$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3133362e302f32342d3234203d3e20383334.roa File: 3136392e34302e3133362e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: bvjvUZIedLvMYJtbnrQF3k33FSPV3NA9Xp5xAsEGxe0= Subject key identifier: 53:F6:D7:4F:E0:F2:06:24:4E:1C:15:DE:E1:89:54:F1:66:DB:79:60 Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 208D93006C0CD2B1B5EBE6955593966C9D2170C3 Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3133362e302f32342d3234203d3e20383334.roa Signing time: Sun 01 Mar 2026 05:12:08 +0000 ROA not before: Sun 01 Mar 2026 05:07:08 +0000 ROA not after: Sun 28 Feb 2027 05:12:08 +0000 asID: 834 IP address blocks: 169.40.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 14:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:8d:93:00:6c:0c:d2:b1:b5:eb:e6:95:55:93:96:6c:9d:21:70:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Mar 1 05:07:08 2026 GMT Not After : Feb 28 05:12:08 2027 GMT Subject: CN=53F6D74FE0F206244E1C15DEE18954F166DB7960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:98:aa:ba:ad:87:ae:a7:fb:06:30:48:32:a9: 29:1a:be:5d:e8:66:c7:02:55:d6:91:9d:41:ea:69: 9e:82:51:36:72:7b:41:09:cf:28:7d:0c:8c:5c:d5: 1b:e2:95:fd:ff:34:e0:1b:7c:ef:8c:aa:60:56:2b: 57:69:1c:61:db:13:56:cb:c6:c1:bf:f4:a2:59:78: fd:ed:44:33:93:7d:68:b0:00:32:ce:5d:25:e5:4a: ff:ac:ea:9a:54:1c:df:02:9b:e5:f5:bc:0f:b4:10: 97:cb:8c:67:35:d0:13:11:ce:40:e9:dd:d1:a7:7d: b6:66:28:de:eb:7e:1b:d1:88:7d:a0:80:cb:26:c2: eb:7c:42:6f:e3:98:92:08:20:d1:97:7a:41:1b:fe: 52:75:d0:f2:d0:56:a6:d5:ec:7e:f8:74:5b:62:c2: 7c:bb:0c:35:37:16:fe:ce:5f:dc:49:55:f8:ca:24: 7a:23:50:2f:df:4b:b1:6b:e7:15:87:1b:97:27:9b: 11:de:8e:8d:7c:c0:bd:7d:25:94:50:17:9b:34:4c: 64:be:bb:8a:47:3b:10:39:d4:d2:21:50:0d:0c:99: 91:23:e6:c1:80:d4:c6:c4:36:a3:29:4f:0d:fa:b7: 03:0d:4b:be:97:80:44:87:93:d0:ad:a2:fc:ca:09: 85:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F6:D7:4F:E0:F2:06:24:4E:1C:15:DE:E1:89:54:F1:66:DB:79:60 X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3133362e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.136.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:98:71:fb:fd:a6:10:d1:47:a1:d2:d7:f3:03:a0:c9:de:f3: 57:db:b7:3e:38:e9:0d:59:9b:6c:0c:9d:34:2a:9a:c1:4e:08: e9:98:ed:31:28:19:7e:0d:b3:91:f5:66:c7:5b:5c:00:bb:40: 81:55:d1:23:17:0a:20:1f:a1:db:fb:27:51:d7:3e:62:cf:fa: 97:a9:4b:36:17:99:69:bc:a9:68:ba:78:dd:f4:fa:e4:5e:37: 89:7b:ce:b6:e5:26:81:7d:61:52:43:bc:22:e9:12:2d:a6:80: c4:46:2d:6b:18:2b:aa:2d:63:26:e1:b8:04:fc:f8:46:b2:55: 2c:33:97:5a:23:7d:42:77:c9:7b:52:f2:65:14:e5:35:49:0c: 8e:ad:53:dd:92:6d:bf:9a:da:75:34:19:2d:9a:3f:ff:6c:dc: 54:a2:d2:af:e9:e5:e2:db:ac:88:9c:47:9f:d7:85:41:97:56: f0:4c:a4:2e:bd:f7:29:f0:71:0f:98:8e:23:e4:15:af:84:19: b3:52:1f:83:77:17:b1:a9:ce:da:79:e7:38:c0:50:dc:f1:6a: a0:ea:8b:ad:53:81:89:11:88:26:ab:a0:81:dd:82:ee:c2:81: 39:80:be:dd:d9:14:c6:63:8d:2a:34:b6:9a:44:1e:9b:12:05: 18:9e:b2:9c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUII2TAGwM0rG16+aVVZOWbJ0hcMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjAzMDEwNTA3MDhaFw0yNzAyMjgwNTEyMDhaMDMxMTAvBgNV BAMTKDUzRjZENzRGRTBGMjA2MjQ0RTFDMTVERUUxODk1NEYxNjZEQjc5NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmmKq6rYeup/sGMEgyqSkavl3o ZscCVdaRnUHqaZ6CUTZye0EJzyh9DIxc1Rvilf3/NOAbfO+MqmBWK1dpHGHbE1bL xsG/9KJZeP3tRDOTfWiwADLOXSXlSv+s6ppUHN8Cm+X1vA+0EJfLjGc10BMRzkDp 3dGnfbZmKN7rfhvRiH2ggMsmwut8Qm/jmJIIINGXekEb/lJ10PLQVqbV7H74dFti wny7DDU3Fv7OX9xJVfjKJHojUC/fS7Fr5xWHG5cnmxHejo18wL19JZRQF5s0TGS+ u4pHOxA51NIhUA0MmZEj5sGA1MbENqMpTw36twMNS76XgESHk9CtovzKCYXtAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUU/bXT+DyBiROHBXe4YlU8WbbeWAwHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby8zMDMyN2I5ZS0yMjdhLTRlYmQtODI1 Yi0zYjk4MDk1ZGM5MjctMC8wLzMxMzYzOTJlMzQzMDJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqSiIMA0GCSqGSIb3DQEB CwUAA4IBAQA6mHH7/aYQ0Ueh0tfzA6DJ3vNX27c+OOkNWZtsDJ00KprBTgjpmO0x KBl+DbOR9WbHW1wAu0CBVdEjFwogH6Hb+ydR1z5iz/qXqUs2F5lpvKlounjd9Prk XjeJe8625SaBfWFSQ7wi6RItpoDERi1rGCuqLWMm4bgE/PhGslUsM5daI31Cd8l7 UvJlFOU1SQyOrVPdkm2/mtp1NBktmj//bNxUotKv6eXi26yInEef14VBl1bwTKQu vfcp8HEPmI4j5BWvhBmzUh+Ddxexqc7aeec4wFDc8Wqg6outU4GJEYgmq6CB3YLu woE5gL7d2RTGY40qNLaaRB6bEgUYnrKc -----END CERTIFICATE-----Generated at Mon Mar 2 03:38:36 2026 by rpki-client