$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e20383334.roa File: 33372e3233302e36332e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: v82poQcjh4olK9rsPdkFd6+Clz6vWLOpV/tOBXLfkwo= Subject key identifier: 52:E5:64:A7:36:0E:D4:86:98:D2:6D:1F:A3:98:3D:5D:9E:61:8E:AC Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 3D2FF45767431DEB74F5B3914E330A385FA0F1E2 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e20383334.roa Signing time: Tue 28 Apr 2026 13:18:34 +0000 ROA not before: Tue 28 Apr 2026 13:13:34 +0000 ROA not after: Tue 27 Apr 2027 13:18:34 +0000 asID: 834 IP address blocks: 37.230.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:2f:f4:57:67:43:1d:eb:74:f5:b3:91:4e:33:0a:38:5f:a0:f1:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 28 13:13:34 2026 GMT Not After : Apr 27 13:18:34 2027 GMT Subject: CN=52E564A7360ED48698D26D1FA3983D5D9E618EAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:68:ef:e1:27:4c:1a:60:6a:31:c5:ce:96:e9: a9:82:8d:3d:d6:bc:68:e4:68:00:7e:a5:98:89:4e: 8f:e2:2d:78:a8:48:2e:84:6d:a6:7b:e1:88:d5:00: 5e:a4:ef:8b:85:97:be:f8:eb:22:95:87:7b:57:cc: e0:91:2b:f4:2a:a2:cb:0c:ad:e1:29:71:8d:d1:37: e2:9f:0f:50:ec:89:e8:82:c8:01:fb:73:2f:c5:09: 61:e6:45:c2:32:a8:b9:63:d6:a2:b8:8c:67:3f:c3: 67:bd:4c:4b:a6:e6:7e:6b:f4:52:a7:95:70:71:63: 4c:81:1f:af:b4:88:9b:ca:6d:ec:d0:69:3a:ad:1c: e1:dc:d2:c5:9c:59:34:d2:0e:ed:46:a2:2c:0e:6b: 98:df:dd:67:e7:7d:b7:c1:9a:69:e7:7b:63:16:6d: 94:07:41:ec:53:7e:6d:5b:24:ea:9e:3a:b0:96:52: 36:9d:78:f4:34:26:d8:b8:b7:4a:54:c9:a0:71:32: 37:2f:1b:53:44:68:f8:ee:14:df:a5:fe:9f:0a:3e: d3:2b:ab:88:23:0f:2c:16:73:c6:7b:30:eb:2e:47: 19:12:cf:72:e7:f9:2e:62:73:dc:ab:c5:0c:43:d2: 07:75:82:f7:ef:29:d5:f1:e8:56:e4:15:ad:28:4c: bc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E5:64:A7:36:0E:D4:86:98:D2:6D:1F:A3:98:3D:5D:9E:61:8E:AC X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.63.0/24 Signature Algorithm: sha256WithRSAEncryption 18:0d:62:d8:25:0b:9d:11:5f:b7:2c:61:d6:cc:ea:71:72:86: ee:21:05:8f:c3:3a:a2:b3:24:65:2a:15:c0:20:c9:cc:2e:a6: 02:c6:5d:94:7f:c1:c7:c2:97:6c:45:fb:30:09:18:75:7e:39: d9:24:06:c5:ef:c6:ea:2d:9c:9a:0b:ef:50:49:b9:87:b5:32: e3:a0:cd:bc:1e:7e:90:3d:57:b6:ef:34:33:94:1b:9f:45:b0: 31:26:77:0f:50:7a:51:37:7f:f8:5b:8a:98:e3:f0:7f:b0:ed: 6a:3d:ea:9e:a8:8d:4e:78:19:95:20:53:af:e2:08:86:dd:b8: b3:c4:a1:a9:02:98:02:9e:22:25:2e:3e:83:5c:a8:71:3d:38: 5a:6f:6b:4c:a1:92:00:ce:a4:bd:c6:b2:60:c6:8c:73:14:9f: 9d:93:cc:70:75:4e:0d:a9:e2:a0:6a:7a:de:1f:44:3a:b2:77: 0c:ee:a2:96:b2:6c:6d:01:75:0f:a7:2c:1c:dd:1f:35:0b:5e: 98:ca:b6:8e:78:ff:25:79:a0:70:21:2f:55:d9:75:63:59:77: ce:75:17:64:58:c6:dd:fc:5f:5e:91:b5:0c:3f:c2:ce:0d:0b: b4:4f:25:09:72:71:56:53:91:f1:dc:08:83:5f:43:1c:78:5d: e9:4d:9f:de -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUPS/0V2dDHet09bORTjMKOF+g8eIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA0MjgxMzEzMzRaFw0yNzA0MjcxMzE4MzRaMDMxMTAvBgNV BAMTKDUyRTU2NEE3MzYwRUQ0ODY5OEQyNkQxRkEzOTgzRDVEOUU2MThFQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZaO/hJ0waYGoxxc6W6amCjT3W vGjkaAB+pZiJTo/iLXioSC6EbaZ74YjVAF6k74uFl7746yKVh3tXzOCRK/QqossM reEpcY3RN+KfD1DsieiCyAH7cy/FCWHmRcIyqLlj1qK4jGc/w2e9TEum5n5r9FKn lXBxY0yBH6+0iJvKbezQaTqtHOHc0sWcWTTSDu1GoiwOa5jf3WfnfbfBmmnne2MW bZQHQexTfm1bJOqeOrCWUjadePQ0Jti4t0pUyaBxMjcvG1NEaPjuFN+l/p8KPtMr q4gjDywWc8Z7MOsuRxkSz3Ln+S5ic9yrxQxD0gd1gvfvKdXx6FbkFa0oTLzbAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUUuVkpzYO1IaY0m0fo5g9XZ5hjqwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzIzMzMwMmUzNjMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeY/MA0GCSqGSIb3DQEBCwUA A4IBAQAYDWLYJQudEV+3LGHWzOpxcobuIQWPwzqisyRlKhXAIMnMLqYCxl2Uf8HH wpdsRfswCRh1fjnZJAbF78bqLZyaC+9QSbmHtTLjoM28Hn6QPVe27zQzlBufRbAx JncPUHpRN3/4W4qY4/B/sO1qPeqeqI1OeBmVIFOv4giG3bizxKGpApgCniIlLj6D XKhxPThab2tMoZIAzqS9xrJgxoxzFJ+dk8xwdU4NqeKganreH0Q6sncM7qKWsmxt AXUPpywc3R81C16YyraOeP8leaBwIS9V2XVjWXfOdRdkWMbd/F9ekbUMP8LODQu0 TyUJcnFWU5Hx3AiDX0MceF3pTZ/e -----END CERTIFICATE-----Generated at Tue May 12 23:26:44 2026 by rpki-client