$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232312e302f32342d3234203d3e20323135363732.roa File: 352e38332e3232312e302f32342d3234203d3e20323135363732.roa (raw, json) Hash identifier: cTahStZgaA4FWYvLe0fmhaKCQ9AYBDnl3YPd2v+QZ/w= Subject key identifier: 33:0A:4F:C1:1B:BE:2D:35:3F:E0:64:8F:88:5C:10:65:B0:43:37:FC Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 62948376539EA931C5CE691193A21BBFD3872E47 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232312e302f32342d3234203d3e20323135363732.roa Signing time: Wed 17 Sep 2025 12:55:07 +0000 ROA not before: Wed 17 Sep 2025 12:50:07 +0000 ROA not after: Wed 16 Sep 2026 12:55:07 +0000 asID: 215672 IP address blocks: 5.83.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:94:83:76:53:9e:a9:31:c5:ce:69:11:93:a2:1b:bf:d3:87:2e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Sep 17 12:50:07 2025 GMT Not After : Sep 16 12:55:07 2026 GMT Subject: CN=330A4FC11BBE2D353FE0648F885C1065B04337FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:44:75:6a:1c:2c:e8:c1:d8:0e:5e:52:4b:46: f7:60:52:6b:5a:e1:68:37:60:5e:08:b8:8e:fa:6c: d2:69:e8:a3:86:79:91:cf:65:9b:4c:5f:ae:ca:ca: 4f:5f:93:0a:e5:98:71:8d:28:93:27:b9:1f:8c:f7: 10:7c:52:52:78:8b:01:73:70:fb:b4:8c:40:59:35: 34:02:c2:fd:47:a6:53:7d:05:db:3b:2a:e4:03:7f: c4:78:f1:20:3f:a0:f5:4b:35:f3:fe:e6:4a:d6:51: 93:f9:13:ca:cc:55:37:da:9c:b8:52:b2:47:f6:99: d1:4d:11:5e:21:f3:8d:ae:4e:2a:f5:02:29:0a:5a: 5d:6c:1b:86:91:c5:1c:c7:16:fc:df:b6:e2:0f:e1: 02:aa:27:93:36:f3:f9:a9:64:1f:36:52:92:97:d1: fb:e4:b5:39:56:ab:3c:0c:87:e0:f4:91:d9:df:db: 99:bb:eb:97:32:0a:99:d1:ca:61:1e:ac:fd:7a:78: 6a:59:8a:d0:7b:49:4a:4d:86:e2:f2:37:ef:46:fb: 74:f9:72:98:87:33:51:fc:48:51:72:db:20:bb:46: ca:5c:6f:82:7f:38:45:e6:96:b8:67:87:d5:19:f1: 7d:c3:67:5a:86:8e:61:a2:25:e4:14:81:8b:83:15: 90:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:0A:4F:C1:1B:BE:2D:35:3F:E0:64:8F:88:5C:10:65:B0:43:37:FC X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232312e302f32342d3234203d3e20323135363732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.221.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ee:a6:b3:26:bf:5d:38:52:bf:82:05:8c:8e:f6:54:48:7a: 92:7e:f4:25:ca:e8:73:76:ce:88:35:aa:62:19:08:82:f7:d7: c8:94:52:ed:11:f5:3e:e7:44:1b:22:43:cc:7e:f8:6c:cf:e1: 60:e7:7e:8b:b0:ad:4e:5c:7e:e4:67:70:42:f4:e9:39:c8:01: a5:e6:e2:2a:95:7f:89:4c:32:4f:a6:01:35:c1:2e:a8:74:36: ef:31:02:ac:32:ca:43:f0:3a:15:06:de:d9:fb:0d:6b:5b:a3: 19:e0:dd:a1:7a:fa:b5:4c:4f:5f:25:c2:f5:db:58:6a:1b:22: c2:96:77:4e:fc:57:ad:fc:8d:a9:e0:99:0a:06:3b:72:47:71: 93:bb:b3:5b:88:0b:4d:6a:76:9a:8f:38:5d:b2:23:08:b6:53: 25:c6:39:7f:e1:46:3d:8b:e1:35:18:2c:fb:d5:f8:cd:07:f6: 9f:4c:a4:aa:df:c3:6f:db:09:d9:c1:2e:f6:29:9e:de:c4:cb: 75:ea:78:37:00:c7:57:a1:8b:80:f8:97:dc:9a:1b:42:04:fc: 0e:ea:fa:cf:2d:1f:1c:4d:bc:9d:82:ec:1f:33:75:80:e0:ba: d7:70:ba:62:19:fa:e8:71:61:85:12:82:fb:6f:f4:db:ae:b5: cf:06:fc:b6 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUYpSDdlOeqTHFzmkRk6Ibv9OHLkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA5MTcxMjUwMDdaFw0yNjA5MTYxMjU1MDdaMDMxMTAvBgNV BAMTKDMzMEE0RkMxMUJCRTJEMzUzRkUwNjQ4Rjg4NUMxMDY1QjA0MzM3RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCRHVqHCzowdgOXlJLRvdgUmta 4Wg3YF4IuI76bNJp6KOGeZHPZZtMX67Kyk9fkwrlmHGNKJMnuR+M9xB8UlJ4iwFz cPu0jEBZNTQCwv1HplN9Bds7KuQDf8R48SA/oPVLNfP+5krWUZP5E8rMVTfanLhS skf2mdFNEV4h842uTir1AikKWl1sG4aRxRzHFvzftuIP4QKqJ5M28/mpZB82UpKX 0fvktTlWqzwMh+D0kdnf25m765cyCpnRymEerP16eGpZitB7SUpNhuLyN+9G+3T5 cpiHM1H8SFFy2yC7Rspcb4J/OEXmlrhnh9UZ8X3DZ1qGjmGiJeQUgYuDFZBvAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUMwpPwRu+LTU/4GSPiFwQZbBDN/wwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMyMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMxMzUzNjM3MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFU90wDQYJKoZIhvcN AQELBQADggEBAHDuprMmv104Ur+CBYyO9lRIepJ+9CXK6HN2zog1qmIZCIL318iU Uu0R9T7nRBsiQ8x++GzP4WDnfouwrU5cfuRncEL06TnIAaXm4iqVf4lMMk+mATXB Lqh0Nu8xAqwyykPwOhUG3tn7DWtboxng3aF6+rVMT18lwvXbWGobIsKWd078V638 jangmQoGO3JHcZO7s1uIC01qdpqPOF2yIwi2UyXGOX/hRj2L4TUYLPvV+M0H9p9M pKrfw2/bCdnBLvYpnt7Ey3XqeDcAx1ehi4D4l9yaG0IE/A7q+s8tHxxNvJ2C7B8z dYDgutdwumIZ+uhxYYUSgvtv9Nuutc8G/LY= -----END CERTIFICATE-----Generated at Mon Oct 20 05:37:33 2025 by rpki-client