$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20323039333634.roa File: 33372e312e3232362e302f32342d3234203d3e20323039333634.roa (raw, json) Hash identifier: vVX8/w5oLxmH40sE99QqC/hXWp9k7+O5CjhV1J+PdVs= Subject key identifier: E8:82:A8:E2:C4:3A:FA:2C:C6:87:BA:50:B6:14:B5:7E:0C:D7:AE:76 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 105EBC4402E78E6BD03DEA8D9F21503323F63EC6 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20323039333634.roa Signing time: Sun 01 Jun 2025 20:06:52 +0000 ROA not before: Sun 01 Jun 2025 20:01:52 +0000 ROA not after: Sun 31 May 2026 20:06:52 +0000 asID: 209364 IP address blocks: 37.1.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 18 Jun 2025 19:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:5e:bc:44:02:e7:8e:6b:d0:3d:ea:8d:9f:21:50:33:23:f6:3e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jun 1 20:01:52 2025 GMT Not After : May 31 20:06:52 2026 GMT Subject: CN=E882A8E2C43AFA2CC687BA50B614B57E0CD7AE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:11:3e:ea:72:01:ca:87:73:d3:45:89:86: 29:f1:63:f6:e4:2e:df:a6:8a:8c:e0:be:ad:a8:c8: 65:50:a6:f6:7f:bd:1b:3e:7a:ed:97:f0:16:22:ad: fb:fe:93:b7:a7:1b:07:34:65:fc:c0:7d:fa:88:17: 2f:ee:21:9d:00:9c:fc:0e:da:e2:7c:b7:21:bc:e8: b8:56:1e:6d:fb:0d:2c:3f:7d:e7:3e:89:b5:a2:52: fa:37:18:21:a8:f5:a1:5b:e0:8d:15:09:87:ff:bd: ba:fa:8f:ec:b9:6b:cc:19:49:70:45:54:c0:86:98: 29:71:12:2b:18:db:03:06:1d:68:a3:2a:b5:0b:e5: bd:2f:1c:1d:5e:76:92:cc:04:4e:d0:8c:e8:c5:cf: 19:d1:55:13:10:54:4f:0c:d4:43:e5:84:b9:e8:d3: ef:d7:6c:09:f8:71:c7:f5:26:b6:c7:84:1c:97:ba: b2:b7:3b:5c:76:61:76:2b:78:27:ec:4d:53:3a:a8: cb:f4:15:dd:db:16:06:69:ca:cc:ae:16:d6:22:44: 6d:18:55:8e:41:69:1b:35:ef:a4:3b:9c:54:f8:b9: 9c:9f:b5:8e:fc:0c:57:7b:0c:69:55:f0:1b:17:c0: b3:aa:fd:9a:ec:96:8b:d8:bb:d6:9d:8e:81:04:8f: 4f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:82:A8:E2:C4:3A:FA:2C:C6:87:BA:50:B6:14:B5:7E:0C:D7:AE:76 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e20323039333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.226.0/24 Signature Algorithm: sha256WithRSAEncryption 49:81:34:76:c8:f1:79:42:bd:cf:1c:cb:8a:04:0c:7b:17:b4: 1a:5a:8a:34:e7:9b:46:c8:e7:a3:aa:52:2c:07:9c:31:ed:3e: 13:18:5b:6b:7d:9a:1f:fb:bc:19:92:c7:a5:04:16:94:ca:b1: 1b:5c:a6:a5:3d:1f:4c:3f:86:1c:6c:1f:e6:08:5a:a7:f3:3e: e9:9b:db:80:ea:95:38:16:b1:e9:a4:4f:51:33:3e:d1:06:09: 88:c8:42:e9:0c:65:8d:e5:8e:08:3a:5d:a6:a1:cf:e1:80:5d: 45:84:6c:38:b0:d2:ba:bf:c2:83:af:b1:65:35:c3:99:6c:92: 33:d3:52:74:b6:91:a9:fa:d2:ca:ce:ec:2a:5d:89:c5:00:9f: a0:5e:60:79:11:24:03:35:5d:78:3a:15:b8:45:70:45:00:79: de:9c:96:0c:43:c8:69:bd:e0:9e:77:71:0e:94:ab:fd:9e:80: ea:ac:f9:f2:0d:7d:90:bb:75:ae:ed:24:b8:6f:f0:e5:8d:2c: 51:d1:dd:68:a0:c0:62:76:6d:af:60:7f:07:ed:f0:02:9e:21: 33:9b:d0:7d:1b:b5:4a:3c:af:80:42:a1:47:67:87:52:3d:82: 71:67:9f:dd:1e:fb:a5:13:ca:0d:d6:38:73:6c:63:5f:bd:ad: 84:8e:fe:d6 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEF68RALnjmvQPeqNnyFQMyP2PsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA2MDEyMDAxNTJaFw0yNjA1MzEyMDA2NTJaMDMxMTAvBgNV BAMTKEU4ODJBOEUyQzQzQUZBMkNDNjg3QkE1MEI2MTRCNTdFMENEN0FFNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT6xE+6nIByodz00WJhinxY/bk Lt+miozgvq2oyGVQpvZ/vRs+eu2X8BYirfv+k7enGwc0ZfzAffqIFy/uIZ0AnPwO 2uJ8tyG86LhWHm37DSw/fec+ibWiUvo3GCGo9aFb4I0VCYf/vbr6j+y5a8wZSXBF VMCGmClxEisY2wMGHWijKrUL5b0vHB1edpLMBE7QjOjFzxnRVRMQVE8M1EPlhLno 0+/XbAn4ccf1JrbHhByXurK3O1x2YXYreCfsTVM6qMv0Fd3bFgZpysyuFtYiRG0Y VY5BaRs176Q7nFT4uZyftY78DFd7DGlV8BsXwLOq/ZrslovYu9adjoEEj0/bAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU6IKo4sQ6+izGh7pQthS1fgzXrnYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzYyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMwMzkzMzM2MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAlAeIwDQYJKoZIhvcN AQELBQADggEBAEmBNHbI8XlCvc8cy4oEDHsXtBpaijTnm0bI56OqUiwHnDHtPhMY W2t9mh/7vBmSx6UEFpTKsRtcpqU9H0w/hhxsH+YIWqfzPumb24DqlTgWsemkT1Ez PtEGCYjIQukMZY3ljgg6Xaahz+GAXUWEbDiw0rq/woOvsWU1w5lskjPTUnS2kan6 0srO7CpdicUAn6BeYHkRJAM1XXg6FbhFcEUAed6clgxDyGm94J53cQ6Uq/2egOqs +fINfZC7da7tJLhv8OWNLFHR3WigwGJ2ba9gfwft8AKeITOb0H0btUo8r4BCoUdn h1I9gnFnn90e+6UTyg3WOHNsY1+9rYSO/tY= -----END CERTIFICATE-----Generated at Wed Jun 18 06:38:38 2025 by rpki-client