$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e203230343733.roa File: 352e38332e3231322e302f32342d3234203d3e203230343733.roa (raw, json) Hash identifier: 3A0XegqLh07jjUDLg4hb/b5OI8Lf7OmnTxvKhMSKu2g= Subject key identifier: AE:35:1E:D5:FB:E9:88:A7:41:15:74:25:4F:45:96:AB:C0:A9:A6:AA Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 4B1D217542DE3909ACB011A9A2DC8C9E6663B684 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e203230343733.roa Signing time: Wed 06 May 2026 09:18:49 +0000 ROA not before: Wed 06 May 2026 09:13:49 +0000 ROA not after: Wed 05 May 2027 09:18:49 +0000 asID: 20473 IP address blocks: 5.83.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 04:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:1d:21:75:42:de:39:09:ac:b0:11:a9:a2:dc:8c:9e:66:63:b6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 6 09:13:49 2026 GMT Not After : May 5 09:18:49 2027 GMT Subject: CN=AE351ED5FBE988A7411574254F4596ABC0A9A6AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a4:f0:80:4c:77:65:ed:00:cc:4e:e4:30:eb: d0:22:87:57:30:8f:0f:d5:e2:a2:50:2a:9b:70:05: f2:7f:b4:87:cc:62:62:98:bb:b0:7e:40:12:56:53: 4a:18:5b:59:9f:b1:37:01:10:6f:f1:22:98:5e:5c: 3e:aa:97:4f:cd:95:14:43:00:23:34:c6:3a:10:a7: f0:44:5b:6b:bc:9d:9f:bd:82:f7:65:92:2c:79:a8: 97:0b:27:a0:27:79:6a:5a:c5:06:0d:d3:01:08:e0: ab:eb:dc:98:28:f3:2b:57:5c:54:e7:fe:44:a5:82: ae:4b:f6:a9:1f:68:99:f8:74:30:26:f4:c8:e0:3f: b6:9b:75:b4:d9:58:c1:b9:bc:5d:8b:77:15:3d:e8: 11:1f:fd:ac:29:fe:79:e8:38:1b:be:2c:3c:e4:5e: 7f:9d:a2:03:03:22:c7:49:92:65:2c:a7:26:7e:a7: 96:8e:72:0a:e0:96:36:2a:cc:e6:8c:27:ca:3e:a5: b9:25:26:d4:ac:cc:a0:d5:7c:79:41:67:35:7c:ba: 13:ae:84:73:f9:c9:c8:4c:41:67:ce:72:ff:69:4d: f9:cf:5a:29:05:c4:45:d5:5d:51:ff:00:2b:19:52: 60:90:13:b8:5c:76:dc:b2:5e:80:30:2a:f8:84:2d: c4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:35:1E:D5:FB:E9:88:A7:41:15:74:25:4F:45:96:AB:C0:A9:A6:AA X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.212.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:b3:c5:00:57:8d:4f:a0:3e:1d:42:51:d3:f7:8d:00:74:7e: c1:53:22:34:b3:bf:18:36:24:23:5c:94:55:af:7b:ac:57:0e: 5e:a5:b9:bb:1d:45:94:01:72:c8:ab:31:57:dd:04:e5:27:39: 28:30:12:43:ac:bb:a5:75:0d:29:df:90:5e:32:f9:d6:ce:fa: 0c:9c:7c:7b:a2:eb:b8:96:b7:4b:42:af:b9:4b:5c:bc:ba:cf: 5c:e9:04:3d:4f:61:99:46:d8:e3:e2:81:4a:b9:76:dc:fc:ce: b2:f4:4c:c3:5c:68:1c:1f:bf:20:aa:c9:62:c7:ff:d2:31:6f: 0a:7f:07:23:83:90:7a:09:bc:2c:7e:5c:a3:cb:48:1c:f8:c5: 7e:5d:98:f4:0f:29:42:45:ac:61:c5:a3:2a:13:4b:b1:88:32: 4f:f9:90:39:87:c9:79:12:77:db:f5:dd:3a:87:74:41:14:95: c2:df:d0:13:08:d0:54:56:bd:28:f4:5a:ec:58:75:4b:25:0b: c1:29:fa:37:c7:48:f2:03:d6:63:f8:26:82:65:ff:0d:62:1b: 52:6b:b9:bb:3b:23:3a:61:41:a1:46:4c:8e:74:ee:66:bd:d4: f4:c4:8f:ed:60:98:af:3c:35:71:f3:38:07:75:b6:e5:d3:29: ae:ff:35:34 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUSx0hdULeOQmssBGpotyMnmZjtoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDYwOTEzNDlaFw0yNzA1MDUwOTE4NDlaMDMxMTAvBgNV BAMTKEFFMzUxRUQ1RkJFOTg4QTc0MTE1NzQyNTRGNDU5NkFCQzBBOUE2QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0pPCATHdl7QDMTuQw69Aih1cw jw/V4qJQKptwBfJ/tIfMYmKYu7B+QBJWU0oYW1mfsTcBEG/xIpheXD6ql0/NlRRD ACM0xjoQp/BEW2u8nZ+9gvdlkix5qJcLJ6AneWpaxQYN0wEI4Kvr3Jgo8ytXXFTn /kSlgq5L9qkfaJn4dDAm9MjgP7abdbTZWMG5vF2LdxU96BEf/awp/nnoOBu+LDzk Xn+dogMDIsdJkmUspyZ+p5aOcgrgljYqzOaMJ8o+pbklJtSszKDVfHlBZzV8uhOu hHP5ychMQWfOcv9pTfnPWikFxEXVXVH/ACsZUmCQE7hcdtyyXoAwKviELcRJAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUrjUe1fvpiKdBFXQlT0WWq8CppqowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzIyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPUMA0GCSqGSIb3DQEB CwUAA4IBAQCOs8UAV41PoD4dQlHT940AdH7BUyI0s78YNiQjXJRVr3usVw5epbm7 HUWUAXLIqzFX3QTlJzkoMBJDrLuldQ0p35BeMvnWzvoMnHx7ouu4lrdLQq+5S1y8 us9c6QQ9T2GZRtjj4oFKuXbc/M6y9EzDXGgcH78gqslix//SMW8Kfwcjg5B6Cbws flyjy0gc+MV+XZj0DylCRaxhxaMqE0uxiDJP+ZA5h8l5Enfb9d06h3RBFJXC39AT CNBUVr0o9FrsWHVLJQvBKfo3x0jyA9Zj+CaCZf8NYhtSa7m7OyM6YUGhRkyOdO5m vdT0xI/tYJivPDVx8zgHdbbl0ymu/zU0 -----END CERTIFICATE-----Generated at Tue May 12 21:53:44 2026 by rpki-client