$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35392e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: OtWMgMGA0FIFpcSkBltd+jtsgXYrT62A6kr3aViDkho= Subject key identifier: 1A:3E:2F:A7:9F:9B:50:FD:35:83:37:5F:7A:D1:CF:99:08:C6:D6:A2 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 67F15B2F50608BFBCC863CE63B0B9979AF7C92F0 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa Signing time: Thu 26 Mar 2026 13:46:55 +0000 ROA not before: Thu 26 Mar 2026 13:41:55 +0000 ROA not after: Thu 25 Mar 2027 13:46:55 +0000 asID: 270052 IP address blocks: 37.230.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 05:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:f1:5b:2f:50:60:8b:fb:cc:86:3c:e6:3b:0b:99:79:af:7c:92:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 26 13:41:55 2026 GMT Not After : Mar 25 13:46:55 2027 GMT Subject: CN=1A3E2FA79F9B50FD3583375F7AD1CF9908C6D6A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:7e:7a:42:fc:7c:0b:18:8d:c3:48:ae:92: 57:c9:dc:75:ae:ea:a6:94:08:56:2b:10:37:1e:e9: e6:6b:a2:77:c5:98:74:e1:2f:7f:5b:70:b6:0c:cb: 03:28:aa:f6:10:66:e7:2b:87:d1:39:49:28:9c:8b: 5d:4c:f8:6d:d4:a3:95:1f:6b:7c:bc:e8:ad:c4:55: 11:b2:74:47:8f:40:35:de:a8:d7:8a:b1:be:17:b0: 10:86:74:ee:85:cb:9a:4a:d0:1d:7f:0d:2b:3a:c7: 10:54:7f:ca:2c:f7:f1:4c:8b:3a:2f:22:e7:ec:44: 82:06:98:61:64:ca:d7:6a:c2:5e:60:c9:fe:de:59: 2b:b4:3f:f3:18:c8:dd:08:bf:15:55:10:63:31:ff: 7e:3f:c3:bf:23:d1:ba:2c:17:82:4c:76:cf:51:16: b7:e6:e2:26:1b:b8:d3:55:2a:c2:ac:33:9e:cc:83: 3f:63:25:5c:12:7a:3a:e0:2e:1b:7c:80:16:bd:39: 5f:73:01:e3:bd:44:b7:72:ef:7d:8a:67:98:f5:33: 40:4b:99:17:5f:ec:0f:32:e8:ad:bd:1e:20:0d:b9: 83:59:a8:99:7e:4b:1d:86:d0:87:7b:c2:4d:7e:e3: bc:1b:0b:f7:aa:86:08:c0:81:c7:e6:03:5a:42:70: b3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3E:2F:A7:9F:9B:50:FD:35:83:37:5F:7A:D1:CF:99:08:C6:D6:A2 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.59.0/24 Signature Algorithm: sha256WithRSAEncryption 74:b7:dd:9b:be:d8:97:0e:79:66:03:d6:ef:68:7d:18:15:29: 43:b0:67:43:32:be:bc:10:b9:25:a2:c2:fb:4b:61:8d:db:7a: b2:ed:2d:0d:30:5b:31:38:16:96:34:2f:9c:ae:66:70:51:43: eb:7a:2b:cd:d5:94:30:0d:17:bf:07:f4:de:3b:b4:66:93:d3: 79:df:b4:1b:a1:f9:55:58:f7:ad:7c:55:5c:5b:73:4f:91:6b: 80:be:51:2a:22:3e:c8:3a:67:25:d9:be:be:35:13:e3:c7:84: 67:7c:8d:cf:87:ba:3a:4d:30:51:7c:57:16:87:50:24:a7:cd: fc:8c:b6:ec:c9:b7:2f:87:3a:aa:30:5a:0a:13:60:c0:6b:0c: 0a:8c:dd:4d:87:d4:72:e7:73:f8:cc:d6:e4:c1:40:29:06:fe: 96:29:3d:6d:24:50:b8:1d:41:52:cf:e8:5b:f1:d9:ac:06:b4: 69:af:ba:0e:a4:33:98:ca:7e:32:4b:c3:43:4a:04:c4:ff:72: b5:68:af:be:c9:c4:ab:99:87:d4:48:95:d1:ed:ba:93:44:26: e9:c8:15:64:46:3f:ca:a1:6d:3d:c8:8a:9b:0d:15:c2:9b:43: 02:d4:3f:d1:03:21:82:e1:3c:ae:fa:80:d7:89:68:43:40:ae: 28:10:c6:85 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUZ/FbL1Bgi/vMhjzmOwuZea98kvAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjYxMzQxNTVaFw0yNzAzMjUxMzQ2NTVaMDMxMTAvBgNV BAMTKDFBM0UyRkE3OUY5QjUwRkQzNTgzMzc1RjdBRDFDRjk5MDhDNkQ2QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsn56Qvx8CxiNw0iuklfJ3HWu 6qaUCFYrEDce6eZronfFmHThL39bcLYMywMoqvYQZucrh9E5SSici11M+G3Uo5Uf a3y86K3EVRGydEePQDXeqNeKsb4XsBCGdO6Fy5pK0B1/DSs6xxBUf8os9/FMizov IufsRIIGmGFkytdqwl5gyf7eWSu0P/MYyN0IvxVVEGMx/34/w78j0bosF4JMds9R Frfm4iYbuNNVKsKsM57Mgz9jJVwSejrgLht8gBa9OV9zAeO9RLdy732KZ5j1M0BL mRdf7A8y6K29HiANuYNZqJl+Sx2G0Id7wk1+47wbC/eqhgjAgcfmA1pCcLMpAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUGj4vp5+bUP01gzdfetHPmQjG1qIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOzANBgkqhkiG 9w0BAQsFAAOCAQEAdLfdm77Ylw55ZgPW72h9GBUpQ7BnQzK+vBC5JaLC+0thjdt6 su0tDTBbMTgWljQvnK5mcFFD63orzdWUMA0Xvwf03ju0ZpPTed+0G6H5VVj3rXxV XFtzT5FrgL5RKiI+yDpnJdm+vjUT48eEZ3yNz4e6Ok0wUXxXFodQJKfN/Iy27Mm3 L4c6qjBaChNgwGsMCozdTYfUcudz+MzW5MFAKQb+lik9bSRQuB1BUs/oW/HZrAa0 aa+6DqQzmMp+MkvDQ0oExP9ytWivvsnEq5mH1EiV0e26k0Qm6cgVZEY/yqFtPciK mw0VwptDAtQ/0QMhguE8rvqA14loQ0CuKBDGhQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:38:33 2026 by rpki-client