$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133382e302f32342d3234203d3e20333938343635.roa File: 38312e32322e3133382e302f32342d3234203d3e20333938343635.roa (raw, json) Hash identifier: H6PSjT2SxMyS6GZik5EbePf6MvbY/ACZBSjfZq+cfDU= Subject key identifier: AA:66:C4:09:9C:C1:0A:2E:22:8D:F2:FB:08:60:ED:C4:9C:29:2B:51 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 0D3AEEDF80D5D76D5189DF47D8ABEBE2952EC34F Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133382e302f32342d3234203d3e20333938343635.roa Signing time: Mon 23 Feb 2026 15:06:31 +0000 ROA not before: Mon 23 Feb 2026 15:01:31 +0000 ROA not after: Mon 22 Feb 2027 15:06:31 +0000 asID: 398465 IP address blocks: 81.22.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:3a:ee:df:80:d5:d7:6d:51:89:df:47:d8:ab:eb:e2:95:2e:c3:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:31 2026 GMT Not After : Feb 22 15:06:31 2027 GMT Subject: CN=AA66C4099CC10A2E228DF2FB0860EDC49C292B51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0a:30:0c:21:58:16:8d:9e:ca:96:b5:d4:1b: a5:0d:88:6f:31:94:8e:d6:be:12:ae:cd:5c:74:9b: 76:50:08:b4:1c:3b:63:ef:94:ad:0b:17:28:e1:8f: 84:f1:f1:0d:63:bb:e6:91:06:8f:1d:88:00:b6:01: 19:7d:17:26:fb:95:d7:14:2f:ca:36:cf:08:a0:8c: a8:c8:7b:b9:93:e5:31:93:53:15:d0:ae:e8:41:2f: fe:c8:c9:47:88:78:19:a3:fd:17:02:77:c8:de:1d: 60:e1:ab:98:d1:2d:85:5d:b2:fc:c5:37:bf:ec:76: 22:3d:36:4a:2b:84:51:7f:f6:c1:eb:41:c6:f8:68: 9a:4b:89:b4:da:72:23:6d:45:64:63:0d:47:58:42: 76:77:f9:f5:d6:40:ab:64:8c:6e:0f:2a:2a:65:e2: 7e:33:10:9c:eb:8e:1f:b8:48:ac:e9:dd:1f:2c:da: b1:38:8f:87:40:2d:b7:fd:2c:c1:5f:f1:ec:d8:1c: 35:89:22:7a:58:e2:2c:0e:f1:7a:e3:42:c4:c5:32: ee:e8:88:8b:75:ef:7e:1d:75:f6:62:86:48:68:cb: 84:05:37:81:25:11:28:3a:61:c5:31:d4:f7:61:a6: c0:22:5b:4a:d7:11:dd:d0:04:3d:e2:2e:a0:bf:5b: d6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:66:C4:09:9C:C1:0A:2E:22:8D:F2:FB:08:60:ED:C4:9C:29:2B:51 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3133382e302f32342d3234203d3e20333938343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.22.138.0/24 Signature Algorithm: sha256WithRSAEncryption 95:7f:ff:d3:de:4f:3b:5d:75:95:2d:7f:b5:29:21:66:66:93: 32:ae:2c:c4:9f:cc:69:6c:75:4c:14:ad:35:07:30:fb:6a:f2: 07:6b:c5:4b:b4:ad:cc:58:61:cb:14:ad:7b:ed:52:fb:f9:da: 83:46:3e:42:e7:60:f2:bb:f6:23:fa:93:f9:cc:62:1f:5b:52: b8:e8:57:35:db:aa:74:cc:d8:c8:5f:1b:c9:9a:bd:50:34:c5: 60:da:af:09:ab:42:cd:0d:ea:d6:e2:a5:dd:d4:3f:13:17:9b: 54:12:fb:e5:c2:b4:40:c9:5d:54:41:f1:04:c8:b9:6d:41:c7: c5:d0:da:2e:cd:f6:2f:ea:ce:4c:7f:e1:0a:87:93:ab:98:cc: 31:90:26:df:49:a6:c7:e9:bf:d4:af:4f:e6:34:1b:52:18:d2: 75:c1:21:93:f6:5e:7f:f7:3f:4c:3b:a5:74:14:93:a4:9b:fe: 09:8c:5d:7f:13:04:12:c5:08:42:f2:a8:c9:16:3b:ba:07:41: 88:fc:35:c9:01:b5:e3:20:70:71:9a:76:50:56:9d:9f:3b:70: 40:6d:ce:cc:3a:70:c9:be:1b:73:50:f8:54:df:3b:ae:9a:fd: 37:03:ae:09:c6:ca:8d:0b:22:80:6a:8f:72:2d:c7:4d:73:93: c4:16:90:96 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUDTru34DV121Rid9H2Kvr4pUuw08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzFaFw0yNzAyMjIxNTA2MzFaMDMxMTAvBgNV BAMTKEFBNjZDNDA5OUNDMTBBMkUyMjhERjJGQjA4NjBFREM0OUMyOTJCNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpCjAMIVgWjZ7KlrXUG6UNiG8x lI7WvhKuzVx0m3ZQCLQcO2PvlK0LFyjhj4Tx8Q1ju+aRBo8diAC2ARl9Fyb7ldcU L8o2zwigjKjIe7mT5TGTUxXQruhBL/7IyUeIeBmj/RcCd8jeHWDhq5jRLYVdsvzF N7/sdiI9NkorhFF/9sHrQcb4aJpLibTaciNtRWRjDUdYQnZ3+fXWQKtkjG4PKipl 4n4zEJzrjh+4SKzp3R8s2rE4j4dALbf9LMFf8ezYHDWJInpY4iwO8XrjQsTFMu7o iIt1734ddfZihkhoy4QFN4ElESg6YcUx1PdhpsAiW0rXEd3QBD3iLqC/W9Y/AgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUqmbECZzBCi4ijfL7CGDtxJwpK1EwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzEyZTMyMzIyZTMxMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzkzODM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEWijANBgkqhkiG 9w0BAQsFAAOCAQEAlX//095PO111lS1/tSkhZmaTMq4sxJ/MaWx1TBStNQcw+2ry B2vFS7StzFhhyxSte+1S+/nag0Y+Qudg8rv2I/qT+cxiH1tSuOhXNduqdMzYyF8b yZq9UDTFYNqvCatCzQ3q1uKl3dQ/ExebVBL75cK0QMldVEHxBMi5bUHHxdDaLs32 L+rOTH/hCoeTq5jMMZAm30mmx+m/1K9P5jQbUhjSdcEhk/Zef/c/TDuldBSTpJv+ CYxdfxMEEsUIQvKoyRY7ugdBiPw1yQG14yBwcZp2UFadnztwQG3OzDpwyb4bc1D4 VN87rpr9NwOuCcbKjQsigGqPci3HTXOTxBaQlg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:01:13 2026 by rpki-client