$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e33322e302f32322d3234203d3e2035363530.roa File: 36322e3134342e33322e302f32322d3234203d3e2035363530.roa (raw, json) Hash identifier: v4ecpAC5rrqVzzxALvbnKzl7siZm3sSiL1FXFHSqHxU= Subject key identifier: 6E:41:BB:A6:86:48:55:3D:C3:47:8A:43:DE:19:B9:AB:69:BF:4D:25 Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 091A26DF8627AA75492FD7BB54123BFCCEE408DE Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e33322e302f32322d3234203d3e2035363530.roa Signing time: Wed 25 Feb 2026 12:40:44 +0000 ROA not before: Wed 25 Feb 2026 12:35:44 +0000 ROA not after: Wed 24 Feb 2027 12:40:44 +0000 asID: 5650 IP address blocks: 62.144.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:1a:26:df:86:27:aa:75:49:2f:d7:bb:54:12:3b:fc:ce:e4:08:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Feb 25 12:35:44 2026 GMT Not After : Feb 24 12:40:44 2027 GMT Subject: CN=6E41BBA68648553DC3478A43DE19B9AB69BF4D25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4d:8c:12:c9:d8:94:4e:c8:80:71:09:6d:4d: 3c:9b:1c:b2:c4:58:5b:1e:be:82:8d:85:c3:c0:94: 24:2c:f2:19:65:ce:f5:6d:a9:3f:21:9e:9a:8f:83: 34:ba:6c:91:72:55:d2:e2:df:91:78:42:c0:76:da: 1f:cb:a4:98:3a:cd:3f:a3:b8:81:86:17:74:4a:89: b3:58:dc:67:54:ab:e5:e5:93:e3:f3:40:32:73:30: c9:2d:1a:e3:16:41:31:38:f2:cc:dd:d2:bc:c4:e5: c1:d0:2e:73:19:22:29:3b:70:32:af:4f:95:2b:e7: f3:37:50:9b:f9:62:96:8e:67:2e:84:7c:2f:7b:13: ac:23:ca:00:5c:9f:d3:86:a5:e9:f1:87:c8:19:4f: f4:50:d3:16:ca:e7:a9:92:7f:c6:f3:e4:47:88:97: 30:70:63:73:92:84:9a:87:63:3f:6e:a7:3e:b2:9d: f7:cb:85:60:bf:fa:b1:c4:fc:c6:f6:51:eb:76:06: 14:1c:e1:05:43:4d:e5:ce:a2:e3:a5:d5:0b:5f:50: 90:e3:80:3b:03:4f:a4:d4:5b:ae:c2:aa:a0:3e:73: 11:4a:75:80:39:9c:b4:5e:88:6a:07:dd:a4:f0:83: 4f:8a:57:a9:20:31:69:03:dd:03:c3:4f:06:21:64: a5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:41:BB:A6:86:48:55:3D:C3:47:8A:43:DE:19:B9:AB:69:BF:4D:25 X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e33322e302f32322d3234203d3e2035363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.144.32.0/22 Signature Algorithm: sha256WithRSAEncryption 70:77:71:5f:ed:d1:d2:48:05:61:d4:65:49:55:5f:92:0f:fc: 7a:c0:f7:00:a1:b0:4a:a3:45:92:9b:83:5d:15:fe:ef:03:41: 31:11:f9:51:cf:4e:26:e2:d3:72:d7:61:d4:b9:66:ae:ac:f5: c7:f9:9c:4f:b7:52:d7:48:6f:a5:99:ff:8e:cb:d3:92:f8:4e: 04:3b:5e:de:c4:1d:2e:26:90:fc:86:7d:94:b0:ad:9f:5c:1a: d2:0f:e9:e1:f2:47:a0:4b:ba:d2:61:c3:06:05:7a:72:4c:d9: 48:ed:ba:b4:fa:d4:66:91:ea:31:8b:ff:4a:e9:d9:ef:89:6e: 03:11:47:6b:37:0e:9a:14:c6:28:13:4b:c6:ed:25:ae:8e:b6: de:ca:c5:5a:42:d2:6c:eb:a4:f2:92:1d:06:41:1d:51:67:b6: b1:2c:2a:66:e7:91:4b:a4:59:8d:e4:46:4c:45:7f:3c:3f:14: b1:9d:fb:7c:45:0e:8b:54:7b:fe:36:be:2b:96:b6:94:58:7c: ac:c0:9e:ac:db:e4:ed:0c:30:0c:82:cf:b7:70:16:b8:44:a8: 78:ca:60:bf:54:6d:09:db:d6:3c:66:30:8f:02:68:d8:75:01: 13:4b:5b:24:04:51:81:c5:0e:07:8a:bc:ae:dc:1d:cf:16:b1: 3a:95:0b:df -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUCRom34YnqnVJL9e7VBI7/M7kCN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjAyMjUxMjM1NDRaFw0yNzAyMjQxMjQwNDRaMDMxMTAvBgNV BAMTKDZFNDFCQkE2ODY0ODU1M0RDMzQ3OEE0M0RFMTlCOUFCNjlCRjREMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMTYwSydiUTsiAcQltTTybHLLE WFsevoKNhcPAlCQs8hllzvVtqT8hnpqPgzS6bJFyVdLi35F4QsB22h/LpJg6zT+j uIGGF3RKibNY3GdUq+Xlk+PzQDJzMMktGuMWQTE48szd0rzE5cHQLnMZIik7cDKv T5Ur5/M3UJv5YpaOZy6EfC97E6wjygBcn9OGpenxh8gZT/RQ0xbK56mSf8bz5EeI lzBwY3OShJqHYz9upz6ynffLhWC/+rHE/Mb2Uet2BhQc4QVDTeXOouOl1QtfUJDj gDsDT6TUW67CqqA+cxFKdYA5nLReiGoH3aTwg0+KV6kgMWkD3QPDTwYhZKVbAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUbkG7poZIVT3DR4pD3hm5q2m/TSUwHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzM2MzIyZTMxMzQzNDJlMzMzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzYzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPpAgMA0GCSqGSIb3DQEB CwUAA4IBAQBwd3Ff7dHSSAVh1GVJVV+SD/x6wPcAobBKo0WSm4NdFf7vA0ExEflR z04m4tNy12HUuWaurPXH+ZxPt1LXSG+lmf+Oy9OS+E4EO17exB0uJpD8hn2UsK2f XBrSD+nh8kegS7rSYcMGBXpyTNlI7bq0+tRmkeoxi/9K6dnviW4DEUdrNw6aFMYo E0vG7SWujrbeysVaQtJs66Tykh0GQR1RZ7axLCpm55FLpFmN5EZMRX88PxSxnft8 RQ6LVHv+Nr4rlraUWHyswJ6s2+TtDDAMgs+3cBa4RKh4ymC/VG0J29Y8ZjCPAmjY dQETS1skBFGBxQ4Hiryu3B3PFrE6lQvf -----END CERTIFICATE-----Generated at Mon Mar 2 13:57:30 2026 by rpki-client