$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa File: 33372e3233302e35362e302f32322d3234203d3e20323730303532.roa (raw, json) Hash identifier: g7u1KzyqzFyeQAEKkokdbYtQwzIGKsVYEqY4Mm3aDcM= Subject key identifier: 46:2E:31:B4:A8:87:FF:6E:43:22:F0:91:59:68:79:08:1F:5F:C0:D9 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 37782904E248573507D42EF668256F222E3F123E Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa Signing time: Fri 20 Feb 2026 12:55:39 +0000 ROA not before: Fri 20 Feb 2026 12:50:39 +0000 ROA not after: Fri 19 Feb 2027 12:55:39 +0000 asID: 270052 IP address blocks: 37.230.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 07:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:78:29:04:e2:48:57:35:07:d4:2e:f6:68:25:6f:22:2e:3f:12:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 20 12:50:39 2026 GMT Not After : Feb 19 12:55:39 2027 GMT Subject: CN=462E31B4A887FF6E4322F091596879081F5FC0D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9e:e9:51:bf:31:37:aa:a1:8c:cb:83:c1:40: ca:30:eb:15:fd:8c:86:eb:2d:28:e7:c4:7b:5d:0d: b0:2e:ba:59:4b:d0:0a:4e:0d:25:f9:48:6d:40:e4: 2b:05:61:95:42:cb:02:d1:8d:7a:52:6c:cd:14:a6: bd:18:3a:2f:f3:c9:39:8f:5c:f8:b4:7c:b8:ca:e1: 67:70:fe:38:ed:f2:32:72:02:1c:48:8a:38:1e:73: fd:bd:9c:1d:3b:33:17:7b:de:72:8b:4b:3e:0a:d1: d8:9c:af:9b:f3:ab:74:8f:29:33:4d:22:9c:de:e5: 8c:0c:e5:53:04:b2:4f:73:37:c4:98:a9:44:07:1f: 08:1d:04:1c:3d:8c:67:11:df:72:50:90:48:01:7b: ed:02:3e:14:ac:ab:81:15:4b:38:93:41:40:78:24: a6:c8:11:1b:e9:30:f7:5f:cc:06:a0:af:91:62:2a: 60:b8:1e:86:8b:1b:c9:1d:fa:01:42:d4:e2:6d:a4: 2c:13:68:62:45:5b:87:27:71:37:f8:80:a6:23:aa: 26:6f:aa:ef:37:aa:4c:7a:f4:22:90:21:a5:e1:7b: 15:0e:36:18:96:10:fb:72:26:e4:47:4f:57:83:f8: f3:97:ca:e8:5c:5f:20:07:b6:bf:cb:f5:14:fe:32: 74:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2E:31:B4:A8:87:FF:6E:43:22:F0:91:59:68:79:08:1F:5F:C0:D9 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.56.0/22 Signature Algorithm: sha256WithRSAEncryption 23:a9:82:36:4c:56:08:74:4b:82:59:bf:cb:b7:2d:7b:c4:37: e7:ab:11:cd:22:d0:12:a4:05:ef:8e:d2:3d:ec:ad:75:ec:78: e3:f3:a3:60:ca:a6:08:29:23:8d:e0:78:f0:ff:3d:58:8f:f3: f3:36:67:80:21:38:19:e4:e2:67:b5:8b:a4:1e:9a:2d:ff:3b: 43:49:66:08:9e:1d:32:5f:1f:9b:51:d4:41:b6:06:fc:c3:84: 2f:3f:16:3e:27:d9:de:60:b4:19:4a:d2:df:46:07:b6:56:dc: 14:a2:fa:5b:49:6a:0d:15:47:e2:eb:84:6c:f9:fc:01:82:2c: 03:c3:92:46:27:f9:76:04:c6:17:1a:75:27:04:a2:c9:68:da: 64:3a:66:76:12:10:b0:7e:7f:ac:b6:b8:3b:22:e5:17:c1:cf: e6:e9:97:76:4e:53:ec:23:7e:bf:ab:62:e3:98:8f:89:30:78: 06:bb:74:c8:06:36:d2:c9:13:8c:59:84:c9:5c:ff:1e:92:52: 3f:9f:82:2e:ec:6f:a9:84:3b:ab:35:69:a4:5f:9f:d1:b3:3d: 1f:40:fc:12:4a:16:92:4b:f6:61:2f:bd:85:7f:d9:02:7b:0a: 56:41:3e:33:f7:e7:73:78:51:1e:13:71:ac:65:82:17:6c:0f: f9:67:37:df -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUN3gpBOJIVzUH1C72aCVvIi4/Ej4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAyMjAxMjUwMzlaFw0yNzAyMTkxMjU1MzlaMDMxMTAvBgNV BAMTKDQ2MkUzMUI0QTg4N0ZGNkU0MzIyRjA5MTU5Njg3OTA4MUY1RkMwRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChnulRvzE3qqGMy4PBQMow6xX9 jIbrLSjnxHtdDbAuullL0ApODSX5SG1A5CsFYZVCywLRjXpSbM0Upr0YOi/zyTmP XPi0fLjK4Wdw/jjt8jJyAhxIijgec/29nB07Mxd73nKLSz4K0dicr5vzq3SPKTNN Ipze5YwM5VMEsk9zN8SYqUQHHwgdBBw9jGcR33JQkEgBe+0CPhSsq4EVSziTQUB4 JKbIERvpMPdfzAagr5FiKmC4HoaLG8kd+gFC1OJtpCwTaGJFW4cncTf4gKYjqiZv qu83qkx69CKQIaXhexUONhiWEPtyJuRHT1eD+POXyuhcXyAHtr/L9RT+MnSfAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQURi4xtKiH/25DIvCRWWh5CB9fwNkwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiXmODANBgkqhkiG 9w0BAQsFAAOCAQEAI6mCNkxWCHRLglm/y7cte8Q356sRzSLQEqQF747SPeytdex4 4/OjYMqmCCkjjeB48P89WI/z8zZngCE4GeTiZ7WLpB6aLf87Q0lmCJ4dMl8fm1HU QbYG/MOELz8WPifZ3mC0GUrS30YHtlbcFKL6W0lqDRVH4uuEbPn8AYIsA8OSRif5 dgTGFxp1JwSiyWjaZDpmdhIQsH5/rLa4OyLlF8HP5umXdk5T7CN+v6ti45iPiTB4 Brt0yAY20skTjFmEyVz/HpJSP5+CLuxvqYQ7qzVppF+f0bM9H0D8EkoWkkv2YS+9 hX/ZAnsKVkE+M/fnc3hRHhNxrGWCF2wP+Wc33w== -----END CERTIFICATE-----Generated at Mon Mar 2 01:43:20 2026 by rpki-client