$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32342e302f32342d3234203d3e20323032363632.roa File: 38392e3138352e32342e302f32342d3234203d3e20323032363632.roa (raw, json) Hash identifier: tgAviN5xiipkssNtqawx86g3CxxISMM9g+Svpdd8NIc= Subject key identifier: 6C:C1:DA:30:C4:4E:AA:CA:BB:F2:B3:5E:8E:2A:7B:DF:B9:6F:47:16 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 7156423A9BFBB97590AFF269895A2CE22B8E8EAE Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32342e302f32342d3234203d3e20323032363632.roa Signing time: Mon 23 Feb 2026 15:06:34 +0000 ROA not before: Mon 23 Feb 2026 15:01:34 +0000 ROA not after: Mon 22 Feb 2027 15:06:34 +0000 asID: 202662 IP address blocks: 89.185.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:56:42:3a:9b:fb:b9:75:90:af:f2:69:89:5a:2c:e2:2b:8e:8e:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:34 2026 GMT Not After : Feb 22 15:06:34 2027 GMT Subject: CN=6CC1DA30C44EAACABBF2B35E8E2A7BDFB96F4716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:04:9f:ce:2e:15:f0:5c:91:7d:98:a1:0f:29: 47:79:db:91:ec:7e:40:32:cb:73:6e:dc:7e:25:bd: 39:1a:40:8f:14:ec:15:36:b4:85:38:c9:68:c8:ca: e2:8c:b4:21:41:d6:a8:8e:04:db:b6:36:66:f2:6c: 3e:97:72:91:f0:e8:de:ed:50:c1:8a:64:cf:6f:a9: 82:8c:c1:8b:e5:a9:9c:8f:39:b7:cf:53:b1:61:cc: 1b:6b:76:8a:b6:da:a2:e8:8e:fd:ef:28:01:e3:15: 76:23:7a:91:87:c7:7c:43:8b:40:84:16:38:28:a6: 04:aa:01:44:a8:da:a4:b7:e6:49:b8:15:49:a5:96: 88:84:63:4c:b0:c6:9d:c3:ac:00:47:d8:b4:d7:90: 10:e0:1e:31:98:2f:51:33:d3:2d:63:d8:f1:d6:2d: c7:3e:4a:ff:21:e4:aa:ef:bd:ad:37:bb:38:d2:67: 3c:d4:ba:82:7e:24:8c:45:11:4b:3e:24:54:eb:01: 88:15:45:0e:8a:5d:4d:2d:f6:81:38:37:6a:43:2a: 81:6e:bf:47:99:e1:30:b8:99:7d:ff:38:33:e5:a2: 14:5c:cf:ad:51:27:ba:e2:4e:9b:6e:2d:fe:70:f2: 48:f1:bd:05:52:bc:3f:21:75:3e:87:c9:e0:11:d3: 5b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C1:DA:30:C4:4E:AA:CA:BB:F2:B3:5E:8E:2A:7B:DF:B9:6F:47:16 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32342e302f32342d3234203d3e20323032363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.24.0/24 Signature Algorithm: sha256WithRSAEncryption 26:7a:12:27:97:04:59:db:1d:15:6a:ab:92:b1:12:fe:39:4b: c5:20:a9:9c:6b:5f:d1:22:ec:65:71:8d:2e:24:01:b5:37:03: 2a:c5:59:7a:89:63:a1:8f:e5:52:01:27:8f:29:8f:cc:21:76: b1:b5:e0:2a:ca:62:98:b8:2e:93:cd:d0:3c:09:46:d5:41:ee: 52:5b:b1:ab:5b:36:0e:5e:41:8c:f6:12:43:db:ec:1b:b6:e4: eb:d7:9a:3c:b9:90:74:77:c2:b3:0f:23:d9:b7:62:8a:58:fc: 37:f5:dd:52:20:9c:4f:f2:28:73:b0:94:de:c7:fb:d3:9f:49: 91:7b:82:05:52:88:7a:57:98:fd:f4:a5:c2:81:76:fc:55:98: ed:13:9d:48:6a:a3:cb:99:e7:22:bb:df:19:ab:86:d7:7e:90: 8c:1a:7e:87:48:7b:b5:57:b9:87:6e:05:2b:71:ae:40:67:6d: d2:29:ec:e3:c2:4f:d3:d1:fc:54:3f:86:4b:74:ce:71:01:2b: 66:f5:bd:bc:fd:e2:7a:3c:13:bd:09:e6:e8:3a:b5:4a:ef:66: 86:f9:19:01:88:f4:82:9f:12:2b:19:a7:fe:6e:c2:89:8e:8e: 08:58:d6:f9:f3:7a:e3:96:ed:10:38:b3:64:5e:48:21:57:e6: 40:f2:bb:5f -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUcVZCOpv7uXWQr/JpiVos4iuOjq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzRaFw0yNzAyMjIxNTA2MzRaMDMxMTAvBgNV BAMTKDZDQzFEQTMwQzQ0RUFBQ0FCQkYyQjM1RThFMkE3QkRGQjk2RjQ3MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyBJ/OLhXwXJF9mKEPKUd525Hs fkAyy3Nu3H4lvTkaQI8U7BU2tIU4yWjIyuKMtCFB1qiOBNu2NmbybD6XcpHw6N7t UMGKZM9vqYKMwYvlqZyPObfPU7FhzBtrdoq22qLojv3vKAHjFXYjepGHx3xDi0CE FjgopgSqAUSo2qS35km4FUmlloiEY0ywxp3DrABH2LTXkBDgHjGYL1Ez0y1j2PHW Lcc+Sv8h5Krvva03uzjSZzzUuoJ+JIxFEUs+JFTrAYgVRQ6KXU0t9oE4N2pDKoFu v0eZ4TC4mX3/ODPlohRcz61RJ7riTptuLf5w8kjxvQVSvD8hdT6HyeAR01vtAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUbMHaMMROqsq78rNejip737lvRxYwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMjM2MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFm5GDANBgkqhkiG 9w0BAQsFAAOCAQEAJnoSJ5cEWdsdFWqrkrES/jlLxSCpnGtf0SLsZXGNLiQBtTcD KsVZeoljoY/lUgEnjymPzCF2sbXgKspimLguk83QPAlG1UHuUluxq1s2Dl5BjPYS Q9vsG7bk69eaPLmQdHfCsw8j2bdiilj8N/XdUiCcT/Ioc7CU3sf7059JkXuCBVKI eleY/fSlwoF2/FWY7ROdSGqjy5nnIrvfGauG136QjBp+h0h7tVe5h24FK3GuQGdt 0ins48JP09H8VD+GS3TOcQErZvW9vP3iejwTvQnm6Dq1Su9mhvkZAYj0gp8SKxmn /m7CiY6OCFjW+fN645btEDizZF5IIVfmQPK7Xw== -----END CERTIFICATE-----Generated at Mon Mar 2 01:29:16 2026 by rpki-client