$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132372e302f32342d3234203d3e203239383032.roa File: 3130392e37322e3132372e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: RYoRodaQxyc4g4riAlgwSnFV5vmnswen6vMAne/0aQM= Subject key identifier: A0:D7:E4:3A:01:BD:3F:39:EF:71:EB:2C:49:03:86:AB:01:F1:D6:D7 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 2FF75B8389DCAD1DC3C46BC714696AC73FFD0FE0 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132372e302f32342d3234203d3e203239383032.roa Signing time: Mon 23 Feb 2026 15:06:28 +0000 ROA not before: Mon 23 Feb 2026 15:01:28 +0000 ROA not after: Mon 22 Feb 2027 15:06:28 +0000 asID: 29802 IP address blocks: 109.72.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f7:5b:83:89:dc:ad:1d:c3:c4:6b:c7:14:69:6a:c7:3f:fd:0f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:28 2026 GMT Not After : Feb 22 15:06:28 2027 GMT Subject: CN=A0D7E43A01BD3F39EF71EB2C490386AB01F1D6D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:d9:48:42:56:a8:98:15:f6:c0:80:e3:e5:ba: ff:f4:af:ff:ff:7d:a7:ef:57:68:ed:63:7a:3b:ea: b9:8f:55:0a:c2:c4:b4:b0:75:3e:5b:19:7f:51:8a: 8c:90:78:95:e9:77:c0:1a:fa:84:9b:e2:a8:20:97: 03:67:a6:98:4a:f7:8b:63:f1:8e:15:d3:51:52:26: b8:b6:4f:05:27:4e:72:44:ff:9c:32:53:b9:6b:0f: 12:55:dc:bc:72:d8:90:7a:5f:e5:27:79:6e:6a:96: 15:ba:02:24:b9:04:95:75:36:eb:f0:01:4e:f8:a3: d6:34:d1:44:a5:64:8c:a0:bf:ce:60:09:f3:3f:6b: 56:36:72:72:c8:e2:73:c6:8e:0f:7f:7f:fa:18:d0: ab:a3:6c:99:27:06:60:24:9d:95:10:99:02:eb:e4: 33:a6:4e:cb:45:24:ff:84:c8:e4:8e:04:a6:4b:e0: b8:71:56:78:c9:ed:03:c3:f9:90:9d:8b:7a:5a:7f: ef:c0:64:92:5c:dc:b9:8a:68:0d:71:1e:25:3f:c8: 4f:a7:6b:f1:4f:5a:51:38:7a:41:5d:cc:49:f4:ac: 71:6a:39:e4:32:a3:cd:58:cf:c1:83:98:60:1a:1f: 7c:11:c5:f0:54:f1:24:ea:5e:de:11:7a:e0:55:e6: d3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D7:E4:3A:01:BD:3F:39:EF:71:EB:2C:49:03:86:AB:01:F1:D6:D7 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/3130392e37322e3132372e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.72.127.0/24 Signature Algorithm: sha256WithRSAEncryption 40:56:ea:9f:82:85:e7:e9:dd:a3:57:b4:b5:66:dc:5b:2c:ca: 4a:de:b6:73:0c:20:87:51:a8:4b:97:fd:ba:be:78:2e:3b:17: 97:2f:66:69:9f:a5:32:a2:35:19:59:9a:a0:e9:89:3a:a2:b2: 06:e1:cb:31:bc:ad:c6:6d:a9:25:f5:62:f2:03:52:d5:6a:e7: 75:bf:2a:fc:37:5a:e8:cf:5b:fe:3f:cd:5f:a3:ac:86:03:ec: 95:d7:16:0d:e3:9f:85:9a:d3:b0:0d:49:4b:66:f9:f6:05:b3: 91:97:b6:e3:ee:8c:42:87:bd:bb:df:ad:35:b3:23:bc:ed:fa: 68:e3:c9:39:35:4c:b6:85:bb:d5:eb:0e:1d:78:00:d4:40:26: bd:89:02:da:22:78:4c:2d:84:08:f8:34:7b:bb:60:70:27:f6: 3e:e6:55:95:5d:79:fb:a5:5e:9b:14:6c:ad:05:3e:d9:f1:08: 50:2c:8d:ba:25:53:56:5f:40:a0:a8:64:40:92:4e:fa:2e:71: e0:a2:0b:5b:15:54:64:b5:d5:b2:e1:72:0a:94:06:82:2a:63: ec:a4:69:4b:70:df:b3:a1:ce:72:55:3c:a7:a3:2a:d9:73:5a: 13:5a:93:48:54:c6:7e:0f:5b:54:18:6a:18:72:91:c0:28:7f: 3f:ca:81:2b -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUL/dbg4ncrR3DxGvHFGlqxz/9D+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjhaFw0yNzAyMjIxNTA2MjhaMDMxMTAvBgNV BAMTKEEwRDdFNDNBMDFCRDNGMzlFRjcxRUIyQzQ5MDM4NkFCMDFGMUQ2RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCE2UhCVqiYFfbAgOPluv/0r/// fafvV2jtY3o76rmPVQrCxLSwdT5bGX9RioyQeJXpd8Aa+oSb4qgglwNnpphK94tj 8Y4V01FSJri2TwUnTnJE/5wyU7lrDxJV3Lxy2JB6X+UneW5qlhW6AiS5BJV1Nuvw AU74o9Y00USlZIygv85gCfM/a1Y2cnLI4nPGjg9/f/oY0KujbJknBmAknZUQmQLr 5DOmTstFJP+EyOSOBKZL4LhxVnjJ7QPD+ZCdi3paf+/AZJJc3LmKaA1xHiU/yE+n a/FPWlE4ekFdzEn0rHFqOeQyo81Yz8GDmGAaH3wRxfBU8STqXt4ReuBV5tNbAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUoNfkOgG9PznvcessSQOGqwHx1tcwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzMxMzAzOTJlMzczMjJlMzEzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzOTM4MzAzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1IfzANBgkqhkiG 9w0BAQsFAAOCAQEAQFbqn4KF5+ndo1e0tWbcWyzKSt62cwwgh1GoS5f9ur54LjsX ly9maZ+lMqI1GVmaoOmJOqKyBuHLMbytxm2pJfVi8gNS1Wrndb8q/Dda6M9b/j/N X6OshgPsldcWDeOfhZrTsA1JS2b59gWzkZe24+6MQoe9u9+tNbMjvO36aOPJOTVM toW71esOHXgA1EAmvYkC2iJ4TC2ECPg0e7tgcCf2PuZVlV15+6VemxRsrQU+2fEI UCyNuiVTVl9AoKhkQJJO+i5x4KILWxVUZLXVsuFyCpQGgipj7KRpS3Dfs6HOclU8 p6Mq2XNaE1qTSFTGfg9bVBhqGHKRwCh/P8qBKw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:53:35 2026 by rpki-client