$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa File: 33372e312e3233302e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: 8n7nGRtpurIHn9IM111AhjGTrCnjw6TDdTKDBc/hCJ0= Subject key identifier: 66:02:5E:30:D1:1C:AC:8B:DE:7B:C5:46:01:BA:CC:ED:83:81:2F:55 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 20434A4158D7EDA236850A2B57EAB38D0F3E00A6 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa Signing time: Tue 09 Sep 2025 11:55:00 +0000 ROA not before: Tue 09 Sep 2025 11:50:00 +0000 ROA not after: Tue 08 Sep 2026 11:55:00 +0000 asID: 61317 IP address blocks: 37.1.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:43:4a:41:58:d7:ed:a2:36:85:0a:2b:57:ea:b3:8d:0f:3e:00:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 9 11:50:00 2025 GMT Not After : Sep 8 11:55:00 2026 GMT Subject: CN=66025E30D11CAC8BDE7BC54601BACCED83812F55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:8a:27:25:05:72:08:3a:c8:d0:fb:a1:12:6a: 9a:da:34:0d:bd:f0:bc:98:a0:71:66:c1:be:93:d9: 15:1d:b4:03:19:96:76:cf:99:13:a2:2f:cc:4f:08: 29:c6:31:62:88:1b:4d:6a:76:d5:7d:4b:5f:bf:f3: b2:a9:51:33:e4:63:bf:fa:a0:31:a9:de:e6:5e:f6: ed:bf:fb:03:85:f7:dc:38:9e:08:ea:91:80:40:1d: 74:b7:a1:d8:01:d1:0e:8f:65:d3:22:04:f0:18:62: 0b:12:01:a1:2d:a8:6e:fb:24:42:1d:08:44:00:e2: 00:e6:f7:f3:6c:f5:20:15:3a:aa:ab:1b:b6:71:f8: 95:d3:68:ad:ea:0c:8c:fc:2b:df:2f:c5:00:94:63: aa:fc:a2:97:39:cf:b8:2b:4c:b9:f0:4a:b7:7a:15: 14:ae:d5:72:b1:18:ef:cb:cf:13:45:83:4c:45:ca: 90:60:2a:f6:d8:10:96:06:5c:31:99:86:36:cc:53: 9f:f9:8a:8e:48:57:a6:97:93:cd:c7:b3:c7:d0:1c: e9:da:18:37:f8:4c:d4:a0:85:86:1a:ff:4d:8c:07: d1:40:56:85:d8:6a:6b:7b:6d:a1:b5:5b:ae:f9:a3: 47:5d:d2:6d:60:4e:92:27:1b:2d:48:1d:3f:35:ec: a6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:02:5E:30:D1:1C:AC:8B:DE:7B:C5:46:01:BA:CC:ED:83:81:2F:55 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.230.0/24 Signature Algorithm: sha256WithRSAEncryption a1:41:dc:32:0b:26:d8:5d:75:54:6c:01:ae:a7:ce:7a:72:25: 11:19:de:ed:0d:c6:a4:4b:b6:55:c4:50:b5:1b:a7:09:59:28: dc:c9:f1:1f:fe:90:bd:f4:0b:4d:ff:58:15:5a:72:13:66:a9: bf:93:3d:6d:68:23:4f:0a:08:c8:01:10:69:07:af:44:4f:45: 13:23:89:be:84:4c:a2:7b:6d:ac:34:28:18:77:9d:a9:a4:d3: 14:91:ae:67:b9:e2:9b:69:59:f8:a6:86:13:87:84:c5:15:bd: 84:d3:43:69:43:ef:7d:c8:51:dd:15:5f:6c:fe:b1:e8:a9:6f: ea:c7:78:85:2e:a1:3d:1e:c2:d4:de:d5:46:8f:25:51:bf:15: 1c:08:a7:2f:67:e1:e7:ec:6d:e1:20:c6:16:52:c8:c7:dd:37: d1:a9:f2:fb:bd:8b:31:f6:98:23:bf:87:4a:d4:0b:81:fa:21: b3:1d:94:f4:68:a7:a8:06:6e:2f:e3:c2:46:20:89:3b:5a:63: 94:88:d2:33:73:7e:2e:44:1f:44:dd:4a:a4:75:2f:24:81:f7: e1:64:f2:63:3e:16:c7:9a:b2:5d:98:89:bc:ba:7d:57:fa:d3: fa:9e:60:06:b1:6d:51:c7:24:74:36:99:df:12:e8:1a:fe:75: 25:d6:ad:cd -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUIENKQVjX7aI2hQorV+qzjQ8+AKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MDkxMTUwMDBaFw0yNjA5MDgxMTU1MDBaMDMxMTAvBgNV BAMTKDY2MDI1RTMwRDExQ0FDOEJERTdCQzU0NjAxQkFDQ0VEODM4MTJGNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQiiclBXIIOsjQ+6ESapraNA29 8LyYoHFmwb6T2RUdtAMZlnbPmROiL8xPCCnGMWKIG01qdtV9S1+/87KpUTPkY7/6 oDGp3uZe9u2/+wOF99w4ngjqkYBAHXS3odgB0Q6PZdMiBPAYYgsSAaEtqG77JEId CEQA4gDm9/Ns9SAVOqqrG7Zx+JXTaK3qDIz8K98vxQCUY6r8opc5z7grTLnwSrd6 FRSu1XKxGO/LzxNFg0xFypBgKvbYEJYGXDGZhjbMU5/5io5IV6aXk83Hs8fQHOna GDf4TNSghYYa/02MB9FAVoXYamt7baG1W675o0dd0m1gTpInGy1IHT817KajAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUZgJeMNEcrIvee8VGAbrM7YOBL1UwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHmMA0GCSqGSIb3DQEB CwUAA4IBAQChQdwyCybYXXVUbAGup856ciURGd7tDcakS7ZVxFC1G6cJWSjcyfEf /pC99AtN/1gVWnITZqm/kz1taCNPCgjIARBpB69ET0UTI4m+hEyie22sNCgYd52p pNMUka5nueKbaVn4poYTh4TFFb2E00NpQ+99yFHdFV9s/rHoqW/qx3iFLqE9HsLU 3tVGjyVRvxUcCKcvZ+Hn7G3hIMYWUsjH3TfRqfL7vYsx9pgjv4dK1AuB+iGzHZT0 aKeoBm4v48JGIIk7WmOUiNIzc34uRB9E3UqkdS8kgffhZPJjPhbHmrJdmIm8un1X +tP6nmAGsW1RxyR0NpnfEuga/nUl1q3N -----END CERTIFICATE-----Generated at Mon Oct 20 05:38:51 2025 by rpki-client