$ rpki-client -vvf r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e35322e302f32342d3234203d3e2037303239.roa File: 36322e3134342e35322e302f32342d3234203d3e2037303239.roa (raw, json) Hash identifier: C34NyeHTEOK/yFp9FkFPQLEyFw6UNMcF7Ac5zrTzRX8= Subject key identifier: 8E:B9:CD:EA:32:9E:E6:6B:E7:66:E2:D1:DF:30:13:01:23:B1:F4:D8 Certificate issuer: /CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Certificate serial: 2690540970DD189797294CE8DBF8D3E0A77C3339 Authority key identifier: B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e35322e302f32342d3234203d3e2037303239.roa Signing time: Wed 25 Feb 2026 12:40:47 +0000 ROA not before: Wed 25 Feb 2026 12:35:47 +0000 ROA not after: Wed 24 Feb 2027 12:40:47 +0000 asID: 7029 IP address blocks: 62.144.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/D0A516B50426202A424F0EBFCB7D2BD4F744F964.mft rsync://rpki.ripe.net/repository/DEFAULT/0KUWtQQmICpCTw6_y30r1PdE-WQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:90:54:09:70:dd:18:97:97:29:4c:e8:db:f8:d3:e0:a7:7c:33:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5 Validity Not Before: Feb 25 12:35:47 2026 GMT Not After : Feb 24 12:40:47 2027 GMT Subject: CN=8EB9CDEA329EE66BE766E2D1DF30130123B1F4D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c5:d4:db:6a:3b:ab:b2:16:4d:7c:28:ae:bb: c7:6c:0b:12:fe:3d:99:10:3e:54:8f:0e:db:69:fb: fa:4b:81:fe:ea:7d:07:af:5f:cf:e1:e7:d7:fe:85: 1a:69:98:40:d9:ca:cd:c8:15:95:63:17:14:fb:8e: e0:04:4d:b4:3d:9b:d5:57:d5:ee:11:66:bb:ca:3f: ab:60:46:f1:6a:1d:8d:d6:8f:4c:4e:4e:b2:79:3e: b8:75:68:60:be:59:52:d1:5c:42:bb:91:e9:a9:57: e7:f3:ef:92:be:ab:75:a3:ef:21:62:21:04:86:5a: 34:55:61:e6:f9:01:a9:c5:57:20:6a:b0:f3:b8:78: 7a:48:76:9f:b4:a8:2a:08:10:0b:c3:d5:65:69:e4: d6:94:78:a1:68:ab:02:f4:72:b6:be:94:c5:c4:b9: 27:37:dd:3d:6e:b8:d2:75:84:68:93:b2:54:7e:26: b4:1c:5a:76:18:13:de:ae:b8:20:63:c1:48:7e:51: 97:2b:d6:12:80:52:6d:2d:e4:2a:06:df:12:0e:dc: dd:cf:4b:3f:29:08:bd:b3:69:b4:f4:c3:d7:3d:9a: 5b:3c:79:98:3f:4c:27:80:ac:e2:e9:66:b5:cb:5c: cf:8a:2a:d9:c6:ae:e2:4c:99:aa:98:92:81:c3:cf: 30:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B9:CD:EA:32:9E:E6:6B:E7:66:E2:D1:DF:30:13:01:23:B1:F4:D8 X509v3 Authority Key Identifier: keyid:B3:54:D3:28:CB:BF:D1:EF:3C:D2:92:68:A2:3B:0F:CC:60:E3:A2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/0/B354D328CBBFD1EF3CD29268A23B0FCC60E3A2C5.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a0375b39-f949-4cb5-b519-f94008b1654c-0/0/36322e3134342e35322e302f32342d3234203d3e2037303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.144.52.0/24 Signature Algorithm: sha256WithRSAEncryption 87:1f:1c:3d:f7:e8:1a:dd:82:31:57:52:eb:c7:36:98:02:ab: fb:b7:56:5c:4f:57:22:6c:9d:af:fd:51:38:62:95:da:74:bc: 67:d2:ad:8e:99:0e:ef:d8:50:03:4c:bf:19:03:f3:19:2f:7b: 81:2b:27:45:58:32:07:03:d5:d6:ee:3e:77:a4:74:b2:76:6f: 1d:7e:7f:68:af:ce:0e:ff:ec:29:05:96:cd:be:bb:1a:03:1f: ba:97:85:af:f7:d0:51:05:9c:94:8b:95:90:70:be:66:47:60: 62:5b:ac:d7:f2:3a:14:7f:3b:ff:a4:49:69:a6:69:05:78:5e: 24:90:66:86:85:6f:f8:97:f9:3d:71:b0:ba:3f:9a:8a:5d:f4: 9e:4e:e2:d5:5e:8e:db:d3:14:44:da:cf:0a:8f:ad:90:77:8d: d7:6f:80:a2:2f:45:5a:11:81:40:74:30:89:a8:e7:59:7e:22: 80:98:8e:24:3e:0d:c6:2c:1e:12:bf:cd:17:6a:b0:23:e5:4d: 83:b4:21:17:34:12:99:83:22:fa:69:1a:94:5a:27:ba:ff:83: 22:c6:cc:32:e3:dc:52:9f:5d:25:a6:51:aa:65:d5:3d:36:9d: f0:b9:8b:3e:f1:4c:94:13:cf:4c:32:2d:82:91:1b:bc:8d:7a: 0d:e0:70:ed -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUJpBUCXDdGJeXKUzo2/jT4Kd8MzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM1NEQzMjhDQkJGRDFFRjNDRDI5MjY4QTIzQjBGQ0M2 MEUzQTJDNTAeFw0yNjAyMjUxMjM1NDdaFw0yNzAyMjQxMjQwNDdaMDMxMTAvBgNV BAMTKDhFQjlDREVBMzI5RUU2NkJFNzY2RTJEMURGMzAxMzAxMjNCMUY0RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCexdTbajurshZNfCiuu8dsCxL+ PZkQPlSPDttp+/pLgf7qfQevX8/h59f+hRppmEDZys3IFZVjFxT7juAETbQ9m9VX 1e4RZrvKP6tgRvFqHY3Wj0xOTrJ5Prh1aGC+WVLRXEK7kempV+fz75K+q3Wj7yFi IQSGWjRVYeb5AanFVyBqsPO4eHpIdp+0qCoIEAvD1WVp5NaUeKFoqwL0cra+lMXE uSc33T1uuNJ1hGiTslR+JrQcWnYYE96uuCBjwUh+UZcr1hKAUm0t5CoG3xIO3N3P Sz8pCL2zabT0w9c9mls8eZg/TCeArOLpZrXLXM+KKtnGruJMmaqYkoHDzzC9AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUjrnN6jKe5mvnZuLR3zATASOx9NgwHwYDVR0j BBgwFoAUs1TTKMu/0e880pJoojsPzGDjosUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTAzNzViMzktZjk0OS00Y2I1LWI1MTktZjk0MDA4YjE2NTRjLTAvMC9CMzU0RDMy OENCQkZEMUVGM0NEMjkyNjhBMjNCMEZDQzYwRTNBMkM1LmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8wL0IzNTREMzI4Q0JCRkQxRUYzQ0QyOTI2OEEyM0IwRkNDNjBFM0Ey QzUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hMDM3NWIzOS1mOTQ5LTRjYjUtYjUx OS1mOTQwMDhiMTY1NGMtMC8wLzM2MzIyZTMxMzQzNDJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM3MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPpA0MA0GCSqGSIb3DQEB CwUAA4IBAQCHHxw99+ga3YIxV1LrxzaYAqv7t1ZcT1cibJ2v/VE4YpXadLxn0q2O mQ7v2FADTL8ZA/MZL3uBKydFWDIHA9XW7j53pHSydm8dfn9or84O/+wpBZbNvrsa Ax+6l4Wv99BRBZyUi5WQcL5mR2BiW6zX8joUfzv/pElppmkFeF4kkGaGhW/4l/k9 cbC6P5qKXfSeTuLVXo7b0xRE2s8Kj62Qd43Xb4CiL0VaEYFAdDCJqOdZfiKAmI4k Pg3GLB4Sv80XarAj5U2DtCEXNBKZgyL6aRqUWie6/4Mixswy49xSn10lplGqZdU9 Np3wuYs+8UyUE89MMi2CkRu8jXoN4HDt -----END CERTIFICATE-----Generated at Mon Mar 2 17:03:10 2026 by rpki-client