$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131322e302f32342d3234203d3e203432363839.roa File: 3130392e37322e3131322e302f32342d3234203d3e203432363839.roa (raw, json) Hash identifier: h0IHWKS3DN6kedO/pyMDtRMO1tid4BlYQaWum2NteyQ= Subject key identifier: 52:14:2E:81:81:1E:19:C8:29:65:C0:EE:24:36:B3:F8:5C:86:E7:25 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 07B51501B36DD1EDC9EE44132AAA36787256C6D2 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131322e302f32342d3234203d3e203432363839.roa Signing time: Mon 23 Feb 2026 15:06:25 +0000 ROA not before: Mon 23 Feb 2026 15:01:25 +0000 ROA not after: Mon 22 Feb 2027 15:06:25 +0000 asID: 42689 IP address blocks: 109.72.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b5:15:01:b3:6d:d1:ed:c9:ee:44:13:2a:aa:36:78:72:56:c6:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:25 2026 GMT Not After : Feb 22 15:06:25 2027 GMT Subject: CN=52142E81811E19C82965C0EE2436B3F85C86E725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:59:5d:36:6a:59:6a:a2:90:4b:7d:96:76:55: 3e:2e:ad:ce:e3:b7:a2:3c:d0:0e:64:48:29:19:aa: 97:c5:1f:ed:b2:26:7c:88:e0:43:d6:c9:87:11:7d: e3:6c:93:54:5f:fd:6f:65:39:2c:11:c1:da:10:23: 2d:c3:16:57:ad:ae:25:b9:7f:63:6d:aa:83:a2:52: 55:41:e6:bc:4e:d8:94:ab:29:ed:ac:45:5e:d4:85: 69:40:7b:66:78:66:35:e5:36:88:c7:3a:a4:54:7e: f9:2d:40:dc:77:b6:dd:87:3f:91:1a:bc:10:e8:06: 67:e1:28:b6:61:e9:20:7e:17:5a:c0:0a:a3:16:72: 6c:23:01:42:4e:96:f6:cc:a6:23:53:17:05:40:73: 3d:9f:c8:be:f4:47:28:16:5e:a8:02:c1:ed:76:a4: 9f:e4:23:d6:dc:54:06:cc:03:34:5e:a6:7a:99:6c: 64:31:f2:90:8d:20:e0:b3:e2:33:0f:8a:7f:dc:42: c0:bc:99:4b:5f:b2:66:81:3a:34:29:58:84:96:2e: a8:71:f2:4d:9a:90:68:6d:8b:40:20:6f:73:4e:f9: 87:08:8b:21:9b:83:a2:b5:dc:b7:5f:7b:54:86:ae: 26:35:5f:14:b7:73:b1:03:c4:2e:95:fd:52:8f:3b: 10:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:14:2E:81:81:1E:19:C8:29:65:C0:EE:24:36:B3:F8:5C:86:E7:25 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131322e302f32342d3234203d3e203432363839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.112.0/24 Signature Algorithm: sha256WithRSAEncryption 56:35:9b:8f:c4:7d:b2:1d:ba:2e:3a:42:5f:a7:90:4f:4f:50: 98:f7:e2:51:2f:0e:0a:93:27:9e:b8:df:33:53:91:ed:3b:ba: 38:89:a3:c7:35:33:be:86:9b:84:aa:ba:87:1d:3d:54:76:3c: e0:48:2c:15:97:ee:ba:7c:ea:29:1d:3b:2f:e7:99:ae:ff:c5: d3:9a:f1:82:05:5c:e0:dd:23:1b:db:3e:8d:4a:ca:47:6b:d8: 2b:5a:d7:4b:4a:1b:4f:2e:d6:a1:82:40:b3:6b:b0:1f:59:d0: f8:08:fc:8c:bd:76:9f:08:c7:20:20:1a:c0:13:e1:84:a9:61: 5d:7d:25:83:8e:96:b1:a3:cf:73:69:d3:e7:a9:6d:a7:af:45: 93:2a:d2:47:80:cc:8f:94:c0:90:9f:27:d1:dd:43:e4:d8:90: a0:ce:9f:c9:ee:9e:df:21:0f:5a:47:03:e2:1b:89:4a:bc:68: b1:6e:db:93:27:47:63:68:4a:88:6e:52:1d:70:42:2a:6f:b6: 20:6e:4a:32:fe:74:91:57:3b:b6:95:72:57:2f:9e:ea:c4:c7: b2:01:38:11:46:71:d2:f4:84:87:86:14:f5:16:8e:5c:82:48: 4e:2e:08:da:4c:ac:c8:08:7b:e1:49:b2:e4:c7:9b:64:f9:79: ec:3e:11:5b -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUB7UVAbNt0e3J7kQTKqo2eHJWxtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjVaFw0yNzAyMjIxNTA2MjVaMDMxMTAvBgNV BAMTKDUyMTQyRTgxODExRTE5QzgyOTY1QzBFRTI0MzZCM0Y4NUM4NkU3MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqWV02allqopBLfZZ2VT4urc7j t6I80A5kSCkZqpfFH+2yJnyI4EPWyYcRfeNsk1Rf/W9lOSwRwdoQIy3DFletriW5 f2NtqoOiUlVB5rxO2JSrKe2sRV7UhWlAe2Z4ZjXlNojHOqRUfvktQNx3tt2HP5Ea vBDoBmfhKLZh6SB+F1rACqMWcmwjAUJOlvbMpiNTFwVAcz2fyL70RygWXqgCwe12 pJ/kI9bcVAbMAzRepnqZbGQx8pCNIOCz4jMPin/cQsC8mUtfsmaBOjQpWISWLqhx 8k2akGhti0Agb3NO+YcIiyGbg6K13Ldfe1SGriY1XxS3c7EDxC6V/VKPOxBXAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUUhQugYEeGcgpZcDuJDaz+FyG5yUwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMjM2MzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1IcDANBgkqhkiG 9w0BAQsFAAOCAQEAVjWbj8R9sh26LjpCX6eQT09QmPfiUS8OCpMnnrjfM1OR7Tu6 OImjxzUzvoabhKq6hx09VHY84EgsFZfuunzqKR07L+eZrv/F05rxggVc4N0jG9s+ jUrKR2vYK1rXS0obTy7WoYJAs2uwH1nQ+Aj8jL12nwjHICAawBPhhKlhXX0lg46W saPPc2nT56ltp69FkyrSR4DMj5TAkJ8n0d1D5NiQoM6fye6e3yEPWkcD4huJSrxo sW7bkydHY2hKiG5SHXBCKm+2IG5KMv50kVc7tpVyVy+e6sTHsgE4EUZx0vSEh4YU 9RaOXIJITi4I2kysyAh74Umy5MebZPl57D4RWw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:25:39 2026 by rpki-client