$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20383334.roa File: 33372e3233302e35302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: +ldyaLlc55Ded8EMG1uY5PVlEYoOQOHELh7TlsMF4RY= Subject key identifier: 59:FD:95:8D:7C:B7:D8:44:E8:ED:B3:CE:C7:AA:70:04:39:E7:C4:E6 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 653ADE3D9C27848C0F9E32CA00A17C369BE03B4B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20383334.roa Signing time: Sat 21 Mar 2026 19:32:51 +0000 ROA not before: Sat 21 Mar 2026 19:27:51 +0000 ROA not after: Sat 20 Mar 2027 19:32:51 +0000 asID: 834 IP address blocks: 37.230.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 21:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3a:de:3d:9c:27:84:8c:0f:9e:32:ca:00:a1:7c:36:9b:e0:3b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 21 19:27:51 2026 GMT Not After : Mar 20 19:32:51 2027 GMT Subject: CN=59FD958D7CB7D844E8EDB3CEC7AA700439E7C4E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:83:1c:59:6c:2b:7f:92:c5:23:af:95:b8:8a: 6a:e2:3c:54:93:15:8c:35:a1:bf:7d:b6:fd:a2:bb: d5:0f:4e:11:f9:4a:c8:c3:b3:96:d6:31:94:35:6c: 91:6b:bc:18:d2:58:5f:ba:d1:92:e9:ac:35:01:9e: a7:3e:9a:6a:48:72:29:e5:68:7a:c3:59:d5:90:ac: a9:d0:15:95:85:48:87:d6:a1:12:50:3a:de:9d:f2: 0c:05:54:5e:cc:ad:7f:e4:23:9e:4f:39:f0:4e:59: 83:af:57:50:5c:75:68:c6:91:5f:bd:ff:be:d2:7b: 7d:23:a2:59:9b:d7:d5:68:3a:57:47:a1:00:02:1e: 71:2f:02:12:6b:07:b5:34:92:fd:ef:f1:a7:0d:c2: 1f:5d:a5:48:46:3e:dc:14:ca:8c:e8:d1:75:27:a3: 72:22:e9:0d:2e:a4:96:fa:0a:81:55:45:11:a5:f7: 38:72:a1:82:12:b3:6a:83:77:ea:04:94:c8:a2:b5: 18:7b:62:bc:a1:e8:02:d3:4a:7f:70:7b:14:de:36: 8d:45:1c:42:23:27:56:72:ca:4b:77:6b:74:07:43: f6:07:94:67:ef:b7:bb:64:28:9c:c4:26:3f:d2:7d: df:3d:e5:6e:d0:c1:4b:92:62:49:ad:d4:8f:72:2e: ca:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FD:95:8D:7C:B7:D8:44:E8:ED:B3:CE:C7:AA:70:04:39:E7:C4:E6 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.50.0/24 Signature Algorithm: sha256WithRSAEncryption 76:22:9f:1d:fa:1c:3b:c8:80:90:19:a7:35:2d:09:ba:23:fa: 2b:5f:71:c3:20:ae:f5:a7:ab:7f:f8:72:2b:e5:5f:c2:c1:81: a4:13:b2:96:1d:2a:c2:8f:91:69:96:7d:6d:34:b9:40:43:d1: 62:c1:e7:12:04:e5:0e:b6:3b:81:58:aa:e9:e5:a5:8e:c4:fa: 80:8a:40:16:59:35:ff:4e:4b:8e:b0:ab:a6:24:fa:0c:26:af: c2:db:d7:71:7e:63:76:1e:3b:cd:d8:94:c9:87:55:4f:72:59: 36:cb:94:b0:5d:b7:eb:88:f9:a9:80:17:56:6e:2e:e3:b4:55: 40:13:eb:33:1a:64:33:e1:25:20:0f:81:ba:d8:4f:2f:6e:11: 19:11:ad:dd:0b:98:d7:c4:8a:d9:9a:af:21:ec:0d:fc:f1:9e: 88:f8:f1:94:21:e0:e9:36:92:df:27:68:3a:05:2c:f8:74:ad: 61:5e:e5:97:4c:28:1d:2e:9a:2a:e9:07:98:7e:a0:f0:94:9c: 36:a0:2e:d2:ca:63:a4:24:cc:1a:68:48:f0:d7:2f:8c:37:95: aa:db:70:86:fd:49:f7:db:0d:05:6f:cf:c8:e2:5e:a0:75:eb: 22:3f:db:f4:aa:e0:a8:19:59:87:5f:71:f7:77:3d:ca:98:d8: 91:54:85:70 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUZTrePZwnhIwPnjLKAKF8NpvgO0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjExOTI3NTFaFw0yNzAzMjAxOTMyNTFaMDMxMTAvBgNV BAMTKDU5RkQ5NThEN0NCN0Q4NDRFOEVEQjNDRUM3QUE3MDA0MzlFN0M0RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOgxxZbCt/ksUjr5W4imriPFST FYw1ob99tv2iu9UPThH5SsjDs5bWMZQ1bJFrvBjSWF+60ZLprDUBnqc+mmpIcinl aHrDWdWQrKnQFZWFSIfWoRJQOt6d8gwFVF7MrX/kI55POfBOWYOvV1BcdWjGkV+9 /77Se30jolmb19VoOldHoQACHnEvAhJrB7U0kv3v8acNwh9dpUhGPtwUyozo0XUn o3Ii6Q0upJb6CoFVRRGl9zhyoYISs2qDd+oElMiitRh7Yryh6ALTSn9wexTeNo1F HEIjJ1Zyykt3a3QHQ/YHlGfvt7tkKJzEJj/Sfd895W7QwUuSYkmt1I9yLsp9AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUWf2VjXy32ETo7bPOx6pwBDnnxOYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzIzMzMwMmUzNTMwMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeYyMA0GCSqGSIb3DQEBCwUA A4IBAQB2Ip8d+hw7yICQGac1LQm6I/orX3HDIK71p6t/+HIr5V/CwYGkE7KWHSrC j5Fpln1tNLlAQ9FiwecSBOUOtjuBWKrp5aWOxPqAikAWWTX/TkuOsKumJPoMJq/C 29dxfmN2HjvN2JTJh1VPclk2y5SwXbfriPmpgBdWbi7jtFVAE+szGmQz4SUgD4G6 2E8vbhEZEa3dC5jXxIrZmq8h7A388Z6I+PGUIeDpNpLfJ2g6BSz4dK1hXuWXTCgd Lpoq6QeYfqDwlJw2oC7SymOkJMwaaEjw1y+MN5Wq23CG/Un32w0Fb8/I4l6gdesi P9v0quCoGVmHX3H3dz3KmNiRVIVw -----END CERTIFICATE-----Generated at Thu Mar 26 09:19:36 2026 by rpki-client