$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34302e302f32322d3234203d3e2035363530.roa File: 36322e3134342e34302e302f32322d3234203d3e2035363530.roa (raw, json) Hash identifier: nL/6j332Iz30gdx7HCVqvl21IzY7yg7U8wTZ9mrY5Hk= Subject key identifier: 36:BD:B7:A9:75:E4:A8:03:77:A1:6E:26:55:48:D3:F5:EA:40:2A:EB Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 2286E9FDE1A44C4082189B47415D2810169A24F3 Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34302e302f32322d3234203d3e2035363530.roa Signing time: Wed 25 Feb 2026 12:40:45 +0000 ROA not before: Wed 25 Feb 2026 12:35:45 +0000 ROA not after: Wed 24 Feb 2027 12:40:45 +0000 asID: 5650 IP address blocks: 62.144.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 02:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:86:e9:fd:e1:a4:4c:40:82:18:9b:47:41:5d:28:10:16:9a:24:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Feb 25 12:35:45 2026 GMT Not After : Feb 24 12:40:45 2027 GMT Subject: CN=36BDB7A975E4A80377A16E265548D3F5EA402AEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6c:ad:d7:eb:57:03:b4:5d:24:0f:f7:8f:35: ab:e8:17:29:44:18:a2:d5:95:81:71:c4:95:ad:6a: 75:db:fc:29:52:40:bd:7f:4c:26:d7:e1:5f:9d:ad: 3c:23:90:f9:a7:31:1f:6b:0b:69:83:e4:20:63:42: db:d6:10:4d:2e:60:dd:ff:58:4a:6a:10:ae:29:25: d7:3f:65:0b:fb:a4:c4:cf:cc:e2:65:10:4e:9d:99: 5d:ad:1b:40:78:94:7d:17:da:fa:d7:f5:34:14:ff: 1a:e4:7d:99:a3:65:42:d5:73:28:91:26:71:c6:d8: 41:08:77:00:af:d2:98:9a:e7:93:c5:0f:7d:45:b9: e9:1b:f3:8e:04:13:81:0d:d7:61:da:6c:4d:ad:b4: 6b:d3:0f:95:0e:74:f5:49:2e:0c:78:7c:f2:05:0c: 30:d1:d4:2f:9a:12:80:62:04:84:05:9f:43:32:cd: 49:1c:2b:fa:ec:24:e9:9f:c8:24:34:f8:be:ff:7b: 01:ed:57:52:1b:c8:b7:8c:81:ad:e4:4b:e9:f2:1b: 7b:9a:44:ef:2c:3c:87:8d:d7:01:b5:d8:3a:44:46: ba:bd:43:cd:d7:3f:fa:7b:d6:51:28:b1:27:82:54: 41:86:cc:a0:38:57:e0:73:ae:b7:32:db:70:7b:ad: 3a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BD:B7:A9:75:E4:A8:03:77:A1:6E:26:55:48:D3:F5:EA:40:2A:EB X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34302e302f32322d3234203d3e2035363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.144.40.0/22 Signature Algorithm: sha256WithRSAEncryption a9:31:f8:3b:09:43:e3:d2:0f:7d:d3:bb:b6:4f:49:61:2b:d1: 94:4a:62:ea:9a:d6:9e:30:dd:ef:cb:98:55:d9:63:99:db:b4: 87:72:a8:91:f4:8f:ec:94:e1:62:90:2b:ac:29:fe:de:53:b9: b8:85:3c:b8:c2:9b:72:77:46:18:3c:47:55:5d:ec:a6:d6:9d: e3:e1:54:76:69:b5:98:04:72:1d:7c:70:b5:55:1a:cf:14:af: ff:7d:e5:64:5a:b7:e1:f3:66:06:7c:85:6e:a7:c7:2e:b7:fa: 3b:c9:bf:34:8b:d6:20:19:47:94:c5:d3:0d:73:29:d0:e8:e2: 13:2f:07:ef:6e:ee:e5:46:33:78:ef:e4:2e:58:01:7a:c2:df: bb:c0:7a:f6:94:87:7b:11:5a:2a:20:12:4c:af:22:25:75:3e: 94:5a:0b:49:1e:67:0a:ba:20:6d:78:a8:51:09:66:3e:6f:01: 55:08:a1:77:0d:19:b1:4c:58:eb:0c:fc:fb:d5:d1:24:2d:5e: df:c5:6d:b1:70:5f:04:7c:4a:cf:51:11:40:a8:28:9e:50:13: 24:a1:26:de:c3:4f:30:57:2f:e7:81:80:91:8b:42:b3:7c:42: dc:5c:94:45:2c:3b:16:a5:5d:0d:eb:e0:18:d0:c0:7f:9b:47: 6b:14:74:9b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUIobp/eGkTECCGJtHQV0oEBaaJPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjAyMjUxMjM1NDVaFw0yNzAyMjQxMjQwNDVaMDMxMTAvBgNV BAMTKDM2QkRCN0E5NzVFNEE4MDM3N0ExNkUyNjU1NDhEM0Y1RUE0MDJBRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRbK3X61cDtF0kD/ePNavoFylE GKLVlYFxxJWtanXb/ClSQL1/TCbX4V+drTwjkPmnMR9rC2mD5CBjQtvWEE0uYN3/ WEpqEK4pJdc/ZQv7pMTPzOJlEE6dmV2tG0B4lH0X2vrX9TQU/xrkfZmjZULVcyiR JnHG2EEIdwCv0pia55PFD31Fuekb844EE4EN12HabE2ttGvTD5UOdPVJLgx4fPIF DDDR1C+aEoBiBIQFn0MyzUkcK/rsJOmfyCQ0+L7/ewHtV1IbyLeMga3kS+nyG3ua RO8sPIeN1wG12DpERrq9Q83XP/p71lEosSeCVEGGzKA4V+Bzrrcy23B7rTobAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUNr23qXXkqAN3oW4mVUjT9epAKuswHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzM2MzIyZTMxMzQzNDJlMzQzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzYzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPpAoMA0GCSqGSIb3DQEB CwUAA4IBAQCpMfg7CUPj0g9907u2T0lhK9GUSmLqmtaeMN3vy5hV2WOZ27SHcqiR 9I/slOFikCusKf7eU7m4hTy4wptyd0YYPEdVXeym1p3j4VR2abWYBHIdfHC1VRrP FK//feVkWrfh82YGfIVup8cut/o7yb80i9YgGUeUxdMNcynQ6OITLwfvbu7lRjN4 7+QuWAF6wt+7wHr2lId7EVoqIBJMryIldT6UWgtJHmcKuiBteKhRCWY+bwFVCKF3 DRmxTFjrDPz71dEkLV7fxW2xcF8EfErPURFAqCieUBMkoSbew08wVy/ngYCRi0Kz fELcXJRFLDsWpV0N6+AY0MB/m0drFHSb -----END CERTIFICATE-----Generated at Mon Mar 2 17:36:41 2026 by rpki-client