$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32382e302f32322d3234203d3e20323032363632.roa File: 38392e3138352e32382e302f32322d3234203d3e20323032363632.roa (raw, json) Hash identifier: 7FQgLolGqdZxO00DVSn0Nt2ktF7hHoEdNKC/n//crb4= Subject key identifier: A5:B8:3D:41:22:4C:B2:24:96:4E:8A:C2:5C:80:3F:FE:DB:7C:B3:DB Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 095B6C0AEE2F92E5022B69216464D0A1E302014D Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32382e302f32322d3234203d3e20323032363632.roa Signing time: Mon 23 Feb 2026 15:06:35 +0000 ROA not before: Mon 23 Feb 2026 15:01:35 +0000 ROA not after: Mon 22 Feb 2027 15:06:35 +0000 asID: 202662 IP address blocks: 89.185.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:5b:6c:0a:ee:2f:92:e5:02:2b:69:21:64:64:d0:a1:e3:02:01:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:35 2026 GMT Not After : Feb 22 15:06:35 2027 GMT Subject: CN=A5B83D41224CB224964E8AC25C803FFEDB7CB3DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cb:91:cf:06:3b:94:b9:9a:d5:fb:88:52:94: 07:53:00:e1:c9:1e:73:5e:fd:7b:6b:92:30:6b:53: b3:2d:69:62:e5:26:2f:93:33:28:e9:28:52:47:f2: c0:ec:4e:20:85:c6:52:da:ac:54:42:bf:73:69:1a: 6a:38:7d:e8:8e:88:1e:8e:bb:ee:cd:3b:a8:21:49: c3:59:b6:ab:b5:eb:64:05:4f:a8:65:8f:08:b7:ec: 87:70:a0:af:c4:a0:85:8d:9e:70:8d:4b:b6:8d:73: 33:da:5e:fd:a3:50:6a:85:92:23:cb:16:42:01:25: 00:a3:08:ef:4c:a2:e0:0e:a2:b6:90:65:f4:2d:88: 28:c5:e3:bd:b2:51:51:52:53:b3:e4:8d:5f:16:da: 51:04:7e:a6:e3:5b:cf:fc:d1:ec:24:1b:15:4d:5a: 0c:4a:31:a9:4f:43:9f:d8:08:ca:e0:68:1f:c3:fd: cc:77:a9:84:29:9e:32:05:30:4c:50:6b:bc:97:48: 7d:df:03:16:59:b4:1f:e7:17:45:c3:cd:7a:92:06: 4f:b0:26:5f:60:62:9e:35:37:bc:02:1a:fc:1f:9f: 61:e1:a6:e2:1b:6d:99:d6:a6:98:b6:56:2b:f1:55: 15:0f:db:7d:ff:c4:ec:d3:78:b0:19:fb:27:c3:ff: 5e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B8:3D:41:22:4C:B2:24:96:4E:8A:C2:5C:80:3F:FE:DB:7C:B3:DB X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32382e302f32322d3234203d3e20323032363632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.28.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:1c:f0:3c:32:1c:d7:2e:f8:4c:ac:5a:bd:20:d5:c0:93:fc: 5f:94:5d:7a:1b:35:47:73:18:55:dd:8c:ac:c9:c6:57:81:fc: 89:92:ca:2b:f6:23:b4:bb:35:02:a7:cb:ca:ff:33:a4:f8:5a: 3f:3b:48:45:ee:2e:63:03:3c:4d:83:f7:cd:ee:95:b4:b8:46: 32:6c:ab:7a:64:aa:57:7d:1a:96:a0:ac:6f:ab:8a:ff:c8:02: 07:bc:7f:bf:c4:64:37:90:14:d9:15:9e:97:15:ea:a2:2c:b5: 3b:10:05:8d:4e:06:82:d4:a9:a3:ec:5e:0e:a4:03:97:7a:cd: 48:8b:8a:de:44:16:82:00:d5:11:16:d6:36:c4:ee:04:87:4f: 66:91:fa:96:02:fd:30:76:40:e5:59:e4:cb:2c:41:7d:64:2a: b8:9a:74:ce:2a:8a:74:c2:87:21:12:2e:5b:58:5b:5b:7e:cb: 36:92:7f:8a:9d:96:d3:1e:10:56:46:b7:37:ed:0c:6d:0c:39: c8:21:e5:42:54:27:f2:84:1f:0b:4a:70:98:68:0d:2c:6d:5a: ed:51:78:0b:78:23:09:1c:3b:e8:32:e5:c9:1b:d9:e1:f0:9b: 2c:b8:b2:c4:ae:ff:68:22:23:77:7c:7a:ad:9e:e3:9f:ae:ac: 74:91:64:57 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUCVtsCu4vkuUCK2khZGTQoeMCAU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzVaFw0yNzAyMjIxNTA2MzVaMDMxMTAvBgNV BAMTKEE1QjgzRDQxMjI0Q0IyMjQ5NjRFOEFDMjVDODAzRkZFREI3Q0IzREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcy5HPBjuUuZrV+4hSlAdTAOHJ HnNe/XtrkjBrU7MtaWLlJi+TMyjpKFJH8sDsTiCFxlLarFRCv3NpGmo4feiOiB6O u+7NO6ghScNZtqu162QFT6hljwi37IdwoK/EoIWNnnCNS7aNczPaXv2jUGqFkiPL FkIBJQCjCO9MouAOoraQZfQtiCjF472yUVFSU7PkjV8W2lEEfqbjW8/80ewkGxVN WgxKMalPQ5/YCMrgaB/D/cx3qYQpnjIFMExQa7yXSH3fAxZZtB/nF0XDzXqSBk+w Jl9gYp41N7wCGvwfn2HhpuIbbZnWppi2VivxVRUP233/xOzTeLAZ+yfD/17VAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUpbg9QSJMsiSWTorCXIA//tt8s9swHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzAzMjM2MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlm5HDANBgkqhkiG 9w0BAQsFAAOCAQEAHBzwPDIc1y74TKxavSDVwJP8X5Rdehs1R3MYVd2MrMnGV4H8 iZLKK/YjtLs1AqfLyv8zpPhaPztIRe4uYwM8TYP3ze6VtLhGMmyremSqV30alqCs b6uK/8gCB7x/v8RkN5AU2RWelxXqoiy1OxAFjU4GgtSpo+xeDqQDl3rNSIuK3kQW ggDVERbWNsTuBIdPZpH6lgL9MHZA5VnkyyxBfWQquJp0ziqKdMKHIRIuW1hbW37L NpJ/ip2W0x4QVka3N+0MbQw5yCHlQlQn8oQfC0pwmGgNLG1a7VF4C3gjCRw76DLl yRvZ4fCbLLiyxK7/aCIjd3x6rZ7jn66sdJFkVw== -----END CERTIFICATE-----Generated at Mon Mar 2 14:50:12 2026 by rpki-client