$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139352e302f32342d3234203d3e20383334.roa File: 37372e37352e3139352e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: GjImZoQ6TdQ5kMQt9AHEg0dtgHTYBCt2/irHzu0Yheg= Subject key identifier: E3:A5:A5:71:73:86:50:8B:E0:B2:AE:69:55:6D:40:00:C8:06:AE:96 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 699166D624B41055FB06D84553C78558563EE123 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139352e302f32342d3234203d3e20383334.roa Signing time: Tue 17 Mar 2026 00:02:15 +0000 ROA not before: Mon 16 Mar 2026 23:57:15 +0000 ROA not after: Tue 16 Mar 2027 00:02:15 +0000 asID: 834 IP address blocks: 77.75.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 21:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:91:66:d6:24:b4:10:55:fb:06:d8:45:53:c7:85:58:56:3e:e1:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 16 23:57:15 2026 GMT Not After : Mar 16 00:02:15 2027 GMT Subject: CN=E3A5A5717386508BE0B2AE69556D4000C806AE96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b8:33:4e:4b:17:49:f6:e9:2f:6a:08:ef:a6: 10:34:3d:8b:5f:fe:fb:41:33:7a:fd:2b:60:c4:6d: 69:4b:68:d2:ec:8e:79:c9:80:b9:36:02:d6:2b:d0: c5:de:8e:d2:89:93:fb:54:d3:ea:dd:ea:08:c3:24: 94:5b:21:23:d4:6b:28:49:2b:17:cd:38:73:92:bf: 9b:12:b4:61:9d:c9:84:83:06:ee:02:7f:2a:f5:fc: 88:b3:88:f8:96:fd:01:3f:f2:01:93:46:27:5d:d5: fc:e2:74:47:ca:f2:31:4f:33:0b:3d:2c:3e:00:3f: 37:0c:82:0b:96:fe:e8:22:cf:d4:5a:4c:93:4a:b8: fd:a9:e1:97:0b:9d:7b:78:15:49:f0:2e:38:a8:d4: 62:0c:88:3b:2f:c7:a8:8f:30:9d:e9:63:86:97:ad: d7:4e:18:ce:85:74:a6:37:02:95:3c:67:70:59:0d: 18:5e:0e:06:1f:19:1c:9c:e2:9e:e2:a9:8d:ab:fa: 36:3e:dc:f5:1b:40:cb:d3:53:f8:5b:dd:ed:5b:e4: a5:2f:4d:de:40:47:0c:73:0b:44:d3:26:8c:2b:b0: d0:0b:10:48:a2:c4:44:be:7e:a5:49:7b:e8:fb:77: 59:b1:7c:bd:ba:29:b5:30:68:2e:92:4f:d5:53:3d: 7d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A5:A5:71:73:86:50:8B:E0:B2:AE:69:55:6D:40:00:C8:06:AE:96 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139352e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.75.195.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:5a:a1:8a:9d:5c:fa:23:66:86:6d:c0:f6:2a:9c:1b:2d:c5: f8:4c:af:e0:b4:f8:15:f1:a0:b4:8d:41:62:2e:b3:f9:33:c6: 2b:9e:10:e3:bf:eb:bc:53:fb:c0:96:a9:0e:50:7e:de:7d:1e: e9:3e:7c:a7:e9:74:60:9c:40:df:3d:9c:e2:95:81:a5:b6:21: 37:15:d7:97:db:d7:37:94:3e:ef:6c:e1:64:27:a8:02:47:35: bb:27:8c:a2:a4:e6:4b:3b:f7:ca:42:d1:4f:e8:29:50:4d:56: f8:3c:dc:c9:b4:ab:45:92:fc:8c:6f:43:d5:1d:23:80:37:df: a0:9a:1f:eb:54:27:20:9c:b6:1d:e4:b8:eb:6e:94:4b:d5:77: 3c:3f:9b:bb:72:11:c9:cf:6a:18:8e:d4:d7:81:f3:6d:53:b1: 4a:fe:9a:0d:46:af:85:0a:8b:8b:ae:04:9c:7a:12:2b:7f:cb: 6e:8a:81:22:88:c4:d8:fb:fc:bc:01:66:e9:ab:9c:79:00:5b: 69:7c:e5:d4:89:8b:d0:91:47:25:1b:a5:6b:aa:36:21:6a:ac: dd:25:29:6b:27:04:42:98:cb:0a:45:d2:5e:a7:b2:52:9f:c1: 13:7b:df:45:f4:73:6a:83:5e:5d:6b:70:1c:dd:70:48:3a:30: 4d:5a:c0:f1 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUaZFm1iS0EFX7BthFU8eFWFY+4SMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMTYyMzU3MTVaFw0yNzAzMTYwMDAyMTVaMDMxMTAvBgNV BAMTKEUzQTVBNTcxNzM4NjUwOEJFMEIyQUU2OTU1NkQ0MDAwQzgwNkFFOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvuDNOSxdJ9ukvagjvphA0PYtf /vtBM3r9K2DEbWlLaNLsjnnJgLk2AtYr0MXejtKJk/tU0+rd6gjDJJRbISPUayhJ KxfNOHOSv5sStGGdyYSDBu4Cfyr1/IiziPiW/QE/8gGTRidd1fzidEfK8jFPMws9 LD4APzcMgguW/ugiz9RaTJNKuP2p4ZcLnXt4FUnwLjio1GIMiDsvx6iPMJ3pY4aX rddOGM6FdKY3ApU8Z3BZDRheDgYfGRyc4p7iqY2r+jY+3PUbQMvTU/hb3e1b5KUv Td5ARwxzC0TTJowrsNALEEiixES+fqVJe+j7d1mxfL26KbUwaC6ST9VTPX1VAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQU46WlcXOGUIvgsq5pVW1AAMgGrpYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzczNzJlMzczNTJlMzEzOTM1MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUvDMA0GCSqGSIb3DQEBCwUA A4IBAQAcWqGKnVz6I2aGbcD2KpwbLcX4TK/gtPgV8aC0jUFiLrP5M8YrnhDjv+u8 U/vAlqkOUH7efR7pPnyn6XRgnEDfPZzilYGltiE3FdeX29c3lD7vbOFkJ6gCRzW7 J4yipOZLO/fKQtFP6ClQTVb4PNzJtKtFkvyMb0PVHSOAN9+gmh/rVCcgnLYd5Ljr bpRL1Xc8P5u7chHJz2oYjtTXgfNtU7FK/poNRq+FCouLrgScehIrf8tuioEiiMTY +/y8AWbpq5x5AFtpfOXUiYvQkUclG6VrqjYhaqzdJSlrJwRCmMsKRdJep7JSn8ET e99F9HNqg15da3Ac3XBIOjBNWsDx -----END CERTIFICATE-----Generated at Thu Mar 26 09:19:36 2026 by rpki-client