$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32372e302f32342d3234203d3e20323032363632.roa File: 38392e3138352e32372e302f32342d3234203d3e20323032363632.roa (raw, json) Hash identifier: OMs+V1DmlnjvChRn0Lf1CX2pnQXgGyBvi6c3oXALB7c= Subject key identifier: B0:02:A0:E5:E6:3D:0D:56:F5:CB:F6:DF:FC:82:4C:99:38:17:E6:A8 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 41EBDCE31086FF3955D10D68CB1A794BD892E76D Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32372e302f32342d3234203d3e20323032363632.roa Signing time: Mon 23 Feb 2026 15:06:35 +0000 ROA not before: Mon 23 Feb 2026 15:01:35 +0000 ROA not after: Mon 22 Feb 2027 15:06:35 +0000 asID: 202662 IP address blocks: 89.185.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:eb:dc:e3:10:86:ff:39:55:d1:0d:68:cb:1a:79:4b:d8:92:e7:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:35 2026 GMT Not After : Feb 22 15:06:35 2027 GMT Subject: CN=B002A0E5E63D0D56F5CBF6DFFC824C993817E6A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:5a:c5:35:a5:a0:3a:30:6e:1a:a1:2e:6d: 54:6a:e0:29:c8:1a:25:84:f5:4d:62:71:91:14:7e: c1:37:8a:2e:84:7d:f9:eb:7c:2e:50:3f:a3:8a:95: 68:a5:d1:be:6e:ad:5a:21:a6:5a:12:6b:2e:64:14: 37:13:7c:31:9a:30:df:4f:42:06:50:fd:8b:3c:54: 43:9e:be:b8:cc:8a:d5:1e:db:62:8c:f1:2e:92:54: a8:be:21:86:69:7c:10:17:48:5c:c8:f2:29:78:2e: 80:e3:62:b4:e9:09:9b:d8:03:ac:44:d5:ca:57:7d: 18:08:47:66:78:1e:50:a4:af:c7:98:cc:4b:35:75: f4:1b:10:95:f6:8f:cb:3a:49:a0:fc:49:56:c6:50: 15:95:ba:72:e2:8b:61:c9:5c:b8:2f:d4:a9:fa:4d: 5a:76:14:60:15:57:59:45:36:98:b4:bf:9c:d6:f3: 64:c1:5f:85:fd:a4:07:60:19:da:1f:26:da:10:78: 15:d7:23:7c:30:e7:f9:55:30:bf:3c:1d:5e:32:7a: 00:90:74:4a:4b:a4:8a:16:a8:d4:a6:73:e1:6e:40: d5:5a:61:34:23:b5:9b:29:13:23:cb:d3:93:f3:8a: c5:ac:e2:21:08:72:9e:88:65:13:8b:da:e5:2c:94: 3b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:02:A0:E5:E6:3D:0D:56:F5:CB:F6:DF:FC:82:4C:99:38:17:E6:A8 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32372e302f32342d3234203d3e20323032363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.27.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:5e:21:da:60:5b:e1:52:2e:99:a5:24:94:52:9a:70:c6:cf: a8:ba:f9:ae:32:38:e7:2b:2e:dc:7c:5f:21:7f:9d:d2:ca:4c: b6:ac:85:6b:e4:6c:e6:f6:ca:86:c9:4d:ba:5b:7e:24:7a:7e: 88:81:03:6a:40:a1:c1:b4:1e:93:23:c8:e5:b2:b1:71:9f:36: 21:db:d3:88:bc:07:f6:b0:7b:d4:a6:6a:02:8d:f0:32:c7:e7: 8e:15:3b:dc:d5:3d:eb:a5:7e:5e:2b:04:7b:48:c9:f6:de:65: c8:d0:6a:dd:5d:fb:c1:42:3b:9d:14:0b:d1:5a:0a:47:d9:1f: c0:bc:3a:83:f2:cb:c3:a8:67:91:2d:77:24:63:12:c1:7a:34: 05:3e:fa:21:79:20:81:44:31:87:48:51:b4:cd:76:92:80:50: 73:9d:98:47:fb:8e:71:a2:ea:4a:4d:6a:1b:69:c3:18:1c:a2: ce:5c:fc:08:4b:28:f3:d7:25:33:5e:1b:4f:66:56:de:a1:a0: 86:73:9c:b8:c5:d1:4e:29:eb:1f:ff:cf:9b:1c:a3:90:78:a5: 34:57:51:8a:2d:ad:74:c2:f0:21:9d:93:ad:0f:8e:32:09:db: 26:57:f2:d4:ce:da:b3:8f:95:fb:7c:26:d0:27:b9:77:c4:f8: 22:93:5b:3c -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUQevc4xCG/zlV0Q1oyxp5S9iS520wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzVaFw0yNzAyMjIxNTA2MzVaMDMxMTAvBgNV BAMTKEIwMDJBMEU1RTYzRDBENTZGNUNCRjZERkZDODI0Qzk5MzgxN0U2QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDy1rFNaWgOjBuGqEubVRq4CnI GiWE9U1icZEUfsE3ii6EffnrfC5QP6OKlWil0b5urVohploSay5kFDcTfDGaMN9P QgZQ/Ys8VEOevrjMitUe22KM8S6SVKi+IYZpfBAXSFzI8il4LoDjYrTpCZvYA6xE 1cpXfRgIR2Z4HlCkr8eYzEs1dfQbEJX2j8s6SaD8SVbGUBWVunLii2HJXLgv1Kn6 TVp2FGAVV1lFNpi0v5zW82TBX4X9pAdgGdofJtoQeBXXI3ww5/lVML88HV4yegCQ dEpLpIoWqNSmc+FuQNVaYTQjtZspEyPL05PzisWs4iEIcp6IZROL2uUslDtZAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUsAKg5eY9DVb1y/bf/IJMmTgX5qgwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzAzMjM2MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFm5GzANBgkqhkiG 9w0BAQsFAAOCAQEAPl4h2mBb4VIumaUklFKacMbPqLr5rjI45ysu3HxfIX+d0spM tqyFa+Rs5vbKhslNult+JHp+iIEDakChwbQekyPI5bKxcZ82IdvTiLwH9rB71KZq Ao3wMsfnjhU73NU966V+XisEe0jJ9t5lyNBq3V37wUI7nRQL0VoKR9kfwLw6g/LL w6hnkS13JGMSwXo0BT76IXkggUQxh0hRtM12koBQc52YR/uOcaLqSk1qG2nDGByi zlz8CEso89clM14bT2ZW3qGghnOcuMXRTinrH//PmxyjkHilNFdRii2tdMLwIZ2T rQ+OMgnbJlfy1M7as4+V+3wm0Ce5d8T4IpNbPA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:03:21 2026 by rpki-client