$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e20383334.roa File: 33372e312e3233302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: MPWevKrQs5CiTDuRbA8dgL85sbHW8H7ER5bs37bIfr0= Subject key identifier: F4:EF:C4:42:CB:E0:E3:EE:23:E5:AF:AC:B2:63:43:F9:34:99:70:19 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 2EB8F0B12255D9F3046549E01F400F7B07D20EFC Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e20383334.roa Signing time: Sun 10 May 2026 03:15:55 +0000 ROA not before: Sun 10 May 2026 03:10:55 +0000 ROA not after: Sun 09 May 2027 03:15:55 +0000 asID: 834 IP address blocks: 37.1.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b8:f0:b1:22:55:d9:f3:04:65:49:e0:1f:40:0f:7b:07:d2:0e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 10 03:10:55 2026 GMT Not After : May 9 03:15:55 2027 GMT Subject: CN=F4EFC442CBE0E3EE23E5AFACB26343F934997019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bd:45:f4:2a:e6:7a:3a:56:ab:a9:47:5c:ad: ee:6a:b4:ca:4f:e0:c6:90:4d:66:6f:13:4c:48:a9: 2c:fa:d6:b3:df:31:26:60:b3:91:d5:a1:23:29:04: de:4f:bf:a5:fb:bb:38:e3:10:4c:91:60:28:8f:16: c0:88:5b:4e:bb:73:4e:30:25:7e:e7:02:88:ba:8a: 89:02:92:82:8f:6f:f4:f9:59:3b:eb:38:61:38:a1: 5f:c2:6a:cf:d1:4c:1d:55:64:8f:c1:8c:28:6e:af: 86:eb:8e:37:17:7e:3e:3c:ac:22:09:8c:26:e9:13: 9a:a5:aa:e0:87:f5:67:92:28:70:13:8c:04:b4:d0: c8:f3:18:fd:f7:70:85:f5:f1:e1:c5:65:60:67:d3: 10:bc:fe:a6:e3:1a:7c:8d:aa:30:18:c9:b8:1d:8f: 55:d1:6c:a2:a5:ff:a7:23:ec:5b:d4:f8:dc:d3:07: 02:89:73:fc:0d:76:3b:98:9f:24:68:b2:2d:ce:8e: 1d:99:38:cb:56:89:af:b5:a3:6e:53:c7:c5:fb:65: 73:3d:1a:fb:68:bc:b1:be:aa:59:2c:67:ac:ec:39: 5d:9c:a1:94:ea:d1:fa:1a:de:12:50:99:3e:d3:0e: 5f:f0:52:29:f6:d5:fb:d6:74:5a:56:62:cd:dd:39: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EF:C4:42:CB:E0:E3:EE:23:E5:AF:AC:B2:63:43:F9:34:99:70:19 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.230.0/24 Signature Algorithm: sha256WithRSAEncryption 00:dd:0a:99:b6:c9:97:2d:c3:b0:d1:9e:57:66:ff:c6:7a:4a: ed:2a:5a:5f:8a:22:c6:a4:13:55:33:5c:1f:2d:7f:17:1e:1e: df:63:d9:06:61:76:10:15:ef:62:3d:ee:3b:9f:72:20:7b:ce: 2b:d0:bf:c6:3c:49:99:42:56:79:f6:a7:12:a6:8b:65:97:c5: 44:2d:b2:73:5c:9f:de:ea:65:2e:0d:3b:0a:ad:e4:96:ee:e1: d7:99:fc:7a:9b:fb:5e:c4:ce:da:d2:2d:0c:28:e1:4b:8b:be: a9:89:71:f6:b6:d1:91:99:57:e0:c4:c7:db:ee:1b:80:1c:39: ce:7a:21:65:1b:08:4c:bd:42:e3:c7:59:cf:fc:35:71:5a:f2: a5:9a:88:84:75:12:16:3f:52:71:8c:bf:4f:b1:38:a7:1c:6e: 13:7a:80:b8:bd:88:67:ae:19:37:70:99:ad:25:89:05:32:48: 54:12:d7:bd:6d:80:57:15:77:4f:e8:c1:67:2e:80:b5:84:c4: 55:69:68:45:a5:be:ba:1b:3e:98:c0:65:d5:c1:bd:b5:64:2d: 9c:02:13:fc:07:e9:22:98:18:b4:55:58:5b:52:ca:32:93:d3: 21:e1:45:30:1a:a1:b4:cd:0e:b1:34:2b:55:5a:bd:40:c0:be: 5a:f8:6c:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIULrjwsSJV2fMEZUngH0APewfSDvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MTAwMzEwNTVaFw0yNzA1MDkwMzE1NTVaMDMxMTAvBgNV BAMTKEY0RUZDNDQyQ0JFMEUzRUUyM0U1QUZBQ0IyNjM0M0Y5MzQ5OTcwMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCevUX0KuZ6OlarqUdcre5qtMpP 4MaQTWZvE0xIqSz61rPfMSZgs5HVoSMpBN5Pv6X7uzjjEEyRYCiPFsCIW067c04w JX7nAoi6iokCkoKPb/T5WTvrOGE4oV/Cas/RTB1VZI/BjChur4brjjcXfj48rCIJ jCbpE5qlquCH9WeSKHATjAS00MjzGP33cIX18eHFZWBn0xC8/qbjGnyNqjAYybgd j1XRbKKl/6cj7FvU+NzTBwKJc/wNdjuYnyRosi3Ojh2ZOMtWia+1o25Tx8X7ZXM9 GvtovLG+qlksZ6zsOV2coZTq0foa3hJQmT7TDl/wUin21fvWdFpWYs3dOf8VAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQU9O/EQsvg4+4j5a+ssmND+TSZcBkwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzEyZTMyMzMzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACUB5jANBgkqhkiG9w0BAQsFAAOC AQEAAN0KmbbJly3DsNGeV2b/xnpK7SpaX4oixqQTVTNcHy1/Fx4e32PZBmF2EBXv Yj3uO59yIHvOK9C/xjxJmUJWefanEqaLZZfFRC2yc1yf3uplLg07Cq3klu7h15n8 epv7XsTO2tItDCjhS4u+qYlx9rbRkZlX4MTH2+4bgBw5znohZRsITL1C48dZz/w1 cVrypZqIhHUSFj9ScYy/T7E4pxxuE3qAuL2IZ64ZN3CZrSWJBTJIVBLXvW2AVxV3 T+jBZy6AtYTEVWloRaW+uhs+mMBl1cG9tWQtnAIT/AfpIpgYtFVYW1LKMpPTIeFF MBqhtM0OsTQrVVq9QMC+WvhsgA== -----END CERTIFICATE-----Generated at Tue May 12 23:39:42 2026 by rpki-client