$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/322e35392e3134382e302f32332d3233203d3e20343030383636.roa File: 322e35392e3134382e302f32332d3233203d3e20343030383636.roa (raw, json) Hash identifier: 1P/dXf8Xf1pvqDeBPN4A7HWckJLB7O1PrjEkE4o1Q2A= Subject key identifier: 73:39:13:2A:C5:6D:6A:3B:D9:A8:85:99:D2:0A:89:91:2F:97:C5:0F Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Certificate serial: 2F5C84F98811E1D5356640D430D798053EFAC98D Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/322e35392e3134382e302f32332d3233203d3e20343030383636.roa Signing time: Thu 12 Feb 2026 01:05:05 +0000 ROA not before: Thu 12 Feb 2026 01:00:05 +0000 ROA not after: Thu 11 Feb 2027 01:05:05 +0000 asID: 400866 IP address blocks: 2.59.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 12:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5c:84:f9:88:11:e1:d5:35:66:40:d4:30:d7:98:05:3e:fa:c9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155 Validity Not Before: Feb 12 01:00:05 2026 GMT Not After : Feb 11 01:05:05 2027 GMT Subject: CN=7339132AC56D6A3BD9A88599D20A89912F97C50F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:21:eb:06:b1:48:b9:f2:04:40:2c:eb:31:c5: 9a:99:a3:0b:c6:38:9b:2c:fb:ae:34:49:fe:6f:47: 31:90:70:c2:25:d1:1a:e9:6e:c8:3a:c5:8f:54:20: 5f:f7:1e:cf:fc:12:9c:00:c1:bf:9b:1a:d9:0a:45: ee:ce:77:d9:5a:25:46:e6:55:2d:62:ea:2d:bc:86: d4:64:a0:25:9f:5d:6c:24:6d:d1:a7:47:44:2f:fa: 51:2f:a8:04:24:1d:9a:cd:6d:bc:45:de:ca:75:37: 71:d1:12:8b:09:8d:96:99:5f:68:af:4c:fa:d2:75: 1f:8f:d6:fc:ea:6e:e0:08:95:d5:0c:cc:ea:c8:ab: 6f:b6:4f:6e:97:7b:7e:d6:a2:0f:64:01:c9:83:88: 21:14:a4:81:0f:a0:08:a5:4d:29:ec:2f:60:a9:df: 03:cb:d7:e2:7e:0f:db:b4:72:6a:31:ae:49:cf:20: cc:b3:26:76:61:64:f8:f0:d9:81:c3:8b:8e:48:28: cd:75:f9:ff:07:b4:70:74:5a:20:bd:3c:3b:b9:3e: 03:de:3a:78:4d:f1:9d:33:c9:f9:d8:96:5e:05:aa: e3:14:2b:d4:cb:6e:5c:fc:d5:90:e2:85:61:d0:42: fd:e1:b1:30:26:87:88:28:95:22:3b:b7:64:77:15: 86:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:39:13:2A:C5:6D:6A:3B:D9:A8:85:99:D2:0A:89:91:2F:97:C5:0F X509v3 Authority Key Identifier: keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/322e35392e3134382e302f32332d3233203d3e20343030383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.59.148.0/23 Signature Algorithm: sha256WithRSAEncryption 93:d3:b8:f3:21:42:3e:10:a2:3c:ee:8b:1b:14:8f:75:41:57: d3:8d:83:54:63:92:9d:a6:a2:44:51:20:21:17:e1:05:d9:3f: 5d:b6:63:c4:62:33:4b:18:f8:a9:59:93:c7:7f:da:be:99:1c: 4d:42:1e:b3:82:ae:7a:1a:c2:a1:76:75:e5:f9:4e:21:08:5c: 01:08:70:fd:96:67:14:0e:f1:31:42:21:f1:9c:40:9e:47:14: 7a:ee:3e:27:b7:6b:7f:5d:78:6e:a4:22:1e:bb:a7:86:17:98: f0:80:31:b9:c9:cc:6a:46:05:64:a4:85:e8:ee:9b:40:56:36: 82:37:27:85:7f:76:16:81:c2:42:a4:2e:b0:40:2e:fe:e6:35: 25:31:de:c6:70:f0:23:0d:0a:53:b9:13:bb:a7:f7:03:91:cf: f8:23:df:a8:9f:f7:56:ee:6d:8b:35:7d:8d:83:e3:1d:2a:32: 6b:2d:b5:da:4d:ba:58:19:3c:6d:d0:b0:00:c7:3b:95:4a:71: 61:bf:0e:e3:e7:4d:11:8e:af:96:d6:ab:4b:99:c3:c4:f6:90: 01:ec:ff:29:04:cd:3c:99:78:59:6a:49:9a:d8:7b:45:58:f7: c8:4b:34:20:a5:eb:a0:af:17:87:c2:cc:f9:91:f5:2a:66:cf: ca:86:94:a3 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUL1yE+YgR4dU1ZkDUMNeYBT76yY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE NzMwQjE1NTAeFw0yNjAyMTIwMTAwMDVaFw0yNzAyMTEwMTA1MDVaMDMxMTAvBgNV BAMTKDczMzkxMzJBQzU2RDZBM0JEOUE4ODU5OUQyMEE4OTkxMkY5N0M1MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2IesGsUi58gRALOsxxZqZowvG OJss+640Sf5vRzGQcMIl0Rrpbsg6xY9UIF/3Hs/8EpwAwb+bGtkKRe7Od9laJUbm VS1i6i28htRkoCWfXWwkbdGnR0Qv+lEvqAQkHZrNbbxF3sp1N3HREosJjZaZX2iv TPrSdR+P1vzqbuAIldUMzOrIq2+2T26Xe37Wog9kAcmDiCEUpIEPoAilTSnsL2Cp 3wPL1+J+D9u0cmoxrknPIMyzJnZhZPjw2YHDi45IKM11+f8HtHB0WiC9PDu5PgPe OnhN8Z0zyfnYll4FquMUK9TLblz81ZDihWHQQv3hsTAmh4golSI7t2R3FYazAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUczkTKsVtajvZqIWZ0gqJkS+XxQ8wHwYDVR0j BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1 OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx NTUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby8zMDMyN2I5ZS0yMjdhLTRlYmQtODI1 Yi0zYjk4MDk1ZGM5MjctMC8wLzMyMmUzNTM5MmUzMTM0MzgyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzNDMwMzAzODM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAECO5QwDQYJKoZIhvcN AQELBQADggEBAJPTuPMhQj4QojzuixsUj3VBV9ONg1Rjkp2mokRRICEX4QXZP122 Y8RiM0sY+KlZk8d/2r6ZHE1CHrOCrnoawqF2deX5TiEIXAEIcP2WZxQO8TFCIfGc QJ5HFHruPie3a39deG6kIh67p4YXmPCAMbnJzGpGBWSkhejum0BWNoI3J4V/dhaB wkKkLrBALv7mNSUx3sZw8CMNClO5E7un9wORz/gj36if91bubYs1fY2D4x0qMmst tdpNulgZPG3QsADHO5VKcWG/DuPnTRGOr5bWq0uZw8T2kAHs/ykEzTyZeFlqSZrY e0VY98hLNCCl66CvF4fCzPmR9Spmz8qGlKM= -----END CERTIFICATE-----Generated at Mon Mar 2 16:24:59 2026 by rpki-client