$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132332e302f32342d3234203d3e2037303239.roa File: 3130392e37322e3132332e302f32342d3234203d3e2037303239.roa (raw, json) Hash identifier: qO9JllmB1bIq3sO6jy2XC6twIp50CZ8Pb73vmrG1QZA= Subject key identifier: A2:03:CD:A0:99:D2:A7:F5:AC:A3:DA:90:07:22:B1:21:1B:B1:BC:1C Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 675B7447168839476479B1558EDAB208D67BBF0F Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132332e302f32342d3234203d3e2037303239.roa Signing time: Mon 23 Feb 2026 15:06:27 +0000 ROA not before: Mon 23 Feb 2026 15:01:27 +0000 ROA not after: Mon 22 Feb 2027 15:06:27 +0000 asID: 7029 IP address blocks: 109.72.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 15:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:5b:74:47:16:88:39:47:64:79:b1:55:8e:da:b2:08:d6:7b:bf:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:27 2026 GMT Not After : Feb 22 15:06:27 2027 GMT Subject: CN=A203CDA099D2A7F5ACA3DA900722B1211BB1BC1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:99:86:8d:df:63:52:82:ef:c8:a5:a3:aa: c9:80:6d:a7:83:25:3b:2a:c5:ed:0b:0c:33:0b:66: df:46:40:5d:1c:a1:30:e3:1c:12:c4:16:ea:2e:9b: f7:5d:5d:e4:2b:8d:0f:51:27:9f:1e:5b:72:cd:a7: 58:c0:ba:f6:06:9f:73:b6:f3:21:63:6f:50:ac:d9: 93:f0:64:1d:24:7c:40:df:24:0a:53:84:81:b2:eb: 2a:6d:35:59:38:49:97:02:f8:66:3c:a6:f0:2d:67: 75:25:7e:dd:65:4e:c1:e9:32:03:ec:44:38:af:91: 85:39:2f:f5:08:f5:0b:68:ba:af:09:77:ca:47:ce: 7c:41:2f:65:42:32:10:a6:2a:68:98:f2:9d:b6:79: 82:1e:45:b8:bf:fb:11:e6:94:6c:21:d1:8b:5d:30: 92:bb:18:f8:f0:1d:fe:bd:8b:e6:3c:50:8f:b3:dd: b8:22:a3:ca:1b:98:7b:95:e2:7c:2c:f8:ef:f7:b3: 1e:25:ea:c1:81:a8:48:c8:15:c2:54:57:4c:f9:17: 1b:3e:fb:bd:b9:16:1d:8e:97:f8:04:69:44:68:90: de:ad:36:b3:89:eb:61:e3:c9:7d:42:ab:0e:48:fe: 75:30:53:00:e8:60:6a:aa:11:63:21:4d:fb:ee:e2: 02:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:03:CD:A0:99:D2:A7:F5:AC:A3:DA:90:07:22:B1:21:1B:B1:BC:1C X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132332e302f32342d3234203d3e2037303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.123.0/24 Signature Algorithm: sha256WithRSAEncryption 02:90:4f:9c:11:d9:1a:58:92:b1:36:4a:79:25:3f:d5:9c:65: 5f:73:46:e1:06:3b:1f:9d:4e:96:b1:b6:ce:b2:0d:7f:03:50: 72:02:a6:4d:95:72:da:f3:11:70:fc:d9:9c:ee:34:e7:e6:f7: 0b:20:c0:3d:2a:87:2b:50:cb:7c:b6:46:37:a4:e4:c7:b3:da: 8a:16:24:2a:48:0a:5d:39:16:a5:ed:6f:21:dc:28:a6:f2:92: 1f:4d:28:69:97:5f:09:50:3e:5e:e6:f0:c8:3a:e9:c6:84:56: 28:00:77:68:59:80:ff:6b:1c:af:5d:b4:8e:10:d9:58:d3:c0: b3:7a:d5:32:e1:52:cb:a6:c3:c2:17:0f:a3:d6:3e:1c:b7:38: 9c:3a:ad:e9:b2:48:4e:ec:36:fd:cc:21:71:26:bf:cf:73:44: 0f:6d:cb:3b:45:53:cb:fe:fe:2f:06:ad:a0:39:bd:81:82:c1: 87:1d:25:cc:1e:b6:0c:b1:d6:ac:33:30:d1:2d:34:0a:53:73: fc:49:0d:bc:85:e3:c0:65:15:74:d5:2c:1a:98:6c:47:58:a4: 8b:12:b8:76:50:75:74:07:8e:7f:86:6f:fe:77:3a:6c:1b:bd: e7:e5:d1:da:6b:64:32:f4:bf:80:77:71:df:77:4b:f7:14:8a: 41:7e:d7:5c -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUZ1t0RxaIOUdkebFVjtqyCNZ7vw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjdaFw0yNzAyMjIxNTA2MjdaMDMxMTAvBgNV BAMTKEEyMDNDREEwOTlEMkE3RjVBQ0EzREE5MDA3MjJCMTIxMUJCMUJDMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6uJmGjd9jUoLvyKWjqsmAbaeD JTsqxe0LDDMLZt9GQF0coTDjHBLEFuoum/ddXeQrjQ9RJ58eW3LNp1jAuvYGn3O2 8yFjb1Cs2ZPwZB0kfEDfJApThIGy6yptNVk4SZcC+GY8pvAtZ3Ulft1lTsHpMgPs RDivkYU5L/UI9Qtouq8Jd8pHznxBL2VCMhCmKmiY8p22eYIeRbi/+xHmlGwh0Ytd MJK7GPjwHf69i+Y8UI+z3bgio8obmHuV4nws+O/3sx4l6sGBqEjIFcJUV0z5Fxs+ +725Fh2Ol/gEaURokN6tNrOJ62HjyX1Cqw5I/nUwUwDoYGqqEWMhTfvu4gKVAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUogPNoJnSp/Wso9qQByKxIRuxvBwwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzczMDMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABtSHswDQYJKoZIhvcN AQELBQADggEBAAKQT5wR2RpYkrE2SnklP9WcZV9zRuEGOx+dTpaxts6yDX8DUHIC pk2VctrzEXD82ZzuNOfm9wsgwD0qhytQy3y2Rjek5Mez2ooWJCpICl05FqXtbyHc KKbykh9NKGmXXwlQPl7m8Mg66caEVigAd2hZgP9rHK9dtI4Q2VjTwLN61TLhUsum w8IXD6PWPhy3OJw6remySE7sNv3MIXEmv89zRA9tyztFU8v+/i8GraA5vYGCwYcd Jcwetgyx1qwzMNEtNApTc/xJDbyF48BlFXTVLBqYbEdYpIsSuHZQdXQHjn+Gb/53 Omwbvefl0dprZDL0v4B3cd93S/cUikF+11w= -----END CERTIFICATE-----Generated at Mon Mar 2 23:03:48 2026 by rpki-client