$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35332e302f32342d3234203d3e203634323637.roa File: 33372e3233302e35332e302f32342d3234203d3e203634323637.roa (raw, json) Hash identifier: H/UcrepfahFIbJBaVOsHnSR71onJClDO+A1lvoqNGaE= Subject key identifier: 68:67:14:5C:06:F3:D6:A7:0E:A2:C9:44:A5:0E:17:D9:2D:2F:5C:9F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 410D31C8FF49CF86419AC9D0C95CAA727FCA8DFC Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35332e302f32342d3234203d3e203634323637.roa Signing time: Tue 23 Sep 2025 15:55:07 +0000 ROA not before: Tue 23 Sep 2025 15:50:07 +0000 ROA not after: Tue 22 Sep 2026 15:55:07 +0000 asID: 64267 IP address blocks: 37.230.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 15:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:0d:31:c8:ff:49:cf:86:41:9a:c9:d0:c9:5c:aa:72:7f:ca:8d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 23 15:50:07 2025 GMT Not After : Sep 22 15:55:07 2026 GMT Subject: CN=6867145C06F3D6A70EA2C944A50E17D92D2F5C9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ca:44:3e:0b:7e:66:95:ff:82:a3:99:b4:d9: 90:62:06:df:73:23:8d:47:62:d2:1c:3e:33:0c:6d: b5:e0:03:b5:94:e1:99:df:ed:3f:77:47:7b:36:eb: da:ae:94:56:53:cf:73:04:3f:3e:d6:d1:7e:ae:e9: 2f:5a:38:76:5e:15:df:d5:f5:a8:bb:2d:95:df:22: 5a:dd:01:32:0a:16:14:49:4e:5d:a6:fe:9c:ff:13: d9:7f:92:b3:d1:ff:85:ce:ba:58:98:2a:5f:f1:90: 00:06:27:08:48:99:b9:ff:12:47:5d:07:79:e4:3d: 8b:bc:3a:2e:10:2b:ad:fa:ce:ca:19:59:b1:ed:c6: dc:91:00:e5:db:1d:d4:b2:fc:69:fd:c2:1f:a6:3f: 37:cd:e4:19:63:c9:83:e5:4d:34:b8:87:cc:b4:2f: a6:ed:fa:73:03:f5:26:80:b0:39:2d:5f:21:10:dc: 98:5a:b7:94:ad:d5:64:ae:60:5b:3a:be:6f:d6:95: 1a:ff:ac:28:1f:ac:e1:ed:b0:d2:51:a3:6f:04:36: 8c:a0:b3:92:60:1e:b0:3c:be:2c:f5:d9:a5:43:a3: 73:b6:92:a8:b2:4a:4b:43:7b:ad:16:fe:27:de:a3: a4:b2:57:f8:f7:52:d0:bd:44:8d:25:31:2e:d2:e0: e8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:67:14:5C:06:F3:D6:A7:0E:A2:C9:44:A5:0E:17:D9:2D:2F:5C:9F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35332e302f32342d3234203d3e203634323637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.53.0/24 Signature Algorithm: sha256WithRSAEncryption 54:29:f9:ac:64:fb:44:4b:0b:9a:41:e8:d1:e0:26:c9:87:da: c2:b0:76:20:30:ab:0e:bd:fe:64:7e:70:47:84:9f:90:de:73: ce:3f:24:97:53:68:fc:00:c1:41:27:5d:f0:6f:c9:42:7b:85: 13:5c:45:f2:64:57:9e:1c:b7:66:8e:ea:18:54:36:5b:2c:d5: 5b:ca:b8:74:0b:a5:4f:23:f0:cc:72:51:5c:73:8a:1b:a6:03: 08:0a:25:a5:44:58:89:53:50:d8:97:d1:ab:ce:e0:73:53:4f: f5:47:03:a5:2b:d0:4a:be:c3:3c:a6:16:3b:75:cd:e0:3d:1e: 1e:7f:93:00:f4:d8:22:14:24:ee:ab:fc:42:2a:a2:5b:34:50: f0:dd:b4:5c:7a:d4:98:57:e0:f5:d2:97:e4:41:e6:4b:63:10: cf:d4:8e:7f:09:89:d1:64:6e:79:7f:89:43:58:44:98:b4:85: ff:4d:e6:a8:91:32:aa:b2:cd:65:85:a1:4f:8b:4c:17:8b:48: 0d:0b:6c:ec:3a:ed:8b:68:9f:c6:8f:d8:d2:51:b5:41:1f:7d: 4e:00:51:19:90:3e:4d:3f:35:b2:06:38:0e:02:0c:a7:67:63: dd:9b:ce:e6:f0:98:9e:a5:7a:d1:c2:79:42:f0:3b:be:40:16: 60:d1:10:3c -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUQQ0xyP9Jz4ZBmsnQyVyqcn/KjfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MjMxNTUwMDdaFw0yNjA5MjIxNTU1MDdaMDMxMTAvBgNV BAMTKDY4NjcxNDVDMDZGM0Q2QTcwRUEyQzk0NEE1MEUxN0Q5MkQyRjVDOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKykQ+C35mlf+Co5m02ZBiBt9z I41HYtIcPjMMbbXgA7WU4Znf7T93R3s269qulFZTz3MEPz7W0X6u6S9aOHZeFd/V 9ai7LZXfIlrdATIKFhRJTl2m/pz/E9l/krPR/4XOuliYKl/xkAAGJwhImbn/Ekdd B3nkPYu8Oi4QK636zsoZWbHtxtyRAOXbHdSy/Gn9wh+mPzfN5BljyYPlTTS4h8y0 L6bt+nMD9SaAsDktXyEQ3Jhat5St1WSuYFs6vm/WlRr/rCgfrOHtsNJRo28ENoyg s5JgHrA8viz12aVDo3O2kqiySktDe60W/ifeo6SyV/j3UtC9RI0lMS7S4Og3AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUaGcUXAbz1qcOoslEpQ4X2S0vXJ8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzQzMjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5jUwDQYJKoZIhvcN AQELBQADggEBAFQp+axk+0RLC5pB6NHgJsmH2sKwdiAwqw69/mR+cEeEn5Dec84/ JJdTaPwAwUEnXfBvyUJ7hRNcRfJkV54ct2aO6hhUNlss1VvKuHQLpU8j8MxyUVxz ihumAwgKJaVEWIlTUNiX0avO4HNTT/VHA6Ur0Eq+wzymFjt1zeA9Hh5/kwD02CIU JO6r/EIqols0UPDdtFx61JhX4PXSl+RB5ktjEM/Ujn8JidFkbnl/iUNYRJi0hf9N 5qiRMqqyzWWFoU+LTBeLSA0LbOw67Yton8aP2NJRtUEffU4AURmQPk0/NbIGOA4C DKdnY92bzubwmJ6letHCeULwO75AFmDREDw= -----END CERTIFICATE-----Generated at Mon Oct 20 01:29:17 2025 by rpki-client