$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131342e302f32332d3234203d3e20343030383130.roa File: 3130392e37322e3131342e302f32332d3234203d3e20343030383130.roa (raw, json) Hash identifier: 3wKeXI97A7R4Lf1fmkrAuE+JH0fTvM2PUL2T2BcmO94= Subject key identifier: 19:D0:4D:E9:67:95:28:93:C6:2F:A4:96:2D:FA:9A:5B:CB:E9:1B:4A Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 2673B09E41B4DCA123643AD94F08A0463190B82A Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131342e302f32332d3234203d3e20343030383130.roa Signing time: Mon 23 Feb 2026 15:06:25 +0000 ROA not before: Mon 23 Feb 2026 15:01:25 +0000 ROA not after: Mon 22 Feb 2027 15:06:25 +0000 asID: 400810 IP address blocks: 109.72.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:73:b0:9e:41:b4:dc:a1:23:64:3a:d9:4f:08:a0:46:31:90:b8:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:25 2026 GMT Not After : Feb 22 15:06:25 2027 GMT Subject: CN=19D04DE967952893C62FA4962DFA9A5BCBE91B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4a:d1:d9:88:35:05:ea:ff:49:8c:0d:cf:71: 75:e5:01:53:33:ed:21:22:a1:9c:04:b4:52:80:4d: e2:e6:c9:61:7a:b8:f9:74:3e:ec:af:5d:7a:44:23: f0:42:5e:d2:93:8d:a9:12:56:ad:7e:fa:af:23:a5: b3:d1:b6:db:17:fb:2a:a4:c3:dc:e8:0c:78:0f:77: b1:96:89:54:b6:10:10:2d:40:8d:e2:de:64:eb:4c: 2a:51:67:f8:18:0f:0b:e1:73:49:22:6c:a7:c7:68: e6:31:27:d5:4d:c1:fe:dd:90:9b:a0:bb:8f:a7:47: 66:0a:97:0f:42:6a:a1:d5:bb:39:7a:06:3c:87:36: 90:34:0e:4d:f8:4a:d6:d6:ac:59:79:71:eb:af:55: 30:ff:73:39:2b:d5:f6:52:07:c7:e2:e5:36:ba:2f: bb:9d:f4:82:73:26:c7:86:02:8d:aa:17:98:22:6b: ca:8d:94:70:23:31:b7:77:7d:6c:42:f9:fa:68:92: 0d:bc:b3:35:91:de:77:9e:33:26:ff:fc:40:75:29: b3:34:fa:1e:71:34:53:3b:c3:5d:0c:f2:09:17:cc: ef:e3:4c:bb:e4:7f:61:70:39:9a:ff:d5:64:96:e4: 88:cb:1c:4b:83:44:83:5b:43:61:f6:4e:f6:2a:c8: a1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D0:4D:E9:67:95:28:93:C6:2F:A4:96:2D:FA:9A:5B:CB:E9:1B:4A X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131342e302f32332d3234203d3e20343030383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.114.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:e1:73:34:2c:bc:73:c1:5a:f1:3f:f8:39:84:1f:92:46:ae: ad:44:f2:cd:c7:84:02:01:99:58:d8:d2:31:b7:18:6a:a5:3e: 8e:8d:82:55:1b:f4:e9:75:54:fd:b4:96:7a:7e:75:36:9d:cf: 85:db:cb:4a:74:03:21:70:dc:f5:f4:fd:a3:b6:15:61:dc:99: e5:4e:e5:3e:d7:80:38:31:30:ef:c4:3e:88:04:39:6c:72:1b: 36:a2:35:e3:68:82:ba:12:2a:42:6a:7b:5f:42:83:56:da:27: de:63:99:36:3a:b6:b2:2d:11:e2:df:2e:06:82:7a:f3:1a:d6: 3b:82:15:70:36:2a:66:c8:86:66:12:15:67:63:6a:36:54:e9: 1f:9d:80:0f:30:65:76:4f:89:f0:19:99:9e:d3:6f:37:17:d3: 27:a4:98:6d:95:ce:05:76:5d:f3:6b:e6:11:b5:42:ca:71:02: 89:33:b5:d2:35:b1:f9:41:7b:c0:8d:02:f7:d0:a1:bc:8d:87: c9:fe:2e:b4:11:37:e0:51:63:0e:0e:e4:ca:1c:74:d6:56:07: ba:3a:63:bf:54:56:66:03:93:b1:65:cb:d7:08:6e:fe:d8:89: 86:51:42:90:71:e6:d4:cb:7b:6a:9f:04:18:de:f2:a4:87:7f: 57:9e:18:4f -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIUJnOwnkG03KEjZDrZTwigRjGQuCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjVaFw0yNzAyMjIxNTA2MjVaMDMxMTAvBgNV BAMTKDE5RDA0REU5Njc5NTI4OTNDNjJGQTQ5NjJERkE5QTVCQ0JFOTFCNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVStHZiDUF6v9JjA3PcXXlAVMz 7SEioZwEtFKATeLmyWF6uPl0PuyvXXpEI/BCXtKTjakSVq1++q8jpbPRttsX+yqk w9zoDHgPd7GWiVS2EBAtQI3i3mTrTCpRZ/gYDwvhc0kibKfHaOYxJ9VNwf7dkJug u4+nR2YKlw9CaqHVuzl6BjyHNpA0Dk34StbWrFl5ceuvVTD/czkr1fZSB8fi5Ta6 L7ud9IJzJseGAo2qF5gia8qNlHAjMbd3fWxC+fpokg28szWR3neeMyb//EB1KbM0 +h5xNFM7w10M8gkXzO/jTLvkf2FwOZr/1WSW5IjLHEuDRINbQ2H2TvYqyKEfAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUGdBN6WeVKJPGL6SWLfqaW8vpG0owHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzMDMwMzgzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbUhyMA0GCSqG SIb3DQEBCwUAA4IBAQBb4XM0LLxzwVrxP/g5hB+SRq6tRPLNx4QCAZlY2NIxtxhq pT6OjYJVG/TpdVT9tJZ6fnU2nc+F28tKdAMhcNz19P2jthVh3JnlTuU+14A4MTDv xD6IBDlschs2ojXjaIK6EipCantfQoNW2ifeY5k2OrayLRHi3y4GgnrzGtY7ghVw NipmyIZmEhVnY2o2VOkfnYAPMGV2T4nwGZme0283F9MnpJhtlc4Fdl3za+YRtULK cQKJM7XSNbH5QXvAjQL30KG8jYfJ/i60ETfgUWMODuTKHHTWVge6OmO/VFZmA5Ox ZcvXCG7+2ImGUUKQcebUy3tqnwQY3vKkh39XnhhP -----END CERTIFICATE-----Generated at Mon Mar 2 00:58:48 2026 by rpki-client