$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20383334.roa File: 33372e3233302e34382e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: ZkJQAIa6O/KbC6G81FIRdvGrOU7cmeVDN19lbz2OGmc= Subject key identifier: BB:70:23:E9:27:D8:6F:75:18:AD:D7:A3:A0:5D:80:60:99:94:F9:D8 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 014455BA84F9F53AF44DF8F0F323A88F64ED34FB Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20383334.roa Signing time: Fri 01 May 2026 02:14:12 +0000 ROA not before: Fri 01 May 2026 02:09:12 +0000 ROA not after: Fri 30 Apr 2027 02:14:12 +0000 asID: 834 IP address blocks: 37.230.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:44:55:ba:84:f9:f5:3a:f4:4d:f8:f0:f3:23:a8:8f:64:ed:34:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 1 02:09:12 2026 GMT Not After : Apr 30 02:14:12 2027 GMT Subject: CN=BB7023E927D86F7518ADD7A3A05D80609994F9D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f9:a8:52:9e:83:ab:0b:54:4a:a9:50:d0:85: 68:44:57:c0:e0:36:1a:db:48:0c:01:b0:7c:4a:fa: f8:96:19:4a:e4:79:15:13:e7:60:91:1b:c8:c1:ee: 4e:8b:14:66:9a:01:55:c4:3e:0f:44:a2:6f:13:09: 18:41:e5:ae:4d:b9:9b:d5:fa:aa:ac:da:70:ed:58: 95:0f:ed:81:6e:43:ac:10:bc:bf:d6:cb:70:87:1c: 19:82:cd:a7:c6:7e:b8:38:40:9c:8f:e7:52:5d:b5: e6:f1:f4:89:af:a2:48:b0:6c:ea:b1:da:07:06:50: 5f:78:be:d3:24:b7:cb:16:0f:ce:a6:f0:8e:04:4d: 2d:2f:73:17:17:be:0a:cc:72:fd:50:b4:f8:04:1b: fb:fb:54:65:27:40:e1:09:a4:26:e7:8d:43:4e:c2: 1f:a5:b8:f1:fb:1b:9d:31:be:3a:63:af:b6:a1:74: d6:3e:b9:49:b5:17:75:cb:2e:09:ce:32:81:88:2b: c6:77:b5:db:53:4e:60:74:68:22:a6:f6:84:9e:36: e3:d0:04:3e:94:15:39:64:76:eb:4d:19:1c:2e:56: 98:56:17:45:c9:73:8b:7a:61:c8:21:31:66:ed:9d: b1:43:80:60:d2:cf:14:de:aa:20:49:0a:a4:44:12: c5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:70:23:E9:27:D8:6F:75:18:AD:D7:A3:A0:5D:80:60:99:94:F9:D8 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.48.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:dc:f2:09:2e:83:4d:f0:5a:00:75:56:05:d9:7f:79:71:9c: 88:05:37:32:a4:5e:9e:c1:56:c0:ba:21:d8:9e:d4:9c:d2:fb: 00:63:df:33:68:80:3e:3f:0a:50:6d:3b:71:64:6f:d5:a8:74: 9e:58:c7:21:f4:ab:59:7c:a5:21:02:20:7d:a2:f0:6a:dd:23: ca:85:91:78:37:df:de:28:48:b3:b1:9c:31:6f:40:25:12:ef: 6f:df:00:de:ad:39:85:18:13:8f:02:85:69:88:3d:02:ec:92: cd:bb:3c:f8:4f:2d:e1:9d:91:e8:9a:8a:1a:7d:60:08:35:3f: 86:82:80:1b:d7:75:25:35:42:74:03:4b:4c:ee:5b:0e:1f:a9: 3c:ff:0e:d3:36:40:28:a2:10:a5:dc:6b:ff:dc:4c:63:7f:98: a7:fc:7b:2a:5b:7c:ce:91:64:ce:4b:5a:1e:f7:a3:d8:85:ff: fc:dd:24:dc:95:3e:e9:fb:1a:b4:30:cc:8d:88:4a:60:f7:31: 6a:f7:8d:f9:b1:46:5a:0c:da:f7:c2:97:96:29:19:67:96:68: cb:7b:5a:42:6a:de:6b:79:c4:b7:f6:c1:10:7e:81:74:b9:aa: 6d:7b:78:d0:47:c8:21:08:19:eb:18:7d:94:40:40:11:1c:ab: f2:98:a1:27 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUAURVuoT59Tr0Tfjw8yOoj2TtNPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDEwMjA5MTJaFw0yNzA0MzAwMjE0MTJaMDMxMTAvBgNV BAMTKEJCNzAyM0U5MjdEODZGNzUxOEFERDdBM0EwNUQ4MDYwOTk5NEY5RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+ahSnoOrC1RKqVDQhWhEV8Dg NhrbSAwBsHxK+viWGUrkeRUT52CRG8jB7k6LFGaaAVXEPg9Eom8TCRhB5a5NuZvV +qqs2nDtWJUP7YFuQ6wQvL/Wy3CHHBmCzafGfrg4QJyP51Jdtebx9ImvokiwbOqx 2gcGUF94vtMkt8sWD86m8I4ETS0vcxcXvgrMcv1QtPgEG/v7VGUnQOEJpCbnjUNO wh+luPH7G50xvjpjr7ahdNY+uUm1F3XLLgnOMoGIK8Z3tdtTTmB0aCKm9oSeNuPQ BD6UFTlkdutNGRwuVphWF0XJc4t6YcghMWbtnbFDgGDSzxTeqiBJCqREEsU/AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUu3Aj6SfYb3UYrdejoF2AYJmU+dgwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzIzMzMwMmUzNDM4MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeYwMA0GCSqGSIb3DQEBCwUA A4IBAQAv3PIJLoNN8FoAdVYF2X95cZyIBTcypF6ewVbAuiHYntSc0vsAY98zaIA+ PwpQbTtxZG/VqHSeWMch9KtZfKUhAiB9ovBq3SPKhZF4N9/eKEizsZwxb0AlEu9v 3wDerTmFGBOPAoVpiD0C7JLNuzz4Ty3hnZHomooafWAINT+GgoAb13UlNUJ0A0tM 7lsOH6k8/w7TNkAoohCl3Gv/3Exjf5in/HsqW3zOkWTOS1oe96PYhf/83STclT7p +xq0MMyNiEpg9zFq9435sUZaDNr3wpeWKRlnlmjLe1pCat5recS39sEQfoF0uapt e3jQR8ghCBnrGH2UQEARHKvymKEn -----END CERTIFICATE-----Generated at Tue May 12 23:17:38 2026 by rpki-client