$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e20383334.roa File: 33372e312e3233302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: Et3PQdM9MVVx2AyKfWk8GP+p2pIiywfQC6J4l9n12/4= Subject key identifier: B4:27:89:67:84:CC:E3:62:A3:AB:78:5A:8F:E3:1A:E4:82:78:1E:2F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 225F1E15C5A1042727AC96CC0997B9B5F2C537A3 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e20383334.roa Signing time: Sat 21 Mar 2026 00:01:56 +0000 ROA not before: Fri 20 Mar 2026 23:56:56 +0000 ROA not after: Sat 20 Mar 2027 00:01:56 +0000 asID: 834 IP address blocks: 37.1.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 21:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5f:1e:15:c5:a1:04:27:27:ac:96:cc:09:97:b9:b5:f2:c5:37:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 20 23:56:56 2026 GMT Not After : Mar 20 00:01:56 2027 GMT Subject: CN=B427896784CCE362A3AB785A8FE31AE482781E2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:56:62:de:cc:81:c5:9d:26:e3:51:72:47:f9: 05:7d:b6:95:c7:f0:13:4e:bf:34:f8:0e:f4:11:a8: d4:e4:46:dc:db:06:f8:f3:90:b9:cd:6a:9a:99:69: 2d:7f:92:ea:c9:f0:2b:d7:2a:6e:d6:11:f3:c4:72: b8:f0:da:ef:dc:58:b2:64:79:eb:e8:6c:3c:b6:7c: 94:de:95:e5:64:25:36:76:ae:fd:62:6b:4a:3c:ba: c0:cd:31:07:5a:a5:b6:da:98:1c:19:56:36:24:81: 21:da:d7:50:3a:ab:56:e2:1e:5f:60:90:25:cb:57: 79:45:f7:83:08:8c:b7:95:33:5a:aa:37:70:96:91: 9f:3d:73:10:e2:16:67:ec:5e:7d:d8:c9:c6:52:bd: 04:65:f8:e0:e4:f4:8f:fa:d7:9a:89:1d:2a:ba:cc: e7:af:57:5a:a9:aa:6b:44:8f:0b:ab:4c:c0:eb:b1: 8c:a9:a3:27:6d:ab:b9:a6:d5:4f:7d:c9:6d:9c:85: b3:3e:c4:3c:ed:65:76:4e:80:64:f1:ca:de:cc:d1: df:92:2d:35:0b:13:11:95:6c:fb:0e:79:51:20:5b: ba:b8:93:f0:09:19:96:66:76:30:85:b3:38:de:5e: 4b:c2:2b:1a:c7:11:93:76:94:66:f9:8f:bb:d8:55: 23:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:27:89:67:84:CC:E3:62:A3:AB:78:5A:8F:E3:1A:E4:82:78:1E:2F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.230.0/24 Signature Algorithm: sha256WithRSAEncryption 24:52:03:84:98:ac:23:9c:07:d8:a8:f5:68:41:0e:ca:ad:95: 94:f6:35:2f:ce:fb:c7:ab:4d:91:f7:54:d0:58:8e:0f:9d:04: d6:cf:e8:ab:e6:7f:1e:9a:05:63:43:42:6e:b7:0d:7d:30:d7: 00:3c:f1:7d:49:43:41:ff:89:27:e3:df:0c:0e:00:ad:48:ac: db:d0:86:28:e6:a8:0c:e1:58:17:7d:9c:ed:7c:87:e1:91:b5: 10:15:6d:79:53:99:18:91:57:e8:b9:80:40:24:8a:9f:da:4a: 8c:61:ac:20:d1:3d:de:24:1c:bb:40:96:bc:fa:87:e1:65:ad: 59:00:b9:81:89:ab:a3:4e:61:2c:28:3f:4b:a6:c9:61:19:e6: c1:9d:2a:c1:79:33:43:17:62:22:01:7f:b5:5c:d7:8f:36:bc: 28:16:0d:e1:ce:76:7f:48:3d:37:63:dd:78:17:68:80:07:21: 68:fb:67:29:fd:2d:be:0a:92:0e:31:74:da:6e:2b:eb:51:34: c7:80:47:dc:93:c9:85:77:29:ba:3d:c9:48:a4:9e:37:94:73: 95:ac:8c:14:66:e6:83:3c:76:b7:39:d5:b4:74:e4:e5:19:bf: 4a:1c:b7:f2:c8:63:c4:0b:e4:4f:22:cd:67:84:64:3f:32:4e: 59:d0:4e:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUIl8eFcWhBCcnrJbMCZe5tfLFN6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjAyMzU2NTZaFw0yNzAzMjAwMDAxNTZaMDMxMTAvBgNV BAMTKEI0Mjc4OTY3ODRDQ0UzNjJBM0FCNzg1QThGRTMxQUU0ODI3ODFFMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyVmLezIHFnSbjUXJH+QV9tpXH 8BNOvzT4DvQRqNTkRtzbBvjzkLnNapqZaS1/kurJ8CvXKm7WEfPEcrjw2u/cWLJk eevobDy2fJTeleVkJTZ2rv1ia0o8usDNMQdapbbamBwZVjYkgSHa11A6q1biHl9g kCXLV3lF94MIjLeVM1qqN3CWkZ89cxDiFmfsXn3YycZSvQRl+ODk9I/615qJHSq6 zOevV1qpqmtEjwurTMDrsYypoydtq7mm1U99yW2chbM+xDztZXZOgGTxyt7M0d+S LTULExGVbPsOeVEgW7q4k/AJGZZmdjCFszjeXkvCKxrHEZN2lGb5j7vYVSMfAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUtCeJZ4TM42Kjq3haj+Ma5IJ4Hi8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzEyZTMyMzMzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACUB5jANBgkqhkiG9w0BAQsFAAOC AQEAJFIDhJisI5wH2Kj1aEEOyq2VlPY1L877x6tNkfdU0FiOD50E1s/oq+Z/HpoF Y0NCbrcNfTDXADzxfUlDQf+JJ+PfDA4ArUis29CGKOaoDOFYF32c7XyH4ZG1EBVt eVOZGJFX6LmAQCSKn9pKjGGsINE93iQcu0CWvPqH4WWtWQC5gYmro05hLCg/S6bJ YRnmwZ0qwXkzQxdiIgF/tVzXjza8KBYN4c52f0g9N2PdeBdogAchaPtnKf0tvgqS DjF02m4r61E0x4BH3JPJhXcpuj3JSKSeN5RzlayMFGbmgzx2tznVtHTk5Rm/Shy3 8shjxAvkTyLNZ4RkPzJOWdBOGA== -----END CERTIFICATE-----Generated at Thu Mar 26 09:19:39 2026 by rpki-client