$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3139322e302f32312d3231203d3e203438333030.roa File: 3136392e34302e3139322e302f32312d3231203d3e203438333030.roa (raw, json) Hash identifier: 5Dl66Ev39Y+PQBPMqmOtjRwN4eQA6AM1Lh4DBvITQmc= Subject key identifier: 6F:9F:69:3B:15:48:94:7A:C5:A2:5A:B3:8A:94:AA:6A:2B:54:E4:BE Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 30017E325FDC827EF2059D1777E87A9A7F3F9C2F Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3139322e302f32312d3231203d3e203438333030.roa Signing time: Thu 12 Feb 2026 01:05:04 +0000 ROA not before: Thu 12 Feb 2026 01:00:04 +0000 ROA not after: Thu 11 Feb 2027 01:05:04 +0000 asID: 48300 IP address blocks: 169.40.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 06:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:01:7e:32:5f:dc:82:7e:f2:05:9d:17:77:e8:7a:9a:7f:3f:9c:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Feb 12 01:00:04 2026 GMT Not After : Feb 11 01:05:04 2027 GMT Subject: CN=6F9F693B1548947AC5A25AB38A94AA6A2B54E4BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:07:55:a7:96:d1:0c:9d:3b:fe:c4:c3:b8:9a: 19:72:34:92:cc:9a:83:63:33:7a:15:cc:3d:69:56: 15:c8:e2:58:88:38:a6:6f:6b:d3:a9:6b:b9:c2:8a: bc:d1:25:91:a5:45:93:8c:4d:d0:d9:75:59:e9:3b: 2e:fe:30:97:e1:11:b7:dc:fe:b5:8a:ee:90:95:7a: ce:61:a0:3c:9d:3a:82:de:18:2e:bc:44:22:8d:98: d4:7e:4c:83:a5:ed:75:c2:bd:a3:9e:85:93:1e:b4: 6d:45:87:68:87:17:fd:04:d2:d0:a0:5e:4f:50:78: db:f8:b9:51:d2:e6:e4:60:69:97:25:fd:c2:0b:48: 1d:d4:3e:cb:5d:3f:a4:5b:16:b2:53:64:e3:23:b5: a0:19:84:d3:40:47:7b:cb:06:13:93:f5:54:dc:a8: 39:c0:4a:18:87:e6:89:14:d2:a6:5b:35:95:de:12: 67:24:2e:a2:91:c9:1e:9f:77:27:90:62:1f:51:fb: e0:1e:76:19:b4:63:20:e7:c8:7c:33:f4:ae:77:d4: 64:c9:87:b1:60:2c:32:ba:bf:96:e3:6b:e4:b6:f9: 38:44:0b:25:4d:18:2e:fa:c8:d0:64:dd:4f:c5:60: 80:bc:04:4b:92:8d:9f:1b:80:a4:6f:91:73:79:14: 59:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9F:69:3B:15:48:94:7A:C5:A2:5A:B3:8A:94:AA:6A:2B:54:E4:BE X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/3136392e34302e3139322e302f32312d3231203d3e203438333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.40.192.0/21 Signature Algorithm: sha256WithRSAEncryption 68:a4:ae:bd:78:8b:29:de:e9:11:aa:a3:1f:84:fc:c3:0c:90: 34:32:33:a3:b0:c1:f5:82:ad:4d:36:c7:6e:0f:50:86:73:bc: 8b:6e:a7:55:86:b5:0f:a9:34:41:1d:11:eb:5f:14:fc:a7:42: fa:63:c2:69:84:b3:ce:ae:f9:9e:85:ab:56:e1:8f:c5:32:c4: bf:f7:c4:b2:b7:cf:08:40:30:c9:86:5b:17:a5:8a:4b:e6:ff: c9:a9:28:61:9c:45:6d:68:00:8f:db:42:c6:cb:fc:44:f6:2c: 67:09:b2:1e:63:6b:1d:b7:7e:e8:12:a5:df:9b:a8:fe:4b:c5: bc:49:d2:94:94:5d:47:76:a9:c2:29:20:af:c7:a5:70:28:b1: 53:22:01:ad:73:04:e9:96:1b:da:ef:13:a3:d1:be:42:67:48: 9c:b9:1f:f2:3e:64:97:da:96:64:82:95:83:2b:d6:53:49:be: 77:cc:4b:36:f7:b7:12:49:3f:ef:e7:b2:31:9a:39:d9:c0:ed: 1a:85:11:d4:71:20:6f:fd:3e:55:7f:ff:5b:f2:cb:ec:60:5f: 3d:40:b3:b9:ac:dc:eb:75:18:dd:24:7d:d0:a8:f1:7a:a9:44: 93:05:86:df:47:ea:f9:e2:24:45:cb:1f:1d:d9:0c:ed:37:71: ad:55:aa:60 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUMAF+Ml/cgn7yBZ0Xd+h6mn8/nC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjAyMTIwMTAwMDRaFw0yNzAyMTEwMTA1MDRaMDMxMTAvBgNV BAMTKDZGOUY2OTNCMTU0ODk0N0FDNUEyNUFCMzhBOTRBQTZBMkI1NEU0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+B1WnltEMnTv+xMO4mhlyNJLM moNjM3oVzD1pVhXI4liIOKZva9Opa7nCirzRJZGlRZOMTdDZdVnpOy7+MJfhEbfc /rWK7pCVes5hoDydOoLeGC68RCKNmNR+TIOl7XXCvaOehZMetG1Fh2iHF/0E0tCg Xk9QeNv4uVHS5uRgaZcl/cILSB3UPstdP6RbFrJTZOMjtaAZhNNAR3vLBhOT9VTc qDnAShiH5okU0qZbNZXeEmckLqKRyR6fdyeQYh9R++Aedhm0YyDnyHwz9K531GTJ h7FgLDK6v5bja+S2+ThECyVNGC76yNBk3U/FYIC8BEuSjZ8bgKRvkXN5FFnXAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUb59pOxVIlHrFolqzipSqaitU5L4wHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby8zMDMyN2I5ZS0yMjdhLTRlYmQtODI1 Yi0zYjk4MDk1ZGM5MjctMC8wLzMxMzYzOTJlMzQzMDJlMzEzOTMyMmUzMDJmMzIz MTJkMzIzMTIwM2QzZTIwMzQzODMzMzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA6kowDANBgkqhkiG 9w0BAQsFAAOCAQEAaKSuvXiLKd7pEaqjH4T8wwyQNDIzo7DB9YKtTTbHbg9QhnO8 i26nVYa1D6k0QR0R618U/KdC+mPCaYSzzq75noWrVuGPxTLEv/fEsrfPCEAwyYZb F6WKS+b/yakoYZxFbWgAj9tCxsv8RPYsZwmyHmNrHbd+6BKl35uo/kvFvEnSlJRd R3apwikgr8elcCixUyIBrXME6ZYb2u8To9G+QmdInLkf8j5kl9qWZIKVgyvWU0m+ d8xLNve3Ekk/7+eyMZo52cDtGoUR1HEgb/0+VX//W/LL7GBfPUCzuazc63UY3SR9 0KjxeqlEkwWG30fq+eIkRcsfHdkM7TdxrVWqYA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:41:38 2026 by rpki-client