$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131382e302f32342d3234203d3e203538303631.roa File: 3130392e37322e3131382e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: QxHyAPvvrvnAi0YF3Bi2zVHnsxIt0s8mAxxy5/IvP8E= Subject key identifier: 25:1A:B9:5B:E9:23:AE:BA:F1:A4:D0:19:6E:E3:7C:31:D2:42:EF:81 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 07035C74909E6FE3A2925BB7B8C339E63DC5F9B0 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131382e302f32342d3234203d3e203538303631.roa Signing time: Mon 23 Feb 2026 15:06:26 +0000 ROA not before: Mon 23 Feb 2026 15:01:26 +0000 ROA not after: Mon 22 Feb 2027 15:06:26 +0000 asID: 58061 IP address blocks: 109.72.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 02:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:03:5c:74:90:9e:6f:e3:a2:92:5b:b7:b8:c3:39:e6:3d:c5:f9:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:26 2026 GMT Not After : Feb 22 15:06:26 2027 GMT Subject: CN=251AB95BE923AEBAF1A4D0196EE37C31D242EF81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:2c:16:62:fd:48:d7:91:4c:e1:85:1e:dd: 5a:e1:38:2a:53:e0:2d:93:83:ea:f0:fa:3c:7a:48: 37:30:c2:d5:84:09:95:4b:f5:5a:ae:0a:e9:a8:d7: cf:fe:e4:4e:68:38:87:65:6d:80:15:63:b8:ff:a3: 49:be:c6:21:b2:4b:b3:5b:cd:ed:d0:c7:9a:88:73: e7:b4:ee:d0:fe:ee:64:45:af:73:6e:71:81:7d:cc: 04:1d:d0:ce:81:26:0d:7f:8c:29:95:18:b4:fb:c8: 5b:81:db:77:e9:71:31:8a:d2:31:a5:87:af:e9:45: 11:93:11:bd:d8:12:14:d5:df:27:dc:1f:7b:d0:59: 29:ba:60:f5:fe:9d:11:5a:7e:06:c1:3e:04:be:bc: 30:d5:bc:24:5d:0d:45:41:f8:d8:f4:4c:16:b8:b0: c8:bd:97:c3:5b:ee:52:a4:74:4f:a0:88:ce:6c:14: 39:bd:35:40:de:88:4c:3c:94:01:5a:6b:6d:80:70: d9:4a:42:16:33:3d:12:7f:74:4e:de:f3:dc:6d:e1: 79:54:24:3f:5d:86:da:8a:3e:64:4e:a1:0f:b5:ae: d4:c8:b0:a3:2b:fb:e7:6a:97:93:15:3a:6a:7e:61: 03:4f:a5:12:fa:57:7e:dd:6a:ee:ff:fe:0c:ca:67: d4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1A:B9:5B:E9:23:AE:BA:F1:A4:D0:19:6E:E3:7C:31:D2:42:EF:81 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3131382e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.118.0/24 Signature Algorithm: sha256WithRSAEncryption a9:6f:0a:8f:be:65:28:1f:6f:fb:9f:4c:20:1c:e9:51:2c:5f: 44:1c:80:8c:40:bc:f6:a1:b3:5f:a3:24:82:0c:7a:d4:a4:fb: 93:b7:25:57:a9:ab:2b:69:0e:67:52:10:09:23:41:47:e1:81: 51:57:e4:9c:b4:a6:db:40:8e:96:1b:91:a9:57:66:e0:be:f9: b1:ca:01:05:5c:62:ca:4f:01:3b:55:ad:45:e7:d5:23:a2:d7: 4d:7c:e4:b0:a7:1c:5c:14:da:bf:bd:df:b9:3c:24:16:48:df: 44:83:b1:e8:56:5c:a1:e5:b9:07:5c:0a:7e:c7:3f:12:98:4f: 87:8e:c9:f9:4f:00:fc:90:4b:00:a4:e3:8a:b7:e4:d3:e1:1b: 61:33:f8:3e:b5:36:d3:e0:8c:75:c2:11:f6:bb:ab:c5:42:f5: 86:69:c8:72:cc:ab:23:c9:86:30:1c:51:fd:8b:ea:dd:c3:6f: a8:3e:f4:d3:cc:d4:2c:90:da:cb:dd:bf:ab:1d:a7:51:bb:1f: cd:33:f7:02:ad:ba:2a:84:62:05:50:12:90:85:06:a0:11:52: b7:5f:2b:78:a5:28:89:85:b1:9b:0f:ff:50:da:05:d5:c4:47: 89:bb:65:66:50:9f:d0:3c:ab:20:c8:16:15:dc:a8:a1:d1:19: 2b:d1:bd:a5 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUBwNcdJCeb+Oiklu3uMM55j3F+bAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjZaFw0yNzAyMjIxNTA2MjZaMDMxMTAvBgNV BAMTKDI1MUFCOTVCRTkyM0FFQkFGMUE0RDAxOTZFRTM3QzMxRDI0MkVGODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxoywWYv1I15FM4YUe3VrhOCpT 4C2Tg+rw+jx6SDcwwtWECZVL9VquCumo18/+5E5oOIdlbYAVY7j/o0m+xiGyS7Nb ze3Qx5qIc+e07tD+7mRFr3NucYF9zAQd0M6BJg1/jCmVGLT7yFuB23fpcTGK0jGl h6/pRRGTEb3YEhTV3yfcH3vQWSm6YPX+nRFafgbBPgS+vDDVvCRdDUVB+Nj0TBa4 sMi9l8Nb7lKkdE+giM5sFDm9NUDeiEw8lAFaa22AcNlKQhYzPRJ/dE7e89xt4XlU JD9dhtqKPmROoQ+1rtTIsKMr++dql5MVOmp+YQNPpRL6V37dau7//gzKZ9RZAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUJRq5W+kjrrrxpNAZbuN8MdJC74EwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMwMzYzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1IdjANBgkqhkiG 9w0BAQsFAAOCAQEAqW8Kj75lKB9v+59MIBzpUSxfRByAjEC89qGzX6Mkggx61KT7 k7clV6mrK2kOZ1IQCSNBR+GBUVfknLSm20COlhuRqVdm4L75scoBBVxiyk8BO1Wt RefVI6LXTXzksKccXBTav73fuTwkFkjfRIOx6FZcoeW5B1wKfsc/EphPh47J+U8A /JBLAKTjirfk0+EbYTP4PrU20+CMdcIR9rurxUL1hmnIcsyrI8mGMBxR/Yvq3cNv qD7008zULJDay92/qx2nUbsfzTP3Aq26KoRiBVASkIUGoBFSt18reKUoiYWxmw// UNoF1cRHibtlZlCf0DyrIMgWFdyoodEZK9G9pQ== -----END CERTIFICATE-----Generated at Mon Mar 2 19:34:27 2026 by rpki-client