$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34342e302f32322d3234203d3e2037303239.roa File: 36322e3134342e34342e302f32322d3234203d3e2037303239.roa (raw, json) Hash identifier: a+r8kV76eedatO1zIPOR2rQplj0/B+Tcv61pm1rfwvw= Subject key identifier: 90:67:1F:2C:7C:D0:F2:ED:D8:CB:52:9B:C8:86:05:E8:34:A5:15:DD Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 7F7AEDA3B019373EE8AFF735E9E3DFDF91B384BA Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34342e302f32322d3234203d3e2037303239.roa Signing time: Wed 08 Apr 2026 19:11:45 +0000 ROA not before: Wed 08 Apr 2026 19:06:45 +0000 ROA not after: Wed 07 Apr 2027 19:11:45 +0000 asID: 7029 IP address blocks: 62.144.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 16:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:7a:ed:a3:b0:19:37:3e:e8:af:f7:35:e9:e3:df:df:91:b3:84:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Apr 8 19:06:45 2026 GMT Not After : Apr 7 19:11:45 2027 GMT Subject: CN=90671F2C7CD0F2EDD8CB529BC88605E834A515DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:0e:bb:fb:6d:f4:b3:4b:3c:67:5d:b7:d0: e6:b3:cd:67:64:cc:c8:74:b8:97:79:ee:b9:45:db: 8a:01:cf:b9:a1:a0:1a:0a:35:93:0f:5d:30:0c:f2: a2:e1:48:fb:bb:ed:9a:e1:20:1d:38:d6:b1:f5:85: 9c:a5:c7:2f:59:19:36:32:a1:bf:a5:24:b6:f7:7f: 8f:01:85:fd:40:5a:28:40:48:1c:af:6a:bb:66:24: 07:76:7f:50:9b:d3:e2:af:e8:bb:ea:c4:62:2d:46: 61:59:9b:76:0b:bf:12:94:ee:c9:a3:b7:4c:e3:12: b4:6f:da:e0:76:e5:3a:43:34:a6:ed:71:1a:2c:99: d4:0e:e0:9e:e3:8b:ac:6e:2c:96:00:d5:e8:dd:3f: 08:4f:34:88:b4:42:0e:21:7a:4f:44:3f:c3:f5:66: 93:6b:62:cb:5f:a3:46:c0:76:67:53:d9:7f:35:f0: 5e:d4:5a:90:6c:3d:de:c4:b2:91:82:7f:3b:ac:d4: 4f:69:82:6e:81:76:1c:30:b5:5d:18:80:21:8b:1c: ea:6f:c2:b4:6e:c3:f9:c0:62:cb:5f:a5:e7:07:db: 65:6e:66:41:bb:74:d4:a6:b8:b3:68:c7:f7:f5:ac: 41:0a:ef:76:22:1a:37:47:99:32:1e:05:81:76:94: 24:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:67:1F:2C:7C:D0:F2:ED:D8:CB:52:9B:C8:86:05:E8:34:A5:15:DD X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e34342e302f32322d3234203d3e2037303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.144.44.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:ff:a8:5a:dd:94:8b:e3:65:86:f9:7a:91:7e:7f:b6:9d:a2: ce:c9:ee:fd:fd:47:ae:a7:b8:2a:f1:2f:ec:fd:23:56:4e:2e: ff:94:7b:61:0d:4f:66:f5:7d:26:0e:f9:e8:ec:c0:44:d1:5d: 50:c4:44:a6:b4:73:4f:35:cc:d0:f8:24:92:c4:ea:1a:5b:d4: e9:80:14:bc:6b:54:7b:b0:9e:7a:24:a8:5e:cd:91:f7:1d:7b: f6:ae:7c:6f:02:e0:1e:c1:67:de:64:67:6d:83:f1:79:70:52: 50:09:f1:53:17:98:fe:59:7e:c7:a0:d2:85:d0:86:4f:7a:da: 31:61:18:64:db:a7:e1:42:ad:2c:11:d6:ea:09:0c:95:54:ac: a4:0c:45:0d:3f:76:26:fc:6f:fe:22:4b:45:d9:49:7e:e4:64: 2d:fe:49:df:93:b6:23:6a:45:72:58:72:07:cb:11:53:ff:f0: 48:ab:da:8e:3f:36:48:22:39:de:47:89:fa:76:88:90:74:50: 80:a3:2a:3e:fc:4b:23:d1:12:13:68:8f:02:f9:f4:a4:3a:2b: 45:f3:32:7b:88:41:a6:2d:ec:56:9e:38:a2:fd:5e:74:b3:99: 99:b6:62:fe:fe:04:cb:10:d5:4f:66:3d:87:76:37:1e:24:b8: a9:c9:3f:60 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUf3rto7AZNz7or/c16ePf35GzhLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjA0MDgxOTA2NDVaFw0yNzA0MDcxOTExNDVaMDMxMTAvBgNV BAMTKDkwNjcxRjJDN0NEMEYyRUREOENCNTI5QkM4ODYwNUU4MzRBNTE1REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Xw67+230s0s8Z1230OazzWdk zMh0uJd57rlF24oBz7mhoBoKNZMPXTAM8qLhSPu77ZrhIB041rH1hZylxy9ZGTYy ob+lJLb3f48Bhf1AWihASByvartmJAd2f1Cb0+Kv6LvqxGItRmFZm3YLvxKU7smj t0zjErRv2uB25TpDNKbtcRosmdQO4J7ji6xuLJYA1ejdPwhPNIi0Qg4hek9EP8P1 ZpNrYstfo0bAdmdT2X818F7UWpBsPd7EspGCfzus1E9pgm6BdhwwtV0YgCGLHOpv wrRuw/nAYstfpecH22VuZkG7dNSmuLNox/f1rEEK73YiGjdHmTIeBYF2lCQhAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUkGcfLHzQ8u3Yy1KbyIYF6DSlFd0wHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzM2MzIyZTMxMzQzNDJlMzQzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM3MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPpAsMA0GCSqGSIb3DQEB CwUAA4IBAQA6/6ha3ZSL42WG+XqRfn+2naLOye79/Ueup7gq8S/s/SNWTi7/lHth DU9m9X0mDvno7MBE0V1QxESmtHNPNczQ+CSSxOoaW9TpgBS8a1R7sJ56JKhezZH3 HXv2rnxvAuAewWfeZGdtg/F5cFJQCfFTF5j+WX7HoNKF0IZPetoxYRhk26fhQq0s EdbqCQyVVKykDEUNP3Ym/G/+IktF2Ul+5GQt/knfk7YjakVyWHIHyxFT//BIq9qO PzZIIjneR4n6doiQdFCAoyo+/Esj0RITaI8C+fSkOitF8zJ7iEGmLexWnjii/V50 s5mZtmL+/gTLENVPZj2HdjceJLipyT9g -----END CERTIFICATE-----Generated at Fri Apr 17 21:12:33 2026 by rpki-client