$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203239383032.roa File: 33372e312e3233302e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: t5oRY2NJb33MRWKa8eFHd8cv7mGS55xuXuKea1x9X98= Subject key identifier: 5A:AC:8E:B7:7D:E2:DE:49:F6:46:6B:5D:25:5C:48:8A:31:CC:6F:A7 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7748A07483510AD55238E82A3892D506A21D9C29 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203239383032.roa Signing time: Tue 10 Feb 2026 00:15:36 +0000 ROA not before: Tue 10 Feb 2026 00:10:36 +0000 ROA not after: Tue 09 Feb 2027 00:15:36 +0000 asID: 29802 IP address blocks: 37.1.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 07:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:48:a0:74:83:51:0a:d5:52:38:e8:2a:38:92:d5:06:a2:1d:9c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 10 00:10:36 2026 GMT Not After : Feb 9 00:15:36 2027 GMT Subject: CN=5AAC8EB77DE2DE49F6466B5D255C488A31CC6FA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:58:e5:6a:5d:3f:7c:0f:ad:00:e1:df:73:52: 7b:e8:8b:8d:ef:e3:0b:be:44:6a:36:b4:91:93:b0: 15:94:d7:09:2d:0d:05:49:35:c8:95:71:c6:c7:db: 1f:86:51:ee:de:52:6c:44:56:b7:fe:c7:99:bd:8f: 50:bf:b1:70:95:82:46:19:4e:f2:b0:10:d2:3d:ea: b0:0b:4a:37:33:ce:03:1b:ea:98:90:d9:68:ed:18: c7:03:31:8d:1c:8b:2f:0b:b1:cb:75:95:fe:e7:e3: 57:3f:9e:f9:c0:87:e3:96:c5:00:c5:27:8e:e6:27: b4:d8:5b:20:ce:5d:f2:67:43:b1:d7:c3:1c:c3:cb: f4:77:8a:20:d2:66:71:a3:5f:51:2a:3e:5f:7c:de: 85:36:7c:e6:41:5f:85:39:59:39:42:3d:de:21:4a: 8f:ae:2f:ef:52:57:4c:ed:3e:cd:be:93:96:65:26: 79:38:d5:61:79:0a:6b:95:15:bb:56:3c:3b:ea:94: 25:c9:d5:2c:e4:79:12:ba:3b:72:0a:51:63:44:ce: b1:d3:e4:75:c5:80:9b:bb:a8:3e:e1:c3:cc:29:9b: da:64:7f:c3:8c:13:5b:af:ee:e8:dc:bc:46:54:99: 39:37:8c:3c:67:80:c8:1f:81:f9:b3:78:f7:c3:20: fc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AC:8E:B7:7D:E2:DE:49:F6:46:6B:5D:25:5C:48:8A:31:CC:6F:A7 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.230.0/24 Signature Algorithm: sha256WithRSAEncryption 90:f2:a0:c9:68:ca:d4:b7:4d:d4:27:3e:19:76:f3:31:ed:2d: c9:a9:41:56:80:2f:59:be:ed:d7:a7:7f:58:ad:89:48:e6:87: c0:30:6f:27:08:b8:73:ec:93:a7:c5:37:59:10:05:17:9a:c7: 22:e5:dd:55:fe:f7:32:f5:ca:93:5e:c6:ff:56:80:8e:11:ca: 8e:40:77:33:41:06:f0:c3:09:1a:06:05:18:75:ce:05:a5:e1: ae:81:54:e9:d5:02:b9:b1:e8:26:9b:17:c9:2e:57:c1:a4:1e: 93:bd:16:e5:cd:51:04:51:ad:26:0c:80:c7:e1:61:c1:14:f3: 72:dc:7a:12:a8:67:d1:a3:87:31:dc:28:cc:4c:d2:64:da:56: e6:c9:87:c7:8f:21:53:b2:0b:8f:e1:af:b7:ac:11:7b:a3:b2: 0d:44:a4:7d:c6:c0:a5:87:99:ef:6d:fe:5c:6e:b9:86:7a:be: df:19:f4:e3:6c:d3:6c:29:4e:7e:33:c6:86:b4:c9:c3:10:53: 5e:0f:cf:0d:47:ca:30:68:58:63:33:fe:37:77:74:d6:88:cb: 01:63:3c:e0:e9:5b:ca:d5:a7:03:5f:98:cf:08:09:5d:bc:f1: ee:b2:46:45:c4:e9:51:b9:e2:e6:13:e2:45:fa:f3:8a:cb:70: a5:a2:f6:f3 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUd0igdINRCtVSOOgqOJLVBqIdnCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAyMTAwMDEwMzZaFw0yNzAyMDkwMDE1MzZaMDMxMTAvBgNV BAMTKDVBQUM4RUI3N0RFMkRFNDlGNjQ2NkI1RDI1NUM0ODhBMzFDQzZGQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXWOVqXT98D60A4d9zUnvoi43v 4wu+RGo2tJGTsBWU1wktDQVJNciVccbH2x+GUe7eUmxEVrf+x5m9j1C/sXCVgkYZ TvKwENI96rALSjczzgMb6piQ2WjtGMcDMY0ciy8Lsct1lf7n41c/nvnAh+OWxQDF J47mJ7TYWyDOXfJnQ7HXwxzDy/R3iiDSZnGjX1EqPl983oU2fOZBX4U5WTlCPd4h So+uL+9SV0ztPs2+k5ZlJnk41WF5CmuVFbtWPDvqlCXJ1SzkeRK6O3IKUWNEzrHT 5HXFgJu7qD7hw8wpm9pkf8OME1uv7ujcvEZUmTk3jDxngMgfgfmzePfDIPyFAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUWqyOt33i3kn2RmtdJVxIijHMb6cwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjM5MzgzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHmMA0GCSqGSIb3DQEB CwUAA4IBAQCQ8qDJaMrUt03UJz4ZdvMx7S3JqUFWgC9Zvu3Xp39YrYlI5ofAMG8n CLhz7JOnxTdZEAUXmsci5d1V/vcy9cqTXsb/VoCOEcqOQHczQQbwwwkaBgUYdc4F peGugVTp1QK5segmmxfJLlfBpB6TvRblzVEEUa0mDIDH4WHBFPNy3HoSqGfRo4cx 3CjMTNJk2lbmyYfHjyFTsguP4a+3rBF7o7INRKR9xsClh5nvbf5cbrmGer7fGfTj bNNsKU5+M8aGtMnDEFNeD88NR8owaFhjM/43d3TWiMsBYzzg6VvK1acDX5jPCAld vPHuskZFxOlRueLmE+JF+vOKy3Clovbz -----END CERTIFICATE-----Generated at Sun Mar 1 18:33:51 2026 by rpki-client