$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20383334.roa File: 33372e3233302e35302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: 7pdpijTDdhMpVi84dA52/rvkloeolJQFBDo3DlPMwe8= Subject key identifier: CE:A3:85:58:78:9B:85:58:C4:FD:73:89:B0:96:60:AA:27:AE:15:E2 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 348F9A44CEC002A5B4EA937FA78995B87815A9B2 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20383334.roa Signing time: Thu 30 Apr 2026 08:09:15 +0000 ROA not before: Thu 30 Apr 2026 08:04:15 +0000 ROA not after: Thu 29 Apr 2027 08:09:15 +0000 asID: 834 IP address blocks: 37.230.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8f:9a:44:ce:c0:02:a5:b4:ea:93:7f:a7:89:95:b8:78:15:a9:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 30 08:04:15 2026 GMT Not After : Apr 29 08:09:15 2027 GMT Subject: CN=CEA38558789B8558C4FD7389B09660AA27AE15E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0b:74:c9:46:3b:b4:f2:0b:1f:8e:9e:ac:a5: 5a:85:06:91:2d:2b:3e:67:40:33:18:b8:26:6e:78: ee:9a:13:d0:71:d6:80:52:9d:63:65:81:d3:19:3d: 57:8c:10:ca:6c:9f:80:b3:bc:be:ef:d4:fa:f3:f6: d1:18:dd:0a:7b:8a:7c:88:48:92:f6:84:96:e1:e5: 17:04:a3:17:2b:33:ab:7a:16:de:8f:52:fb:75:ae: 06:da:7d:43:60:17:4b:61:df:dc:5f:a8:4f:54:a0: 7a:17:cb:0a:38:7f:75:ab:82:85:d5:88:79:2c:3d: 16:7e:22:62:a8:c7:69:25:65:f1:f2:84:c1:98:00: 90:5b:4b:33:e7:a0:6f:86:2f:18:a0:da:a7:d4:a6: d4:d9:ef:5f:e6:ef:02:0f:02:ec:76:62:0a:d5:0e: db:40:24:9f:85:01:3e:53:16:5b:d5:e8:d5:ae:a2: a7:4b:10:7a:f1:1d:e4:f9:a3:5a:7c:d3:81:e0:a2: 74:57:25:65:75:2b:c7:59:85:ef:35:b1:a4:47:c0: a6:10:55:ad:81:ef:9b:cd:bd:b5:90:8a:ea:ba:82: cd:c5:af:8a:67:62:2e:75:99:c0:df:e4:1a:38:7c: 6e:e5:53:a9:3c:50:9f:ce:70:8f:3d:71:20:d8:15: 77:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A3:85:58:78:9B:85:58:C4:FD:73:89:B0:96:60:AA:27:AE:15:E2 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.50.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:2a:1c:5a:ec:28:c6:ca:42:f7:52:98:9e:f1:b7:05:21:f2: 87:fb:0e:74:f6:a9:10:6d:80:d5:b0:18:ac:11:5a:64:95:d7: 90:0e:c4:a9:cb:41:71:8b:4a:43:51:85:78:fa:03:eb:9d:11: f9:a7:31:73:f4:3f:aa:dd:87:f0:f6:74:05:76:5e:ca:cb:b8: cc:bc:6d:f1:3e:26:1a:af:bf:f4:89:51:d0:bd:20:a1:08:56: 5c:62:bc:9b:3b:ae:a4:3a:aa:7f:4b:46:7f:f8:4c:18:50:0d: 47:91:5b:77:e9:00:e4:43:a3:f0:d1:33:18:d4:e7:43:d8:8b: 99:31:8e:00:98:bf:a9:f5:f3:8c:c8:a3:03:6d:28:0b:6b:37: 89:0c:b3:5c:99:f9:70:0b:34:85:75:34:02:68:c0:7d:94:aa: 4a:f0:a4:e6:24:ac:ff:63:55:49:c8:30:d3:11:f5:41:e0:3e: c9:4e:f9:73:5e:9b:eb:53:72:b1:3b:ad:a6:a5:d9:1a:e2:f9: 1d:d7:4d:bd:45:ba:9b:14:91:4c:43:31:ac:cd:c1:d5:79:84: 84:40:63:81:61:e9:47:15:60:64:9e:95:1f:75:df:1f:81:cb: c6:62:f3:91:fe:44:fa:a6:66:34:7c:65:b8:dc:3a:a0:4c:a2: 11:58:a6:d9 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUNI+aRM7AAqW06pN/p4mVuHgVqbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA0MzAwODA0MTVaFw0yNzA0MjkwODA5MTVaMDMxMTAvBgNV BAMTKENFQTM4NTU4Nzg5Qjg1NThDNEZENzM4OUIwOTY2MEFBMjdBRTE1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWC3TJRju08gsfjp6spVqFBpEt Kz5nQDMYuCZueO6aE9Bx1oBSnWNlgdMZPVeMEMpsn4CzvL7v1Prz9tEY3Qp7inyI SJL2hJbh5RcEoxcrM6t6Ft6PUvt1rgbafUNgF0th39xfqE9UoHoXywo4f3WrgoXV iHksPRZ+ImKox2klZfHyhMGYAJBbSzPnoG+GLxig2qfUptTZ71/m7wIPAux2YgrV DttAJJ+FAT5TFlvV6NWuoqdLEHrxHeT5o1p804HgonRXJWV1K8dZhe81saRHwKYQ Va2B75vNvbWQiuq6gs3Fr4pnYi51mcDf5Bo4fG7lU6k8UJ/OcI89cSDYFXfzAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUzqOFWHibhVjE/XOJsJZgqieuFeIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzIzMzMwMmUzNTMwMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeYyMA0GCSqGSIb3DQEBCwUA A4IBAQBcKhxa7CjGykL3Upie8bcFIfKH+w509qkQbYDVsBisEVpkldeQDsSpy0Fx i0pDUYV4+gPrnRH5pzFz9D+q3Yfw9nQFdl7Ky7jMvG3xPiYar7/0iVHQvSChCFZc YrybO66kOqp/S0Z/+EwYUA1HkVt36QDkQ6Pw0TMY1OdD2IuZMY4AmL+p9fOMyKMD bSgLazeJDLNcmflwCzSFdTQCaMB9lKpK8KTmJKz/Y1VJyDDTEfVB4D7JTvlzXpvr U3KxO62mpdka4vkd1029RbqbFJFMQzGszcHVeYSEQGOBYelHFWBknpUfdd8fgcvG YvOR/kT6pmY0fGW43DqgTKIRWKbZ -----END CERTIFICATE-----Generated at Tue May 12 23:52:54 2026 by rpki-client