$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32332d3234203d3e20323730303532.roa File: 33372e3233302e35362e302f32332d3234203d3e20323730303532.roa (raw, json) Hash identifier: 8wZGbwd6LgNEIBx/mzRWXb/I1iIsKE6AbMzO6L70W4o= Subject key identifier: 1E:27:65:35:C9:C0:62:B8:A5:11:19:38:CB:7D:1F:DB:5B:73:58:65 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5DC28E96CF56186AEC77EE67E604166AF4CB9B7D Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32332d3234203d3e20323730303532.roa Signing time: Thu 26 Mar 2026 13:46:55 +0000 ROA not before: Thu 26 Mar 2026 13:41:55 +0000 ROA not after: Thu 25 Mar 2027 13:46:55 +0000 asID: 270052 IP address blocks: 37.230.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c2:8e:96:cf:56:18:6a:ec:77:ee:67:e6:04:16:6a:f4:cb:9b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 26 13:41:55 2026 GMT Not After : Mar 25 13:46:55 2027 GMT Subject: CN=1E276535C9C062B8A5111938CB7D1FDB5B735865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:f1:19:f8:94:dd:f9:01:ac:61:06:4e:45:18: 0f:ef:8b:5f:83:67:f5:2f:c4:71:55:7a:4c:2e:66: 6d:17:d7:7a:c5:5e:ce:5d:75:5b:75:a3:70:f7:df: 39:69:7d:81:ab:99:d6:f6:bd:e2:af:34:5e:c1:1b: 45:f0:af:f5:49:53:cf:9f:bd:91:f1:11:82:a3:3b: d5:49:6a:9e:c4:d1:2c:1d:3c:d3:34:b8:f3:65:d5: 6c:d8:77:a0:d3:1e:2e:ee:c8:49:df:24:ee:45:d3: c8:9b:b8:79:02:4f:00:f1:4b:52:10:6e:c3:2f:20: 42:2c:f4:20:64:31:aa:23:f6:83:69:86:af:c4:bd: 9d:a1:20:c6:30:69:48:1a:3e:d4:5a:85:34:d2:92: 8f:c2:20:1e:97:79:d4:86:cc:08:ac:bc:0b:18:c8: c8:ca:6e:26:ee:9d:78:8e:35:16:60:3f:1d:3c:05: 49:de:b8:49:76:b1:41:bd:6c:a0:fd:2c:99:c8:e0: 45:be:d5:38:58:24:82:2a:96:6f:9f:4b:e7:86:68: 36:b0:ff:af:0f:9a:dd:97:0b:af:83:4d:e6:96:29: 90:0b:2c:ad:d4:94:24:9a:5c:9c:a4:35:9e:91:7f: 3b:72:af:ac:31:df:c9:97:79:cf:5f:96:cf:4e:96: e2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:27:65:35:C9:C0:62:B8:A5:11:19:38:CB:7D:1F:DB:5B:73:58:65 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32332d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.56.0/23 Signature Algorithm: sha256WithRSAEncryption 86:69:fc:f5:71:eb:ea:60:8e:c9:93:11:33:f0:5c:04:f3:7f: 19:ad:7c:f3:2d:1c:b5:a1:fe:91:0d:b1:eb:28:fa:50:4a:b8: 47:23:47:0d:92:cf:81:95:a4:e4:cc:7d:b0:09:2a:66:b8:ed: c8:55:a1:6e:3e:ea:8e:bb:36:c8:bf:c0:be:36:c1:c0:5a:25: d1:69:b6:f5:fd:72:02:a1:24:6d:05:32:98:4c:2f:5b:46:47: 42:17:ee:14:35:27:d0:50:f3:88:40:5e:65:f1:72:05:f3:3c: bd:1b:ff:77:39:5a:c8:ee:57:94:42:54:7f:f9:bd:55:3d:9b: b8:ee:cd:1e:1b:ba:1e:78:13:13:1e:f2:ce:3e:1a:97:c8:3a: 99:dd:7f:1f:cf:b5:4e:7e:04:a4:b1:7b:3a:5f:81:c3:99:ac: cc:5a:f5:db:76:7d:ef:45:47:b2:2e:a6:61:1b:85:54:0b:d1: 9a:28:85:5e:54:af:1e:eb:58:99:bb:01:77:41:c6:ea:e6:b3: de:14:cb:00:9a:7c:80:e3:4e:38:64:cb:85:9d:ef:8f:1b:87: 1e:07:d9:43:45:4f:74:24:06:66:29:6f:7b:18:81:d5:76:d8: 0f:a3:c7:5c:aa:19:15:22:93:44:84:57:8a:df:0a:a5:f6:62: d5:20:5e:4c -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUXcKOls9WGGrsd+5n5gQWavTLm30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjYxMzQxNTVaFw0yNzAzMjUxMzQ2NTVaMDMxMTAvBgNV BAMTKDFFMjc2NTM1QzlDMDYyQjhBNTExMTkzOENCN0QxRkRCNUI3MzU4NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD48Rn4lN35AaxhBk5FGA/vi1+D Z/UvxHFVekwuZm0X13rFXs5ddVt1o3D33zlpfYGrmdb2veKvNF7BG0Xwr/VJU8+f vZHxEYKjO9VJap7E0SwdPNM0uPNl1WzYd6DTHi7uyEnfJO5F08ibuHkCTwDxS1IQ bsMvIEIs9CBkMaoj9oNphq/EvZ2hIMYwaUgaPtRahTTSko/CIB6XedSGzAisvAsY yMjKbibunXiONRZgPx08BUneuEl2sUG9bKD9LJnI4EW+1ThYJIIqlm+fS+eGaDaw /68Pmt2XC6+DTeaWKZALLK3UlCSaXJykNZ6Rfztyr6wx38mXec9fls9OluIDAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUHidlNcnAYrilERk4y30f21tzWGUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASXmODANBgkqhkiG 9w0BAQsFAAOCAQEAhmn89XHr6mCOyZMRM/BcBPN/Ga188y0ctaH+kQ2x6yj6UEq4 RyNHDZLPgZWk5Mx9sAkqZrjtyFWhbj7qjrs2yL/AvjbBwFol0Wm29f1yAqEkbQUy mEwvW0ZHQhfuFDUn0FDziEBeZfFyBfM8vRv/dzlayO5XlEJUf/m9VT2buO7NHhu6 HngTEx7yzj4al8g6md1/H8+1Tn4EpLF7Ol+Bw5mszFr123Z970VHsi6mYRuFVAvR miiFXlSvHutYmbsBd0HG6uaz3hTLAJp8gONOOGTLhZ3vjxuHHgfZQ0VPdCQGZilv exiB1XbYD6PHXKoZFSKTRIRXit8KpfZi1SBeTA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:16:33 2026 by rpki-client