$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139332e302f32342d3234203d3e2035353131.roa File: 37372e37352e3139332e302f32342d3234203d3e2035353131.roa (raw, json) Hash identifier: App9CwKYOnllQap36YkMJ2vDOfUs7VkM3w83QCcfX38= Subject key identifier: B5:55:91:BA:50:5E:0A:75:E4:36:5F:76:C8:8B:47:07:71:0E:51:05 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 39B6E0C3F62A988D1317A2F66CC4EFDD52F3C306 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139332e302f32342d3234203d3e2035353131.roa Signing time: Fri 04 Jul 2025 16:54:13 +0000 ROA not before: Fri 04 Jul 2025 16:49:13 +0000 ROA not after: Fri 03 Jul 2026 16:54:13 +0000 asID: 5511 IP address blocks: 77.75.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 09:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:b6:e0:c3:f6:2a:98:8d:13:17:a2:f6:6c:c4:ef:dd:52:f3:c3:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 4 16:49:13 2025 GMT Not After : Jul 3 16:54:13 2026 GMT Subject: CN=B55591BA505E0A75E4365F76C88B4707710E5105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e3:3c:28:cc:42:14:80:b0:05:22:34:f1:bd: b3:80:65:2c:6f:a8:52:9c:45:de:a3:f6:4c:ce:6b: 94:09:f0:ce:c0:6a:43:ae:44:8b:a6:29:da:94:1a: cd:6d:07:6b:7d:7c:d8:fa:0e:40:61:ac:1c:1a:25: 71:3b:51:c6:a4:34:3d:fe:41:99:07:fe:29:f8:ac: cc:df:fc:51:ff:39:09:b5:97:51:3c:08:60:cd:74: 9b:6d:3f:0a:00:95:2b:d9:72:c3:a7:a6:8d:3b:e7: 83:d6:96:f3:88:a1:ab:b3:01:1e:4e:fd:ec:65:97: a3:9d:99:3d:df:94:f4:4e:dd:28:7b:15:01:e6:0f: b6:79:50:f4:58:b6:a0:18:58:a8:68:52:13:fe:c2: 73:9b:b3:36:96:9b:82:a6:cd:cb:25:62:4b:d3:02: ec:78:f5:f4:44:83:08:26:b7:2e:bc:8b:e0:59:9e: bf:08:46:4a:93:59:8c:b0:fa:c7:54:be:ac:13:d8: 41:23:14:66:a9:8c:53:b0:83:bf:25:10:79:43:4c: 2a:49:e3:c0:49:e9:9d:b9:db:fe:82:9b:13:44:2e: cd:d4:3e:11:f4:a9:11:1b:10:8a:9d:b9:2e:1e:70: 11:20:f2:e1:fb:12:ec:ee:63:ac:ce:85:d4:79:13: 99:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:55:91:BA:50:5E:0A:75:E4:36:5F:76:C8:8B:47:07:71:0E:51:05 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139332e302f32342d3234203d3e2035353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.75.193.0/24 Signature Algorithm: sha256WithRSAEncryption 90:ff:96:ff:6d:7d:cd:12:e6:db:54:e3:33:1a:5f:6d:95:2f: 01:72:10:e2:78:da:3d:32:32:07:ca:06:f1:58:17:c5:5f:3b: a0:7f:74:1d:cc:98:b8:1f:81:7f:8f:de:93:55:ba:bb:78:22: 09:2a:35:e0:95:35:34:f3:25:c5:b6:34:a3:cb:18:a9:f9:85: d2:aa:fb:66:57:9d:d6:dc:42:ca:12:0c:37:d4:8a:d0:5d:dc: 91:a3:84:69:82:c4:96:b6:47:28:90:11:e8:bc:16:f5:70:b9: ef:d0:b4:f5:23:b0:5c:7d:28:ec:31:3e:3c:a9:16:0c:4c:af: 99:29:a8:f9:76:37:72:a1:eb:ae:a3:04:b6:ee:ee:0d:87:b6: 88:e6:ab:b0:4a:1e:58:80:0e:11:f5:aa:0b:37:32:fc:a3:84: 2a:84:ae:d8:da:e0:42:bc:fe:55:f7:8c:f0:51:b5:23:e1:d2: a5:81:cf:90:5f:e1:3c:fd:8c:a7:1f:8b:9d:bd:77:1f:a8:10: ad:aa:7c:39:92:f4:ba:e4:7d:83:bf:42:ad:b4:58:79:c9:05: 1e:75:51:ca:47:97:dd:71:b8:0b:39:01:48:ca:9f:6d:a5:6d: 7f:8f:9b:72:64:d5:44:ef:8f:01:39:d7:37:df:a1:d1:13:dc: c9:e0:d8:e5 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUObbgw/YqmI0TF6L2bMTv3VLzwwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA3MDQxNjQ5MTNaFw0yNjA3MDMxNjU0MTNaMDMxMTAvBgNV BAMTKEI1NTU5MUJBNTA1RTBBNzVFNDM2NUY3NkM4OEI0NzA3NzEwRTUxMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy4zwozEIUgLAFIjTxvbOAZSxv qFKcRd6j9kzOa5QJ8M7AakOuRIumKdqUGs1tB2t9fNj6DkBhrBwaJXE7UcakND3+ QZkH/in4rMzf/FH/OQm1l1E8CGDNdJttPwoAlSvZcsOnpo0754PWlvOIoauzAR5O /exll6OdmT3flPRO3Sh7FQHmD7Z5UPRYtqAYWKhoUhP+wnObszaWm4KmzcslYkvT Aux49fREgwgmty68i+BZnr8IRkqTWYyw+sdUvqwT2EEjFGapjFOwg78lEHlDTCpJ 48BJ6Z252/6CmxNELs3UPhH0qREbEIqduS4ecBEg8uH7EuzuY6zOhdR5E5kPAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUtVWRulBeCnXkNl92yItHB3EOUQUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM3MzcyZTM3MzUyZTMxMzkzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUvBMA0GCSqGSIb3DQEB CwUAA4IBAQCQ/5b/bX3NEubbVOMzGl9tlS8BchDieNo9MjIHygbxWBfFXzugf3Qd zJi4H4F/j96TVbq7eCIJKjXglTU08yXFtjSjyxip+YXSqvtmV53W3ELKEgw31IrQ XdyRo4RpgsSWtkcokBHovBb1cLnv0LT1I7BcfSjsMT48qRYMTK+ZKaj5djdyoeuu owS27u4Nh7aI5quwSh5YgA4R9aoLNzL8o4QqhK7Y2uBCvP5V94zwUbUj4dKlgc+Q X+E8/YynH4udvXcfqBCtqnw5kvS65H2Dv0KttFh5yQUedVHKR5fdcbgLOQFIyp9t pW1/j5tyZNVE748BOdc336HRE9zJ4Njl -----END CERTIFICATE-----Generated at Tue Nov 4 16:38:01 2025 by rpki-client