$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35372e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: VHc2mbheUI7xytEKda9DgAJIaJEA/ak4wPVTxXlCPXQ= Subject key identifier: 33:33:5A:09:07:03:BF:E9:7B:AE:D7:1B:C8:05:1C:65:0C:51:31:7A Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 670D49B0FCA182B0892E658560246CBFC79A13BF Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa Signing time: Thu 26 Mar 2026 13:46:56 +0000 ROA not before: Thu 26 Mar 2026 13:41:56 +0000 ROA not after: Thu 25 Mar 2027 13:46:56 +0000 asID: 270052 IP address blocks: 37.230.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:0d:49:b0:fc:a1:82:b0:89:2e:65:85:60:24:6c:bf:c7:9a:13:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 26 13:41:56 2026 GMT Not After : Mar 25 13:46:56 2027 GMT Subject: CN=33335A090703BFE97BAED71BC8051C650C51317A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:11:fc:23:d9:1b:92:17:ba:be:ab:6d:38: 7b:1e:2a:30:4a:d6:41:64:72:b9:4d:6a:f8:56:93: be:96:61:4d:17:cb:37:cb:91:9c:3c:51:bf:da:18: 70:a1:08:11:90:9e:e2:a7:da:85:bc:86:26:68:69: 91:31:e4:3b:49:7e:aa:9d:d7:d6:c8:90:84:b5:94: b9:8a:0e:bc:05:c0:df:75:68:06:cf:c3:a2:02:c2: d3:59:4e:0e:fa:57:a9:7a:fc:18:63:9b:37:ab:e1: 68:b0:35:fb:ed:e9:38:90:d0:6a:28:63:c6:c2:68: 94:87:23:cf:38:fd:1b:24:32:ce:54:21:0b:50:12: cf:a8:b4:f3:76:78:13:a3:f5:10:be:20:d9:cd:4c: 95:f3:55:c5:15:94:de:99:07:93:93:59:c6:8e:11: f8:34:2f:b6:12:55:78:df:8c:9e:75:f6:98:d5:e9: f9:5e:dd:31:20:27:91:63:b0:7e:ad:31:cc:81:54: 01:5d:c8:db:b3:9d:cd:d5:8c:df:9a:f1:85:f8:fe: e1:cc:ca:7b:b4:94:c0:f6:95:b4:8a:8d:be:a4:14: ea:b9:f0:db:b6:a8:1e:c9:47:2a:20:68:e1:bd:ae: fc:94:8e:19:0a:05:ea:29:7a:48:51:a9:75:85:0c: 2c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:33:5A:09:07:03:BF:E9:7B:AE:D7:1B:C8:05:1C:65:0C:51:31:7A X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.57.0/24 Signature Algorithm: sha256WithRSAEncryption 76:21:dc:64:72:59:71:20:68:13:a8:9a:51:8c:36:4a:03:ac: 86:7a:d0:2e:41:05:b6:01:40:1c:be:9b:37:08:f2:b8:a5:99: 0c:46:b8:16:4f:10:b0:7a:c3:fd:c0:20:ad:a4:31:85:0b:44: 0c:b6:27:c0:d1:3c:e9:fe:7f:df:ef:f6:0f:7a:bf:2d:d6:2f: 76:38:c1:35:7c:d0:1b:a0:0c:00:91:a7:8b:42:28:4e:08:77: 08:25:80:96:ca:0b:5c:d9:b2:67:76:7b:63:0b:7b:dc:5d:15: df:de:25:e6:fd:3b:5f:f3:37:09:52:1a:8e:80:cb:d5:37:d9: 88:53:d3:22:dd:1e:b4:e0:1a:6f:10:16:18:d9:e4:db:29:13: 4b:75:91:b4:8a:b3:96:ad:d0:09:2d:7c:c1:c0:14:67:3a:e6: e4:94:05:3d:5f:40:ad:2e:7c:16:45:82:cb:a1:52:76:46:44: b6:65:2b:96:61:22:29:33:8f:99:cb:fb:ee:f4:3e:75:a6:1c: d9:0a:b1:42:71:24:a3:17:52:6e:ff:e7:2a:f4:fa:32:96:12: 75:88:66:0f:8c:d9:2f:ae:31:d7:cc:df:e7:37:3d:78:69:e6: c8:7a:d0:5a:49:b8:30:bd:ac:19:cf:eb:c5:60:10:40:63:b5: 63:ac:0c:db -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUZw1JsPyhgrCJLmWFYCRsv8eaE78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjYxMzQxNTZaFw0yNzAzMjUxMzQ2NTZaMDMxMTAvBgNV BAMTKDMzMzM1QTA5MDcwM0JGRTk3QkFFRDcxQkM4MDUxQzY1MEM1MTMxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEZhH8I9kbkhe6vqttOHseKjBK 1kFkcrlNavhWk76WYU0XyzfLkZw8Ub/aGHChCBGQnuKn2oW8hiZoaZEx5DtJfqqd 19bIkIS1lLmKDrwFwN91aAbPw6ICwtNZTg76V6l6/Bhjmzer4WiwNfvt6TiQ0Goo Y8bCaJSHI884/RskMs5UIQtQEs+otPN2eBOj9RC+INnNTJXzVcUVlN6ZB5OTWcaO Efg0L7YSVXjfjJ519pjV6fle3TEgJ5FjsH6tMcyBVAFdyNuznc3VjN+a8YX4/uHM ynu0lMD2lbSKjb6kFOq58Nu2qB7JRyogaOG9rvyUjhkKBeopekhRqXWFDCyhAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUMzNaCQcDv+l7rtcbyAUcZQxRMXowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOTANBgkqhkiG 9w0BAQsFAAOCAQEAdiHcZHJZcSBoE6iaUYw2SgOshnrQLkEFtgFAHL6bNwjyuKWZ DEa4Fk8QsHrD/cAgraQxhQtEDLYnwNE86f5/3+/2D3q/LdYvdjjBNXzQG6AMAJGn i0IoTgh3CCWAlsoLXNmyZ3Z7Ywt73F0V394l5v07X/M3CVIajoDL1TfZiFPTIt0e tOAabxAWGNnk2ykTS3WRtIqzlq3QCS18wcAUZzrm5JQFPV9ArS58FkWCy6FSdkZE tmUrlmEiKTOPmcv77vQ+daYc2QqxQnEkoxdSbv/nKvT6MpYSdYhmD4zZL64x18zf 5zc9eGnmyHrQWkm4ML2sGc/rxWAQQGO1Y6wM2w== -----END CERTIFICATE-----Generated at Thu Mar 26 17:16:37 2026 by rpki-client