$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32382e302f32322d3234203d3e20333936383536.roa File: 38392e3138352e32382e302f32322d3234203d3e20333936383536.roa (raw, json) Hash identifier: knXVxModAaJNSlpWfGNZalFFzJz1jliW2FQknhRK520= Subject key identifier: 58:AA:8D:EC:24:4D:6C:D5:94:D7:1C:BA:33:DE:6A:8A:FE:33:7E:C9 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 697E129CB63E4FA6E9C34B4EAA677ABAE71F9A82 Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32382e302f32322d3234203d3e20333936383536.roa Signing time: Mon 23 Feb 2026 15:06:35 +0000 ROA not before: Mon 23 Feb 2026 15:01:35 +0000 ROA not after: Mon 22 Feb 2027 15:06:35 +0000 asID: 396856 IP address blocks: 89.185.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:7e:12:9c:b6:3e:4f:a6:e9:c3:4b:4e:aa:67:7a:ba:e7:1f:9a:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:35 2026 GMT Not After : Feb 22 15:06:35 2027 GMT Subject: CN=58AA8DEC244D6CD594D71CBA33DE6A8AFE337EC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4e:9e:0d:74:ed:2d:c9:cd:2b:35:46:7f:74: 32:32:34:cc:91:82:52:84:7f:05:33:78:2e:f0:67: 86:79:c2:67:39:3c:99:7d:df:fa:c9:55:b4:11:d8: 22:76:5e:db:f2:c2:54:f2:4b:3c:81:62:10:4b:e3: 03:62:c2:63:b6:0f:b9:33:6a:78:14:5d:0b:bd:32: 5c:4b:a8:f9:90:9d:ff:52:c7:8b:9d:ce:64:25:39: f8:b5:85:b3:82:12:e0:83:82:52:ce:f6:f5:4c:cc: fd:83:15:01:fd:c3:84:c8:6b:97:83:92:1e:db:09: 65:18:89:16:1b:52:6d:0e:5a:b2:78:8e:bc:2e:26: f5:cb:27:e1:77:ee:0e:4e:e1:84:72:10:35:83:f8: 9d:ca:e2:f6:ed:bd:34:4a:3c:75:ec:9c:7a:af:e5: ca:c3:4c:de:cb:de:0e:70:1e:f3:27:9b:46:ea:1a: 68:71:ce:73:23:c0:6b:2b:a0:e5:fb:68:7a:a9:81: 8c:58:2c:2e:be:8e:5e:be:45:e0:cb:f4:75:e7:12: dc:b8:ee:f8:cc:2c:0b:0a:8d:b5:65:69:01:61:a3: 42:58:92:5f:eb:c1:8e:b9:2f:52:d5:f8:c7:7a:46: bf:1b:5b:aa:b8:56:a8:68:2d:ca:a0:ce:a2:b4:4e: 23:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AA:8D:EC:24:4D:6C:D5:94:D7:1C:BA:33:DE:6A:8A:FE:33:7E:C9 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e32382e302f32322d3234203d3e20333936383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.28.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:3b:30:81:ee:9a:57:ba:5f:4d:7e:7e:f7:92:be:1c:56:da: 22:79:35:fc:d4:93:45:d0:e6:c2:e9:88:8f:e1:05:b2:1d:e1: d9:9e:ad:b9:41:94:e4:e1:75:38:91:f4:0d:ce:a9:93:0a:28: 8d:3d:51:63:c4:35:ac:88:46:2f:e5:6c:6a:39:7c:59:3b:99: 11:46:be:d4:03:06:58:8c:e9:ba:1e:a0:e9:61:47:de:59:29: 96:95:c8:24:f1:2b:6a:6d:20:07:20:53:de:1b:bd:cd:07:10: 1e:28:b7:16:98:93:7f:99:bf:0e:57:03:78:d5:b2:b4:58:f5: bf:4e:0c:b3:46:20:e1:6a:9c:75:73:1e:eb:9d:58:c8:d6:0c: 4a:73:d6:47:d4:f6:de:86:2c:f8:26:0b:16:7c:3b:60:33:9f: 5a:9c:3b:cc:d7:47:e6:9c:00:36:28:c7:d3:66:f4:2c:a0:4f: c7:6e:47:59:9a:ad:f2:38:a9:98:50:5f:a3:32:a3:25:81:20: 27:75:d5:c6:7b:10:4b:c9:bb:49:b6:49:56:66:f7:71:e6:62: a0:14:56:11:f5:e9:47:ae:89:03:c4:65:8b:3a:96:86:7a:04: 03:1e:70:4d:04:01:ed:23:43:a1:1a:cc:d0:58:4e:bd:e7:8c: 2d:ee:2c:21 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUaX4SnLY+T6bpw0tOqmd6uucfmoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzVaFw0yNzAyMjIxNTA2MzVaMDMxMTAvBgNV BAMTKDU4QUE4REVDMjQ0RDZDRDU5NEQ3MUNCQTMzREU2QThBRkUzMzdFQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiTp4NdO0tyc0rNUZ/dDIyNMyR glKEfwUzeC7wZ4Z5wmc5PJl93/rJVbQR2CJ2XtvywlTySzyBYhBL4wNiwmO2D7kz angUXQu9MlxLqPmQnf9Sx4udzmQlOfi1hbOCEuCDglLO9vVMzP2DFQH9w4TIa5eD kh7bCWUYiRYbUm0OWrJ4jrwuJvXLJ+F37g5O4YRyEDWD+J3K4vbtvTRKPHXsnHqv 5crDTN7L3g5wHvMnm0bqGmhxznMjwGsroOX7aHqpgYxYLC6+jl6+ReDL9HXnEty4 7vjMLAsKjbVlaQFho0JYkl/rwY65L1LV+Md6Rr8bW6q4VqhoLcqgzqK0TiMRAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUWKqN7CRNbNWU1xy6M95qiv4zfskwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzIzODJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzkzNjM4MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlm5HDANBgkqhkiG 9w0BAQsFAAOCAQEAXjswge6aV7pfTX5+95K+HFbaInk1/NSTRdDmwumIj+EFsh3h 2Z6tuUGU5OF1OJH0Dc6pkwoojT1RY8Q1rIhGL+Vsajl8WTuZEUa+1AMGWIzpuh6g 6WFH3lkplpXIJPEram0gByBT3hu9zQcQHii3FpiTf5m/DlcDeNWytFj1v04Ms0Yg 4WqcdXMe651YyNYMSnPWR9T23oYs+CYLFnw7YDOfWpw7zNdH5pwANijH02b0LKBP x25HWZqt8jipmFBfozKjJYEgJ3XVxnsQS8m7SbZJVmb3ceZioBRWEfXpR66JA8Rl izqWhnoEAx5wTQQB7SNDoRrM0FhOveeMLe4sIQ== -----END CERTIFICATE-----Generated at Mon Mar 2 01:29:55 2026 by rpki-client