$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131332e302f32342d3234203d3e20343031383338.roa File: 3130392e37322e3131332e302f32342d3234203d3e20343031383338.roa (raw, json) Hash identifier: Ajch++Rt5d20eCMDNNPdN0XZvw3VbwqCvNAAYOqZHJk= Subject key identifier: 18:A3:1F:76:6F:E9:14:15:E2:48:A0:74:9F:3B:E0:1D:00:9C:D3:F8 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 117278A7FD34850B7E049414A2C576D04F4C4073 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131332e302f32342d3234203d3e20343031383338.roa Signing time: Mon 23 Feb 2026 15:06:25 +0000 ROA not before: Mon 23 Feb 2026 15:01:25 +0000 ROA not after: Mon 22 Feb 2027 15:06:25 +0000 asID: 401838 IP address blocks: 109.72.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:72:78:a7:fd:34:85:0b:7e:04:94:14:a2:c5:76:d0:4f:4c:40:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:25 2026 GMT Not After : Feb 22 15:06:25 2027 GMT Subject: CN=18A31F766FE91415E248A0749F3BE01D009CD3F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:5f:4c:78:ee:35:82:72:f1:17:64:9e:94:77: 2a:4a:28:d3:59:6e:fa:c9:c8:a3:91:c4:57:55:46: 69:17:60:a4:08:01:6b:72:6e:56:ef:ca:65:36:c3: c0:fa:1e:5d:65:2e:ad:54:b4:eb:c6:16:1a:95:f4: 5c:3e:db:bd:de:a7:ba:74:7a:06:50:5a:a9:26:2e: 54:82:14:aa:c7:8b:c4:3d:2f:12:c0:73:e6:83:28: 78:f4:e9:62:37:22:4b:4e:59:cc:c3:c8:86:c5:ae: 20:ea:b1:f1:d5:4c:11:1a:c0:d4:43:fb:1f:91:1f: ff:55:4e:44:c9:9d:ac:f8:ec:50:d8:49:77:ce:6b: b4:a9:f1:b0:8a:89:26:c7:d2:93:96:0c:8e:7b:66: d5:04:15:76:3a:af:09:d8:6c:0f:df:ab:ea:fa:27: 4d:f2:c4:ff:c3:3f:bf:71:e8:fd:ae:0f:1b:f7:8c: f5:8f:c7:1b:84:1e:66:25:41:23:10:17:5f:02:41: 83:74:58:61:3a:1a:b8:95:9b:76:19:c8:31:a4:f9: 54:3f:56:b3:4a:6a:2e:57:42:e7:7a:66:de:47:5a: 3b:53:bb:76:f6:53:4d:65:ee:c6:d5:43:83:da:e7: cc:bd:5d:c9:f9:77:96:7b:8c:4e:00:44:c8:eb:04: bb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A3:1F:76:6F:E9:14:15:E2:48:A0:74:9F:3B:E0:1D:00:9C:D3:F8 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131332e302f32342d3234203d3e20343031383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.113.0/24 Signature Algorithm: sha256WithRSAEncryption 85:63:9f:da:09:e6:e4:7c:8f:e5:d1:76:d8:1b:23:c9:8a:c7: 82:66:8b:42:a9:c4:15:31:26:d5:43:4f:d5:62:d4:07:9d:f8: d0:f6:c2:ba:ca:d3:48:41:ef:35:34:83:33:9c:43:3e:e0:c1: f6:bd:be:69:24:0b:2a:65:ef:eb:11:d1:d5:b9:46:d7:8e:f2: ca:78:e0:bc:cc:89:f6:e1:6a:4b:57:db:35:8b:32:55:a6:03: 50:e8:85:1f:b8:be:da:c5:0f:b2:44:48:8b:80:3d:ad:c9:ee: 85:99:de:b9:cb:31:94:ee:49:e8:04:1f:b1:c9:9e:2b:8e:c3: 4e:09:c1:d8:96:07:fe:0a:42:48:78:70:5a:e0:fa:95:03:bd: 4b:e7:3d:99:d7:81:5a:3e:15:22:18:eb:50:32:45:2d:79:ab: 3d:91:b6:26:24:47:5d:0a:85:f9:99:fb:fd:8d:fa:da:ce:46: 9f:2d:7d:2d:8c:de:85:7d:92:39:11:11:49:ca:d4:d4:8c:3c: 8b:e8:e2:82:46:2e:01:ad:5b:01:6c:b9:7a:2d:79:b3:46:b4: 65:a8:34:93:56:6c:d7:b4:02:e9:3a:23:1d:e1:7c:91:4f:46: ca:fe:4e:28:15:1f:54:4a:49:69:01:47:03:6d:fa:2f:07:20: d7:9a:29:12 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUEXJ4p/00hQt+BJQUosV20E9MQHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjVaFw0yNzAyMjIxNTA2MjVaMDMxMTAvBgNV BAMTKDE4QTMxRjc2NkZFOTE0MTVFMjQ4QTA3NDlGM0JFMDFEMDA5Q0QzRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1X0x47jWCcvEXZJ6UdypKKNNZ bvrJyKORxFdVRmkXYKQIAWtyblbvymU2w8D6Hl1lLq1UtOvGFhqV9Fw+273ep7p0 egZQWqkmLlSCFKrHi8Q9LxLAc+aDKHj06WI3IktOWczDyIbFriDqsfHVTBEawNRD +x+RH/9VTkTJnaz47FDYSXfOa7Sp8bCKiSbH0pOWDI57ZtUEFXY6rwnYbA/fq+r6 J03yxP/DP79x6P2uDxv3jPWPxxuEHmYlQSMQF18CQYN0WGE6GriVm3YZyDGk+VQ/ VrNKai5XQud6Zt5HWjtTu3b2U01l7sbVQ4Pa58y9Xcn5d5Z7jE4ARMjrBLudAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUGKMfdm/pFBXiSKB0nzvgHQCc0/gwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzMDMxMzgzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUhxMA0GCSqG SIb3DQEBCwUAA4IBAQCFY5/aCebkfI/l0XbYGyPJiseCZotCqcQVMSbVQ0/VYtQH nfjQ9sK6ytNIQe81NIMznEM+4MH2vb5pJAsqZe/rEdHVuUbXjvLKeOC8zIn24WpL V9s1izJVpgNQ6IUfuL7axQ+yREiLgD2tye6Fmd65yzGU7knoBB+xyZ4rjsNOCcHY lgf+CkJIeHBa4PqVA71L5z2Z14FaPhUiGOtQMkUteas9kbYmJEddCoX5mfv9jfra zkafLX0tjN6FfZI5ERFJytTUjDyL6OKCRi4BrVsBbLl6LXmzRrRlqDSTVmzXtALp OiMd4XyRT0bK/k4oFR9USklpAUcDbfovByDXmikS -----END CERTIFICATE-----Generated at Sun Mar 1 22:32:16 2026 by rpki-client