$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133312e302f32342d3234203d3e2036303739.roa File: 38312e32322e3133312e302f32342d3234203d3e2036303739.roa (raw, json) Hash identifier: 32Z3+YqeBDMH7HMOVqRgLFGt9U6ud+xZDa/p2dhx4I0= Subject key identifier: B2:9C:6D:60:50:CD:87:D6:CA:34:39:D5:76:B6:E5:EF:01:E7:6F:68 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 25612A36BE8C690992BB1924E68D8EB96DF8C5EC Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133312e302f32342d3234203d3e2036303739.roa Signing time: Mon 11 May 2026 22:20:16 +0000 ROA not before: Mon 11 May 2026 22:15:16 +0000 ROA not after: Mon 10 May 2027 22:20:16 +0000 asID: 6079 IP address blocks: 81.22.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:61:2a:36:be:8c:69:09:92:bb:19:24:e6:8d:8e:b9:6d:f8:c5:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: May 11 22:15:16 2026 GMT Not After : May 10 22:20:16 2027 GMT Subject: CN=B29C6D6050CD87D6CA3439D576B6E5EF01E76F68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:fc:03:0f:5d:49:50:66:ad:42:28:9e:dd:8b: 10:07:25:46:65:25:c9:13:4d:85:fa:33:5c:64:ee: 80:f2:a8:26:14:c4:04:31:6d:29:05:30:e5:bb:d8: 9f:b8:96:4b:bd:17:05:fa:36:1f:a2:99:6a:ad:45: fa:67:64:e3:29:10:13:27:b7:be:4d:f4:67:b5:b1: bc:33:35:50:cd:d6:1f:a5:06:a5:5c:8a:14:21:aa: 4a:f6:84:73:3a:a1:1c:a1:d0:2a:d4:a1:6d:3c:f7: 92:74:d7:4d:db:1f:df:8f:f3:7e:3d:24:e6:c1:81: 34:59:ad:e4:2c:ae:f9:27:5d:30:02:eb:10:93:c3: 56:2c:6f:67:21:37:57:9b:f6:c8:44:dc:d8:c3:b1: 74:04:60:2f:57:90:50:52:8f:82:56:82:2a:be:17: 73:1b:0f:b9:d2:9b:df:c5:39:43:04:9b:7c:46:c5: 2c:1d:f0:eb:0d:bf:7d:3b:f8:4e:83:ba:b1:34:cd: c7:c0:ee:1f:df:ad:34:8b:d6:23:1a:78:8f:8b:b2: 65:8f:06:3a:78:ab:0c:57:36:e1:af:94:27:b3:26: d6:6e:73:78:7e:18:2c:32:11:52:d5:44:3b:03:bb: 92:6b:64:9e:e5:c5:58:ef:95:6e:24:1d:7f:14:8f: 10:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9C:6D:60:50:CD:87:D6:CA:34:39:D5:76:B6:E5:EF:01:E7:6F:68 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133312e302f32342d3234203d3e2036303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.22.131.0/24 Signature Algorithm: sha256WithRSAEncryption 22:38:d2:7e:9d:4c:37:bb:50:f3:8e:5d:38:d2:26:d6:d7:da: e4:4f:ac:74:ca:e0:6c:bc:f2:4a:61:7c:dc:fd:de:d1:31:5c: 43:19:57:95:31:b8:ca:b4:d2:ba:0e:5c:6a:74:a6:da:73:ea: b6:27:03:37:03:83:77:a5:c4:04:6f:4a:4c:31:66:fc:c5:cd: 22:e8:d9:3b:f2:54:c1:20:67:2c:ea:90:d5:ca:98:d6:a5:68: cb:8e:b9:94:a5:7a:9c:1c:71:67:14:f4:3d:02:4b:51:7a:a8: d2:c6:62:f9:31:56:f5:53:58:c1:00:e8:60:90:97:b9:81:56: 57:b5:aa:7b:b6:13:92:4d:d6:10:c3:9c:f4:cd:ab:1b:52:a1: 95:5a:d2:8d:40:38:c9:76:cc:cd:ae:45:5a:9c:96:dd:96:61: 53:c1:b1:72:b2:c0:a4:e3:75:45:92:67:88:82:f6:fc:19:13: 80:c4:e3:a5:84:6c:c4:83:94:da:47:97:84:fa:b9:92:97:c3: c6:89:1d:39:42:0b:78:8d:94:b0:7b:6f:a7:53:9a:90:f8:75: 36:ff:98:2f:7d:db:dc:b7:32:8e:0a:29:9c:fe:f2:07:5b:e5: eb:8b:b1:d0:c5:67:63:ce:5e:b0:ed:48:6c:df:ba:56:3c:d2: bc:c3:62:04 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUJWEqNr6MaQmSuxkk5o2OuW34xewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjA1MTEyMjE1MTZaFw0yNzA1MTAyMjIwMTZaMDMxMTAvBgNV BAMTKEIyOUM2RDYwNTBDRDg3RDZDQTM0MzlENTc2QjZFNUVGMDFFNzZGNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx/AMPXUlQZq1CKJ7dixAHJUZl JckTTYX6M1xk7oDyqCYUxAQxbSkFMOW72J+4lku9FwX6Nh+imWqtRfpnZOMpEBMn t75N9Ge1sbwzNVDN1h+lBqVcihQhqkr2hHM6oRyh0CrUoW0895J0103bH9+P8349 JObBgTRZreQsrvknXTAC6xCTw1Ysb2chN1eb9shE3NjDsXQEYC9XkFBSj4JWgiq+ F3MbD7nSm9/FOUMEm3xGxSwd8OsNv307+E6DurE0zcfA7h/frTSL1iMaeI+LsmWP Bjp4qwxXNuGvlCezJtZuc3h+GCwyEVLVRDsDu5JrZJ7lxVjvlW4kHX8UjxA3AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUspxtYFDNh9bKNDnVdrbl7wHnb2gwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzEyZTMyMzIyZTMxMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURaDMA0GCSqGSIb3DQEB CwUAA4IBAQAiONJ+nUw3u1Dzjl040ibW19rkT6x0yuBsvPJKYXzc/d7RMVxDGVeV MbjKtNK6DlxqdKbac+q2JwM3A4N3pcQEb0pMMWb8xc0i6Nk78lTBIGcs6pDVypjW pWjLjrmUpXqcHHFnFPQ9AktReqjSxmL5MVb1U1jBAOhgkJe5gVZXtap7thOSTdYQ w5z0zasbUqGVWtKNQDjJdszNrkVanJbdlmFTwbFyssCk43VFkmeIgvb8GROAxOOl hGzEg5TaR5eE+rmSl8PGiR05Qgt4jZSwe2+nU5qQ+HU2/5gvfdvctzKOCimc/vIH W+Xri7HQxWdjzl6w7Uhs37pWPNK8w2IE -----END CERTIFICATE-----Generated at Wed May 13 00:20:32 2026 by rpki-client