$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132352e302f32342d3234203d3e203530363733.roa File: 3130392e37322e3132352e302f32342d3234203d3e203530363733.roa (raw, json) Hash identifier: uziBHEgY6aq8D14zU2pGkBVIdsFc9g14aW+6arAfmbY= Subject key identifier: 17:9F:4C:25:CC:43:76:90:12:73:30:23:01:76:B2:20:00:DA:FF:7E Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 6CE61C53185D0F1351A26D519CAD4CF6580F9D68 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132352e302f32342d3234203d3e203530363733.roa Signing time: Mon 23 Feb 2026 15:06:28 +0000 ROA not before: Mon 23 Feb 2026 15:01:28 +0000 ROA not after: Mon 22 Feb 2027 15:06:28 +0000 asID: 50673 IP address blocks: 109.72.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e6:1c:53:18:5d:0f:13:51:a2:6d:51:9c:ad:4c:f6:58:0f:9d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:28 2026 GMT Not After : Feb 22 15:06:28 2027 GMT Subject: CN=179F4C25CC437690127330230176B22000DAFF7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:53:c7:65:34:67:24:53:36:94:e6:62:99:8f: 9f:9c:52:a6:d1:21:93:d1:96:14:e1:89:26:4c:3c: 0f:c1:9a:c8:3f:b2:c4:9a:87:2d:49:81:ed:ea:fe: cb:a4:95:fc:81:18:b4:6d:69:6b:0a:37:64:53:de: 9b:bd:a3:87:d5:46:41:a0:00:86:2d:cc:18:73:17: ec:74:f1:7c:6c:e9:e4:61:fc:60:a3:4d:86:52:8b: 0b:a7:11:9d:2e:f6:f6:fb:84:fc:16:3f:b4:cf:fd: 49:7d:d7:8c:6c:3f:74:54:e3:dc:e9:73:e6:87:33: df:a1:bf:99:3b:96:05:15:db:28:f5:65:92:49:5f: 46:a3:de:47:f2:ac:3c:2f:57:10:c3:cf:67:b1:f8: bd:bf:80:4a:65:67:1f:0a:b0:c1:7d:7e:59:be:7c: d1:3d:b9:26:3a:36:12:8f:a0:69:a3:9f:8d:b1:6e: cd:8b:32:ce:0d:8a:91:3b:c3:5b:01:bb:99:84:7f: 3d:10:cd:e8:f5:83:ce:b2:09:4d:f8:fd:02:64:b8: c5:6d:9f:8e:c9:f7:3d:72:cb:dd:4a:2c:db:88:28: b6:96:a8:1a:c4:4d:34:3e:30:0f:ca:88:3b:d6:bd: 47:8f:09:60:f0:f6:02:6b:5a:c0:0a:1f:fa:d3:9f: 7a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9F:4C:25:CC:43:76:90:12:73:30:23:01:76:B2:20:00:DA:FF:7E X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132352e302f32342d3234203d3e203530363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.125.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:1a:d3:c2:f3:16:b3:d7:a1:64:31:89:ba:38:a3:c1:b6:8e: 59:cf:49:84:87:4e:d6:69:a2:0a:4a:c8:f5:dd:dc:62:b4:84: 92:0b:89:2d:52:7c:ef:a5:90:7e:a8:ae:c4:19:b6:85:fa:38: ff:97:53:5a:4c:e7:4b:b5:7c:1d:cc:6b:96:1e:37:5e:4e:7d: b5:75:e9:6b:37:44:bb:86:64:7c:95:03:74:28:7a:8a:13:f6: 93:a7:4f:b2:fd:34:ed:f0:1d:59:1b:31:b1:f9:23:ef:ec:40: ad:a7:fe:69:60:53:5c:9a:6a:d1:68:95:3e:df:c0:84:c1:42: 3b:32:20:9b:aa:a0:d7:31:2e:cb:f7:37:54:38:22:79:b0:77: e8:01:fa:9b:97:0e:e7:4b:7f:67:a9:52:21:79:a7:0a:2c:e3: 76:5e:a1:63:aa:9f:ee:d2:66:d6:b4:a1:78:6a:ee:ce:ba:14: ca:d0:4f:10:bd:34:16:a5:66:42:30:c5:97:6a:49:62:7b:ed: 76:50:86:9d:c6:19:0b:90:6e:dd:ec:0c:28:6a:5b:44:a4:75: 99:6e:87:57:cf:ee:c6:ef:ad:b7:d7:b1:9b:50:16:50:54:8e: 9f:02:2e:d3:8b:76:aa:26:d6:b8:8f:42:f3:37:e6:01:d8:e8: 12:dc:34:f1 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUbOYcUxhdDxNRom1RnK1M9lgPnWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjhaFw0yNzAyMjIxNTA2MjhaMDMxMTAvBgNV BAMTKDE3OUY0QzI1Q0M0Mzc2OTAxMjczMzAyMzAxNzZCMjIwMDBEQUZGN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUU8dlNGckUzaU5mKZj5+cUqbR IZPRlhThiSZMPA/Bmsg/ssSahy1Jge3q/suklfyBGLRtaWsKN2RT3pu9o4fVRkGg AIYtzBhzF+x08Xxs6eRh/GCjTYZSiwunEZ0u9vb7hPwWP7TP/Ul914xsP3RU49zp c+aHM9+hv5k7lgUV2yj1ZZJJX0aj3kfyrDwvVxDDz2ex+L2/gEplZx8KsMF9flm+ fNE9uSY6NhKPoGmjn42xbs2LMs4NipE7w1sBu5mEfz0Qzej1g86yCU34/QJkuMVt n47J9z1yy91KLNuIKLaWqBrETTQ+MA/KiDvWvUePCWDw9gJrWsAKH/rTn3qhAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUF59MJcxDdpASczAjAXayIADa/34wHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzMDM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1IfTANBgkqhkiG 9w0BAQsFAAOCAQEAfRrTwvMWs9ehZDGJujijwbaOWc9JhIdO1mmiCkrI9d3cYrSE kguJLVJ876WQfqiuxBm2hfo4/5dTWkznS7V8Hcxrlh43Xk59tXXpazdEu4ZkfJUD dCh6ihP2k6dPsv007fAdWRsxsfkj7+xAraf+aWBTXJpq0WiVPt/AhMFCOzIgm6qg 1zEuy/c3VDgiebB36AH6m5cO50t/Z6lSIXmnCizjdl6hY6qf7tJm1rSheGruzroU ytBPEL00FqVmQjDFl2pJYnvtdlCGncYZC5Bu3ewMKGpbRKR1mW6HV8/uxu+tt9ex m1AWUFSOnwIu04t2qibWuI9C8zfmAdjoEtw08Q== -----END CERTIFICATE-----Generated at Mon Mar 2 00:58:41 2026 by rpki-client