$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e20383334.roa File: 352e38332e3232332e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: kpdVdYyurCyjUEeQZY80cNkHRfJoREHXDihXdx6QH7k= Subject key identifier: EB:0E:88:7E:88:9D:B8:32:C6:D6:26:9C:19:8F:20:45:11:7A:E2:05 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 245424DD561CD31F56B5690B30A245C12343C128 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e20383334.roa Signing time: Thu 26 Mar 2026 00:05:23 +0000 ROA not before: Thu 26 Mar 2026 00:00:23 +0000 ROA not after: Thu 25 Mar 2027 00:05:23 +0000 asID: 834 IP address blocks: 5.83.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 21:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:54:24:dd:56:1c:d3:1f:56:b5:69:0b:30:a2:45:c1:23:43:c1:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 26 00:00:23 2026 GMT Not After : Mar 25 00:05:23 2027 GMT Subject: CN=EB0E887E889DB832C6D6269C198F2045117AE205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:34:d4:6a:f2:40:24:3e:6f:fa:65:24:fd:11: 11:ee:b6:6d:bf:00:7d:e4:39:f2:06:bc:74:a9:95: 9a:b6:c8:d2:63:36:a2:57:c0:2e:2f:07:18:9f:4b: 31:42:c6:0f:ca:c3:7a:fb:88:84:80:49:f9:d5:ea: 05:b6:74:42:34:50:44:0c:9a:29:d6:db:11:8e:fc: 5e:6b:b2:09:08:56:54:aa:4a:05:da:dc:6d:f4:dd: d8:37:c6:ba:93:98:14:ec:0e:3b:a3:88:03:34:57: b1:e0:36:ac:9d:b5:fd:c5:96:3d:49:2b:fb:03:68: 7d:5d:81:d6:c9:08:33:a3:87:eb:5f:34:ac:13:db: c6:90:f2:26:0b:20:8c:44:02:36:32:d1:03:a3:81: b8:aa:8d:a3:45:a9:92:07:d2:bd:65:0d:f8:e1:1a: 10:5d:82:29:73:3e:75:13:d4:79:05:d2:63:3a:6a: 13:40:08:63:a4:82:38:14:10:37:64:68:cf:02:f5: 1a:db:2d:4b:f2:dd:9c:76:30:44:de:1b:ef:4c:1b: 64:bb:1d:3f:f1:f2:98:ca:9c:11:65:d9:bc:d9:ea: 6f:0e:bb:6f:47:c6:e8:a3:39:c8:bc:7e:4a:9e:a1: f7:13:9e:86:a6:a0:42:e8:fd:b7:92:df:b6:bf:14: b0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0E:88:7E:88:9D:B8:32:C6:D6:26:9C:19:8F:20:45:11:7A:E2:05 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.223.0/24 Signature Algorithm: sha256WithRSAEncryption 48:60:0d:12:b2:66:ed:ed:6c:64:8f:e2:4b:e4:63:82:8f:96: 33:d6:cf:48:36:40:55:16:43:4a:17:1b:9e:72:eb:1e:1a:71: e1:0b:0d:21:73:3d:37:72:6a:a3:f3:d8:94:a5:da:ee:30:c1: 60:a3:f9:f3:62:1d:83:4b:4e:89:06:f3:78:86:c4:82:b6:7d: 17:30:c6:72:f2:4f:c4:ba:ac:64:c4:a6:7e:1f:ca:f5:59:45: c4:66:ea:c4:14:1e:5d:bd:63:0f:98:13:cb:a2:77:08:16:a8: 6c:4c:ec:9e:30:ad:47:d5:8d:2d:38:fe:ab:fb:b8:64:38:b8: 9c:68:38:d5:cc:49:a7:69:76:ac:f9:b4:fa:1e:99:14:19:8d: f5:9a:f6:76:71:06:67:27:a5:c2:4c:e2:e7:e7:6c:03:15:ee: c0:70:54:80:20:9d:68:9f:2a:14:c5:58:c3:d8:44:1a:bd:8e: aa:16:b6:59:5d:27:32:20:28:c6:9e:fd:4a:29:e1:9d:f8:1d: 18:a2:b4:02:af:3a:7d:e2:14:7e:00:10:78:71:a1:3e:80:af: 93:3b:2d:6a:51:74:c7:4a:3a:10:1f:d5:95:ae:7e:b1:67:a9: 1c:b4:4f:fc:c0:9c:f9:f4:89:e9:88:b4:cf:25:cf:b8:06:72: 80:a8:73:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUJFQk3VYc0x9WtWkLMKJFwSNDwSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjYwMDAwMjNaFw0yNzAzMjUwMDA1MjNaMDMxMTAvBgNV BAMTKEVCMEU4ODdFODg5REI4MzJDNkQ2MjY5QzE5OEYyMDQ1MTE3QUUyMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDINNRq8kAkPm/6ZST9ERHutm2/ AH3kOfIGvHSplZq2yNJjNqJXwC4vBxifSzFCxg/Kw3r7iISASfnV6gW2dEI0UEQM minW2xGO/F5rsgkIVlSqSgXa3G303dg3xrqTmBTsDjujiAM0V7HgNqydtf3Flj1J K/sDaH1dgdbJCDOjh+tfNKwT28aQ8iYLIIxEAjYy0QOjgbiqjaNFqZIH0r1lDfjh GhBdgilzPnUT1HkF0mM6ahNACGOkgjgUEDdkaM8C9RrbLUvy3Zx2METeG+9MG2S7 HT/x8pjKnBFl2bzZ6m8Ou29HxuijOci8fkqeofcTnoamoELo/beS37a/FLAjAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQU6w6IfoiduDLG1iacGY8gRRF64gUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzIzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVT3zANBgkqhkiG9w0BAQsFAAOC AQEASGANErJm7e1sZI/iS+Rjgo+WM9bPSDZAVRZDShcbnnLrHhpx4QsNIXM9N3Jq o/PYlKXa7jDBYKP582Idg0tOiQbzeIbEgrZ9FzDGcvJPxLqsZMSmfh/K9VlFxGbq xBQeXb1jD5gTy6J3CBaobEzsnjCtR9WNLTj+q/u4ZDi4nGg41cxJp2l2rPm0+h6Z FBmN9Zr2dnEGZyelwkzi5+dsAxXuwHBUgCCdaJ8qFMVYw9hEGr2Oqha2WV0nMiAo xp79SinhnfgdGKK0Aq86feIUfgAQeHGhPoCvkzstalF0x0o6EB/Vla5+sWepHLRP /MCc+fSJ6Yi0zyXPuAZygKhzaQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:19:35 2026 by rpki-client