$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132362e302f32342d3234203d3e20323131383236.roa File: 3130392e37322e3132362e302f32342d3234203d3e20323131383236.roa (raw, json) Hash identifier: fyLTA8sC/+S+0vBK4TPCG2KTFqpKH/85vrqPH+ki2uY= Subject key identifier: D8:6B:49:B5:BD:D7:AC:14:89:4B:E6:AB:A0:21:51:74:92:99:51:DF Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 45D9C43DEDE58037E4AE18A2B216AA7B52408B0D Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132362e302f32342d3234203d3e20323131383236.roa Signing time: Mon 23 Feb 2026 15:06:28 +0000 ROA not before: Mon 23 Feb 2026 15:01:28 +0000 ROA not after: Mon 22 Feb 2027 15:06:28 +0000 asID: 211826 IP address blocks: 109.72.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:d9:c4:3d:ed:e5:80:37:e4:ae:18:a2:b2:16:aa:7b:52:40:8b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:28 2026 GMT Not After : Feb 22 15:06:28 2027 GMT Subject: CN=D86B49B5BDD7AC14894BE6ABA0215174929951DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f5:cb:96:5f:18:18:e5:a4:0e:ca:ae:c9:e0: 36:bc:be:56:a8:86:2e:27:3f:48:e1:b7:e1:3b:b7: d4:96:db:3f:8a:db:5f:e0:48:e7:08:9d:e9:02:81: d0:ae:e4:16:75:9d:a6:b9:16:07:ed:6b:3d:ed:2b: c0:bc:83:0a:44:c0:d3:f3:46:95:9f:31:28:0e:a0: 45:36:ea:e0:1a:26:c6:61:1a:79:89:ef:9f:f4:49: 15:64:07:5e:68:a9:06:ae:89:2d:bf:44:41:7d:c0: f6:f2:6e:18:ad:74:57:fb:ed:80:d1:86:30:6a:be: e9:c4:71:ca:c1:8d:de:4e:e6:40:3d:a9:a9:57:80: 75:25:1d:62:cf:fb:46:32:66:fa:06:5e:b3:59:50: ad:7e:01:00:2a:bc:43:2b:8a:00:25:c1:fe:71:4b: af:1d:2b:ca:e7:ba:14:36:1d:28:36:89:b6:17:8a: 1e:8d:64:5d:4f:66:3c:1b:55:eb:3d:22:1d:1c:fc: 91:2a:d9:32:cc:6a:20:ad:7a:ad:52:d0:9a:a2:85: 32:e7:57:01:9a:a6:ff:cc:c0:95:44:eb:ed:9a:b6: de:01:b9:71:5c:9c:fc:29:7c:be:54:14:ee:d1:ca: 57:1b:d4:5f:38:7e:be:55:bc:1a:ff:a0:21:fa:aa: f2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6B:49:B5:BD:D7:AC:14:89:4B:E6:AB:A0:21:51:74:92:99:51:DF X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132362e302f32342d3234203d3e20323131383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.126.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:a3:43:89:77:4f:ed:df:48:d5:ea:fd:cf:be:92:52:70:a1: 6b:9c:0f:03:29:0e:05:3b:48:82:e9:1d:c5:90:69:76:04:bd: 02:5c:17:d8:d1:44:b2:2b:ad:47:94:d9:b2:34:c7:3d:70:7b: 47:83:51:b9:fd:bd:c7:25:9d:2c:73:1c:1d:6d:63:37:93:5f: c1:13:39:c1:e4:96:72:9f:21:e1:27:eb:56:44:9f:44:24:e2: 07:5a:0b:ce:af:f9:8e:0f:cf:af:6b:8c:54:16:d9:ce:4e:c3: 8d:77:f1:02:2c:13:f2:0b:eb:df:cc:6b:87:59:06:f3:d9:00: 14:19:8d:89:fc:0f:1f:41:78:05:fa:0c:a2:cb:f7:27:a7:82: ae:43:9f:71:3f:1e:0f:d3:82:b9:d6:74:ca:00:c3:a4:39:43: c0:e8:1c:ee:db:38:7c:6c:a9:20:f7:5c:19:68:72:10:6f:4d: 37:6c:d2:9d:f4:a3:87:23:96:6d:02:92:61:5a:cb:52:00:92: a3:67:15:25:5d:ec:97:4f:a3:dd:a8:58:74:eb:27:d4:6d:98: 4c:dc:ca:50:ae:c1:ae:b4:f8:11:3d:ef:86:3d:96:c1:08:88: 34:6e:53:0d:a5:65:10:16:43:8d:e2:0e:54:85:c1:da:2b:f7: 24:40:dc:16 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIURdnEPe3lgDfkrhiishaqe1JAiw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjhaFw0yNzAyMjIxNTA2MjhaMDMxMTAvBgNV BAMTKEQ4NkI0OUI1QkREN0FDMTQ4OTRCRTZBQkEwMjE1MTc0OTI5OTUxREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj9cuWXxgY5aQOyq7J4Da8vlao hi4nP0jht+E7t9SW2z+K21/gSOcInekCgdCu5BZ1naa5Fgftaz3tK8C8gwpEwNPz RpWfMSgOoEU26uAaJsZhGnmJ75/0SRVkB15oqQauiS2/REF9wPbybhitdFf77YDR hjBqvunEccrBjd5O5kA9qalXgHUlHWLP+0YyZvoGXrNZUK1+AQAqvEMrigAlwf5x S68dK8rnuhQ2HSg2ibYXih6NZF1PZjwbVes9Ih0c/JEq2TLMaiCteq1S0JqihTLn VwGapv/MwJVE6+2att4BuXFcnPwpfL5UFO7Rylcb1F84fr5VvBr/oCH6qvK7AgMB AAGjggJkMIICYDAdBgNVHQ4EFgQU2GtJtb3XrBSJS+aroCFRdJKZUd8wHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMTMxMzgzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUh+MA0GCSqG SIb3DQEBCwUAA4IBAQAvo0OJd0/t30jV6v3PvpJScKFrnA8DKQ4FO0iC6R3FkGl2 BL0CXBfY0USyK61HlNmyNMc9cHtHg1G5/b3HJZ0scxwdbWM3k1/BEznB5JZynyHh J+tWRJ9EJOIHWgvOr/mOD8+va4xUFtnOTsONd/ECLBPyC+vfzGuHWQbz2QAUGY2J /A8fQXgF+gyiy/cnp4KuQ59xPx4P04K51nTKAMOkOUPA6Bzu2zh8bKkg91wZaHIQ b003bNKd9KOHI5ZtApJhWstSAJKjZxUlXeyXT6PdqFh06yfUbZhM3MpQrsGutPgR Pe+GPZbBCIg0blMNpWUQFkON4g5UhcHaK/ckQNwW -----END CERTIFICATE-----Generated at Mon Mar 2 01:52:53 2026 by rpki-client