$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e312e302f32342d3234203d3e203631333137.roa File: 38392e3138352e312e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: tZpy8aUzJybb66AxcnMhuAW085+3G/Dtc+fTA/LWbMg= Subject key identifier: B9:0E:D8:3D:98:41:76:4A:56:05:78:03:08:CF:03:43:97:77:A4:F2 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 10CF97C1400EB0753F79E8E7081C4E8A99F20F6D Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e312e302f32342d3234203d3e203631333137.roa Signing time: Mon 23 Feb 2026 15:06:33 +0000 ROA not before: Mon 23 Feb 2026 15:01:33 +0000 ROA not after: Mon 22 Feb 2027 15:06:33 +0000 asID: 61317 IP address blocks: 89.185.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cf:97:c1:40:0e:b0:75:3f:79:e8:e7:08:1c:4e:8a:99:f2:0f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:33 2026 GMT Not After : Feb 22 15:06:33 2027 GMT Subject: CN=B90ED83D9841764A5605780308CF03439777A4F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:cc:e3:d2:c2:fd:c8:15:ca:df:d1:9b:04: 9d:e4:f3:dd:52:06:da:32:7a:76:5d:cc:a5:b5:4b: 85:39:06:08:5f:de:55:62:57:32:62:e5:08:3b:40: 7f:35:30:39:0c:ed:e3:dc:be:f9:d5:e2:7a:35:58: 75:0d:b4:3c:e7:b3:9e:9c:41:e8:d1:51:3b:4f:0b: c2:8f:c9:3a:64:9e:7f:8a:d3:3b:b8:e3:5c:6f:c4: 73:d4:6e:1c:45:7c:aa:24:d6:e7:3a:ee:20:59:d4: d3:dd:fe:f1:2d:89:31:96:e3:87:b5:82:85:a6:2a: 5c:03:35:2d:cd:7a:59:80:b4:d8:fe:a6:6e:67:96: c2:d4:2e:62:a8:5f:7c:37:09:a1:a0:e1:06:e6:d0: ce:9a:e4:a6:bb:bd:05:f8:ce:c2:86:d8:bb:24:48: c7:fb:a2:d9:b4:b6:d4:f0:24:02:42:4b:c0:08:b6: ce:47:22:09:48:6e:c8:6d:e6:fa:ee:e3:9a:aa:e8: c3:70:72:0b:ca:d2:e1:d7:a1:e2:62:5a:5b:21:7b: e6:b6:62:ee:52:27:ac:fb:8c:b3:89:34:49:fe:d8: 91:d9:51:8d:61:d6:b3:e8:8b:ea:a8:41:5a:ce:c2: b0:34:d2:ec:09:46:ce:97:16:ff:80:99:d9:2b:4c: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:0E:D8:3D:98:41:76:4A:56:05:78:03:08:CF:03:43:97:77:A4:F2 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e312e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.1.0/24 Signature Algorithm: sha256WithRSAEncryption 77:d9:21:c4:42:7c:2b:f7:92:96:99:79:56:cb:a4:9b:92:f4: 9a:90:6b:b3:37:13:42:56:c0:46:ef:77:9c:ce:9e:6a:43:18: b7:b0:3a:22:02:56:74:5b:fc:2a:0e:99:65:d4:58:a2:c8:a8: 27:a5:47:c7:3e:28:67:9c:c7:77:65:9a:62:f2:c3:e7:ca:cb: 77:56:c6:3f:d0:69:04:81:27:13:2a:e6:64:45:47:f9:21:51: d3:70:55:54:10:50:5b:af:15:9e:9f:1b:3b:fe:98:0e:4d:ac: 17:83:b1:56:16:11:50:3c:ef:c5:09:fd:e6:52:c1:6f:48:8a: 19:80:37:31:f9:78:89:e0:8b:8f:c3:49:98:26:24:06:8e:f3: 0e:1d:05:c1:9a:ac:ff:fe:67:63:17:71:cb:fa:40:f1:f4:4d: 33:8c:88:3d:33:d6:4f:99:ea:65:3e:e9:ce:de:8e:ee:54:e8: 96:f0:94:f8:6d:8b:52:c3:49:46:90:73:db:be:86:22:a0:f2: d6:da:a5:2f:84:41:40:85:07:b6:f4:b4:60:30:27:ea:02:7a: 98:21:57:2e:10:76:d9:16:e4:1c:76:26:d4:91:99:fe:8e:06: 25:e3:55:94:c8:f7:d7:7e:1f:21:b0:65:26:e9:a6:83:e0:ca: 58:50:69:79 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUEM+XwUAOsHU/eejnCBxOipnyD20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzNaFw0yNzAyMjIxNTA2MzNaMDMxMTAvBgNV BAMTKEI5MEVEODNEOTg0MTc2NEE1NjA1NzgwMzA4Q0YwMzQzOTc3N0E0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXszj0sL9yBXK39GbBJ3k891S BtoyenZdzKW1S4U5Bghf3lViVzJi5Qg7QH81MDkM7ePcvvnV4no1WHUNtDzns56c QejRUTtPC8KPyTpknn+K0zu441xvxHPUbhxFfKok1uc67iBZ1NPd/vEtiTGW44e1 goWmKlwDNS3NelmAtNj+pm5nlsLULmKoX3w3CaGg4Qbm0M6a5Ka7vQX4zsKG2Lsk SMf7otm0ttTwJAJCS8AIts5HIglIbsht5vru45qq6MNwcgvK0uHXoeJiWlshe+a2 Yu5SJ6z7jLOJNEn+2JHZUY1h1rPoi+qoQVrOwrA00uwJRs6XFv+AmdkrTDVBAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUuQ7YPZhBdkpWBXgDCM8DQ5d3pPIwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkBMA0GCSqGSIb3DQEB CwUAA4IBAQB32SHEQnwr95KWmXlWy6SbkvSakGuzNxNCVsBG73eczp5qQxi3sDoi AlZ0W/wqDpll1FiiyKgnpUfHPihnnMd3ZZpi8sPnyst3VsY/0GkEgScTKuZkRUf5 IVHTcFVUEFBbrxWenxs7/pgOTawXg7FWFhFQPO/FCf3mUsFvSIoZgDcx+XiJ4IuP w0mYJiQGjvMOHQXBmqz//mdjF3HL+kDx9E0zjIg9M9ZPmeplPunO3o7uVOiW8JT4 bYtSw0lGkHPbvoYioPLW2qUvhEFAhQe29LRgMCfqAnqYIVcuEHbZFuQcdibUkZn+ jgYl41WUyPfXfh8hsGUm6aaD4MpYUGl5 -----END CERTIFICATE-----Generated at Mon Mar 2 00:58:15 2026 by rpki-client