$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20383334.roa File: 33372e312e3232362e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: 0+jVBSefGdwKxWrzNSyMsWlivzfmRlf1piNbKmZiMI4= Subject key identifier: D4:70:50:DE:F0:70:26:1F:6F:2B:95:F7:FD:C2:A0:97:2F:9F:FB:7C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 090D6C3AC399F3B1D7F1ACCE0D03A5F35D4B4F60 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20383334.roa Signing time: Tue 29 Apr 2025 11:34:32 +0000 ROA not before: Tue 29 Apr 2025 11:29:32 +0000 ROA not after: Tue 28 Apr 2026 11:34:32 +0000 asID: 834 IP address blocks: 37.1.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 May 2025 14:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:0d:6c:3a:c3:99:f3:b1:d7:f1:ac:ce:0d:03:a5:f3:5d:4b:4f:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 29 11:29:32 2025 GMT Not After : Apr 28 11:34:32 2026 GMT Subject: CN=D47050DEF070261F6F2B95F7FDC2A0972F9FFB7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:3d:23:ad:66:43:a2:d6:5c:ce:90:28:64: b3:6e:df:46:b7:62:8f:ea:71:1c:d4:d1:aa:fc:06: 7a:fd:80:5b:74:ab:6b:12:80:d4:93:20:0f:3d:1c: ee:de:f1:f3:6a:c8:45:ef:46:e2:e0:d8:75:d0:b3: d8:d3:97:1c:c1:84:89:28:a7:26:44:2a:d9:13:44: a6:e4:82:5d:52:7e:ad:68:55:00:35:2d:1c:fc:13: 8d:41:22:dc:fd:3e:62:c0:2d:f0:94:29:96:bb:67: bf:0f:90:a0:9e:d7:a6:f7:bc:40:7c:c1:80:b2:dd: f2:b6:01:4b:26:0f:b8:16:9c:b3:77:08:5e:76:41: 7b:0d:f2:44:12:ea:e0:f9:8f:e2:98:64:55:63:15: e1:e7:df:88:1e:34:49:fd:c1:2e:b7:27:76:54:82: 1e:f7:ce:b7:c0:90:6a:7f:d5:0d:82:cc:d7:2e:bb: b6:57:e5:5b:ae:6d:30:e4:64:cc:59:77:dd:b5:fe: 7e:f9:cd:ee:37:b1:4e:a7:d1:9d:76:90:45:80:40: e2:af:e8:77:5b:e0:6d:13:5e:0f:72:02:ed:41:db: bc:81:e0:b9:7c:b7:10:7a:a7:e5:1c:f7:69:e5:a9: e0:54:77:85:47:dd:3c:90:cc:1c:66:af:36:c0:7b: 72:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:70:50:DE:F0:70:26:1F:6F:2B:95:F7:FD:C2:A0:97:2F:9F:FB:7C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.226.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ac:a2:0d:bf:dd:ae:27:40:af:96:8b:a0:23:8f:aa:ad:8e: 86:63:d8:2d:39:20:e2:f8:a9:84:ee:8f:e5:de:14:45:0f:9b: f5:5e:d8:23:9b:d0:ff:b1:10:58:2d:5b:53:0c:cb:09:74:a9: 16:28:be:e1:26:25:56:1c:19:ae:82:64:ca:7f:6d:24:da:36: 9a:58:00:69:df:d1:13:75:a8:18:f6:78:02:8d:5c:09:17:ad: 60:ae:39:a8:ff:d7:a1:7a:eb:27:21:91:f3:5c:6b:47:80:88: 97:73:2e:cb:98:7e:98:ee:64:94:5d:47:ea:b5:3e:fd:bf:00: c3:78:6e:32:53:5c:a8:cc:05:0c:ed:e8:df:f8:d9:d8:8c:b8: 61:f4:91:11:75:d3:fe:06:24:bb:28:af:e2:19:75:4f:ae:36: 78:57:e2:e9:4f:ed:97:49:36:21:02:6b:a9:33:d6:f3:e1:4a: 79:bb:ca:45:de:1a:e0:60:32:65:c8:d8:cb:f9:f7:f5:b5:65: 68:56:9c:48:c5:f2:06:5d:18:b8:f8:f2:18:ac:ea:bf:a9:2e: 98:50:86:07:86:97:e1:0a:79:02:d7:0b:28:d2:14:cf:e4:9f: 68:a7:de:19:dd:89:9b:8e:30:b2:41:5c:36:8b:5a:ee:79:ac: 2b:bd:42:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUCQ1sOsOZ87HX8azODQOl811LT2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MjkxMTI5MzJaFw0yNjA0MjgxMTM0MzJaMDMxMTAvBgNV BAMTKEQ0NzA1MERFRjA3MDI2MUY2RjJCOTVGN0ZEQzJBMDk3MkY5RkZCN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTDD0jrWZDotZczpAoZLNu30a3 Yo/qcRzU0ar8Bnr9gFt0q2sSgNSTIA89HO7e8fNqyEXvRuLg2HXQs9jTlxzBhIko pyZEKtkTRKbkgl1Sfq1oVQA1LRz8E41BItz9PmLALfCUKZa7Z78PkKCe16b3vEB8 wYCy3fK2AUsmD7gWnLN3CF52QXsN8kQS6uD5j+KYZFVjFeHn34geNEn9wS63J3ZU gh73zrfAkGp/1Q2CzNcuu7ZX5VuubTDkZMxZd921/n75ze43sU6n0Z12kEWAQOKv 6Hdb4G0TXg9yAu1B27yB4Ll8txB6p+Uc92nlqeBUd4VH3TyQzBxmrzbAe3JhAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQU1HBQ3vBwJh9vK5X3/cKgly+f+3wwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzEyZTMyMzIzNjJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACUB4jANBgkqhkiG9w0BAQsFAAOC AQEAGqyiDb/dridAr5aLoCOPqq2OhmPYLTkg4viphO6P5d4URQ+b9V7YI5vQ/7EQ WC1bUwzLCXSpFii+4SYlVhwZroJkyn9tJNo2mlgAad/RE3WoGPZ4Ao1cCRetYK45 qP/XoXrrJyGR81xrR4CIl3Muy5h+mO5klF1H6rU+/b8Aw3huMlNcqMwFDO3o3/jZ 2Iy4YfSREXXT/gYkuyiv4hl1T642eFfi6U/tl0k2IQJrqTPW8+FKebvKRd4a4GAy ZcjYy/n39bVlaFacSMXyBl0YuPjyGKzqv6kumFCGB4aX4Qp5AtcLKNIUz+SfaKfe Gd2Jm44wskFcNota7nmsK71CiQ== -----END CERTIFICATE-----Generated at Tue May 13 21:47:28 2025 by rpki-client