$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e20383334.roa File: 352e38332e3232332e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: vcvRPxiX6z10cGpoBOLhCoNfb+3AA/8Aqw8f9dexpBM= Subject key identifier: EA:B8:ED:B5:9F:98:78:0E:29:13:9F:E0:4E:AD:70:01:D3:E4:C9:3F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 348B6D9E4FD761CED7B8EAA18C24938D98327930 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e20383334.roa Signing time: Sat 02 May 2026 08:33:12 +0000 ROA not before: Sat 02 May 2026 08:28:12 +0000 ROA not after: Sat 01 May 2027 08:33:12 +0000 asID: 834 IP address blocks: 5.83.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8b:6d:9e:4f:d7:61:ce:d7:b8:ea:a1:8c:24:93:8d:98:32:79:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 2 08:28:12 2026 GMT Not After : May 1 08:33:12 2027 GMT Subject: CN=EAB8EDB59F98780E29139FE04EAD7001D3E4C93F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c9:30:8f:fe:83:d6:a8:67:6c:67:e2:d9:4d: 06:f8:50:d7:ff:82:df:ff:e3:99:a6:13:fb:c4:13: 94:7a:23:16:b9:b2:53:e5:84:e8:86:3b:61:2c:c4: c7:a1:33:95:f4:34:a9:e2:07:12:1e:df:c5:c4:80: c9:68:c7:17:ad:4c:f9:ff:b6:8a:75:32:87:e2:e6: b7:b2:a1:79:bf:a7:af:05:f3:da:ac:04:0e:d1:f4: 57:c5:27:d7:b1:1d:7b:a7:f1:2c:85:3c:be:59:40: f5:ad:69:5f:46:0e:7e:0f:16:b4:bf:82:63:82:7e: 85:71:75:1c:de:af:09:f1:ea:20:e7:b1:2b:e7:ec: 7d:56:c7:0d:7f:a8:63:1c:86:e3:f6:cc:43:92:d9: 68:50:a0:fa:dc:41:4a:73:30:05:97:f3:64:61:aa: 53:32:46:af:0c:a4:43:b6:5d:79:15:d7:05:f1:94: 59:ad:d5:fe:d8:91:10:a9:6d:c1:b8:8e:10:55:5f: 36:e8:27:07:bf:e3:89:2f:d3:75:1d:6a:e5:b5:da: c9:a3:b8:35:81:9a:12:10:a4:e7:92:ff:d1:64:69: f8:90:e7:d0:02:53:c5:dc:83:5f:af:2f:74:22:01: 19:9f:68:57:af:58:ad:51:99:38:38:45:c4:fa:cc: 90:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B8:ED:B5:9F:98:78:0E:29:13:9F:E0:4E:AD:70:01:D3:E4:C9:3F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.223.0/24 Signature Algorithm: sha256WithRSAEncryption 46:05:d4:3b:91:8c:64:51:dc:4c:60:b1:5c:f7:42:2e:66:fd: 6d:66:9e:4b:8c:eb:fc:b2:68:cf:3d:51:4e:80:5f:c5:a1:e1: ca:d3:d6:16:1b:50:65:17:7c:03:7a:97:a6:ce:15:86:b9:80: 69:8e:cf:48:8f:4e:9b:6b:44:77:69:94:14:bd:87:cd:47:85: 07:2c:d9:84:ad:d3:20:00:8c:d5:bf:b2:53:87:c9:c0:10:1a: b3:e9:d9:83:ab:60:11:d9:3a:cc:0a:ba:70:fe:ad:18:58:12: bc:3f:bc:79:0b:c5:49:33:0b:0b:e4:96:5f:67:7b:c8:d2:d1: d6:1e:a9:22:38:a6:23:ae:d5:76:4a:d6:8c:3b:17:48:e5:37: d5:91:c3:b1:5f:8a:c1:cb:ee:10:21:fc:48:bf:72:35:e7:82: d0:de:0b:5b:d5:0d:38:24:4c:9c:ad:ec:a1:d9:10:95:df:79: 56:24:ec:fc:d2:3d:fa:2d:b5:b9:8c:4e:ed:80:25:89:0c:19: de:b8:8b:21:fb:32:e3:a0:23:5f:67:10:7e:b8:77:89:05:09: ff:f1:7b:20:57:21:e9:e1:87:2f:42:20:ef:59:f0:43:7e:bf: a3:96:4d:60:f0:0f:f3:60:1a:17:85:f5:75:2b:a7:f7:cb:64: 2c:36:4a:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUNIttnk/XYc7XuOqhjCSTjZgyeTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA1MDIwODI4MTJaFw0yNzA1MDEwODMzMTJaMDMxMTAvBgNV BAMTKEVBQjhFREI1OUY5ODc4MEUyOTEzOUZFMDRFQUQ3MDAxRDNFNEM5M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoyTCP/oPWqGdsZ+LZTQb4UNf/ gt//45mmE/vEE5R6Ixa5slPlhOiGO2EsxMehM5X0NKniBxIe38XEgMloxxetTPn/ top1Mofi5reyoXm/p68F89qsBA7R9FfFJ9exHXun8SyFPL5ZQPWtaV9GDn4PFrS/ gmOCfoVxdRzerwnx6iDnsSvn7H1Wxw1/qGMchuP2zEOS2WhQoPrcQUpzMAWX82Rh qlMyRq8MpEO2XXkV1wXxlFmt1f7YkRCpbcG4jhBVXzboJwe/44kv03UdauW12smj uDWBmhIQpOeS/9FkafiQ59ACU8Xcg1+vL3QiARmfaFevWK1RmTg4RcT6zJCJAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQU6rjttZ+YeA4pE5/gTq1wAdPkyT8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzIzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVT3zANBgkqhkiG9w0BAQsFAAOC AQEARgXUO5GMZFHcTGCxXPdCLmb9bWaeS4zr/LJozz1RToBfxaHhytPWFhtQZRd8 A3qXps4VhrmAaY7PSI9Om2tEd2mUFL2HzUeFByzZhK3TIACM1b+yU4fJwBAas+nZ g6tgEdk6zAq6cP6tGFgSvD+8eQvFSTMLC+SWX2d7yNLR1h6pIjimI67VdkrWjDsX SOU31ZHDsV+KwcvuECH8SL9yNeeC0N4LW9UNOCRMnK3sodkQld95ViTs/NI9+i21 uYxO7YAliQwZ3riLIfsy46AjX2cQfrh3iQUJ//F7IFch6eGHL0Ig71nwQ36/o5ZN YPAP82AaF4X1dSun98tkLDZKIw== -----END CERTIFICATE-----Generated at Tue May 12 23:16:53 2026 by rpki-client