$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323131343339.roa File: 33372e3233302e34392e302f32342d3234203d3e20323131343339.roa (raw, json) Hash identifier: dKem282syiNVmYZMuWZPkv7PNw0rt/MwgfOzP+QGFiM= Subject key identifier: DB:8B:D5:63:69:BA:36:EA:28:8C:89:3C:17:C8:F8:7A:B0:C1:97:5C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0D8BB1F7DA4C5C73F405D2E0D47F611C55681F0B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323131343339.roa Signing time: Wed 28 Jan 2026 10:55:36 +0000 ROA not before: Wed 28 Jan 2026 10:50:36 +0000 ROA not after: Wed 27 Jan 2027 10:55:36 +0000 asID: 211439 IP address blocks: 37.230.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 07:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:8b:b1:f7:da:4c:5c:73:f4:05:d2:e0:d4:7f:61:1c:55:68:1f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jan 28 10:50:36 2026 GMT Not After : Jan 27 10:55:36 2027 GMT Subject: CN=DB8BD56369BA36EA288C893C17C8F87AB0C1975C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:d7:c0:5c:bf:a6:8b:6b:b3:a5:c3:53:ec: ad:57:3a:91:49:03:82:0d:ee:84:ba:2e:cd:fe:0e: b8:f6:e5:14:1a:88:a8:4a:22:e3:d4:70:c4:7c:0b: fd:91:3f:08:b8:bc:49:d6:8a:bc:e6:db:58:1a:62: dc:e8:0f:4d:6a:b4:8b:c8:4c:4b:48:ba:69:fe:b7: 81:49:57:87:59:6a:59:89:05:70:51:ed:e2:88:24: 0a:bb:3b:83:c5:59:ff:0a:c8:02:47:90:fe:28:83: f8:6c:8a:6b:cc:38:59:17:31:a5:7b:45:ab:90:ad: d7:30:c4:65:00:9e:d4:72:58:df:f4:78:b6:e2:2d: 03:cb:d9:8d:36:85:b8:c0:75:91:75:d1:4d:ec:c5: 77:a0:33:35:88:e4:8b:29:8c:da:cc:2b:8f:51:e9: 67:76:17:f1:ed:76:c5:72:26:0d:56:3b:3e:57:97: d9:c9:ed:28:05:2a:5e:0b:af:ef:d8:86:fa:ec:ad: eb:6b:e3:8c:d1:db:08:be:59:04:6e:6b:b5:47:bc: 7d:9c:fc:19:30:8e:bc:e6:32:2c:7a:ee:a6:a9:92: 72:80:ca:5c:26:79:2e:21:b5:38:f3:54:ff:cb:73: cb:2e:c8:7c:0d:fe:73:bf:f1:70:77:50:60:33:65: 04:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:8B:D5:63:69:BA:36:EA:28:8C:89:3C:17:C8:F8:7A:B0:C1:97:5C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323131343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.49.0/24 Signature Algorithm: sha256WithRSAEncryption 95:5a:08:9f:02:05:f2:c2:36:01:91:96:84:9c:eb:62:85:46: 1b:de:7f:0c:41:ae:b1:96:2e:ea:31:76:14:b3:a9:04:82:17: 09:1f:43:37:24:bd:06:76:b0:8c:54:1b:4e:87:2c:51:7c:1e: 69:07:e9:73:a7:c6:ac:5e:d5:0c:94:aa:83:71:7e:f3:c4:ea: c1:0d:57:bb:70:9c:db:a0:d7:33:d4:0a:84:67:79:8b:93:e4: 3c:a8:8e:26:91:9e:d8:64:ea:fb:93:bc:42:9d:0b:1a:60:92: b2:52:ef:60:28:1e:3f:94:97:a5:be:5b:fa:48:27:67:dd:53: d6:ee:4d:fb:a3:a4:9b:f8:ac:79:f6:aa:ce:34:ed:05:61:2f: ec:5a:1b:49:a3:7f:41:2b:33:80:b1:9d:48:05:09:5c:52:0c: bf:d0:3d:63:2c:49:73:96:2e:27:4b:6f:77:bb:da:a6:af:2d: c2:61:7a:02:da:54:5d:c0:0f:bd:74:87:ef:e6:49:f8:d8:2b: 56:1a:9c:0c:ec:fe:62:a5:7b:91:34:38:1e:69:c9:99:30:2d: 07:b7:a8:f8:6a:f3:db:95:8d:87:99:bf:a2:32:14:91:4f:b4: 93:5f:37:23:61:e5:d3:9f:15:da:0b:15:db:82:63:57:7f:c9: 03:54:1f:f3 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUDYux99pMXHP0BdLg1H9hHFVoHwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAxMjgxMDUwMzZaFw0yNzAxMjcxMDU1MzZaMDMxMTAvBgNV BAMTKERCOEJENTYzNjlCQTM2RUEyODhDODkzQzE3QzhGODdBQjBDMTk3NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6FdfAXL+mi2uzpcNT7K1XOpFJ A4IN7oS6Ls3+Drj25RQaiKhKIuPUcMR8C/2RPwi4vEnWirzm21gaYtzoD01qtIvI TEtIumn+t4FJV4dZalmJBXBR7eKIJAq7O4PFWf8KyAJHkP4og/hsimvMOFkXMaV7 RauQrdcwxGUAntRyWN/0eLbiLQPL2Y02hbjAdZF10U3sxXegMzWI5IspjNrMK49R 6Wd2F/HtdsVyJg1WOz5Xl9nJ7SgFKl4Lr+/Yhvrsretr44zR2wi+WQRua7VHvH2c /BkwjrzmMix67qapknKAylwmeS4htTjzVP/Lc8suyHwN/nO/8XB3UGAzZQSHAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQU24vVY2m6NuoojIk8F8j4erDBl1wwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzQzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzMTM0MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmMTANBgkqhkiG 9w0BAQsFAAOCAQEAlVoInwIF8sI2AZGWhJzrYoVGG95/DEGusZYu6jF2FLOpBIIX CR9DNyS9BnawjFQbTocsUXweaQfpc6fGrF7VDJSqg3F+88TqwQ1Xu3Cc26DXM9QK hGd5i5PkPKiOJpGe2GTq+5O8Qp0LGmCSslLvYCgeP5SXpb5b+kgnZ91T1u5N+6Ok m/isefaqzjTtBWEv7FobSaN/QSszgLGdSAUJXFIMv9A9YyxJc5YuJ0tvd7vapq8t wmF6AtpUXcAPvXSH7+ZJ+NgrVhqcDOz+YqV7kTQ4HmnJmTAtB7eo+Grz25WNh5m/ ojIUkU+0k183I2Hl058V2gsV24JjV3/JA1Qf8w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:49 2026 by rpki-client