$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203239383032.roa File: 33372e312e3233312e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: quFVDCT33qX7+W5S/jhiz3xxuQPQmGAyH5cT/HH9Rd0= Subject key identifier: 73:92:41:47:83:EB:34:7A:C3:C9:C0:B1:32:29:87:15:CC:2D:75:90 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 432B044658A8114408E4514A324F38C25179B337 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203239383032.roa Signing time: Tue 10 Feb 2026 00:15:57 +0000 ROA not before: Tue 10 Feb 2026 00:10:57 +0000 ROA not after: Tue 09 Feb 2027 00:15:57 +0000 asID: 29802 IP address blocks: 37.1.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 07:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:2b:04:46:58:a8:11:44:08:e4:51:4a:32:4f:38:c2:51:79:b3:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 10 00:10:57 2026 GMT Not After : Feb 9 00:15:57 2027 GMT Subject: CN=7392414783EB347AC3C9C0B132298715CC2D7590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:28:f2:1d:8d:e1:30:31:dd:cd:09:47:b1:ee: 2e:b8:53:92:95:eb:64:e6:eb:65:fa:74:3e:e0:22: f4:44:5a:d5:8e:a8:4a:2d:97:8f:62:8c:99:49:b9: f5:9b:22:00:cd:c7:a0:97:6a:ce:cc:fe:27:45:9e: e0:6d:81:90:dd:64:ca:4f:d7:26:9b:ad:34:00:ee: 8f:04:fa:e8:48:b9:8b:4b:07:e2:62:3d:48:3d:da: 79:2d:3b:96:0f:7c:54:3e:d5:a7:bf:83:0c:ca:0a: 44:a1:5e:cd:38:ee:46:dd:27:a9:7a:f7:89:a2:95: d7:61:33:e1:a4:f4:89:60:57:59:6a:f8:be:fb:b5: b9:27:62:f7:5d:6d:be:43:16:13:e4:53:6f:c0:8b: 0e:c7:7f:78:75:3c:41:a9:11:af:9c:32:4d:9c:6b: 21:20:75:21:05:e4:0e:de:ae:e4:c0:87:7b:4a:f5: a7:4a:4c:90:ee:05:2b:3a:3d:fc:53:ff:5e:fb:f2: 80:e5:a1:3e:50:08:f1:6b:d3:63:f1:7a:9b:05:da: b3:ee:06:95:59:cb:27:a0:88:9b:9e:5d:50:cc:c4: 20:45:e3:96:a6:15:6f:5d:7a:85:67:93:6d:65:77: d9:24:2f:71:c0:a1:ab:1c:88:ec:40:85:0e:5d:04: 90:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:92:41:47:83:EB:34:7A:C3:C9:C0:B1:32:29:87:15:CC:2D:75:90 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.231.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:64:ef:91:fd:fe:52:09:98:fa:67:7c:67:83:5d:42:fd:77: 7b:62:a0:26:0b:d0:78:04:6f:a5:03:37:aa:e2:37:a2:a6:44: 62:92:aa:8c:95:6a:61:42:db:c2:e5:56:ef:0f:85:86:19:0c: f2:34:dd:8a:11:4c:4e:2a:2a:07:15:60:2a:4a:48:45:3a:32: 0b:cc:51:76:b3:d2:ae:c7:77:08:8f:f4:3c:73:da:c5:74:36: da:66:31:24:17:ab:91:24:7d:70:d1:cc:0a:cd:5d:b7:94:9d: ef:a9:4c:55:d6:b7:3d:16:04:7c:0f:a0:e2:6f:04:90:04:e4: e5:fd:9e:90:45:9f:54:2e:ed:fb:54:3f:8c:38:f6:af:4c:d7: 38:cd:92:0b:3e:8b:b6:42:51:6a:3d:80:ab:26:a6:46:16:28: 64:a4:f7:a2:d1:54:49:4b:3f:0d:25:9c:1e:fa:b8:11:ed:7a: 5b:a1:7f:ff:24:22:9e:c2:f9:e8:53:8f:bd:c8:27:4a:ee:4d: 51:0b:5a:18:f5:27:52:0c:e2:32:e5:90:26:2b:aa:75:fa:11: 3a:02:d1:d1:dc:47:7b:51:80:57:cf:a5:e9:99:e1:1d:cd:af: 32:73:12:6a:67:af:97:cc:dd:21:3d:de:fd:75:08:c1:b0:9b: 3e:a9:ad:e3 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUQysERlioEUQI5FFKMk84wlF5szcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAyMTAwMDEwNTdaFw0yNzAyMDkwMDE1NTdaMDMxMTAvBgNV BAMTKDczOTI0MTQ3ODNFQjM0N0FDM0M5QzBCMTMyMjk4NzE1Q0MyRDc1OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHKPIdjeEwMd3NCUex7i64U5KV 62Tm62X6dD7gIvREWtWOqEotl49ijJlJufWbIgDNx6CXas7M/idFnuBtgZDdZMpP 1yabrTQA7o8E+uhIuYtLB+JiPUg92nktO5YPfFQ+1ae/gwzKCkShXs047kbdJ6l6 94milddhM+Gk9IlgV1lq+L77tbknYvddbb5DFhPkU2/Aiw7Hf3h1PEGpEa+cMk2c ayEgdSEF5A7eruTAh3tK9adKTJDuBSs6PfxT/1778oDloT5QCPFr02PxepsF2rPu BpVZyyegiJueXVDMxCBF45amFW9deoVnk21ld9kkL3HAoasciOxAhQ5dBJBrAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUc5JBR4PrNHrDycCxMimHFcwtdZAwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjM5MzgzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHnMA0GCSqGSIb3DQEB CwUAA4IBAQCLZO+R/f5SCZj6Z3xng11C/Xd7YqAmC9B4BG+lAzeq4jeipkRikqqM lWphQtvC5VbvD4WGGQzyNN2KEUxOKioHFWAqSkhFOjILzFF2s9Kux3cIj/Q8c9rF dDbaZjEkF6uRJH1w0cwKzV23lJ3vqUxV1rc9FgR8D6DibwSQBOTl/Z6QRZ9ULu37 VD+MOPavTNc4zZILPou2QlFqPYCrJqZGFihkpPei0VRJSz8NJZwe+rgR7XpboX// JCKewvnoU4+9yCdK7k1RC1oY9SdSDOIy5ZAmK6p1+hE6AtHR3Ed7UYBXz6XpmeEd za8ycxJqZ6+XzN0hPd79dQjBsJs+qa3j -----END CERTIFICATE-----Generated at Sun Mar 1 18:33:52 2026 by rpki-client