$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34342e302f32322d3234203d3e2035363530.roa File: 36322e3134342e34342e302f32322d3234203d3e2035363530.roa (raw, json) Hash identifier: mNaREpihdByEBOC7IwgH68cPjk9QyFi+yVOyRWNb0+o= Subject key identifier: D0:AD:6D:5F:B3:04:59:AF:59:EA:DB:79:7D:9D:E3:09:9E:F1:4C:D3 Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 4BEB08249A16ACDCE6F7B85A7D6C0D315BE42D47 Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34342e302f32322d3234203d3e2035363530.roa Signing time: Wed 25 Feb 2026 12:40:45 +0000 ROA not before: Wed 25 Feb 2026 12:35:45 +0000 ROA not after: Wed 24 Feb 2027 12:40:45 +0000 asID: 5650 IP address blocks: 62.144.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:eb:08:24:9a:16:ac:dc:e6:f7:b8:5a:7d:6c:0d:31:5b:e4:2d:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Feb 25 12:35:45 2026 GMT Not After : Feb 24 12:40:45 2027 GMT Subject: CN=D0AD6D5FB30459AF59EADB797D9DE3099EF14CD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d9:7b:2b:e2:3f:7f:88:07:09:92:52:5c:16: 03:cb:d2:a0:e6:8d:c4:2e:8b:71:22:ab:5c:b4:d3: 2c:c2:c4:9d:41:14:bb:53:24:0b:9b:fa:8d:d0:42: 80:34:99:8d:53:88:9c:89:86:d4:6e:be:2c:15:ed: d2:b2:f3:1b:b4:6c:15:5a:05:f7:a3:ab:f8:4b:8d: 71:c0:f1:b8:c2:08:90:a2:35:94:fa:0c:73:7e:24: e7:5e:fd:9e:e5:6e:21:8b:fe:0f:a5:bb:54:63:44: e5:75:c7:20:84:5d:41:85:41:70:0a:6f:fc:2a:ab: 6f:4b:c5:54:4c:05:c4:90:6f:0b:60:ad:8e:5e:9a: fd:2c:3f:e9:8a:53:20:11:42:68:de:94:89:30:fb: df:22:68:00:c7:b0:bd:d6:82:76:df:60:76:c4:30: a4:ab:bb:ee:16:85:bf:0d:9a:a8:45:59:49:3a:31: c4:a0:33:c9:b5:4f:b9:cb:b9:08:14:ed:dd:d4:ff: 44:fa:95:d6:ea:56:aa:f6:f9:c1:e8:7a:a6:06:77: be:2a:3a:e0:aa:f1:94:b1:ac:a2:ba:56:5b:42:7e: 6e:40:ea:b1:29:84:4c:40:19:b7:83:74:4e:27:26: ce:6e:7d:fb:aa:e3:fc:03:1e:d8:db:0a:18:b2:a8: f9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AD:6D:5F:B3:04:59:AF:59:EA:DB:79:7D:9D:E3:09:9E:F1:4C:D3 X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34342e302f32322d3234203d3e2035363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.144.44.0/22 Signature Algorithm: sha256WithRSAEncryption 95:26:c1:6c:ce:c3:e7:96:22:7f:b2:2f:a3:0a:c9:cb:06:48: c8:ce:6c:63:74:9e:11:40:2b:c9:89:0f:9d:5e:d3:3a:3b:d3: 0c:b8:06:32:c9:ed:3d:e1:c0:29:9f:94:83:ee:21:82:47:84: d0:f1:9f:13:55:06:1b:3a:f9:26:7e:cd:c4:00:44:2b:de:88: 8e:31:7b:e2:52:08:0e:da:6a:00:56:30:8d:f6:86:75:27:78: 22:ea:94:89:ea:3b:47:5e:0a:31:81:71:2e:3a:88:37:10:fe: 0c:cb:15:e2:53:e6:33:c4:71:d4:e8:e0:b6:51:c6:1f:fe:59: 74:1d:4c:3f:5a:c2:46:3d:3b:b0:da:e1:f3:29:e1:44:55:fa: 88:6d:32:f0:93:e0:7c:6b:50:45:ae:82:5b:bc:3c:8c:cc:72: fd:9a:3a:e4:14:fe:92:b7:b8:d4:a2:ec:73:22:e5:59:30:3c: 82:5e:22:b5:af:a0:8f:db:05:0e:83:a5:a3:08:e4:c1:29:51: 3f:b7:29:90:25:54:cb:ee:c2:dd:52:7e:35:f1:66:73:f5:42: fd:9c:d5:f7:f7:ed:c4:f4:c8:14:be:3b:54:d5:1a:1c:0b:c6: 3b:51:91:b3:59:31:7b:bc:b0:06:1d:5b:26:52:c8:87:b9:7e: c3:c6:29:29 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUS+sIJJoWrNzm97hafWwNMVvkLUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjAyMjUxMjM1NDVaFw0yNzAyMjQxMjQwNDVaMDMxMTAvBgNV BAMTKEQwQUQ2RDVGQjMwNDU5QUY1OUVBREI3OTdEOURFMzA5OUVGMTRDRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW2Xsr4j9/iAcJklJcFgPL0qDm jcQui3Eiq1y00yzCxJ1BFLtTJAub+o3QQoA0mY1TiJyJhtRuviwV7dKy8xu0bBVa Bfejq/hLjXHA8bjCCJCiNZT6DHN+JOde/Z7lbiGL/g+lu1RjROV1xyCEXUGFQXAK b/wqq29LxVRMBcSQbwtgrY5emv0sP+mKUyARQmjelIkw+98iaADHsL3WgnbfYHbE MKSru+4Whb8NmqhFWUk6McSgM8m1T7nLuQgU7d3U/0T6ldbqVqr2+cHoeqYGd74q OuCq8ZSxrKK6VltCfm5A6rEphExAGbeDdE4nJs5uffuq4/wDHtjbChiyqPmZAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU0K1tX7MEWa9Z6tt5fZ3jCZ7xTNMwHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzM2MzIyZTMxMzQzNDJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzYzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPpAsMA0GCSqGSIb3DQEB CwUAA4IBAQCVJsFszsPnliJ/si+jCsnLBkjIzmxjdJ4RQCvJiQ+dXtM6O9MMuAYy ye094cApn5SD7iGCR4TQ8Z8TVQYbOvkmfs3EAEQr3oiOMXviUggO2moAVjCN9oZ1 J3gi6pSJ6jtHXgoxgXEuOog3EP4MyxXiU+YzxHHU6OC2UcYf/ll0HUw/WsJGPTuw 2uHzKeFEVfqIbTLwk+B8a1BFroJbvDyMzHL9mjrkFP6St7jUouxzIuVZMDyCXiK1 r6CP2wUOg6WjCOTBKVE/tymQJVTL7sLdUn418WZz9UL9nNX39+3E9MgUvjtU1Roc C8Y7UZGzWTF7vLAGHVsmUsiHuX7Dxikp -----END CERTIFICATE-----Generated at Mon Mar 2 11:03:51 2026 by rpki-client