$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e2039303039.roa File: 33372e3233302e35342e302f32342d3234203d3e2039303039.roa (raw, json) Hash identifier: Gq0P4DgB8NyBCAw2Pvxz8j5LOzGyoDYvfQi8CJfKF7c= Subject key identifier: D3:96:00:38:9D:08:3E:F5:0A:9A:E0:81:86:32:69:3A:F4:96:DA:95 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5DB372947AFC0262EBB2DDD4C3DD58F3195886E0 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e2039303039.roa Signing time: Mon 29 Sep 2025 16:00:11 +0000 ROA not before: Mon 29 Sep 2025 15:55:11 +0000 ROA not after: Mon 28 Sep 2026 16:00:11 +0000 asID: 9009 IP address blocks: 37.230.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 05:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:b3:72:94:7a:fc:02:62:eb:b2:dd:d4:c3:dd:58:f3:19:58:86:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 29 15:55:11 2025 GMT Not After : Sep 28 16:00:11 2026 GMT Subject: CN=D39600389D083EF50A9AE0818632693AF496DA95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1b:ee:27:0b:88:1b:2e:af:95:d1:da:c5:18: f8:30:29:79:3c:01:c9:45:49:13:a4:46:af:6a:4f: e9:c8:9d:01:d4:fb:42:e5:e2:6b:74:ef:17:e9:07: ee:3a:11:0b:37:86:58:e0:56:96:44:7a:c4:ed:b5: ae:7a:1c:0c:58:e8:b7:ec:71:96:45:49:7c:16:0a: f9:b3:9e:6c:89:55:c9:7e:4f:43:8d:5c:b4:34:9b: ae:08:17:b8:49:4e:51:0a:85:57:78:b5:23:9c:9f: 23:c5:cf:8a:8b:af:b4:6f:48:2f:ec:8a:91:e6:73: 53:2c:87:17:9f:57:a8:a2:78:84:c5:7a:d2:aa:6b: 18:2e:f6:29:5d:21:ce:bb:b3:5c:2d:ad:b1:e3:14: da:bf:8c:9b:c5:4c:1c:4a:9c:fe:1a:3e:1c:4b:4a: 75:a0:91:f8:1c:01:9a:38:1f:54:c2:13:00:3e:83: b0:11:59:7b:79:98:c8:0b:58:c7:63:d7:89:bd:f7: 5b:cb:f2:06:4a:5e:1e:a8:53:8e:16:a0:27:4b:4f: 3c:9f:3c:73:fc:28:11:3d:51:a6:fe:ec:51:e4:b5: 5d:dc:4b:78:95:34:29:b5:28:41:61:53:17:22:ce: 2e:8e:9f:09:c8:1b:5e:2b:36:74:9e:b4:61:7e:b6: 9d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:96:00:38:9D:08:3E:F5:0A:9A:E0:81:86:32:69:3A:F4:96:DA:95 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e2039303039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.54.0/24 Signature Algorithm: sha256WithRSAEncryption 42:e9:ee:26:59:1b:21:79:ab:65:62:25:a5:8d:09:05:b6:81: 8a:ff:13:01:3d:98:9d:ca:e4:e8:a6:37:39:25:05:f4:ad:e2: a9:d9:46:fe:d6:4b:6b:22:cd:52:87:55:d9:43:7d:b0:bf:86: 58:26:4e:9e:a8:4d:5a:7e:c3:e9:de:bd:ab:bf:44:e1:2a:0b: 60:df:ec:e6:55:72:9d:39:f4:89:54:41:4c:1e:df:55:19:81: 50:26:c1:b8:ce:c1:e6:8c:5f:de:14:9b:75:52:86:f4:7b:f7: 97:25:9b:df:de:8a:23:32:15:03:c9:0f:d7:6b:75:d0:5e:92: 2a:d4:35:67:41:9c:d9:7c:63:55:c4:37:8b:d2:bf:f8:d4:fd: d6:d2:6b:06:a1:9e:d1:93:b3:e2:31:df:6c:99:9c:5a:6a:5a: 7f:a0:fb:da:d3:ef:ba:7d:7f:db:ea:a4:24:c9:4f:e8:48:2a: 38:cf:0c:12:fe:24:8d:16:37:47:be:4a:81:0f:b7:55:18:fc: aa:e8:95:b2:45:ba:00:82:f3:d1:1d:ed:98:aa:70:6d:8b:0d: 31:d5:77:6d:29:c5:14:40:6e:5a:11:ab:e8:dc:59:75:f6:8f: f7:02:da:10:aa:bf:e4:57:35:f0:5f:75:45:a7:6a:e5:11:8f: 40:08:8d:39 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUXbNylHr8AmLrst3Uw91Y8xlYhuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MjkxNTU1MTFaFw0yNjA5MjgxNjAwMTFaMDMxMTAvBgNV BAMTKEQzOTYwMDM4OUQwODNFRjUwQTlBRTA4MTg2MzI2OTNBRjQ5NkRBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWG+4nC4gbLq+V0drFGPgwKXk8 AclFSROkRq9qT+nInQHU+0Ll4mt07xfpB+46EQs3hljgVpZEesTtta56HAxY6Lfs cZZFSXwWCvmznmyJVcl+T0ONXLQ0m64IF7hJTlEKhVd4tSOcnyPFz4qLr7RvSC/s ipHmc1MshxefV6iieITFetKqaxgu9ildIc67s1wtrbHjFNq/jJvFTBxKnP4aPhxL SnWgkfgcAZo4H1TCEwA+g7ARWXt5mMgLWMdj14m991vL8gZKXh6oU44WoCdLTzyf PHP8KBE9Uab+7FHktV3cS3iVNCm1KEFhUxcizi6OnwnIG14rNnSetGF+tp3zAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU05YAOJ0IPvUKmuCBhjJpOvSW2pUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM5MzAzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeY2MA0GCSqGSIb3DQEB CwUAA4IBAQBC6e4mWRsheatlYiWljQkFtoGK/xMBPZidyuTopjc5JQX0reKp2Ub+ 1ktrIs1Sh1XZQ32wv4ZYJk6eqE1afsPp3r2rv0ThKgtg3+zmVXKdOfSJVEFMHt9V GYFQJsG4zsHmjF/eFJt1Uob0e/eXJZvf3oojMhUDyQ/Xa3XQXpIq1DVnQZzZfGNV xDeL0r/41P3W0msGoZ7Rk7PiMd9smZxaalp/oPva0++6fX/b6qQkyU/oSCo4zwwS /iSNFjdHvkqBD7dVGPyq6JWyRboAgvPRHe2YqnBtiw0x1XdtKcUUQG5aEavo3Fl1 9o/3AtoQqr/kVzXwX3VFp2rlEY9ACI05 -----END CERTIFICATE-----Generated at Sun Oct 19 22:25:21 2025 by rpki-client