$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203235313938.roa File: 33372e312e3232342e302f32342d3234203d3e203235313938.roa (raw, json) Hash identifier: snt0Rz5ZhaEkCoX8i3m+y5XScLV4TQ+HpCGVGU6c4VA= Subject key identifier: 71:66:2E:78:31:85:E7:54:9A:21:5A:3D:7A:B2:1E:96:A6:F7:16:0E Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 6D0C24FC4C0B385C8997E94E43DC6B14D089AFF6 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203235313938.roa Signing time: Sat 26 Jul 2025 22:56:36 +0000 ROA not before: Sat 26 Jul 2025 22:51:36 +0000 ROA not after: Sat 25 Jul 2026 22:56:36 +0000 asID: 25198 IP address blocks: 37.1.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 10 Aug 2025 21:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:0c:24:fc:4c:0b:38:5c:89:97:e9:4e:43:dc:6b:14:d0:89:af:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 26 22:51:36 2025 GMT Not After : Jul 25 22:56:36 2026 GMT Subject: CN=71662E783185E7549A215A3D7AB21E96A6F7160E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f5:de:36:f9:04:04:de:5e:17:29:6c:79:be: 6f:72:08:06:b7:bd:4b:cb:30:58:46:d4:33:11:ff: 78:98:ea:e8:cc:8e:2e:08:ed:88:bc:77:d7:f7:0a: 0e:89:57:29:19:6c:23:4f:4a:38:a5:81:f3:31:3a: 86:6d:c7:51:0d:64:11:a3:04:38:20:29:20:a7:d2: da:99:15:9a:3a:ac:f7:2d:79:d4:d6:a4:0f:07:01: 77:80:4d:1b:20:da:27:fd:da:2a:4d:20:95:25:27: ff:37:35:6d:cb:41:5b:45:77:1a:9d:59:d0:ae:98: 85:8c:ff:f2:8e:c1:2a:25:1a:95:fa:a5:bc:95:a2: 82:33:5f:16:3b:88:13:0b:22:35:67:67:68:07:fd: c2:e8:25:dd:f2:b9:e0:be:3f:7e:3a:5a:d7:6d:53: 43:c9:cd:7e:bc:f9:65:1b:d5:01:a1:40:a2:7d:2b: e2:38:23:0f:90:f9:61:01:90:97:db:aa:24:72:e3: e0:0a:85:d8:c0:16:08:73:f7:7c:c9:82:46:0b:4e: 73:67:ff:95:3e:04:a2:25:a5:c8:5a:26:99:9b:dd: 2a:7d:93:4d:65:f3:48:87:29:85:49:19:00:2c:06: 0a:f4:c3:16:c8:09:51:59:5b:bd:4f:05:92:01:55: 19:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:66:2E:78:31:85:E7:54:9A:21:5A:3D:7A:B2:1E:96:A6:F7:16:0E X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203235313938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.224.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:10:6b:5e:22:38:b7:ed:be:35:32:36:5d:fe:10:7d:68:b5: b2:7e:ba:17:d6:b1:00:88:f7:92:39:03:ec:37:a7:bf:80:39: bf:b2:00:ba:ab:0a:74:b2:1b:ba:d3:95:3e:c6:8b:48:77:bb: b3:5b:0a:a6:da:04:3d:32:2e:f7:d7:e1:4c:b9:29:b7:40:05: bd:37:c0:76:9c:e6:df:ac:0b:8f:81:3d:b2:84:39:4c:8c:c3: 54:1f:f7:1a:65:ba:75:45:fb:23:f7:1f:d2:1d:c1:51:a3:57: ed:56:c1:05:b0:60:fa:b5:d5:35:2c:c6:1c:5b:3b:b0:73:e7: f9:2c:3b:6e:b5:c3:9d:b1:a6:0f:61:c5:44:c1:57:a7:a6:ca: 51:f1:b1:df:79:23:15:13:a8:0e:cd:4c:ce:c3:e2:c6:e8:13: 36:d0:8e:83:e4:c7:87:97:ed:cd:01:5f:fb:2a:c0:34:5b:26: 9b:42:16:f0:3d:96:a2:11:55:a8:37:f7:04:f3:19:09:f4:bc: 9b:3c:16:51:d2:c6:85:17:38:d6:cf:22:37:f2:51:ac:fa:7f: a5:66:80:0c:7b:ce:10:0b:de:b7:40:7d:0a:68:3a:95:30:ac: 05:7c:dc:fd:3c:21:24:fb:29:71:17:2f:92:ff:36:45:89:7a: a1:f6:38:06 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUbQwk/EwLOFyJl+lOQ9xrFNCJr/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MjYyMjUxMzZaFw0yNjA3MjUyMjU2MzZaMDMxMTAvBgNV BAMTKDcxNjYyRTc4MzE4NUU3NTQ5QTIxNUEzRDdBQjIxRTk2QTZGNzE2MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo9d42+QQE3l4XKWx5vm9yCAa3 vUvLMFhG1DMR/3iY6ujMji4I7Yi8d9f3Cg6JVykZbCNPSjilgfMxOoZtx1ENZBGj BDggKSCn0tqZFZo6rPctedTWpA8HAXeATRsg2if92ipNIJUlJ/83NW3LQVtFdxqd WdCumIWM//KOwSolGpX6pbyVooIzXxY7iBMLIjVnZ2gH/cLoJd3yueC+P346Wtdt U0PJzX68+WUb1QGhQKJ9K+I4Iw+Q+WEBkJfbqiRy4+AKhdjAFghz93zJgkYLTnNn /5U+BKIlpchaJpmb3Sp9k01l80iHKYVJGQAsBgr0wxbICVFZW71PBZIBVRlRAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUcWYueDGF51SaIVo9erIelqb3Fg4wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjM1MzEzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHgMA0GCSqGSIb3DQEB CwUAA4IBAQCOEGteIji37b41MjZd/hB9aLWyfroX1rEAiPeSOQPsN6e/gDm/sgC6 qwp0shu605U+xotId7uzWwqm2gQ9Mi731+FMuSm3QAW9N8B2nObfrAuPgT2yhDlM jMNUH/caZbp1Rfsj9x/SHcFRo1ftVsEFsGD6tdU1LMYcWzuwc+f5LDtutcOdsaYP YcVEwVenpspR8bHfeSMVE6gOzUzOw+LG6BM20I6D5MeHl+3NAV/7KsA0WyabQhbw PZaiEVWoN/cE8xkJ9LybPBZR0saFFzjWzyI38lGs+n+lZoAMe84QC963QH0KaDqV MKwFfNz9PCEk+ylxFy+S/zZFiXqh9jgG -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:35 2025 by rpki-client