$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132312e302f32342d3234203d3e2036303739.roa File: 3130392e37322e3132312e302f32342d3234203d3e2036303739.roa (raw, json) Hash identifier: +vmElJc98cEss+kVmzDJsPZkocSImg/iECPC0G0ZwA0= Subject key identifier: 6D:D0:8A:B9:BF:B4:2A:D2:1F:E6:E2:11:9B:F9:7F:82:5C:45:3B:80 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 054DBDB5AB40B956EC7F0672455DC30EE5026FA1 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132312e302f32342d3234203d3e2036303739.roa Signing time: Mon 23 Feb 2026 15:06:27 +0000 ROA not before: Mon 23 Feb 2026 15:01:27 +0000 ROA not after: Mon 22 Feb 2027 15:06:27 +0000 asID: 6079 IP address blocks: 109.72.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:4d:bd:b5:ab:40:b9:56:ec:7f:06:72:45:5d:c3:0e:e5:02:6f:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:27 2026 GMT Not After : Feb 22 15:06:27 2027 GMT Subject: CN=6DD08AB9BFB42AD21FE6E2119BF97F825C453B80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:11:52:ca:8d:66:bf:51:e9:76:5b:dc:c0:db: 0f:02:d5:03:6c:05:df:e4:7d:41:63:92:62:c0:ca: ab:b1:2d:b5:63:b4:cd:a9:30:8d:e8:01:be:5f:8b: df:79:55:d6:9c:8c:4a:a8:09:f7:27:a2:7a:58:05: 19:f4:b3:a2:7f:2d:39:38:6c:98:5a:1b:0f:d7:1c: e0:d4:4c:83:27:ca:95:1f:8a:1e:bb:50:70:55:1f: e4:e0:55:00:48:27:76:88:e8:15:7a:ec:83:f2:0e: b0:0c:08:0d:31:06:08:24:1b:9b:9f:61:22:f5:e2: 30:05:76:bb:40:f8:51:64:49:c8:a8:b4:5a:6d:e7: 7a:28:91:48:f4:37:c5:7c:c5:55:27:2f:6c:39:3b: 31:5c:28:c3:b3:6a:14:2b:0f:59:35:c1:19:5d:7b: af:f5:9e:f2:ab:92:a1:90:7b:98:aa:c0:8c:c6:9d: 5d:81:59:84:56:4d:c9:44:cf:4d:c0:fe:9b:92:8b: 46:9e:d6:6b:3d:42:ab:74:2b:ea:f1:d4:8f:b5:75: aa:0c:16:a4:20:15:cc:bc:6d:6a:61:12:b0:73:bb: ae:5e:ba:01:49:07:d0:05:f3:72:ec:ea:ea:d9:16: bc:eb:7e:cb:e7:94:ae:22:8c:1c:99:a4:87:88:f5: 77:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D0:8A:B9:BF:B4:2A:D2:1F:E6:E2:11:9B:F9:7F:82:5C:45:3B:80 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132312e302f32342d3234203d3e2036303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.121.0/24 Signature Algorithm: sha256WithRSAEncryption 41:02:6d:26:67:a5:7b:c5:69:0c:d8:53:0a:d3:11:05:d6:40: e1:5d:00:3e:5f:9f:0f:bf:11:b4:12:fe:1f:f1:c9:43:8c:38: 70:7e:1d:bc:1d:54:7b:57:49:b3:56:24:96:a6:8a:a5:bb:01: 6c:da:c1:98:62:a1:3b:2b:ce:c6:6b:74:05:8a:ee:84:8b:8a: e0:bf:f6:13:bd:32:95:42:ff:65:74:5c:32:dc:50:b2:e3:a1: 33:10:8a:d5:fd:99:2e:18:90:77:dc:5c:94:c7:fb:53:cc:ec: e6:21:bc:a6:2c:ae:0b:60:90:58:5e:73:a3:75:a7:e8:ad:59: 04:b7:b2:b7:45:bb:49:96:af:0b:82:58:4f:d9:64:8d:b6:a1: 59:9b:af:6b:64:9e:ea:ff:03:94:d0:58:80:87:98:3a:db:94: b3:a1:d4:c8:ca:b4:8f:02:14:9b:51:90:c4:a5:c9:ad:a0:16: 4a:3d:e1:e8:dc:d8:89:55:92:ed:15:c8:4f:0b:37:7f:8f:59: 7a:88:74:4d:08:aa:a7:4f:9a:ef:c6:73:06:8d:2b:b3:c3:17: 42:09:98:2e:55:0c:31:af:85:6f:b7:83:cb:63:e3:40:21:18: 08:7a:a6:62:59:5a:60:c2:c9:ac:44:07:31:47:5a:de:e3:a7: 99:81:96:0a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUBU29tatAuVbsfwZyRV3DDuUCb6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjdaFw0yNzAyMjIxNTA2MjdaMDMxMTAvBgNV BAMTKDZERDA4QUI5QkZCNDJBRDIxRkU2RTIxMTlCRjk3RjgyNUM0NTNCODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCEVLKjWa/Uel2W9zA2w8C1QNs Bd/kfUFjkmLAyquxLbVjtM2pMI3oAb5fi995VdacjEqoCfcnonpYBRn0s6J/LTk4 bJhaGw/XHODUTIMnypUfih67UHBVH+TgVQBIJ3aI6BV67IPyDrAMCA0xBggkG5uf YSL14jAFdrtA+FFkSciotFpt53ookUj0N8V8xVUnL2w5OzFcKMOzahQrD1k1wRld e6/1nvKrkqGQe5iqwIzGnV2BWYRWTclEz03A/puSi0ae1ms9Qqt0K+rx1I+1daoM FqQgFcy8bWphErBzu65eugFJB9AF83Ls6urZFrzrfsvnlK4ijByZpIeI9XdlAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUbdCKub+0KtIf5uIRm/l/glxFO4AwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABtSHkwDQYJKoZIhvcN AQELBQADggEBAEECbSZnpXvFaQzYUwrTEQXWQOFdAD5fnw+/EbQS/h/xyUOMOHB+ HbwdVHtXSbNWJJamiqW7AWzawZhioTsrzsZrdAWK7oSLiuC/9hO9MpVC/2V0XDLc ULLjoTMQitX9mS4YkHfcXJTH+1PM7OYhvKYsrgtgkFhec6N1p+itWQS3srdFu0mW rwuCWE/ZZI22oVmbr2tknur/A5TQWICHmDrblLOh1MjKtI8CFJtRkMSlya2gFko9 4ejc2IlVku0VyE8LN3+PWXqIdE0IqqdPmu/GcwaNK7PDF0IJmC5VDDGvhW+3g8tj 40AhGAh6pmJZWmDCyaxEBzFHWt7jp5mBlgo= -----END CERTIFICATE-----Generated at Mon Mar 2 04:23:06 2026 by rpki-client