$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e33362e302f32322d3234203d3e2035363530.roa File: 36322e3134342e33362e302f32322d3234203d3e2035363530.roa (raw, json) Hash identifier: wUF5uNfjsIEbDIrBBh6jcL1pMGH+sbRiV1AaSZ/dNAQ= Subject key identifier: 8C:B1:F3:02:7D:8E:F1:00:DE:97:00:91:46:8E:61:EF:9E:1B:75:50 Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 47B94B9B55A9164C3796DE44639A7EECDCDDF73B Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e33362e302f32322d3234203d3e2035363530.roa Signing time: Wed 25 Feb 2026 12:40:44 +0000 ROA not before: Wed 25 Feb 2026 12:35:44 +0000 ROA not after: Wed 24 Feb 2027 12:40:44 +0000 asID: 5650 IP address blocks: 62.144.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b9:4b:9b:55:a9:16:4c:37:96:de:44:63:9a:7e:ec:dc:dd:f7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Feb 25 12:35:44 2026 GMT Not After : Feb 24 12:40:44 2027 GMT Subject: CN=8CB1F3027D8EF100DE970091468E61EF9E1B7550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:38:39:8b:6d:21:a8:f3:a1:e4:fc:4e:8c:42: 02:e1:e6:de:86:e2:ec:d2:a9:83:70:17:c3:60:83: bd:7b:92:b2:d6:ff:ae:54:9e:e3:68:d4:64:55:56: db:d2:fe:7c:6a:f3:e4:9c:2e:9b:44:0b:2e:3d:4d: 46:c2:fb:63:7f:59:4c:02:61:3a:82:fa:6e:41:6a: 3b:85:d0:ab:38:80:37:46:19:2c:81:f2:4d:3b:69: 19:42:47:53:1e:1f:fd:7f:53:d2:d2:dc:dd:26:17: 5c:4a:ce:d5:ca:81:7a:e6:1f:13:02:d8:8a:c5:7f: 5b:45:f6:7b:21:9f:37:9c:a6:3f:0e:1f:cc:01:37: 12:af:2f:9a:a8:41:d9:cd:cd:c0:3c:b6:cd:ee:5e: dd:c2:fe:94:fd:62:b6:7b:45:44:30:0e:db:40:88: 45:1c:37:6a:cf:50:5a:2d:64:81:e6:3b:70:6a:71: 61:f2:3e:de:04:ea:0e:51:b5:3c:2d:80:2c:60:97: 88:8b:e4:20:14:3e:37:71:c7:fd:d4:17:82:3b:ee: 2e:41:19:ac:1d:9f:6d:b9:f1:80:f1:e5:e4:55:05: cd:bc:b9:ff:3c:97:4e:34:98:a0:3c:43:3c:c1:31: d2:ce:9b:4c:09:27:24:80:aa:10:9f:76:68:a2:04: e2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B1:F3:02:7D:8E:F1:00:DE:97:00:91:46:8E:61:EF:9E:1B:75:50 X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e33362e302f32322d3234203d3e2035363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.144.36.0/22 Signature Algorithm: sha256WithRSAEncryption 65:02:f2:7a:0e:19:2a:f7:54:6d:74:7a:2a:ce:15:c0:3e:9b: 2b:0f:e1:e7:86:d7:f1:51:3c:f5:68:dc:62:06:7c:71:84:99: f9:3e:20:97:db:03:85:c4:e3:22:e5:97:4e:5d:7a:b9:b7:ce: 0c:91:0e:30:49:f4:92:d3:ab:e8:e7:2f:bc:3f:5a:32:b6:30: 25:a1:d3:79:ed:4b:9a:8e:5d:0b:46:bf:4c:47:53:0f:e5:67: 8c:c5:9f:47:44:af:2e:76:ae:84:cc:52:07:67:61:16:73:ab: bd:bf:5a:86:11:85:6e:0f:1d:05:50:b2:63:76:88:9d:0b:b1: e6:32:3b:a7:b8:6b:48:bd:e8:d8:83:01:12:26:16:40:c0:82: 6c:5a:28:79:df:77:c8:9e:65:a9:72:aa:34:9b:63:2c:ea:af: 04:34:6c:29:2f:94:b7:45:bc:9e:64:d1:10:a7:79:96:aa:67: 27:7d:db:79:9b:ff:3e:ae:02:5c:2e:e8:01:79:d0:5b:b4:31: ef:49:06:5b:7f:af:4b:c3:ed:66:fe:19:1e:23:2c:db:0c:b7: e3:84:6d:e8:da:a5:81:a1:c1:ed:68:79:e6:af:5d:66:7f:70: 75:07:68:e5:55:fc:93:74:26:ee:da:42:bb:00:ef:ef:52:cd: 08:97:17:26 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUR7lLm1WpFkw3lt5EY5p+7Nzd9zswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjAyMjUxMjM1NDRaFw0yNzAyMjQxMjQwNDRaMDMxMTAvBgNV BAMTKDhDQjFGMzAyN0Q4RUYxMDBERTk3MDA5MTQ2OEU2MUVGOUUxQjc1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOODmLbSGo86Hk/E6MQgLh5t6G 4uzSqYNwF8Ngg717krLW/65UnuNo1GRVVtvS/nxq8+ScLptECy49TUbC+2N/WUwC YTqC+m5BajuF0Ks4gDdGGSyB8k07aRlCR1MeH/1/U9LS3N0mF1xKztXKgXrmHxMC 2IrFf1tF9nshnzecpj8OH8wBNxKvL5qoQdnNzcA8ts3uXt3C/pT9YrZ7RUQwDttA iEUcN2rPUFotZIHmO3BqcWHyPt4E6g5RtTwtgCxgl4iL5CAUPjdxx/3UF4I77i5B Gawdn2258YDx5eRVBc28uf88l040mKA8QzzBMdLOm0wJJySAqhCfdmiiBOK1AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUjLHzAn2O8QDelwCRRo5h754bdVAwHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzM2MzIyZTMxMzQzNDJlMzMzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzYzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPpAkMA0GCSqGSIb3DQEB CwUAA4IBAQBlAvJ6Dhkq91RtdHoqzhXAPpsrD+HnhtfxUTz1aNxiBnxxhJn5PiCX 2wOFxOMi5ZdOXXq5t84MkQ4wSfSS06vo5y+8P1oytjAlodN57Uuajl0LRr9MR1MP 5WeMxZ9HRK8udq6EzFIHZ2EWc6u9v1qGEYVuDx0FULJjdoidC7HmMjunuGtIvejY gwESJhZAwIJsWih533fInmWpcqo0m2Ms6q8ENGwpL5S3RbyeZNEQp3mWqmcnfdt5 m/8+rgJcLugBedBbtDHvSQZbf69Lw+1m/hkeIyzbDLfjhG3o2qWBocHtaHnmr11m f3B1B2jlVfyTdCbu2kK7AO/vUs0Ilxcm -----END CERTIFICATE-----Generated at Mon Mar 2 13:44:34 2026 by rpki-client