$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133362e302f32342d3234203d3e20323135393535.roa File: 38312e32322e3133362e302f32342d3234203d3e20323135393535.roa (raw, json) Hash identifier: pjFHfsF7c1YB7W5loAONzMzYsLlWR3wJckgNENlxNIw= Subject key identifier: 65:82:53:DA:8E:9A:1C:FC:A7:B4:2A:01:E8:96:87:9B:28:03:BA:58 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 2093E1E13C432C72C5885082EFA9B3F0BC5A14BB Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133362e302f32342d3234203d3e20323135393535.roa Signing time: Mon 23 Feb 2026 15:06:31 +0000 ROA not before: Mon 23 Feb 2026 15:01:31 +0000 ROA not after: Mon 22 Feb 2027 15:06:31 +0000 asID: 215955 IP address blocks: 81.22.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:93:e1:e1:3c:43:2c:72:c5:88:50:82:ef:a9:b3:f0:bc:5a:14:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:31 2026 GMT Not After : Feb 22 15:06:31 2027 GMT Subject: CN=658253DA8E9A1CFCA7B42A01E896879B2803BA58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ad:0d:1f:d8:8d:55:1f:fa:05:cf:32:12:d8: 11:18:8a:2b:5d:22:8c:7e:c2:32:d7:43:49:2c:0d: ea:c2:4b:a2:da:f6:50:fb:64:a6:b3:fb:38:5e:72: 39:ae:6d:72:cf:c7:05:08:98:92:27:a9:ce:d1:14: b9:0f:a1:29:79:0a:50:05:78:cc:69:aa:46:0e:e3: 43:e9:79:aa:bf:10:ff:11:54:32:c8:a8:71:95:82: 7d:52:8d:a9:91:6c:29:58:b0:db:15:78:1a:fe:88: e4:a9:1c:79:dc:73:06:da:0b:10:98:25:fe:e1:a1: 86:c4:58:ab:f9:3d:2b:aa:53:b5:55:da:44:d4:ab: c1:4b:35:79:21:b3:b0:56:89:5f:06:d2:dd:26:67: a1:7b:85:5b:bc:ec:c2:cf:fe:8f:b3:77:a9:42:47: 22:b1:b5:4b:7a:fb:a3:97:f0:b0:70:b8:62:4f:75: f6:f6:e0:c1:35:f2:3d:05:59:02:70:38:a1:0f:52: 1c:78:58:65:f3:13:69:39:b5:cb:0c:61:fd:99:41: 86:f4:c8:e6:87:66:8e:b7:ce:c1:63:22:68:4c:0b: c3:85:05:7b:51:ab:9b:f0:f9:c5:90:19:98:c5:19: 44:6d:41:e5:ce:75:9f:bc:54:43:4e:25:88:f3:1e: 7d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:82:53:DA:8E:9A:1C:FC:A7:B4:2A:01:E8:96:87:9B:28:03:BA:58 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133362e302f32342d3234203d3e20323135393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.22.136.0/24 Signature Algorithm: sha256WithRSAEncryption 91:6a:bb:8b:30:02:6f:c6:34:07:f2:43:5e:5c:2e:4a:50:87: e9:16:c0:0c:81:ee:4a:38:04:fd:5c:eb:92:3f:20:57:37:e3: 2b:b9:3e:8c:8d:86:4b:f9:63:98:92:04:07:b0:71:0e:12:f8: d4:b6:26:ed:a7:a5:5e:6b:fc:9d:24:fb:2e:91:0e:db:d0:9a: 3c:7d:8b:5a:93:b2:3c:19:15:0f:03:6d:0f:5c:c9:cb:a5:15: 83:0c:6f:ed:63:23:90:52:26:a6:b0:ac:75:e3:97:e3:5e:45: c1:1c:6f:d4:aa:da:23:2f:eb:2c:52:d0:76:4e:3f:3d:11:78: 0b:b3:26:73:05:dd:ac:46:8b:8c:b5:1d:89:30:cd:50:82:f6: f7:8e:26:a8:f2:bb:31:92:eb:af:a0:72:30:9f:e2:f0:f0:9b: 38:f5:64:30:98:be:5f:de:7b:cc:a6:bc:04:34:5b:ad:0e:71: 22:29:64:39:e0:f8:1a:42:b3:cd:d6:de:23:8e:dd:a0:9a:19: 3b:ac:d0:f5:a8:b5:5e:3e:f5:4d:33:1b:4e:1b:c8:88:c6:7e: 3d:68:8f:18:02:4a:a4:06:2e:cb:39:f9:1f:40:44:f1:b0:9c: a4:18:0a:83:f9:c3:b8:aa:09:4c:10:01:91:56:ae:fc:66:de: 9a:46:0b:c5 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUIJPh4TxDLHLFiFCC76mz8LxaFLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzFaFw0yNzAyMjIxNTA2MzFaMDMxMTAvBgNV BAMTKDY1ODI1M0RBOEU5QTFDRkNBN0I0MkEwMUU4OTY4NzlCMjgwM0JBNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4rQ0f2I1VH/oFzzIS2BEYiitd Iox+wjLXQ0ksDerCS6La9lD7ZKaz+zhecjmubXLPxwUImJInqc7RFLkPoSl5ClAF eMxpqkYO40Ppeaq/EP8RVDLIqHGVgn1SjamRbClYsNsVeBr+iOSpHHnccwbaCxCY Jf7hoYbEWKv5PSuqU7VV2kTUq8FLNXkhs7BWiV8G0t0mZ6F7hVu87MLP/o+zd6lC RyKxtUt6+6OX8LBwuGJPdfb24ME18j0FWQJwOKEPUhx4WGXzE2k5tcsMYf2ZQYb0 yOaHZo63zsFjImhMC8OFBXtRq5vw+cWQGZjFGURtQeXOdZ+8VENOJYjzHn3XAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUZYJT2o6aHPyntCoB6JaHmygDulgwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzEyZTMyMzIyZTMxMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNTM5MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEWiDANBgkqhkiG 9w0BAQsFAAOCAQEAkWq7izACb8Y0B/JDXlwuSlCH6RbADIHuSjgE/Vzrkj8gVzfj K7k+jI2GS/ljmJIEB7BxDhL41LYm7aelXmv8nST7LpEO29CaPH2LWpOyPBkVDwNt D1zJy6UVgwxv7WMjkFImprCsdeOX415FwRxv1KraIy/rLFLQdk4/PRF4C7MmcwXd rEaLjLUdiTDNUIL2944mqPK7MZLrr6ByMJ/i8PCbOPVkMJi+X957zKa8BDRbrQ5x IilkOeD4GkKzzdbeI47doJoZO6zQ9ai1Xj71TTMbThvIiMZ+PWiPGAJKpAYuyzn5 H0BE8bCcpBgKg/nDuKoJTBABkVau/GbemkYLxQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:02:49 2026 by rpki-client