$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32332d3234203d3e20323730303532.roa File: 33372e3233302e35382e302f32332d3234203d3e20323730303532.roa (raw, json) Hash identifier: 2W36cJ6zbqlm2SziwkD8Cm0QZUHbUwcIZ0Iy0E5Buqo= Subject key identifier: 90:47:70:33:15:6F:64:80:6F:B2:FF:5D:E1:DF:E2:8C:BD:0A:D4:7C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 37B9DF7972C0B6778D5D897BE00FB68020E895F0 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32332d3234203d3e20323730303532.roa Signing time: Thu 26 Mar 2026 13:46:55 +0000 ROA not before: Thu 26 Mar 2026 13:41:55 +0000 ROA not after: Thu 25 Mar 2027 13:46:55 +0000 asID: 270052 IP address blocks: 37.230.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b9:df:79:72:c0:b6:77:8d:5d:89:7b:e0:0f:b6:80:20:e8:95:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 26 13:41:55 2026 GMT Not After : Mar 25 13:46:55 2027 GMT Subject: CN=90477033156F64806FB2FF5DE1DFE28CBD0AD47C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:c9:f4:f2:56:15:b7:8d:c0:f9:a7:ec:49: 24:e1:0d:f9:ba:ad:0c:5c:75:56:50:55:c4:4e:ed: 8e:9a:06:72:65:fe:1b:a7:38:7d:9c:3a:8c:55:92: 31:85:8e:ed:63:ae:bd:03:8a:bd:de:52:10:87:ef: 6d:08:e0:72:8b:2c:9e:f3:53:ff:dc:f0:eb:55:ab: 2e:03:65:cb:cc:aa:c8:3e:f5:3f:5f:fd:3b:fa:bc: 60:6c:2c:ca:51:7c:30:bc:8a:f9:d3:1e:8f:4d:42: 56:ec:18:5e:6d:ae:8e:5b:b5:f6:ac:33:3d:8a:55: 8b:77:c9:9f:e0:f1:cc:df:c7:3d:29:0a:ac:61:6f: 4a:61:94:54:db:9b:b4:1a:c7:2b:9f:e7:04:77:d0: 42:bf:46:6c:dc:b3:76:05:55:e3:ee:cd:73:54:fc: e6:46:96:ee:1f:02:5c:bc:37:24:8a:31:16:fa:d8: 18:1e:91:ef:7e:03:ca:39:25:4f:3f:34:9f:e6:38: 4e:5d:c3:48:00:7a:0e:ed:30:39:28:ff:91:ab:a7: 4e:24:4f:17:9f:2d:05:6b:f8:56:66:d7:3e:dc:e7: 99:85:a4:d1:97:a2:b4:12:83:e7:c0:12:88:e2:84: 21:b2:bb:47:81:59:c0:46:84:df:df:4f:58:52:5e: 14:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:47:70:33:15:6F:64:80:6F:B2:FF:5D:E1:DF:E2:8C:BD:0A:D4:7C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32332d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.58.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:b7:bc:81:58:6b:1b:5c:9b:d3:9a:54:7c:d8:5d:18:5c:58: ab:a3:7b:87:33:18:08:4f:3b:ab:df:fa:1a:0f:e5:cc:8c:0f: 32:6f:dd:e1:7e:36:f7:d4:40:c7:80:78:95:d0:94:be:27:ee: a1:fa:4d:eb:31:51:5e:16:12:6e:3e:14:13:a7:af:90:9e:a1: eb:7d:95:8e:fe:20:78:64:99:0d:e5:5a:85:a5:d1:02:96:31: 37:a1:42:f2:2a:d1:db:da:91:d4:36:8e:b0:0f:0d:2d:c7:ea: 9d:0b:0a:2d:91:b6:87:2b:0d:ee:4e:21:b4:13:39:31:32:12: 20:da:ba:7f:51:69:6c:76:6b:45:10:94:bc:92:bd:84:53:08: d4:cb:90:10:2f:95:57:d1:8b:13:9f:bc:6d:8b:57:f4:7f:6a: c3:17:0a:1a:e6:f8:cf:75:87:71:8f:ba:4d:a5:5c:3b:a0:33: 19:06:b5:07:0c:62:38:2d:2b:a9:a0:79:98:ff:70:ca:b1:d0: 07:ad:d7:1f:fb:f0:bf:ea:18:e4:bb:9f:48:66:6d:4b:5e:26: 5c:3f:e8:d1:c0:ca:1b:9a:be:88:62:cb:e7:05:cc:80:a4:38: 00:f8:f6:04:62:6e:67:fe:1b:9e:2b:e8:c6:a5:cd:78:bb:89: a4:f2:a8:78 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUN7nfeXLAtneNXYl74A+2gCDolfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjYxMzQxNTVaFw0yNzAzMjUxMzQ2NTVaMDMxMTAvBgNV BAMTKDkwNDc3MDMzMTU2RjY0ODA2RkIyRkY1REUxREZFMjhDQkQwQUQ0N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTgsn08lYVt43A+afsSSThDfm6 rQxcdVZQVcRO7Y6aBnJl/hunOH2cOoxVkjGFju1jrr0Dir3eUhCH720I4HKLLJ7z U//c8OtVqy4DZcvMqsg+9T9f/Tv6vGBsLMpRfDC8ivnTHo9NQlbsGF5tro5btfas Mz2KVYt3yZ/g8czfxz0pCqxhb0phlFTbm7Qaxyuf5wR30EK/Rmzcs3YFVePuzXNU /OZGlu4fAly8NySKMRb62Bgeke9+A8o5JU8/NJ/mOE5dw0gAeg7tMDko/5Grp04k TxefLQVr+FZm1z7c55mFpNGXorQSg+fAEojihCGyu0eBWcBGhN/fT1hSXhTpAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUkEdwMxVvZIBvsv9d4d/ijL0K1HwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASXmOjANBgkqhkiG 9w0BAQsFAAOCAQEAPbe8gVhrG1yb05pUfNhdGFxYq6N7hzMYCE87q9/6Gg/lzIwP Mm/d4X4299RAx4B4ldCUvifuofpN6zFRXhYSbj4UE6evkJ6h632Vjv4geGSZDeVa haXRApYxN6FC8irR29qR1DaOsA8NLcfqnQsKLZG2hysN7k4htBM5MTISINq6f1Fp bHZrRRCUvJK9hFMI1MuQEC+VV9GLE5+8bYtX9H9qwxcKGub4z3WHcY+6TaVcO6Az GQa1BwxiOC0rqaB5mP9wyrHQB63XH/vwv+oY5LufSGZtS14mXD/o0cDKG5q+iGLL 5wXMgKQ4APj2BGJuZ/4bnivoxqXNeLuJpPKoeA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:16:18 2026 by rpki-client