:eb:d5:28:61:d5:a6:a3:a3:dd:53:e7:64:25:ad: fd:76:ea:f6:44:70:c1:a1:a3:cb:76:85:94:b4:1e: 84:e7:90:cc:c7:5a:a7:4a:25:1a:2e:df:47:fa:a2: cc:a6:e7:3e:f3:4b:65:c7:13:b4:fc:0e:02:f0:bd: 06:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B9:AF:70:CE:4B:84:41:DE:1F:04:F2:8C:CC:57:82:B4:25:B5:96 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e2039333034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.224.0/24 Signature Algorithm: sha256WithRSAEncryption 06:76:6a:84:81:49:e2:f0:a6:36:08:42:82:35:5a:a3:05:3d: a2:51:ed:8e:92:f8:be:ba:de:45:9d:ae:e3:f3:c7:e7:5a:1f: 7a:5e:b2:f3:8b:ca:f5:47:e5:c2:a0:80:a3:49:07:64:30:a7: 62:6e:04:5a:f8:94:bc:ec:37:a7:2a:d0:84:a2:75:0f:95:e0: 9a:05:83:b3:58:31:64:dd:d1:47:ee:65:ef:64:65:dd:25:13: 7d:0f:49:0e:58:62:e8:45:f0:76:45:4c:0d:d6:71:06:5d:d3: 1a:0a:8d:6e:a1:6b:39:0b:e9:19:61:cd:af:90:8b:63:63:67: 5c:b4:b7:92:96:09:77:db:23:4e:59:99:68:14:60:90:fc:49: 36:08:9e:3d:83:83:6d:58:a4:e9:35:c2:be:20:99:86:c5:16: 86:05:07:c4:88:8f:84:40:d2:ce:50:55:e4:89:ef:2e:13:9e: 22:fc:45:a6:78:0e:2a:dd:32:9e:02:ed:8d:9f:f5:42:e5:f0: a4:ab:05:4c:9e:87:11:23:94:d6:a5:7c:9f:ea:0a:65:b0:e5: db:ba:81:31:d5:33:3a:62:a9:94:0a:31:fe:bd:1a:09:d0:55: fb:a3:c7:7a:30:6b:26:d6:d1:61:25:7e:fe:e7:fd:68:55:31: 27:03:85:1c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUaZxmrxmpL8cBaM7QE/7LPhgzDXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MDkxNDIyNDlaFw0yNjA5MDgxNDI3NDlaMDMxMTAvBgNV BAMTKDcwQjlBRjcwQ0U0Qjg0NDFERTFGMDRGMjhDQ0M1NzgyQjQyNUI1OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrsuzp7SBNHR/tJ6I6e2Og3E25 y4+2VE9IS6F5vqr2uyCB2rjm86rUCtSDFsOsRxzMfvM/8tgK02b2C7nuaQQGh0bC r0QFzW+072Ss0hl5NA1IcC43Q4RtFL/7tGZXFVu/IHg4SDxBUvcCrFheJ7uUW+Zx q/Unfrk8Pp5LPlbhdQdH+9JUs7QotV89pwVtq/QRf00KAeQjlRce+12LsqTzYLFC LCdNYz/jIsT1fQtpb16Hamna2b+AGMyPcQieYgCEpIDr1Shh1aajo91T52Qlrf12 6vZEcMGho8t2hZS0HoTnkMzHWqdKJRou30f6osym5z7zS2XHE7T8DgLwvQYTAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUcLmvcM5LhEHeHwTyjMxXgrQltZYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzEyZTMyMzIzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM5MzMzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHgMA0GCSqGSIb3DQEBCwUA A4IBAQAGdmqEgUni8KY2CEKCNVqjBT2iUe2Okvi+ut5Fna7j88fnWh96XrLzi8r1 R+XCoICjSQdkMKdibgRa+JS87DenKtCEonUPleCaBYOzWDFk3dFH7mXvZGXdJRN9 D0kOWGLoRfB2RUwN1nEGXdMaCo1uoWs5C+kZYc2vkItjY2dctLeSlgl32yNOWZlo FGCQ/Ek2CJ49g4NtWKTpNcK+IJmGxRaGBQfEiI+EQNLOUFXkie8uE54i/EWmeA4q 3TKeAu2Nn/VC5fCkqwVMnocRI5TWpXyf6gplsOXbuoEx1TM6YqmUCjH+vRoJ0FX7 o8d6MGsm1tFhJX7+5/1oVTEnA4Uc -----END CERTIFICATE-----Generated at Sun Oct 19 22:25:35 2025 by rpki-client