$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232352e302f32342d3234203d3e20313533393933.roa File: 33372e312e3232352e302f32342d3234203d3e20313533393933.roa (raw, json) Hash identifier: Nax7KdrGMokLA/FP6iQWCEmWwGt6CQBziAebzZEuDLQ= Subject key identifier: 69:A6:B5:48:90:2B:9E:E7:E0:A8:02:AC:09:72:F1:A4:63:65:27:25 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 194E6B1BEA58FC2603AAF416B11DAF3250D92572 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232352e302f32342d3234203d3e20313533393933.roa Signing time: Mon 28 Jul 2025 08:33:55 +0000 ROA not before: Mon 28 Jul 2025 08:28:55 +0000 ROA not after: Mon 27 Jul 2026 08:33:55 +0000 asID: 153993 IP address blocks: 37.1.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 15:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:4e:6b:1b:ea:58:fc:26:03:aa:f4:16:b1:1d:af:32:50:d9:25:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 28 08:28:55 2025 GMT Not After : Jul 27 08:33:55 2026 GMT Subject: CN=69A6B548902B9EE7E0A802AC0972F1A463652725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:3f:ff:b7:0a:f2:09:6e:14:a8:0a:e4:de: f1:46:81:ec:8c:dc:0d:12:e7:2c:fb:0f:9a:ca:ab: 12:de:05:48:50:32:4b:02:28:13:30:28:a8:af:ed: 38:2e:cf:ca:76:9c:02:51:1f:64:dd:7e:59:9d:9a: 95:73:f4:10:09:2a:0e:c5:f9:b4:af:cc:25:aa:c0: 6e:f6:ab:f1:0f:b7:d2:f8:88:30:c6:73:73:e5:f2: 4c:98:b4:1e:1e:1c:07:d4:1b:59:6f:e4:7b:18:27: 9e:c6:47:6e:ac:c9:96:ac:a3:99:67:98:0e:02:d1: cf:0a:89:ec:ae:6c:b7:88:d3:6c:f7:da:22:15:26: c5:89:31:43:66:45:b4:5f:0d:42:b8:f0:4c:0b:98: 5d:13:ef:ba:7e:07:ef:c2:41:3f:d5:95:20:65:ed: 29:fb:34:9d:ea:b7:e2:9e:6a:2f:85:44:4e:10:4b: db:d4:de:24:0d:33:11:1c:34:17:29:1f:95:d7:b5: 6d:93:27:c9:f4:e2:dc:14:d1:d3:44:8f:1c:21:34: c3:63:f3:73:44:83:70:c0:22:0d:0e:2c:b9:cd:79: 59:93:77:a0:d6:59:e1:03:e2:5c:4c:02:14:91:51: 85:84:a8:48:83:22:53:0e:d0:41:79:14:ef:03:b3: 94:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A6:B5:48:90:2B:9E:E7:E0:A8:02:AC:09:72:F1:A4:63:65:27:25 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232352e302f32342d3234203d3e20313533393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.225.0/24 Signature Algorithm: sha256WithRSAEncryption 04:fd:5f:fd:69:02:50:54:b0:28:67:30:57:39:63:c3:ec:02: 93:30:97:a2:6a:56:4e:09:88:e7:26:ee:87:2e:6e:ea:cf:d5: 45:c5:0a:6e:44:7c:d6:ba:1c:bc:8e:65:25:9d:bf:cf:e1:4e: 5a:7d:5c:bc:98:22:63:54:2e:a6:e1:db:da:a1:f3:37:69:e6: 5a:cc:aa:45:00:e6:9f:cd:91:d2:05:dd:8b:fc:4f:ef:9d:96: 8f:77:db:28:5a:bc:81:13:de:ea:10:a3:f2:56:b7:48:e6:8c: 5c:c5:6b:03:dc:81:2d:9d:09:e1:be:dc:f6:2e:da:61:bd:f9: ee:0c:e0:4a:b5:26:90:c2:8c:8c:71:38:66:29:56:85:41:ed: f4:7a:8b:50:7a:be:3c:6e:b6:2e:a8:8e:c1:1c:3d:16:b2:92: 69:dc:fb:b3:6a:6e:cb:7d:eb:e7:fd:6e:15:85:fb:3d:e3:b3: c2:a7:5e:65:5b:a5:71:5e:80:01:89:f0:c4:b7:fe:f2:06:33: 7b:16:89:22:ce:ed:b3:01:f8:a2:81:61:84:d0:a5:d4:1d:a9: be:d8:7d:7b:e5:dc:86:d1:fc:c5:1e:b9:c9:f9:f7:9d:7b:d7: b5:d4:3d:53:f9:a4:6d:4e:67:a8:b8:97:c2:89:d5:c5:f7:70: 17:78:52:21 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUGU5rG+pY/CYDqvQWsR2vMlDZJXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MjgwODI4NTVaFw0yNjA3MjcwODMzNTVaMDMxMTAvBgNV BAMTKDY5QTZCNTQ4OTAyQjlFRTdFMEE4MDJBQzA5NzJGMUE0NjM2NTI3MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1IT//twryCW4UqArk3vFGgeyM 3A0S5yz7D5rKqxLeBUhQMksCKBMwKKiv7Tguz8p2nAJRH2TdflmdmpVz9BAJKg7F +bSvzCWqwG72q/EPt9L4iDDGc3Pl8kyYtB4eHAfUG1lv5HsYJ57GR26syZaso5ln mA4C0c8KieyubLeI02z32iIVJsWJMUNmRbRfDUK48EwLmF0T77p+B+/CQT/VlSBl 7Sn7NJ3qt+Keai+FRE4QS9vU3iQNMxEcNBcpH5XXtW2TJ8n04twU0dNEjxwhNMNj 83NEg3DAIg0OLLnNeVmTd6DWWeED4lxMAhSRUYWEqEiDIlMO0EF5FO8Ds5QpAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUaaa1SJArnufgqAKsCXLxpGNlJyUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzUyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzMzOTM5MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAlAeEwDQYJKoZIhvcN AQELBQADggEBAAT9X/1pAlBUsChnMFc5Y8PsApMwl6JqVk4JiOcm7ocuburP1UXF Cm5EfNa6HLyOZSWdv8/hTlp9XLyYImNULqbh29qh8zdp5lrMqkUA5p/NkdIF3Yv8 T++dlo932yhavIET3uoQo/JWt0jmjFzFawPcgS2dCeG+3PYu2mG9+e4M4Eq1JpDC jIxxOGYpVoVB7fR6i1B6vjxuti6ojsEcPRaykmnc+7Nqbst96+f9bhWF+z3js8Kn XmVbpXFegAGJ8MS3/vIGM3sWiSLO7bMB+KKBYYTQpdQdqb7YfXvl3IbR/MUeucn5 951717XUPVP5pG1OZ6i4l8KJ1cX3cBd4UiE= -----END CERTIFICATE-----Generated at Wed Nov 5 07:52:11 2025 by rpki-client