$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35322e302f32342d3234203d3e20343032323033.roa File: 33372e3233302e35322e302f32342d3234203d3e20343032323033.roa (raw, json) Hash identifier: RLtecm2C1lhlpFnRx0dYY5za0b+jRwkIRQhzfojsOAw= Subject key identifier: 44:AE:30:6B:95:CB:A0:98:5F:64:AD:AA:CB:9F:AB:9A:E7:77:43:81 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 11A05A80A9519642830EAD13A5C830201F98345E Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35322e302f32342d3234203d3e20343032323033.roa Signing time: Mon 16 Mar 2026 08:37:26 +0000 ROA not before: Mon 16 Mar 2026 08:32:26 +0000 ROA not after: Mon 15 Mar 2027 08:37:26 +0000 asID: 402203 IP address blocks: 37.230.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 15:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a0:5a:80:a9:51:96:42:83:0e:ad:13:a5:c8:30:20:1f:98:34:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 16 08:32:26 2026 GMT Not After : Mar 15 08:37:26 2027 GMT Subject: CN=44AE306B95CBA0985F64ADAACB9FAB9AE7774381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:11:88:a7:14:f2:09:ba:cb:e2:7a:b3:83:95: 67:99:cc:2c:3b:4d:dc:62:63:78:cd:84:b7:05:7b: 02:ce:9b:63:0e:66:48:18:96:d4:64:77:a6:cf:9c: df:fb:23:8c:38:b6:43:c5:62:ad:fb:b4:67:25:14: 43:2d:98:08:e1:15:b5:57:b7:18:f1:f2:e5:a8:4a: f8:d0:ed:1b:67:62:4e:a2:18:75:b2:7f:97:b4:e1: 21:30:a7:b3:95:33:87:4b:54:89:42:e8:61:2b:2c: e2:78:19:2f:58:b2:33:c5:43:c2:ce:6b:65:b4:4e: fe:a2:89:84:32:4a:1c:4c:59:49:3b:f1:09:b6:44: e0:a1:47:79:02:1c:fc:48:50:fd:e0:43:8d:a8:48: 70:dd:fd:37:88:b3:4a:8f:7f:78:e2:0b:53:0b:fa: 12:96:e5:82:cb:08:0d:b1:f4:57:b0:7d:ca:a6:f7: ca:eb:3b:42:e9:06:ee:e0:c6:dc:52:65:ab:73:58: ad:1f:d1:b1:38:8f:21:52:17:40:ee:6a:e4:13:8b: 78:f2:8d:d9:58:0f:de:08:24:b6:ec:0e:f7:ff:bd: ad:a1:31:a9:ca:44:dc:11:d3:af:1a:2a:66:9e:05: 03:57:05:bb:ce:da:61:32:d4:ca:a2:45:36:b6:e1: c3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:AE:30:6B:95:CB:A0:98:5F:64:AD:AA:CB:9F:AB:9A:E7:77:43:81 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35322e302f32342d3234203d3e20343032323033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.52.0/24 Signature Algorithm: sha256WithRSAEncryption 30:c4:8e:f2:da:ea:fd:1d:61:fd:0c:58:82:e1:e4:b8:7f:92: a2:05:8b:1f:18:b1:7e:f0:08:c8:2c:67:a7:c1:d8:af:27:14: dd:d5:1f:0b:2f:b8:1f:1f:98:f6:fb:b2:bc:e3:65:a1:19:1e: 21:67:76:e9:ef:e3:2e:a6:70:98:13:14:6a:32:f7:e3:65:ef: 23:ff:c9:03:55:25:cf:11:a1:4f:21:50:a8:0c:f2:35:41:24: d1:c5:d3:71:43:ed:7b:24:a4:bb:3a:a4:4f:6b:50:fd:4e:b3: 77:e3:df:59:a7:07:64:df:dd:2d:a4:aa:6b:17:12:ab:ce:1c: af:0f:08:62:ed:86:b9:b6:be:a2:5e:b1:00:82:09:bb:d3:a5: a5:82:72:da:4d:81:50:a7:ae:55:fa:56:53:be:59:e1:54:a6: d1:96:2d:d4:b1:1f:ec:de:d8:53:0f:46:0b:75:71:9f:35:a4: 54:ee:4c:d5:40:9b:ce:2a:4d:a8:cc:f3:d7:30:d4:40:a1:21: 88:08:ad:d0:6d:2f:42:e3:ec:11:4c:7a:33:e0:6b:cb:57:85: 3d:d8:d8:44:df:21:ef:3d:b7:86:03:27:60:3a:4b:98:f0:aa: 18:26:7f:19:4a:4b:3d:cb:b9:d0:82:2c:05:2b:1e:25:aa:fa: e1:60:2e:fc -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUEaBagKlRlkKDDq0TpcgwIB+YNF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMTYwODMyMjZaFw0yNzAzMTUwODM3MjZaMDMxMTAvBgNV BAMTKDQ0QUUzMDZCOTVDQkEwOTg1RjY0QURBQUNCOUZBQjlBRTc3NzQzODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChEYinFPIJusvierODlWeZzCw7 TdxiY3jNhLcFewLOm2MOZkgYltRkd6bPnN/7I4w4tkPFYq37tGclFEMtmAjhFbVX txjx8uWoSvjQ7RtnYk6iGHWyf5e04SEwp7OVM4dLVIlC6GErLOJ4GS9YsjPFQ8LO a2W0Tv6iiYQyShxMWUk78Qm2ROChR3kCHPxIUP3gQ42oSHDd/TeIs0qPf3jiC1ML +hKW5YLLCA2x9Fewfcqm98rrO0LpBu7gxtxSZatzWK0f0bE4jyFSF0DuauQTi3jy jdlYD94IJLbsDvf/va2hManKRNwR068aKmaeBQNXBbvO2mEy1MqiRTa24cNBAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQURK4wa5XLoJhfZK2qy5+rmud3Q4EwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzAzMjMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmNDANBgkqhkiG 9w0BAQsFAAOCAQEAMMSO8trq/R1h/QxYguHkuH+SogWLHxixfvAIyCxnp8HYrycU 3dUfCy+4Hx+Y9vuyvONloRkeIWd26e/jLqZwmBMUajL342XvI//JA1UlzxGhTyFQ qAzyNUEk0cXTcUPteySkuzqkT2tQ/U6zd+PfWacHZN/dLaSqaxcSq84crw8IYu2G uba+ol6xAIIJu9OlpYJy2k2BUKeuVfpWU75Z4VSm0ZYt1LEf7N7YUw9GC3VxnzWk VO5M1UCbzipNqMzz1zDUQKEhiAit0G0vQuPsEUx6M+Bry1eFPdjYRN8h7z23hgMn YDpLmPCqGCZ/GUpLPcu50IIsBSseJar64WAu/A== -----END CERTIFICATE-----Generated at Fri Mar 27 00:06:08 2026 by rpki-client