$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e203136323736.roa File: 33372e3233302e35342e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: FoFE03lsc265v4V8ZfAf79mDto4EF/wgaSAnGPwDroY= Subject key identifier: CA:B0:C4:90:06:80:BF:AD:64:AE:9B:5E:F9:BC:58:7B:C0:42:BA:BD Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 60DB7A784A757756EF91E238911F099F4F8C34D1 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e203136323736.roa Signing time: Tue 29 Jul 2025 06:46:04 +0000 ROA not before: Tue 29 Jul 2025 06:41:04 +0000 ROA not after: Tue 28 Jul 2026 06:46:04 +0000 asID: 16276 IP address blocks: 37.230.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 10 Aug 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:db:7a:78:4a:75:77:56:ef:91:e2:38:91:1f:09:9f:4f:8c:34:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 29 06:41:04 2025 GMT Not After : Jul 28 06:46:04 2026 GMT Subject: CN=CAB0C4900680BFAD64AE9B5EF9BC587BC042BABD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b1:d1:2c:c3:d2:50:4e:4c:39:4a:42:91:dc: cc:57:fd:7c:86:6b:88:6f:a0:be:49:6f:89:f9:66: b8:76:73:b0:57:0b:1f:c5:83:fc:94:2a:06:3c:31: 3e:dd:99:f9:7a:31:ff:4b:45:77:a3:bf:ae:ec:34: 89:65:f7:10:8c:2a:84:66:7c:40:08:1f:f5:1e:1c: 44:14:96:5a:d8:c0:9e:e0:1c:f3:f9:a2:d4:69:c9: 65:a7:e2:1c:91:36:16:f1:64:67:9c:7f:3a:ea:21: 68:a8:17:15:78:26:19:ea:2d:a5:6e:ea:3d:07:95: 74:26:e5:eb:6b:e3:ec:c5:38:dc:7e:ef:7f:1b:93: 5e:df:2f:3b:fe:17:7c:27:1f:09:7e:ee:07:75:66: c5:18:2f:ea:4c:7c:7e:07:50:f6:e8:6f:2f:d2:b9: 4d:f6:40:fa:0f:c1:f5:22:d0:5d:82:8e:f3:da:87: bb:ac:99:1d:9d:3e:a9:53:a7:5c:00:9b:0a:be:f5: 25:b4:d3:7a:0c:71:62:34:19:b8:d4:e2:c5:2f:9c: 7a:eb:99:07:04:b9:c9:e7:d8:49:44:ac:5a:0b:dd: fb:bd:b3:29:c7:9f:c3:19:87:0a:ca:a0:c8:cc:f5: ff:78:63:03:c7:bb:c3:7d:25:f0:98:d7:45:b9:7f: 6c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B0:C4:90:06:80:BF:AD:64:AE:9B:5E:F9:BC:58:7B:C0:42:BA:BD X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.54.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:09:d4:d5:94:da:b4:9f:83:9b:4d:8c:5e:d9:23:10:e0:68: d3:22:27:d8:64:58:b7:c6:b5:62:8e:b2:be:c4:6b:1d:6b:49: 3f:93:4a:b3:2f:43:fb:f6:1e:d6:d8:a0:6c:ed:42:9c:f1:7f: c6:a1:d0:e5:6b:4d:f7:6c:84:09:e2:42:dc:d4:08:b5:90:bc: 74:8e:c0:f3:ef:5b:b9:f0:da:6b:42:7b:75:e4:5a:7b:6a:98: 41:49:ef:f8:41:da:05:26:8a:33:c2:12:30:ce:db:3b:12:70: 06:16:4d:b8:7a:47:6f:06:0e:fe:fb:25:f6:6a:83:62:d9:bd: 7f:d2:bb:53:0f:63:f0:71:4c:0b:c1:7a:67:cc:fa:26:f7:a0: 4d:9f:94:f6:ad:ed:31:65:5c:46:26:cb:65:ef:af:25:3e:7e: 2d:ee:81:bd:7d:a9:5a:7a:ae:61:ad:e3:82:8a:cc:43:e7:5f: 17:64:49:0d:74:b5:82:77:93:02:6e:50:a8:08:c4:58:66:0f: d7:3e:cb:87:34:2d:50:eb:e8:05:3e:9e:20:98:91:8d:59:0c: 28:6b:71:fd:9c:0e:43:82:e6:4a:7f:40:f7:f2:85:cd:e6:e3: a1:ed:03:a0:4d:2b:b3:2b:9c:a1:60:29:d9:02:5b:1a:6d:af: 35:5e:63:19 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUYNt6eEp1d1bvkeI4kR8Jn0+MNNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MjkwNjQxMDRaFw0yNjA3MjgwNjQ2MDRaMDMxMTAvBgNV BAMTKENBQjBDNDkwMDY4MEJGQUQ2NEFFOUI1RUY5QkM1ODdCQzA0MkJBQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4sdEsw9JQTkw5SkKR3MxX/XyG a4hvoL5Jb4n5Zrh2c7BXCx/Fg/yUKgY8MT7dmfl6Mf9LRXejv67sNIll9xCMKoRm fEAIH/UeHEQUllrYwJ7gHPP5otRpyWWn4hyRNhbxZGecfzrqIWioFxV4JhnqLaVu 6j0HlXQm5etr4+zFONx+738bk17fLzv+F3wnHwl+7gd1ZsUYL+pMfH4HUPboby/S uU32QPoPwfUi0F2CjvPah7usmR2dPqlTp1wAmwq+9SW003oMcWI0GbjU4sUvnHrr mQcEucnn2ElErFoL3fu9synHn8MZhwrKoMjM9f94YwPHu8N9JfCY10W5f2wNAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUyrDEkAaAv61krpte+bxYe8BCur0wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5jYwDQYJKoZIhvcN AQELBQADggEBAE8J1NWU2rSfg5tNjF7ZIxDgaNMiJ9hkWLfGtWKOsr7Eax1rST+T SrMvQ/v2HtbYoGztQpzxf8ah0OVrTfdshAniQtzUCLWQvHSOwPPvW7nw2mtCe3Xk WntqmEFJ7/hB2gUmijPCEjDO2zsScAYWTbh6R28GDv77JfZqg2LZvX/Su1MPY/Bx TAvBemfM+ib3oE2flPat7TFlXEYmy2XvryU+fi3ugb19qVp6rmGt44KKzEPnXxdk SQ10tYJ3kwJuUKgIxFhmD9c+y4c0LVDr6AU+niCYkY1ZDChrcf2cDkOC5kp/QPfy hc3m46HtA6BNK7MrnKFgKdkCWxptrzVeYxk= -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:21 2025 by rpki-client