$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35352e302f32342d3234203d3e20323134303235.roa File: 33372e3233302e35352e302f32342d3234203d3e20323134303235.roa (raw, json) Hash identifier: D9yqbcC2mGkCVrmuC78FQqJsBGoE6+m+cludQfm0y7w= Subject key identifier: 15:83:A8:82:7B:C2:85:6E:25:C6:D7:A1:C2:49:6D:E5:88:71:E0:12 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 59C063A151BAD3E5A3451D022319FA69AEBF2D5F Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35352e302f32342d3234203d3e20323134303235.roa Signing time: Tue 31 Mar 2026 12:05:45 +0000 ROA not before: Tue 31 Mar 2026 12:00:45 +0000 ROA not after: Tue 30 Mar 2027 12:05:45 +0000 asID: 214025 IP address blocks: 37.230.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 12:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c0:63:a1:51:ba:d3:e5:a3:45:1d:02:23:19:fa:69:ae:bf:2d:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 31 12:00:45 2026 GMT Not After : Mar 30 12:05:45 2027 GMT Subject: CN=1583A8827BC2856E25C6D7A1C2496DE58871E012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:67:e7:cc:e6:74:39:98:60:b0:bf:d9:bf:bc: 5a:e5:82:2e:5c:ee:fa:0b:1e:73:76:89:3d:b1:e3: 62:c4:47:9d:99:6d:eb:09:0b:7a:69:8d:08:a2:14: 48:b5:07:db:26:bb:44:c2:a9:cc:10:21:6c:4a:cb: bd:59:19:8d:ab:4e:26:81:8e:d9:11:ce:b7:cd:fe: 94:b3:8c:65:e4:23:51:51:11:42:fb:e2:9c:48:c9: 43:e9:fa:d7:5e:75:7e:e4:b5:50:ed:67:6b:9f:97: b1:3b:73:13:e2:c1:06:53:d4:bb:ae:82:66:3c:48: 3a:a0:0b:ce:55:35:f1:1b:28:13:7b:14:4c:3d:c7: e7:52:3c:4f:35:e5:88:fe:8d:96:fb:52:bc:65:1f: c5:97:7b:f2:eb:d5:e2:2f:8c:5b:e5:a4:a6:42:71: 9c:74:f8:3e:7e:2f:26:14:8f:99:37:c4:1e:e0:2b: 42:67:8b:11:23:c8:34:04:8f:d3:5a:5d:2b:90:d4: 62:1e:7c:8b:69:76:8a:76:d8:26:aa:a4:c0:d9:0a: a3:47:98:15:95:66:70:61:4b:c4:ff:6a:78:50:3e: db:42:f7:20:ed:71:25:aa:0d:2a:21:e3:71:d1:3b: 4c:94:0f:0b:99:93:5c:15:4a:5c:1b:4a:55:c0:4d: b3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:83:A8:82:7B:C2:85:6E:25:C6:D7:A1:C2:49:6D:E5:88:71:E0:12 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35352e302f32342d3234203d3e20323134303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.55.0/24 Signature Algorithm: sha256WithRSAEncryption 50:b8:c2:78:53:42:86:81:0c:6f:dd:e8:0b:7f:5c:28:0e:14: 09:f5:a6:63:7a:a8:7c:f5:16:78:86:07:06:88:27:56:79:72: 2b:7a:bf:d7:89:c6:2a:2d:da:c5:fe:1f:96:50:0e:8e:3a:4d: 20:3c:c1:ab:f5:63:be:33:fc:74:92:a6:5d:c8:3e:b8:a2:1e: 13:7e:3c:3d:97:9c:b6:6b:90:22:0c:09:8a:0d:20:c2:07:51: a1:1a:ff:49:62:bc:0f:c1:d0:86:94:77:25:b1:2a:a8:48:9f: a1:96:bf:b3:3e:8a:21:9c:fe:8c:05:9e:69:a8:03:be:a4:5a: e5:75:a4:8c:39:63:f5:42:6b:c2:d4:8a:bf:df:65:07:5f:f0: f9:02:b0:16:02:cf:22:ae:70:69:d6:90:6f:21:57:86:8e:56: a4:dc:f2:db:fd:d8:9d:6b:bc:65:68:a3:f9:45:ed:21:ad:06: 73:41:1c:9d:c7:2c:89:e1:d9:ee:04:25:97:c9:6b:34:93:a1: 21:ba:d5:f5:71:9e:5b:9f:1b:32:d4:43:1f:e4:7a:be:d4:8c: db:fc:97:4a:92:b4:7c:fa:0c:da:3a:91:d6:01:9c:96:53:17: f2:34:14:2c:99:0b:97:f8:87:fe:49:9d:70:c3:2a:7d:e4:69: dc:9d:ed:e4 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUWcBjoVG60+WjRR0CIxn6aa6/LV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMzExMjAwNDVaFw0yNzAzMzAxMjA1NDVaMDMxMTAvBgNV BAMTKDE1ODNBODgyN0JDMjg1NkUyNUM2RDdBMUMyNDk2REU1ODg3MUUwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDZ+fM5nQ5mGCwv9m/vFrlgi5c 7voLHnN2iT2x42LER52ZbesJC3ppjQiiFEi1B9smu0TCqcwQIWxKy71ZGY2rTiaB jtkRzrfN/pSzjGXkI1FREUL74pxIyUPp+tdedX7ktVDtZ2ufl7E7cxPiwQZT1Luu gmY8SDqgC85VNfEbKBN7FEw9x+dSPE815Yj+jZb7UrxlH8WXe/Lr1eIvjFvlpKZC cZx0+D5+LyYUj5k3xB7gK0JnixEjyDQEj9NaXSuQ1GIefItpdop22CaqpMDZCqNH mBWVZnBhS8T/anhQPttC9yDtcSWqDSoh43HRO0yUDwuZk1wVSlwbSlXATbNTAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUFYOognvChW4lxtehwklt5Yhx4BIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNDMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmNzANBgkqhkiG 9w0BAQsFAAOCAQEAULjCeFNChoEMb93oC39cKA4UCfWmY3qofPUWeIYHBognVnly K3q/14nGKi3axf4fllAOjjpNIDzBq/VjvjP8dJKmXcg+uKIeE348PZectmuQIgwJ ig0gwgdRoRr/SWK8D8HQhpR3JbEqqEifoZa/sz6KIZz+jAWeaagDvqRa5XWkjDlj 9UJrwtSKv99lB1/w+QKwFgLPIq5wadaQbyFXho5WpNzy2/3YnWu8ZWij+UXtIa0G c0EcnccsieHZ7gQll8lrNJOhIbrV9XGeW58bMtRDH+R6vtSM2/yXSpK0fPoM2jqR 1gGcllMX8jQULJkLl/iH/kmdcMMqfeRp3J3t5A== -----END CERTIFICATE-----Generated at Fri Apr 17 04:33:43 2026 by rpki-client