$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32342d3234203d3e20383334.roa File: 352e38332e3232302e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: GFhwKNQNFmwDCYehWT2yuIKncsOdbhcx/tWiswRP9v4= Subject key identifier: D6:FD:5A:80:31:EA:12:60:E2:F6:E5:7D:9E:3A:A8:8D:09:60:E9:2C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0829DA854C19A4C8231936BF5523C900E0761EBA Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32342d3234203d3e20383334.roa Signing time: Tue 17 Mar 2026 07:17:43 +0000 ROA not before: Tue 17 Mar 2026 07:12:43 +0000 ROA not after: Tue 16 Mar 2027 07:17:43 +0000 asID: 834 IP address blocks: 5.83.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 21:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:29:da:85:4c:19:a4:c8:23:19:36:bf:55:23:c9:00:e0:76:1e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 17 07:12:43 2026 GMT Not After : Mar 16 07:17:43 2027 GMT Subject: CN=D6FD5A8031EA1260E2F6E57D9E3AA88D0960E92C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:da:af:d1:07:13:bf:62:17:47:c2:ad:be: 15:a0:8e:1b:e6:97:3e:82:ef:dc:78:b3:df:d9:f8: af:cc:c9:74:b5:c2:5b:a8:48:5f:05:00:16:2d:ed: 88:de:26:1e:7b:26:a2:ff:c0:73:09:92:02:ac:a1: 4b:57:e2:b3:a8:13:49:4e:ac:c2:58:90:89:60:c2: c5:d3:dc:5e:6e:10:00:b1:0b:3a:bf:97:c5:1a:0d: 68:e6:40:b4:20:01:1f:21:8e:42:c6:f1:d9:66:6b: 2b:97:b4:b7:91:ad:7d:dd:0c:97:3d:28:19:43:a5: 97:33:b3:79:5d:e3:ae:4c:ce:7d:86:89:87:7c:4f: 02:9f:0e:0d:71:5d:fe:66:e3:52:c5:87:92:be:79: d1:01:44:90:d2:95:bf:ad:e2:7e:7c:73:48:e7:a8: d8:f3:06:db:a8:f9:db:40:08:c4:53:53:b0:27:4f: 2e:ea:f1:d3:7a:93:95:68:3c:62:82:c9:66:43:36: 80:86:e6:9a:75:b0:9e:13:98:71:32:ed:ee:f3:68: 12:a2:3a:90:ef:c2:9b:66:48:ea:e6:76:14:59:36: c6:f2:a7:f5:2e:0b:05:d2:cc:c3:fb:b0:1f:26:63: 93:bc:3e:3c:75:6f:91:9b:b2:dc:28:1f:7c:44:b4: 23:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FD:5A:80:31:EA:12:60:E2:F6:E5:7D:9E:3A:A8:8D:09:60:E9:2C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.220.0/24 Signature Algorithm: sha256WithRSAEncryption 17:a9:57:6b:43:b3:5c:95:ee:96:d4:30:c6:2c:71:25:05:30: 77:36:47:95:f3:1a:3d:1e:a3:3f:b0:2c:b1:45:ed:ee:92:e7: 38:49:dd:f6:7d:2c:45:a0:1b:d3:6c:ba:87:1f:e1:03:05:cf: 04:f7:63:0a:cc:45:85:85:6a:b8:b7:17:b2:3a:70:54:93:f0: 0e:bf:96:05:6d:60:61:d9:28:00:c9:52:44:51:ef:e1:52:b7: 2d:ff:b3:84:6a:7b:ce:30:e9:3c:17:fa:9d:df:74:c6:e5:05: 5b:5e:6b:2b:75:81:c3:34:7c:26:20:8b:06:b7:bb:0c:a1:df: d5:36:fd:d9:04:be:db:06:2e:f0:31:30:c3:29:1e:30:5a:3c: 54:9b:6c:13:e0:f5:54:08:2a:51:6b:d2:b2:5a:a1:3b:1c:e4: 02:48:ec:8a:47:45:4a:54:44:0c:eb:26:4a:77:39:b7:89:f0: 95:8a:6e:28:46:fe:6e:22:4c:da:ca:fa:e1:8f:29:03:bf:23: 53:22:cb:1d:6c:71:4c:7a:79:f5:28:35:6a:85:16:ec:ca:e7: 51:d2:74:ec:70:f7:62:cf:af:e6:2f:17:d5:c8:59:b8:9e:d3: 44:e5:52:7c:fc:fc:45:cd:88:1d:e9:b5:eb:f9:a9:fb:a2:f4: 2d:d7:d7:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUCCnahUwZpMgjGTa/VSPJAOB2HrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMTcwNzEyNDNaFw0yNzAzMTYwNzE3NDNaMDMxMTAvBgNV BAMTKEQ2RkQ1QTgwMzFFQTEyNjBFMkY2RTU3RDlFM0FBODhEMDk2MEU5MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8WNqv0QcTv2IXR8KtvhWgjhvm lz6C79x4s9/Z+K/MyXS1wluoSF8FABYt7YjeJh57JqL/wHMJkgKsoUtX4rOoE0lO rMJYkIlgwsXT3F5uEACxCzq/l8UaDWjmQLQgAR8hjkLG8dlmayuXtLeRrX3dDJc9 KBlDpZczs3ld465Mzn2GiYd8TwKfDg1xXf5m41LFh5K+edEBRJDSlb+t4n58c0jn qNjzBtuo+dtACMRTU7AnTy7q8dN6k5VoPGKCyWZDNoCG5pp1sJ4TmHEy7e7zaBKi OpDvwptmSOrmdhRZNsbyp/UuCwXSzMP7sB8mY5O8Pjx1b5GbstwoH3xEtCPrAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQU1v1agDHqEmDi9uV9njqojQlg6SwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzIzMDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVT3DANBgkqhkiG9w0BAQsFAAOC AQEAF6lXa0OzXJXultQwxixxJQUwdzZHlfMaPR6jP7AssUXt7pLnOEnd9n0sRaAb 02y6hx/hAwXPBPdjCsxFhYVquLcXsjpwVJPwDr+WBW1gYdkoAMlSRFHv4VK3Lf+z hGp7zjDpPBf6nd90xuUFW15rK3WBwzR8JiCLBre7DKHf1Tb92QS+2wYu8DEwwyke MFo8VJtsE+D1VAgqUWvSslqhOxzkAkjsikdFSlREDOsmSnc5t4nwlYpuKEb+biJM 2sr64Y8pA78jUyLLHWxxTHp59Sg1aoUW7MrnUdJ07HD3Ys+v5i8X1chZuJ7TROVS fPz8Rc2IHem16/mp+6L0LdfXsQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:19:36 2026 by rpki-client