$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3134302e302f32342d3234203d3e20323135323234.roa File: 38312e32322e3134302e302f32342d3234203d3e20323135323234.roa (raw, json) Hash identifier: WLK832vhKbJyEnjPiPtscg6NN9cTm+5LifqWNYFHeOw= Subject key identifier: 22:6E:FA:73:3F:35:9E:52:54:EB:79:C0:1C:AE:43:DE:B6:87:D9:F4 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 70C89E961CD4EAE2E771FE70A699E83166F347FB Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3134302e302f32342d3234203d3e20323135323234.roa Signing time: Mon 23 Feb 2026 15:06:32 +0000 ROA not before: Mon 23 Feb 2026 15:01:32 +0000 ROA not after: Mon 22 Feb 2027 15:06:32 +0000 asID: 215224 IP address blocks: 81.22.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c8:9e:96:1c:d4:ea:e2:e7:71:fe:70:a6:99:e8:31:66:f3:47:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:32 2026 GMT Not After : Feb 22 15:06:32 2027 GMT Subject: CN=226EFA733F359E5254EB79C01CAE43DEB687D9F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c7:30:cb:07:4e:86:ef:05:c7:11:4f:0a:35: 1a:39:d3:1f:8c:f0:d9:80:9f:2d:12:bb:dd:ed:c3: b3:e6:bb:6e:ae:81:34:3f:0c:ed:a6:0b:b2:1a:ae: 79:a8:39:db:6c:41:1f:ab:7a:bc:99:a7:00:42:6d: f5:8c:54:21:85:91:a3:aa:9a:25:e6:75:5a:95:7e: 0e:6f:b3:89:99:69:02:af:69:ce:c9:21:74:9f:fc: f0:90:3d:12:cd:2e:a1:49:38:6a:f1:bd:1b:4d:a8: 80:83:1e:d4:6f:e7:b4:e2:60:e2:a0:38:eb:98:f2: 88:f3:50:9f:de:c3:87:ff:1f:79:e4:14:07:2a:b5: 14:d2:37:17:fa:98:fc:00:64:98:f4:77:25:86:e4: 4f:f8:e2:b3:58:7b:33:a4:dd:5c:6b:a2:10:1b:5f: cf:36:34:2f:6e:64:3d:56:fb:d7:38:e6:8e:a3:51: e3:a7:a3:d8:5d:02:65:28:be:13:10:1f:1b:f3:4e: 11:a5:07:0a:3a:c3:59:e3:43:de:cf:86:50:38:e0: 30:4a:c1:e1:47:d6:f5:d4:c5:c9:50:f9:ad:48:ab: 29:b8:48:75:80:43:b2:49:9d:03:f1:1a:84:0f:04: f0:e8:d2:82:fd:c2:91:8f:b4:17:4d:ce:95:ee:82: 66:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6E:FA:73:3F:35:9E:52:54:EB:79:C0:1C:AE:43:DE:B6:87:D9:F4 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38312e32322e3134302e302f32342d3234203d3e20323135323234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.22.140.0/24 Signature Algorithm: sha256WithRSAEncryption 96:dd:93:b6:ef:6f:4b:e4:61:e1:dd:3d:e7:91:68:3c:b9:c9: 78:0f:55:a0:dc:f0:a7:68:33:ec:9f:ba:fe:83:e8:2d:fd:70: 47:ae:32:8c:1b:35:9b:13:d6:72:01:e2:7c:99:a5:71:62:8f: d7:e2:c6:d2:ba:f7:d2:c4:eb:15:d8:03:0c:52:56:67:ae:78: 4d:5a:c5:20:22:0f:c0:08:00:ca:fb:d2:91:fb:34:0a:e8:42: db:54:5f:37:ec:5f:13:87:5d:c5:05:f6:29:f8:32:42:12:9e: 4f:1c:91:19:86:53:e3:9c:90:ee:54:46:dd:32:b6:e2:60:e1: 72:6d:43:89:47:e9:a1:79:48:96:d6:00:09:5d:80:4a:ec:fd: 41:b3:31:30:71:5d:67:20:a8:17:d6:ad:9b:26:66:73:a2:05: 3d:94:5a:4b:5c:0f:ef:9f:0f:6d:82:3e:5d:de:0d:75:0f:7e: 56:8f:cd:d5:9d:be:63:76:d7:9a:96:81:18:5b:87:5e:fc:f4: 70:ba:eb:9a:2e:cc:f7:7f:f2:a3:59:04:a8:5b:d2:06:15:fe: 66:c6:b0:e9:99:94:50:df:2e:f5:06:ef:7b:2a:1f:22:64:23: 99:43:c5:e3:5d:81:57:87:95:74:cd:ee:75:27:8e:ae:f9:85: 4b:cc:93:e7 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUcMielhzU6uLncf5wppnoMWbzR/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzJaFw0yNzAyMjIxNTA2MzJaMDMxMTAvBgNV BAMTKDIyNkVGQTczM0YzNTlFNTI1NEVCNzlDMDFDQUU0M0RFQjY4N0Q5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAxzDLB06G7wXHEU8KNRo50x+M 8NmAny0Su93tw7Pmu26ugTQ/DO2mC7IarnmoOdtsQR+reryZpwBCbfWMVCGFkaOq miXmdVqVfg5vs4mZaQKvac7JIXSf/PCQPRLNLqFJOGrxvRtNqICDHtRv57TiYOKg OOuY8ojzUJ/ew4f/H3nkFAcqtRTSNxf6mPwAZJj0dyWG5E/44rNYezOk3VxrohAb X882NC9uZD1W+9c45o6jUeOno9hdAmUovhMQHxvzThGlBwo6w1njQ97PhlA44DBK weFH1vXUxclQ+a1Iqym4SHWAQ7JJnQPxGoQPBPDo0oL9wpGPtBdNzpXugmZDAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUIm76cz81nlJU63nAHK5D3raH2fQwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzEyZTMyMzIyZTMxMzQzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNTMyMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFEWjDANBgkqhkiG 9w0BAQsFAAOCAQEAlt2Ttu9vS+Rh4d0955FoPLnJeA9VoNzwp2gz7J+6/oPoLf1w R64yjBs1mxPWcgHifJmlcWKP1+LG0rr30sTrFdgDDFJWZ654TVrFICIPwAgAyvvS kfs0CuhC21RfN+xfE4ddxQX2KfgyQhKeTxyRGYZT45yQ7lRG3TK24mDhcm1DiUfp oXlIltYACV2ASuz9QbMxMHFdZyCoF9atmyZmc6IFPZRaS1wP758PbYI+Xd4NdQ9+ Vo/N1Z2+Y3bXmpaBGFuHXvz0cLrrmi7M93/yo1kEqFvSBhX+Zsaw6ZmUUN8u9Qbv eyofImQjmUPF412BV4eVdM3udSeOrvmFS8yT5w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:33:11 2026 by rpki-client