$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35352e302f32342d3234203d3e203634323637.roa File: 33372e3233302e35352e302f32342d3234203d3e203634323637.roa (raw, json) Hash identifier: fgAkf1dyRRi4mLRdZU2rlc5shWcM8CWk8SueJwm4Amo= Subject key identifier: E6:50:ED:A8:53:39:9B:17:B9:D6:F5:35:BC:C8:DA:90:BD:6C:1B:D8 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 6826B050C09EE5FFC103E8C8DF02C57B369AE499 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35352e302f32342d3234203d3e203634323637.roa Signing time: Tue 23 Sep 2025 15:55:07 +0000 ROA not before: Tue 23 Sep 2025 15:50:07 +0000 ROA not after: Tue 22 Sep 2026 15:55:07 +0000 asID: 64267 IP address blocks: 37.230.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 15:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:26:b0:50:c0:9e:e5:ff:c1:03:e8:c8:df:02:c5:7b:36:9a:e4:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 23 15:50:07 2025 GMT Not After : Sep 22 15:55:07 2026 GMT Subject: CN=E650EDA853399B17B9D6F535BCC8DA90BD6C1BD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e2:81:b2:74:12:b8:e9:91:1d:e9:13:79:06: de:c5:fb:38:5e:75:9d:61:e3:14:93:17:0b:c7:e0: af:60:b9:9f:88:7a:7a:6a:f0:67:d0:4a:b0:32:0c: a7:0e:1e:c9:22:0e:a5:92:51:7c:d4:16:92:46:99: 4d:b3:c8:e8:85:43:c0:cb:b7:f9:15:4a:74:75:56: f4:b1:e2:36:58:5b:ae:82:7b:65:79:70:3f:a3:4f: 74:d6:48:d0:af:5a:4d:32:7c:33:f1:0d:71:d7:df: 39:e3:9f:79:c7:5e:af:4d:7b:ae:0d:93:d2:af:90: 86:33:7f:15:8b:1b:b8:3d:99:e9:3f:76:31:60:5a: b2:65:4b:37:a2:29:37:da:2d:55:40:e0:35:19:bb: b2:41:98:42:83:d0:73:f1:06:77:8b:64:f8:e7:9b: 67:ee:c6:1d:8c:d6:0e:cf:95:66:3b:22:c8:8c:47: d3:4d:5f:3f:e5:ba:c7:62:7a:9f:2c:89:15:b4:73: 4f:41:db:1e:4d:58:f0:d2:55:6f:a7:22:ce:4c:25: 6e:19:31:ea:3d:df:99:da:7d:f4:58:7f:a9:d1:a4: 26:ac:ed:05:7e:60:fc:19:b2:0c:f7:14:db:a0:d4: b8:1f:dd:d1:c0:90:f6:40:b5:35:5a:12:48:74:8a: eb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:50:ED:A8:53:39:9B:17:B9:D6:F5:35:BC:C8:DA:90:BD:6C:1B:D8 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35352e302f32342d3234203d3e203634323637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.55.0/24 Signature Algorithm: sha256WithRSAEncryption 63:db:9f:36:ff:c5:88:4f:c7:14:63:95:94:f6:fa:ec:2b:05: f3:dc:a0:d1:ac:b2:0e:cc:da:27:14:48:80:d3:65:ce:49:1f: 8a:5d:68:d6:f9:75:b8:ed:6f:24:12:dc:cb:c4:12:9e:11:33: ba:ec:a0:0b:89:23:46:da:0c:4f:2a:02:eb:4a:13:52:ba:ad: c2:03:37:0e:3b:95:46:94:72:4a:c4:b6:a8:8f:14:c1:a8:03: 7f:49:fd:94:a5:ef:73:53:64:7f:cc:e7:41:3d:43:82:2e:9e: 1b:ea:e0:e8:e6:aa:a6:13:00:4a:e0:4f:5c:eb:01:38:23:61: 2e:1c:59:02:45:62:8e:1b:11:0c:e5:ac:19:16:50:65:3c:dd: 65:24:74:9a:70:59:79:1c:15:e7:58:17:3f:21:45:4c:80:f4: b9:8c:ca:fd:64:da:7d:65:76:ec:b5:b7:af:41:0e:ca:cd:d9: b3:b5:c8:23:1b:d5:bd:52:17:df:cd:5f:b3:2f:61:4c:ef:ba: 42:a9:07:25:de:e5:9d:59:24:51:da:0c:23:ae:b9:1b:7a:92: ad:eb:05:59:b1:e1:dd:25:23:3f:25:6d:26:87:25:01:89:5f: 44:74:24:cc:ba:bb:17:82:1e:0d:05:36:b7:0b:77:03:cb:0f: 00:56:35:dc -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUaCawUMCe5f/BA+jI3wLFezaa5JkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MjMxNTUwMDdaFw0yNjA5MjIxNTU1MDdaMDMxMTAvBgNV BAMTKEU2NTBFREE4NTMzOTlCMTdCOUQ2RjUzNUJDQzhEQTkwQkQ2QzFCRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl4oGydBK46ZEd6RN5Bt7F+zhe dZ1h4xSTFwvH4K9guZ+Ienpq8GfQSrAyDKcOHskiDqWSUXzUFpJGmU2zyOiFQ8DL t/kVSnR1VvSx4jZYW66Ce2V5cD+jT3TWSNCvWk0yfDPxDXHX3znjn3nHXq9Ne64N k9KvkIYzfxWLG7g9mek/djFgWrJlSzeiKTfaLVVA4DUZu7JBmEKD0HPxBneLZPjn m2fuxh2M1g7PlWY7IsiMR9NNXz/lusdiep8siRW0c09B2x5NWPDSVW+nIs5MJW4Z Meo935naffRYf6nRpCas7QV+YPwZsgz3FNug1Lgf3dHAkPZAtTVaEkh0iuudAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU5lDtqFM5mxe51vU1vMjakL1sG9gwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzQzMjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5jcwDQYJKoZIhvcN AQELBQADggEBAGPbnzb/xYhPxxRjlZT2+uwrBfPcoNGssg7M2icUSIDTZc5JH4pd aNb5dbjtbyQS3MvEEp4RM7rsoAuJI0baDE8qAutKE1K6rcIDNw47lUaUckrEtqiP FMGoA39J/ZSl73NTZH/M50E9Q4Iunhvq4OjmqqYTAErgT1zrATgjYS4cWQJFYo4b EQzlrBkWUGU83WUkdJpwWXkcFedYFz8hRUyA9LmMyv1k2n1lduy1t69BDsrN2bO1 yCMb1b1SF9/NX7MvYUzvukKpByXe5Z1ZJFHaDCOuuRt6kq3rBVmx4d0lIz8lbSaH JQGJX0R0JMy6uxeCHg0FNrcLdwPLDwBWNdw= -----END CERTIFICATE-----Generated at Mon Oct 20 01:29:34 2025 by rpki-client