$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e322e302f32342d3234203d3e20323131383236.roa File: 38392e3138352e322e302f32342d3234203d3e20323131383236.roa (raw, json) Hash identifier: lUhCALZwGuODoAWjACOq+n+m3LKV/N7/iFivCFrPSCo= Subject key identifier: 6D:9E:B8:BF:E9:73:DF:75:BD:78:CA:62:76:47:AB:63:53:BE:A0:A0 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 30439D30E507F892F5D5BF3C3BB2BEB405AB1C1F Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e322e302f32342d3234203d3e20323131383236.roa Signing time: Mon 23 Feb 2026 15:06:34 +0000 ROA not before: Mon 23 Feb 2026 15:01:34 +0000 ROA not after: Mon 22 Feb 2027 15:06:34 +0000 asID: 211826 IP address blocks: 89.185.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:43:9d:30:e5:07:f8:92:f5:d5:bf:3c:3b:b2:be:b4:05:ab:1c:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:34 2026 GMT Not After : Feb 22 15:06:34 2027 GMT Subject: CN=6D9EB8BFE973DF75BD78CA627647AB6353BEA0A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9e:1a:52:b8:93:45:4c:d8:dc:e0:c5:27:2d: 85:60:00:a3:b4:af:55:6a:eb:4c:1b:69:8b:1e:58: 03:5f:1f:ef:cd:c8:77:8a:bb:2b:f4:a5:8b:bd:48: 76:3a:b7:5b:3f:48:45:02:4f:67:4b:bc:bc:da:b2: 35:b1:6d:86:43:03:6b:6d:9c:17:66:fd:c7:1d:18: 5a:0d:29:bd:6b:23:88:7c:74:91:bf:97:74:a2:c5: a5:a3:c1:23:64:04:0a:71:1d:3e:a5:ab:1a:1f:4b: ae:35:cc:db:81:00:f3:0f:b0:3a:45:de:ca:b8:eb: 1d:4e:0e:e3:0d:35:bb:40:10:42:20:0b:57:a6:e3: c8:8e:74:52:aa:b9:c6:31:ac:06:cd:7a:08:ea:ab: c1:40:a0:ea:64:b0:db:37:dc:63:ce:67:02:ff:dd: eb:15:42:5e:03:d4:ec:29:91:e5:93:20:6f:a9:57: d4:cc:55:47:fc:11:b8:c5:a8:c3:c3:1b:59:0c:62: e0:a8:1f:56:d1:94:13:7a:3a:e1:d0:a3:a4:69:7e: b6:48:47:cf:0f:ae:18:85:03:17:a2:19:91:19:66: 91:fe:4a:ac:05:2e:4f:b8:9e:c1:aa:ae:99:59:ba: 98:26:8b:e9:95:92:bd:9a:26:c1:8d:98:a9:eb:55: fa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:9E:B8:BF:E9:73:DF:75:BD:78:CA:62:76:47:AB:63:53:BE:A0:A0 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e322e302f32342d3234203d3e20323131383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.2.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:7a:fe:09:2a:1d:98:38:89:0c:25:61:46:32:31:b4:d6:6b: af:f3:ab:74:d4:24:da:54:a4:35:b8:ef:0f:5a:94:c0:38:47: 32:de:77:34:1d:92:e2:2c:f2:b3:15:68:66:2c:4b:f6:3b:ed: fd:fe:3e:29:28:fc:48:e6:f5:8d:d9:47:0a:33:b0:9e:1c:17: 8e:0f:88:08:c7:99:a8:91:82:48:05:e2:55:cf:29:0b:d5:e2: 8d:9e:b5:1f:00:87:92:2f:92:2a:48:c6:8f:70:d7:f8:80:eb: 9d:54:78:36:95:2e:8f:28:fa:7a:fa:da:18:9e:50:3f:49:2b: 20:38:ef:b3:ca:4e:06:e2:db:e5:d1:4f:3b:59:31:ed:9d:70: 0f:5e:42:0a:57:27:21:aa:92:bb:d8:2f:d7:bb:e4:0e:25:8f: 06:82:66:9e:05:74:af:5f:4e:14:14:eb:4f:2d:38:50:c7:b0: bb:f6:33:4a:45:b5:ad:aa:57:f2:a3:4f:b7:19:b4:58:b8:06: 18:69:c4:b6:2b:95:94:d4:1e:98:9a:2a:2b:a1:f8:4b:81:4a: 25:35:f5:bf:b2:06:a3:a0:ef:0b:f7:14:94:4d:0a:55:d7:ca: 0c:5f:e9:c5:df:05:0e:88:6c:b7:fa:23:1c:ee:81:d3:dd:d2: 99:3b:b7:3f -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUMEOdMOUH+JL11b88O7K+tAWrHB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzRaFw0yNzAyMjIxNTA2MzRaMDMxMTAvBgNV BAMTKDZEOUVCOEJGRTk3M0RGNzVCRDc4Q0E2Mjc2NDdBQjYzNTNCRUEwQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDInhpSuJNFTNjc4MUnLYVgAKO0 r1Vq60wbaYseWANfH+/NyHeKuyv0pYu9SHY6t1s/SEUCT2dLvLzasjWxbYZDA2tt nBdm/ccdGFoNKb1rI4h8dJG/l3SixaWjwSNkBApxHT6lqxofS641zNuBAPMPsDpF 3sq46x1ODuMNNbtAEEIgC1em48iOdFKqucYxrAbNegjqq8FAoOpksNs33GPOZwL/ 3esVQl4D1OwpkeWTIG+pV9TMVUf8EbjFqMPDG1kMYuCoH1bRlBN6OuHQo6RpfrZI R88PrhiFAxeiGZEZZpH+SqwFLk+4nsGqrplZupgmi+mVkr2aJsGNmKnrVfoZAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUbZ64v+lz33W9eMpidkerY1O+oKAwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzIyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMxMzEzODMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZuQIwDQYJKoZIhvcN AQELBQADggEBAE96/gkqHZg4iQwlYUYyMbTWa6/zq3TUJNpUpDW47w9alMA4RzLe dzQdkuIs8rMVaGYsS/Y77f3+Piko/Ejm9Y3ZRwozsJ4cF44PiAjHmaiRgkgF4lXP KQvV4o2etR8Ah5IvkipIxo9w1/iA651UeDaVLo8o+nr62hieUD9JKyA477PKTgbi 2+XRTztZMe2dcA9eQgpXJyGqkrvYL9e75A4ljwaCZp4FdK9fThQU608tOFDHsLv2 M0pFta2qV/KjT7cZtFi4BhhpxLYrlZTUHpiaKiuh+EuBSiU19b+yBqOg7wv3FJRN ClXXygxf6cXfBQ6IbLf6IxzugdPd0pk7tz8= -----END CERTIFICATE-----Generated at Mon Mar 2 00:01:54 2026 by rpki-client