$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e20383334.roa File: 352e38332e3230392e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: /0ShQbxo7ZWbmtBY+k8uzqEk0At94OiChEFhnH8akx8= Subject key identifier: 85:6D:01:DA:65:1F:74:A0:B6:AD:12:20:8C:D8:30:C5:3E:7E:CC:51 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 282F39351699118A8F72782F600C8382F3781993 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e20383334.roa Signing time: Thu 19 Jun 2025 00:02:44 +0000 ROA not before: Wed 18 Jun 2025 23:57:44 +0000 ROA not after: Thu 18 Jun 2026 00:02:44 +0000 asID: 834 IP address blocks: 5.83.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 22 Jun 2025 06:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:2f:39:35:16:99:11:8a:8f:72:78:2f:60:0c:83:82:f3:78:19:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jun 18 23:57:44 2025 GMT Not After : Jun 18 00:02:44 2026 GMT Subject: CN=856D01DA651F74A0B6AD12208CD830C53E7ECC51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:43:ce:a6:92:2e:2e:a1:80:70:5d:cd:28:1e: 51:a1:d8:fb:17:a2:7c:13:1c:55:8d:d9:0a:5a:02: e2:d7:2a:7e:81:9e:fd:b4:e8:7f:4e:b1:df:65:f5: aa:b4:2d:41:d3:40:f6:95:91:e4:00:d4:eb:de:73: 0c:ba:f2:36:16:d8:81:5c:47:e1:bc:24:ef:a4:a4: 68:3a:45:fa:5f:10:e7:43:e5:e5:05:c8:f3:32:0c: c0:ac:dc:57:c0:74:9b:47:01:a8:8d:c6:a7:b0:fa: 48:ca:90:42:e3:c4:92:5b:07:e7:8c:71:60:82:30: cc:02:2d:ac:a8:e6:e8:60:a3:c7:4b:35:5e:98:e0: 54:2f:bb:08:40:2a:01:16:9c:b5:d8:e7:97:3e:8d: 5b:f3:b8:d8:5c:bd:13:6d:71:68:49:5b:19:ea:b2: 6a:e8:9f:23:36:f2:f2:ad:9a:1d:73:28:92:de:56: 7e:d2:2c:e4:4a:c4:47:b8:9a:8b:97:d6:45:a9:f2: 47:9a:c8:4e:13:06:69:08:40:68:0a:31:a5:2e:d1: 2d:48:fd:c3:b1:8d:2a:4f:37:ed:65:ad:51:6a:9a: 61:45:f6:af:b0:6c:87:ed:58:a5:11:8d:3a:60:44: be:96:26:5e:e2:54:1b:ec:d6:84:e0:ed:c3:08:0d: 78:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6D:01:DA:65:1F:74:A0:B6:AD:12:20:8C:D8:30:C5:3E:7E:CC:51 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.209.0/24 Signature Algorithm: sha256WithRSAEncryption 53:3f:c1:ae:31:f6:dc:6c:de:37:00:a7:03:01:c2:05:74:89: aa:18:3d:93:88:6e:af:d2:fc:1a:3b:8a:91:29:46:1e:cd:d8: 61:16:89:1e:9e:0f:99:34:4e:b5:28:2f:52:d3:e1:81:50:27: d4:15:36:f4:fa:2e:fc:f6:af:54:3a:c5:1f:57:f9:6c:4e:48: 40:bb:1f:c0:c6:6f:09:05:05:e4:09:b1:3a:32:65:e0:16:ab: 31:7f:4f:f6:7a:b0:af:09:29:54:8b:89:f1:93:ad:ff:ba:4d: 03:c1:97:38:f9:29:53:fb:2a:b9:c9:36:3b:d1:e9:22:b3:9a: 3a:0b:87:1c:c9:1e:8c:20:ac:d1:88:fc:d8:de:ed:08:f5:d4: 52:09:f3:a4:e7:9c:ee:20:83:a0:65:5b:25:32:f2:2c:8c:08: 0a:b0:e6:0f:62:22:34:dd:f4:f9:38:22:64:63:ef:e8:15:25: 00:c2:f0:aa:7c:36:3e:63:16:fa:23:6a:5f:10:b0:c5:27:df: db:ef:f7:78:cb:35:39:a9:42:bb:93:c8:99:90:8b:67:db:65: 19:ab:a8:ee:18:c8:4d:dd:66:e7:92:79:0f:07:f5:7f:6d:ec: 6c:5a:25:2b:ff:23:34:bd:7d:f6:fb:b5:a6:d8:ee:d5:e7:04: 72:1a:73:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUKC85NRaZEYqPcngvYAyDgvN4GZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA2MTgyMzU3NDRaFw0yNjA2MTgwMDAyNDRaMDMxMTAvBgNV BAMTKDg1NkQwMURBNjUxRjc0QTBCNkFEMTIyMDhDRDgzMEM1M0U3RUNDNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcQ86mki4uoYBwXc0oHlGh2PsX onwTHFWN2QpaAuLXKn6Bnv206H9Osd9l9aq0LUHTQPaVkeQA1Ovecwy68jYW2IFc R+G8JO+kpGg6RfpfEOdD5eUFyPMyDMCs3FfAdJtHAaiNxqew+kjKkELjxJJbB+eM cWCCMMwCLayo5uhgo8dLNV6Y4FQvuwhAKgEWnLXY55c+jVvzuNhcvRNtcWhJWxnq smronyM28vKtmh1zKJLeVn7SLORKxEe4mouX1kWp8keayE4TBmkIQGgKMaUu0S1I /cOxjSpPN+1lrVFqmmFF9q+wbIftWKURjTpgRL6WJl7iVBvs1oTg7cMIDXgDAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUhW0B2mUfdKC2rRIgjNgwxT5+zFEwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzAzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVT0TANBgkqhkiG9w0BAQsFAAOC AQEAUz/BrjH23GzeNwCnAwHCBXSJqhg9k4hur9L8GjuKkSlGHs3YYRaJHp4PmTRO tSgvUtPhgVAn1BU29Pou/PavVDrFH1f5bE5IQLsfwMZvCQUF5AmxOjJl4BarMX9P 9nqwrwkpVIuJ8ZOt/7pNA8GXOPkpU/squck2O9HpIrOaOguHHMkejCCs0Yj82N7t CPXUUgnzpOec7iCDoGVbJTLyLIwICrDmD2IiNN30+TgiZGPv6BUlAMLwqnw2PmMW +iNqXxCwxSff2+/3eMs1OalCu5PImZCLZ9tlGauo7hjITd1m55J5Dwf1f23sbFol K/8jNL199vu1ptju1ecEchpzyQ== -----END CERTIFICATE-----Generated at Sat Jun 21 14:06:59 2025 by rpki-client