$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131362e302f32322d3234203d3e20383334.roa File: 3130392e37322e3131362e302f32322d3234203d3e20383334.roa (raw, json) Hash identifier: npt0MadcBRCFh1SOTpEEikCaJCzzLD6wgZZCZsa6H2g= Subject key identifier: C1:E4:9A:58:9B:A5:09:B6:6C:FA:EF:44:67:1F:0C:35:51:F1:ED:11 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 76A96A6BEA3D0125ECCA825843A1F070546C2186 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131362e302f32322d3234203d3e20383334.roa Signing time: Mon 23 Feb 2026 15:06:26 +0000 ROA not before: Mon 23 Feb 2026 15:01:26 +0000 ROA not after: Mon 22 Feb 2027 15:06:26 +0000 asID: 834 IP address blocks: 109.72.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a9:6a:6b:ea:3d:01:25:ec:ca:82:58:43:a1:f0:70:54:6c:21:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:26 2026 GMT Not After : Feb 22 15:06:26 2027 GMT Subject: CN=C1E49A589BA509B66CFAEF44671F0C3551F1ED11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9f:23:f6:25:57:0f:cc:a9:8a:70:81:5d:5a: a0:3f:54:7b:49:ff:f2:27:93:43:ac:c6:1c:d6:26: 16:32:dd:2c:62:27:fc:6b:ba:36:d7:4b:02:85:da: 7d:ef:6c:15:d3:f1:99:24:8b:d5:4a:99:03:fc:bd: 97:75:84:13:85:5d:81:e5:fb:90:fa:60:8e:22:18: ea:0c:60:4c:4b:d4:67:65:71:04:aa:33:8a:81:62: 5f:6d:d0:65:b8:1d:51:0c:f6:40:46:98:65:7b:69: 44:45:f9:b7:a4:ba:46:88:2c:fc:94:eb:8c:cf:01: 6d:be:57:f0:9f:e5:8c:78:db:68:48:7f:fc:23:0f: de:8b:c0:85:ba:d4:17:1c:76:4b:47:d2:6b:28:c3: ba:11:05:8a:77:18:67:32:49:45:3f:49:af:17:73: 3c:02:11:93:f9:f1:c1:94:c6:9e:88:8a:ce:94:4f: 7a:d5:67:cc:79:28:0f:40:58:83:83:1d:fb:56:e1: 54:bc:e6:81:9a:e2:72:79:72:bb:52:12:c7:18:9f: 10:59:8e:3d:f2:a1:33:59:7f:98:65:00:f1:3f:41: 68:c3:4e:75:b6:6e:e3:da:0e:1d:34:c4:d3:34:5a: 2b:11:1b:ce:d4:75:c2:29:92:51:37:bf:20:f0:40: 25:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E4:9A:58:9B:A5:09:B6:6C:FA:EF:44:67:1F:0C:35:51:F1:ED:11 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131362e302f32322d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.116.0/22 Signature Algorithm: sha256WithRSAEncryption af:52:e5:8c:e9:bc:bb:69:dc:b7:0b:18:96:da:5f:30:12:d8: 25:c8:53:e6:0a:3c:5e:d6:4f:93:2c:3f:ab:ff:f3:01:f6:90: f8:03:88:f9:20:8a:05:19:41:b2:23:74:b8:a9:32:aa:f5:d2: 3d:b9:54:17:95:5e:f3:0f:02:c5:24:a7:73:85:36:bf:7f:b2: 6e:54:de:52:97:a5:6a:c7:5d:0e:98:9f:dc:a7:31:1a:75:3b: 1d:7e:67:65:85:c0:b5:5a:8c:bb:b1:2e:47:bf:c7:b4:5e:04: 5d:ef:df:23:ed:7b:e7:de:53:a6:86:6d:63:47:d1:48:25:15: 41:01:8e:e9:44:8b:10:48:06:13:57:35:d1:8a:b0:88:82:8b: 7c:0a:d0:ae:9c:f3:67:ce:6b:02:d9:30:6b:f8:7b:94:22:ab: 76:5b:8b:01:dd:6f:00:f6:1e:8b:f6:17:bd:d3:68:c8:c2:c6: 57:3a:78:de:dc:ba:ce:53:1e:2c:18:41:fa:97:c3:6c:08:0a: bf:0d:aa:79:bf:08:00:6e:f0:b5:52:3e:08:31:c4:56:b7:f0: a1:61:cf:c6:e9:6c:c1:96:7b:de:4f:fe:f2:e3:e6:35:63:dd: c3:aa:fc:ee:57:54:d6:3a:93:40:45:16:e6:4e:dd:f5:83:a7: 46:33:bc:3c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUdqlqa+o9ASXsyoJYQ6HwcFRsIYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjZaFw0yNzAyMjIxNTA2MjZaMDMxMTAvBgNV BAMTKEMxRTQ5QTU4OUJBNTA5QjY2Q0ZBRUY0NDY3MUYwQzM1NTFGMUVEMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtnyP2JVcPzKmKcIFdWqA/VHtJ //Ink0OsxhzWJhYy3SxiJ/xrujbXSwKF2n3vbBXT8Zkki9VKmQP8vZd1hBOFXYHl +5D6YI4iGOoMYExL1GdlcQSqM4qBYl9t0GW4HVEM9kBGmGV7aURF+bekukaILPyU 64zPAW2+V/Cf5Yx422hIf/wjD96LwIW61BccdktH0msow7oRBYp3GGcySUU/Sa8X czwCEZP58cGUxp6Iis6UT3rVZ8x5KA9AWIODHftW4VS85oGa4nJ5crtSEscYnxBZ jj3yoTNZf5hlAPE/QWjDTnW2buPaDh00xNM0WisRG87UdcIpklE3vyDwQCXLAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUweSaWJulCbZs+u9EZx8MNVHx7REwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCbUh0MA0GCSqGSIb3DQEB CwUAA4IBAQCvUuWM6by7ady3CxiW2l8wEtglyFPmCjxe1k+TLD+r//MB9pD4A4j5 IIoFGUGyI3S4qTKq9dI9uVQXlV7zDwLFJKdzhTa/f7JuVN5Sl6Vqx10OmJ/cpzEa dTsdfmdlhcC1Woy7sS5Hv8e0XgRd798j7Xvn3lOmhm1jR9FIJRVBAY7pRIsQSAYT VzXRirCIgot8CtCunPNnzmsC2TBr+HuUIqt2W4sB3W8A9h6L9he902jIwsZXOnje 3LrOUx4sGEH6l8NsCAq/Dap5vwgAbvC1Uj4IMcRWt/ChYc/G6WzBlnveT/7y4+Y1 Y93DqvzuV1TWOpNARRbmTt31g6dGM7w8 -----END CERTIFICATE-----Generated at Mon Mar 2 00:58:17 2026 by rpki-client