$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20323033303534.roa File: 33372e3233302e34382e302f32342d3234203d3e20323033303534.roa (raw, json) Hash identifier: FvsXTq2sMtQRJcFjRXho2wwwbdZDrzrSml05cASFJA4= Subject key identifier: A2:23:E6:C8:DE:6A:34:3D:EE:5B:85:B4:48:9C:D2:AF:E2:2C:1C:47 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7CFC0C5D5B198BD3A98FC7AE1191C45CA811D605 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20323033303534.roa Signing time: Wed 01 Apr 2026 02:15:48 +0000 ROA not before: Wed 01 Apr 2026 02:10:48 +0000 ROA not after: Wed 31 Mar 2027 02:15:48 +0000 asID: 203054 IP address blocks: 37.230.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 19 Apr 2026 23:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:fc:0c:5d:5b:19:8b:d3:a9:8f:c7:ae:11:91:c4:5c:a8:11:d6:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 1 02:10:48 2026 GMT Not After : Mar 31 02:15:48 2027 GMT Subject: CN=A223E6C8DE6A343DEE5B85B4489CD2AFE22C1C47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bf:c1:88:76:72:13:53:47:3a:46:35:f6:33: 77:77:dd:b1:bc:32:ac:bf:0b:01:2b:e7:bd:03:1b: 66:6c:8a:74:c2:cb:a5:39:17:ca:95:91:8d:97:85: c8:a3:02:ff:f8:e4:51:23:c5:b8:4e:0c:ff:74:c7: 60:3e:ab:7d:60:33:a3:fb:af:49:fd:11:38:ed:f1: a5:65:f7:a3:dc:01:d0:35:ec:60:b2:0c:cf:7f:74: c1:b1:72:6e:16:0d:34:a8:5b:16:5b:60:05:80:b3: 8f:09:01:cb:75:38:12:5d:92:c1:20:22:1d:3d:00: 4d:6c:0e:ed:44:07:2a:f8:96:75:df:52:fd:da:1f: 75:c4:24:9e:44:03:0b:6b:87:06:98:ef:ea:cb:85: 67:aa:44:09:60:74:41:b3:d3:a2:0a:b4:24:b1:62: 4d:b3:53:b9:b6:0f:0b:3d:50:39:bf:98:8b:20:70: d8:5b:3a:61:a2:8a:2c:a0:69:c5:7e:d7:83:19:81: 59:76:42:8b:08:51:31:be:10:89:4d:5b:b0:e6:d6: 6d:e7:ca:d0:8d:eb:55:7b:38:da:04:b8:36:7c:d8: ef:f6:56:2d:1a:28:a4:90:66:27:12:52:8e:05:fb: 2b:2e:7b:1f:b7:55:27:9a:12:d2:a2:65:67:00:c2: ec:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:23:E6:C8:DE:6A:34:3D:EE:5B:85:B4:48:9C:D2:AF:E2:2C:1C:47 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20323033303534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.48.0/24 Signature Algorithm: sha256WithRSAEncryption 24:01:71:a3:e1:ca:a8:7f:a7:91:b0:fa:67:d9:bd:b1:4d:42: 73:80:9f:8b:dd:6f:11:80:03:cd:34:26:17:15:23:0e:cb:b4: 6e:4f:d7:8b:a7:7a:31:64:c2:17:78:1b:4e:f1:57:8e:34:a6: e1:7e:25:9a:af:9a:fa:5f:eb:24:29:e9:94:3a:fe:58:79:58: b6:fc:85:bd:5c:7e:41:57:6d:82:79:b1:6b:6e:46:4a:ce:9f: 7d:d5:4e:c6:fe:47:11:19:aa:99:a8:4a:98:22:ea:6d:55:60: 2a:ac:14:5e:53:3e:a4:f5:55:1b:d4:1f:c0:32:55:f5:98:5b: fd:56:33:45:d4:40:16:a8:44:c9:1a:91:12:6f:48:55:eb:38: 75:f3:70:28:98:76:17:57:85:8d:89:66:60:89:85:0a:93:01: 9e:91:e1:b6:f3:3e:3a:b5:05:26:38:12:c2:46:2f:8e:87:32: ac:6f:85:04:48:7b:61:ce:78:2f:f6:f7:77:14:a6:dc:20:1e: 03:5c:65:7d:58:58:a6:d9:61:ef:ab:4e:ed:74:20:3e:cc:04: 54:4d:21:14:27:47:57:fa:aa:7b:03:d9:ee:1f:c8:0e:c1:1a: d9:b0:34:a6:73:ef:5f:14:1c:83:1b:9a:5b:cf:0e:9c:f6:bd: 46:b5:87:45 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUfPwMXVsZi9Opj8euEZHEXKgR1gUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjA0MDEwMjEwNDhaFw0yNzAzMzEwMjE1NDhaMDMxMTAvBgNV BAMTKEEyMjNFNkM4REU2QTM0M0RFRTVCODVCNDQ4OUNEMkFGRTIyQzFDNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqv8GIdnITU0c6RjX2M3d33bG8 Mqy/CwEr570DG2ZsinTCy6U5F8qVkY2XhcijAv/45FEjxbhODP90x2A+q31gM6P7 r0n9ETjt8aVl96PcAdA17GCyDM9/dMGxcm4WDTSoWxZbYAWAs48JAct1OBJdksEg Ih09AE1sDu1EByr4lnXfUv3aH3XEJJ5EAwtrhwaY7+rLhWeqRAlgdEGz06IKtCSx Yk2zU7m2Dws9UDm/mIsgcNhbOmGiiiygacV+14MZgVl2QosIUTG+EIlNW7Dm1m3n ytCN61V7ONoEuDZ82O/2Vi0aKKSQZicSUo4F+ysuex+3VSeaEtKiZWcAwuzbAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUoiPmyN5qND3uW4W0SJzSr+IsHEcwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzQzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMzMwMzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmMDANBgkqhkiG 9w0BAQsFAAOCAQEAJAFxo+HKqH+nkbD6Z9m9sU1Cc4Cfi91vEYADzTQmFxUjDsu0 bk/Xi6d6MWTCF3gbTvFXjjSm4X4lmq+a+l/rJCnplDr+WHlYtvyFvVx+QVdtgnmx a25GSs6ffdVOxv5HERmqmahKmCLqbVVgKqwUXlM+pPVVG9QfwDJV9Zhb/VYzRdRA FqhEyRqREm9IVes4dfNwKJh2F1eFjYlmYImFCpMBnpHhtvM+OrUFJjgSwkYvjocy rG+FBEh7Yc54L/b3dxSm3CAeA1xlfVhYptlh76tO7XQgPswEVE0hFCdHV/qqewPZ 7h/IDsEa2bA0pnPvXxQcgxuaW88OnPa9RrWHRQ== -----END CERTIFICATE-----Generated at Sun Apr 19 11:12:35 2026 by rpki-client