$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa File: 33372e312e3233312e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: XxUeEZmJBMTqiOrf6YXCqHblsfKkkniKapMDTfQRFrA= Subject key identifier: AD:D6:DB:04:9B:B9:EE:61:46:19:5A:3E:10:4A:D8:0A:F8:C9:14:E3 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 15480F9283B11C40FE8856D4F1656C836FF7CAC6 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa Signing time: Tue 09 Sep 2025 11:55:00 +0000 ROA not before: Tue 09 Sep 2025 11:50:00 +0000 ROA not after: Tue 08 Sep 2026 11:55:00 +0000 asID: 61317 IP address blocks: 37.1.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 21:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:48:0f:92:83:b1:1c:40:fe:88:56:d4:f1:65:6c:83:6f:f7:ca:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 9 11:50:00 2025 GMT Not After : Sep 8 11:55:00 2026 GMT Subject: CN=ADD6DB049BB9EE6146195A3E104AD80AF8C914E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:01:b6:19:3c:4f:8f:4a:34:a9:41:6c:e2:dc: 48:db:a1:1d:14:20:48:e2:76:b4:82:5d:ab:b0:16: 6a:bd:48:c3:0a:c8:84:63:63:47:66:60:58:1b:e8: 00:3f:c8:0d:47:c5:be:64:77:95:a9:65:28:9c:c5: 3f:04:c5:52:2d:4c:1c:89:1a:59:ac:12:0d:9e:63: a8:1e:df:7e:9a:77:68:77:fc:a5:66:91:03:70:42: 23:6a:5f:e9:16:e9:bf:f4:44:a9:8f:7d:08:a4:08: b9:03:55:88:e2:48:8b:e0:b3:12:3b:a7:d8:0e:e3: 87:6e:2d:34:a9:84:6d:39:20:95:06:5a:94:29:52: 57:b8:9c:6f:5f:26:e8:ca:97:15:52:0e:02:d2:d9: 28:bb:4e:41:6b:4b:29:9d:b0:74:7d:7c:d2:77:1d: 65:9b:7a:6d:44:7f:d5:9c:0b:c3:f0:48:59:e1:b7: a9:d1:10:a7:30:bb:4f:51:44:e0:f1:71:a7:c7:01: ae:6d:3e:97:fb:c9:ad:c2:e5:0e:b2:de:c0:87:33: 76:53:05:3e:18:df:40:cf:2d:a8:ff:8b:ad:26:34: 77:5f:5e:80:5f:52:35:4a:87:83:3c:2d:a0:0a:46: 8e:1f:99:88:b9:b2:40:28:32:16:8b:29:f6:b7:3c: 54:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D6:DB:04:9B:B9:EE:61:46:19:5A:3E:10:4A:D8:0A:F8:C9:14:E3 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.231.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:52:6a:b3:da:b1:1a:68:18:ac:4d:23:8c:07:39:80:f6:a6: 94:2c:39:16:c4:e0:cd:e2:ad:2d:7a:f7:97:ba:af:64:42:fc: a8:74:09:60:21:e4:a8:72:ee:85:46:bd:65:87:0a:a1:f6:df: 86:29:bc:ef:3a:4d:3f:a1:d8:26:67:ff:58:72:15:53:35:a5: a5:86:ef:be:27:27:b9:c5:ed:c3:42:c3:68:78:c4:da:a4:30: a0:92:23:ec:2a:a9:00:4b:95:d9:e5:89:47:64:98:45:5e:67: cd:1e:3c:29:c7:54:b3:f1:2b:81:90:30:e6:f3:00:6b:55:89: 3a:2a:32:d4:0f:35:23:e2:db:8c:2a:17:6d:19:4c:7e:fb:0f: ad:9d:e2:50:de:0d:94:83:a9:cc:1c:c3:09:ff:56:b3:e1:f7: 16:1d:76:2b:30:78:47:ff:45:20:3a:34:f0:9d:1d:35:ee:ef: 13:1c:4f:b1:01:b6:d7:93:54:3c:41:6d:72:20:16:5d:9a:e9: a5:7d:10:32:4f:9d:ba:8b:54:d4:6e:55:ce:e8:d9:c6:e9:4c: d8:00:0b:05:23:00:a1:7e:81:ca:df:98:2b:fb:1e:ea:7c:26: b7:19:19:99:55:bc:58:0e:c4:72:29:99:90:10:e2:11:bf:ff: d8:81:bf:f1 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUFUgPkoOxHED+iFbU8WVsg2/3ysYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MDkxMTUwMDBaFw0yNjA5MDgxMTU1MDBaMDMxMTAvBgNV BAMTKEFERDZEQjA0OUJCOUVFNjE0NjE5NUEzRTEwNEFEODBBRjhDOTE0RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHAbYZPE+PSjSpQWzi3EjboR0U IEjidrSCXauwFmq9SMMKyIRjY0dmYFgb6AA/yA1Hxb5kd5WpZSicxT8ExVItTByJ GlmsEg2eY6ge336ad2h3/KVmkQNwQiNqX+kW6b/0RKmPfQikCLkDVYjiSIvgsxI7 p9gO44duLTSphG05IJUGWpQpUle4nG9fJujKlxVSDgLS2Si7TkFrSymdsHR9fNJ3 HWWbem1Ef9WcC8PwSFnht6nREKcwu09RRODxcafHAa5tPpf7ya3C5Q6y3sCHM3ZT BT4Y30DPLaj/i60mNHdfXoBfUjVKh4M8LaAKRo4fmYi5skAoMhaLKfa3PFT7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUrdbbBJu57mFGGVo+EErYCvjJFOMwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHnMA0GCSqGSIb3DQEB CwUAA4IBAQCaUmqz2rEaaBisTSOMBzmA9qaULDkWxODN4q0teveXuq9kQvyodAlg IeSocu6FRr1lhwqh9t+GKbzvOk0/odgmZ/9YchVTNaWlhu++Jye5xe3DQsNoeMTa pDCgkiPsKqkAS5XZ5YlHZJhFXmfNHjwpx1Sz8SuBkDDm8wBrVYk6KjLUDzUj4tuM KhdtGUx++w+tneJQ3g2Ug6nMHMMJ/1az4fcWHXYrMHhH/0UgOjTwnR017u8THE+x AbbXk1Q8QW1yIBZdmumlfRAyT526i1TUblXO6NnG6UzYAAsFIwChfoHK35gr+x7q fCa3GRmZVbxYDsRyKZmQEOIRv//Ygb/x -----END CERTIFICATE-----Generated at Mon Oct 20 12:16:06 2025 by rpki-client