$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36322e302f32342d3234203d3e20333936333536.roa File: 33372e3233302e36322e302f32342d3234203d3e20333936333536.roa (raw, json) Hash identifier: 13t0dKsFx6aN+ryIGcwNV5OFIJ8ACaboyiMVPTIxrjc= Subject key identifier: 3D:D3:8D:F1:B4:F7:90:37:7C:20:E9:C9:BF:3F:14:8C:4A:10:B7:2D Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 177FA16EFB519C32499985CEF4666AA7CEC27683 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36322e302f32342d3234203d3e20333936333536.roa Signing time: Mon 05 May 2025 07:11:12 +0000 ROA not before: Mon 05 May 2025 07:06:12 +0000 ROA not after: Mon 04 May 2026 07:11:12 +0000 asID: 396356 IP address blocks: 37.230.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 15 May 2025 11:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7f:a1:6e:fb:51:9c:32:49:99:85:ce:f4:66:6a:a7:ce:c2:76:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 5 07:06:12 2025 GMT Not After : May 4 07:11:12 2026 GMT Subject: CN=3DD38DF1B4F790377C20E9C9BF3F148C4A10B72D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4e:5c:98:28:47:0d:c9:d3:60:01:d2:b3:99: 22:6b:4b:cb:a8:47:70:42:cc:d4:32:31:14:87:94: 49:ac:52:dd:1b:e4:4b:e2:c0:fd:3e:67:36:43:9b: 07:31:f4:f2:43:3f:b2:16:f4:9c:75:1f:5e:c9:b0: 64:82:08:16:d8:6b:7a:75:72:71:79:54:ed:a4:8c: 56:3f:d5:c2:86:50:7c:8b:12:8c:38:7b:55:dc:7c: ea:b0:7a:a2:4e:da:5b:98:f6:9c:d5:78:4b:d6:bc: 30:09:45:af:61:01:05:4a:a6:02:be:be:4c:e8:ce: ba:69:10:a3:d6:2b:82:2f:9a:4b:c8:2c:ea:2f:e2: 26:d9:79:97:7c:49:3c:e6:e3:f2:53:66:65:52:bb: 16:d4:17:f7:5b:4c:f8:31:d7:9a:78:ae:43:1e:e6: 1a:bb:54:b4:34:93:85:14:4b:cb:a1:f7:d8:36:63: ca:e4:f3:46:30:ed:6a:e4:12:17:c7:d3:e6:8b:c6: 6e:9b:46:3f:5e:c2:37:21:9b:f9:c7:a5:5d:6d:04: 04:25:b6:8d:50:19:f4:9f:2f:ec:fe:ca:02:ce:9d: d7:de:92:09:9f:82:08:76:56:ea:c9:37:db:61:62: e4:2a:18:5d:da:28:77:e0:a5:d8:cd:cb:75:7f:f5: a0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D3:8D:F1:B4:F7:90:37:7C:20:E9:C9:BF:3F:14:8C:4A:10:B7:2D X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36322e302f32342d3234203d3e20333936333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.62.0/24 Signature Algorithm: sha256WithRSAEncryption 45:a2:fa:0f:5e:b8:88:ca:0a:54:5c:31:58:94:30:9b:e6:b3: 95:3a:2f:8a:ca:e6:6e:e1:26:66:f8:73:c8:2b:80:73:1f:5e: 9e:6c:47:10:e1:25:14:d0:c9:e1:08:ec:c8:93:27:4b:74:8c: e1:d7:d6:a0:c9:31:3c:55:cc:bd:32:10:a9:0e:81:97:e1:fc: 42:94:9d:8e:59:09:1c:09:ae:c1:86:b9:0b:04:4a:a7:10:ce: d3:9c:d5:a0:e2:e3:65:a9:89:5f:cb:6a:45:79:72:b6:35:9d: 54:8e:33:7a:cf:e7:ba:d3:2e:3e:cc:f0:5a:48:07:f4:da:bd: 9a:75:74:e1:4c:6a:4c:91:b6:4b:73:d8:b1:04:3c:a9:b6:91: 7b:f8:76:e9:7d:0d:2e:90:da:15:a4:52:4c:2a:57:9f:c7:ed: b8:3c:ab:47:fe:fe:46:f3:69:d9:52:1f:3b:8f:36:a6:4c:95: 4d:73:30:43:d9:a9:0e:3d:51:29:15:01:09:91:af:a3:e6:05: 16:0e:8a:49:57:00:15:74:6c:77:26:08:05:c5:80:e7:c5:76: ac:b9:69:1f:2b:8f:67:03:bb:b0:27:2a:a3:60:8d:36:37:f4: 4f:4f:2a:26:fe:77:77:7b:9e:d7:ae:4a:b8:b6:ce:a0:24:92: 6e:0d:d5:e5 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUF3+hbvtRnDJJmYXO9GZqp87CdoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA1MDUwNzA2MTJaFw0yNjA1MDQwNzExMTJaMDMxMTAvBgNV BAMTKDNERDM4REYxQjRGNzkwMzc3QzIwRTlDOUJGM0YxNDhDNEExMEI3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgTlyYKEcNydNgAdKzmSJrS8uo R3BCzNQyMRSHlEmsUt0b5EviwP0+ZzZDmwcx9PJDP7IW9Jx1H17JsGSCCBbYa3p1 cnF5VO2kjFY/1cKGUHyLEow4e1XcfOqweqJO2luY9pzVeEvWvDAJRa9hAQVKpgK+ vkzozrppEKPWK4IvmkvILOov4ibZeZd8STzm4/JTZmVSuxbUF/dbTPgx15p4rkMe 5hq7VLQ0k4UUS8uh99g2Y8rk80Yw7WrkEhfH0+aLxm6bRj9ewjchm/nHpV1tBAQl to1QGfSfL+z+ygLOndfekgmfggh2VurJN9thYuQqGF3aKHfgpdjNy3V/9aBJAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUPdON8bT3kDd8IOnJvz8UjEoQty0wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzkzNjMzMzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmPjANBgkqhkiG 9w0BAQsFAAOCAQEARaL6D164iMoKVFwxWJQwm+azlTovisrmbuEmZvhzyCuAcx9e nmxHEOElFNDJ4QjsyJMnS3SM4dfWoMkxPFXMvTIQqQ6Bl+H8QpSdjlkJHAmuwYa5 CwRKpxDO05zVoOLjZamJX8tqRXlytjWdVI4zes/nutMuPszwWkgH9Nq9mnV04Uxq TJG2S3PYsQQ8qbaRe/h26X0NLpDaFaRSTCpXn8ftuDyrR/7+RvNp2VIfO482pkyV TXMwQ9mpDj1RKRUBCZGvo+YFFg6KSVcAFXRsdyYIBcWA58V2rLlpHyuPZwO7sCcq o2CNNjf0T08qJv53d3ue165KuLbOoCSSbg3V5Q== -----END CERTIFICATE-----Generated at Wed May 14 23:53:31 2025 by rpki-client