$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3132392e302f32342d3234203d3e20343031383338.roa File: 38312e32322e3132392e302f32342d3234203d3e20343031383338.roa (raw, json) Hash identifier: lJ9Uu1yIbT5yA5r/45YSDH+N++VwHUCJkDji2qivDPc= Subject key identifier: B1:A9:10:01:85:FC:3A:2E:91:75:3F:88:F0:5C:49:79:C2:F7:D4:BA Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 4C278B077213CEC84FD5EB10C2BBED13AEF5B83B Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3132392e302f32342d3234203d3e20343031383338.roa Signing time: Mon 23 Feb 2026 15:06:29 +0000 ROA not before: Mon 23 Feb 2026 15:01:29 +0000 ROA not after: Mon 22 Feb 2027 15:06:29 +0000 asID: 401838 IP address blocks: 81.22.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:27:8b:07:72:13:ce:c8:4f:d5:eb:10:c2:bb:ed:13:ae:f5:b8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:29 2026 GMT Not After : Feb 22 15:06:29 2027 GMT Subject: CN=B1A9100185FC3A2E91753F88F05C4979C2F7D4BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:15:5f:7d:f7:18:69:8b:4a:c4:a1:fc:52:3f: ba:39:f3:c7:40:e0:90:e9:92:71:a0:73:01:aa:59: fe:62:b7:0b:33:1f:81:0d:11:dd:20:08:e2:69:dc: d7:c9:28:9d:3d:59:b0:85:35:0f:69:03:ab:59:93: ca:5b:10:7b:03:5c:07:25:dd:cb:19:50:46:61:74: 70:fa:12:87:ce:13:90:d3:51:94:7a:70:29:89:69: 0d:46:14:df:21:9c:d3:5a:59:6b:35:b4:a1:b6:32: 90:b9:65:3d:a6:fc:9e:c6:fa:b1:f8:62:71:b0:21: ec:54:f4:4a:9d:d2:67:35:a4:4e:c9:19:cc:b3:df: a4:d9:b7:e4:1d:19:50:88:48:80:93:3f:68:21:28: 59:21:7e:5b:fc:6c:ab:00:61:a4:9c:9a:ea:49:7e: dc:e9:9a:d6:f7:a3:87:4f:ae:c5:fd:f4:24:9f:8d: 39:3b:a6:86:e0:65:01:76:44:73:f8:1f:78:14:7e: 1e:97:9b:20:fd:8d:b6:4e:95:a9:ca:30:7e:5d:f3: cf:81:e6:9b:3d:08:9e:d0:5f:7b:49:de:d8:7b:98: 0a:95:d2:1c:d0:69:02:59:c2:96:47:67:4e:af:2c: a5:aa:b3:d6:6a:f9:f4:ff:e4:2d:fa:da:4c:0e:70: a5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A9:10:01:85:FC:3A:2E:91:75:3F:88:F0:5C:49:79:C2:F7:D4:BA X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3132392e302f32342d3234203d3e20343031383338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.22.129.0/24 Signature Algorithm: sha256WithRSAEncryption 29:da:1d:08:e0:85:97:54:ca:0e:e6:1c:b5:95:04:bb:0e:91: 93:a9:3c:d6:ad:4e:56:31:ba:3f:74:e1:99:09:31:4f:c5:d1: 34:ff:2d:49:fc:88:28:00:be:9d:42:b1:1a:b9:9d:18:32:42: 00:53:92:a1:55:bc:22:20:a9:27:1f:6c:cd:8f:05:d6:25:bd: a5:ff:1c:a8:c1:09:56:9e:8c:d8:42:c3:40:84:ff:35:40:99: 78:d7:ef:6f:dc:6f:ba:52:79:83:a3:44:92:4e:2f:94:fb:57: 5c:09:4a:73:9b:41:92:de:79:f7:c3:06:06:06:c8:2d:f5:f5: 29:d5:24:be:ea:0d:b9:6d:32:1e:b4:91:fd:2f:e3:a9:06:01: 56:76:03:24:40:f0:2d:e2:35:61:52:69:2b:80:7c:d9:10:4b: 4f:6a:6f:7c:f1:29:0c:09:5c:25:b9:0b:b8:50:b5:4d:37:1d: 1e:af:50:06:3a:fd:b7:80:97:79:c9:0d:68:9d:81:f6:d5:70: 46:df:b2:af:e1:98:36:64:64:04:a9:d1:ec:81:b0:73:ad:af: 63:f3:13:8d:8d:0c:06:5a:99:b0:30:c1:16:16:56:4f:e8:1f: e4:c8:fc:b1:00:68:fb:21:6d:75:66:c2:94:90:33:a4:46:c3: e4:c5:df:5d -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUTCeLB3ITzshP1esQwrvtE671uDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMjlaFw0yNzAyMjIxNTA2MjlaMDMxMTAvBgNV BAMTKEIxQTkxMDAxODVGQzNBMkU5MTc1M0Y4OEYwNUM0OTc5QzJGN0Q0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeFV999xhpi0rEofxSP7o588dA 4JDpknGgcwGqWf5itwszH4ENEd0gCOJp3NfJKJ09WbCFNQ9pA6tZk8pbEHsDXAcl 3csZUEZhdHD6EofOE5DTUZR6cCmJaQ1GFN8hnNNaWWs1tKG2MpC5ZT2m/J7G+rH4 YnGwIexU9Eqd0mc1pE7JGcyz36TZt+QdGVCISICTP2ghKFkhflv8bKsAYaScmupJ ftzpmtb3o4dPrsX99CSfjTk7pobgZQF2RHP4H3gUfh6XmyD9jbZOlanKMH5d88+B 5ps9CJ7QX3tJ3th7mAqV0hzQaQJZwpZHZ06vLKWqs9Zq+fT/5C362kwOcKVRAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUsakQAYX8Oi6RdT+I8FxJecL31LowHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzEyZTMyMzIyZTMxMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzAzMTM4MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEWgTANBgkqhkiG 9w0BAQsFAAOCAQEAKdodCOCFl1TKDuYctZUEuw6Rk6k81q1OVjG6P3ThmQkxT8XR NP8tSfyIKAC+nUKxGrmdGDJCAFOSoVW8IiCpJx9szY8F1iW9pf8cqMEJVp6M2ELD QIT/NUCZeNfvb9xvulJ5g6NEkk4vlPtXXAlKc5tBkt5598MGBgbILfX1KdUkvuoN uW0yHrSR/S/jqQYBVnYDJEDwLeI1YVJpK4B82RBLT2pvfPEpDAlcJbkLuFC1TTcd Hq9QBjr9t4CXeckNaJ2B9tVwRt+yr+GYNmRkBKnR7IGwc62vY/MTjY0MBlqZsDDB FhZWT+gf5Mj8sQBo+yFtdWbClJAzpEbD5MXfXQ== -----END CERTIFICATE-----Generated at Mon Mar 2 03:38:47 2026 by rpki-client