$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132302e302f32342d3234203d3e2035353131.roa File: 3130392e37322e3132302e302f32342d3234203d3e2035353131.roa (raw, json) Hash identifier: /XMApG11LzjkC1Wfga6M85+4UevGqvvD6gQOmOE0ZuE= Subject key identifier: F6:74:C1:0B:E0:F7:0F:FE:2B:EB:A3:B6:94:F9:9F:69:A6:AF:08:CE Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 75E341392B2064968929227E1E0E62AB350CBDB4 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132302e302f32342d3234203d3e2035353131.roa Signing time: Mon 23 Feb 2026 15:06:26 +0000 ROA not before: Mon 23 Feb 2026 15:01:26 +0000 ROA not after: Mon 22 Feb 2027 15:06:26 +0000 asID: 5511 IP address blocks: 109.72.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 04:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:e3:41:39:2b:20:64:96:89:29:22:7e:1e:0e:62:ab:35:0c:bd:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:26 2026 GMT Not After : Feb 22 15:06:26 2027 GMT Subject: CN=F674C10BE0F70FFE2BEBA3B694F99F69A6AF08CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:02:99:44:b4:2c:d7:7f:bb:bd:b7:a0:a1:e8: 58:82:67:35:fa:e9:c8:73:bd:f6:09:87:a7:b2:83: ae:b4:84:2e:f3:69:6e:c0:8a:a4:d7:07:9a:30:94: 91:20:8f:31:68:e7:1e:1a:14:65:ae:89:2f:9c:43: d2:b4:7b:59:82:db:3e:15:a7:ab:ac:4b:96:f9:63: 0a:aa:f9:85:93:4c:bd:ae:13:a4:d8:53:e8:18:b7: 6a:6c:98:1a:50:af:62:df:40:79:3b:ce:fa:4c:4e: 2f:fb:27:19:d9:20:5b:cc:81:77:be:75:32:64:7c: 76:9b:9b:f9:c6:53:b8:31:e0:cb:30:42:92:bd:54: 5e:cf:a4:f8:4d:e6:0b:ae:45:0b:16:1e:60:44:24: 16:77:30:c4:a5:e1:9a:16:71:a0:8c:e5:89:8b:43: 9f:5d:81:a1:59:ea:95:d7:74:28:6c:88:bc:02:67: fd:fe:5f:91:f2:23:46:00:92:b8:f9:11:84:40:e3: 5a:eb:7f:2e:4a:a9:89:2b:30:df:bb:97:01:01:21: 4a:44:8c:71:8a:e7:d8:7a:40:b2:d3:7b:33:35:0b: 19:c8:df:f2:15:86:9d:4e:6c:d6:e9:3b:92:78:5a: 03:84:43:4f:97:96:67:f1:ea:04:2e:5a:35:47:c7: d5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:74:C1:0B:E0:F7:0F:FE:2B:EB:A3:B6:94:F9:9F:69:A6:AF:08:CE X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132302e302f32342d3234203d3e2035353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.120.0/24 Signature Algorithm: sha256WithRSAEncryption 03:fb:37:76:f0:1d:56:dd:54:43:82:a6:e3:44:ac:fe:07:88: 5e:56:d6:d3:57:b3:ee:3f:26:4e:07:12:84:16:9e:70:a4:80: 95:09:ab:05:96:37:44:94:c7:87:e9:91:13:b2:2b:a6:91:4d: 84:5f:15:23:16:76:51:f7:24:88:ed:26:73:9c:64:2d:88:a2: 1c:9e:38:a5:e1:3c:0b:6d:4a:1c:ca:7c:97:b1:a4:dc:f8:54: 18:cd:98:fe:d1:6f:64:dd:1a:11:8b:39:62:d2:bc:2f:3a:f1: 67:54:9b:59:03:aa:f5:00:cd:3f:e6:b6:a9:f9:65:5d:99:e7: 8f:70:a4:c0:72:10:86:df:4d:28:48:52:0c:30:0d:43:48:f1: 81:4a:0e:65:bf:2c:25:ea:d7:9e:49:5b:4f:72:6b:8c:47:c0: 40:43:4f:a3:d0:9f:b1:fb:3e:3b:7a:64:35:24:37:cb:16:9b: f0:a2:da:7c:3c:cc:d0:c0:ff:c2:93:a6:ba:73:6c:21:56:39: 34:63:b5:85:f2:ee:6c:fa:f9:78:81:24:e6:de:2f:62:35:ba: 11:a6:22:03:2d:63:66:a8:b7:ab:a4:be:fc:f9:87:7c:06:6b: 63:1b:f3:53:13:55:60:da:41:48:ba:6e:c7:4a:e1:56:18:84: 53:be:08:2a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUdeNBOSsgZJaJKSJ+Hg5iqzUMvbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjZaFw0yNzAyMjIxNTA2MjZaMDMxMTAvBgNV BAMTKEY2NzRDMTBCRTBGNzBGRkUyQkVCQTNCNjk0Rjk5RjY5QTZBRjA4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQAplEtCzXf7u9t6Ch6FiCZzX6 6chzvfYJh6eyg660hC7zaW7AiqTXB5owlJEgjzFo5x4aFGWuiS+cQ9K0e1mC2z4V p6usS5b5Ywqq+YWTTL2uE6TYU+gYt2psmBpQr2LfQHk7zvpMTi/7JxnZIFvMgXe+ dTJkfHabm/nGU7gx4MswQpK9VF7PpPhN5guuRQsWHmBEJBZ3MMSl4ZoWcaCM5YmL Q59dgaFZ6pXXdChsiLwCZ/3+X5HyI0YAkrj5EYRA41rrfy5KqYkrMN+7lwEBIUpE jHGK59h6QLLTezM1CxnI3/IVhp1ObNbpO5J4WgOEQ0+Xlmfx6gQuWjVHx9UNAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU9nTBC+D3D/4r66O2lPmfaaavCM4wHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTMxMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABtSHgwDQYJKoZIhvcN AQELBQADggEBAAP7N3bwHVbdVEOCpuNErP4HiF5W1tNXs+4/Jk4HEoQWnnCkgJUJ qwWWN0SUx4fpkROyK6aRTYRfFSMWdlH3JIjtJnOcZC2IohyeOKXhPAttShzKfJex pNz4VBjNmP7Rb2TdGhGLOWLSvC868WdUm1kDqvUAzT/mtqn5ZV2Z549wpMByEIbf TShIUgwwDUNI8YFKDmW/LCXq155JW09ya4xHwEBDT6PQn7H7Pjt6ZDUkN8sWm/Ci 2nw8zNDA/8KTprpzbCFWOTRjtYXy7mz6+XiBJObeL2I1uhGmIgMtY2aot6ukvvz5 h3wGa2Mb81MTVWDaQUi6bsdK4VYYhFO+CCo= -----END CERTIFICATE-----Generated at Sun Mar 1 22:05:39 2026 by rpki-client