$ rpki-client -vvf r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e332e302f32342d3234203d3e203631333137.roa File: 38392e3138352e332e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: dgeBN4+R4Z6bdukt+7bptb/kO+05ymGnXsWhY9pNcLQ= Subject key identifier: B4:AB:89:BD:84:B9:FE:42:2E:D8:94:C1:B5:BC:B9:FB:A5:15:08:C7 Certificate issuer: /CN=C972E8671DEDC43FE908B548531C969A051CD34C Certificate serial: 7460B92C0F47A0A4475737E36CA782285C656CCE Authority key identifier: C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e332e302f32342d3234203d3e203631333137.roa Signing time: Mon 23 Feb 2026 15:06:34 +0000 ROA not before: Mon 23 Feb 2026 15:01:34 +0000 ROA not after: Mon 22 Feb 2027 15:06:34 +0000 asID: 61317 IP address blocks: 89.185.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.mft rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/CF0631D33A3C9DC5C45424D55C3E7663838657A3.mft rsync://rpki.ripe.net/repository/DEFAULT/zwYx0zo8ncXEVCTVXD52Y4OGV6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:60:b9:2c:0f:47:a0:a4:47:57:37:e3:6c:a7:82:28:5c:65:6c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C972E8671DEDC43FE908B548531C969A051CD34C Validity Not Before: Feb 23 15:01:34 2026 GMT Not After : Feb 22 15:06:34 2027 GMT Subject: CN=B4AB89BD84B9FE422ED894C1B5BCB9FBA51508C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:78:13:76:16:40:5c:be:5e:34:d8:1b:fd:8a: 55:65:e8:dc:5d:95:c8:86:cd:48:36:71:2f:ae:4f: ea:72:8b:4d:8a:0a:05:9c:cb:ec:f4:38:f2:95:40: 6e:4f:53:3b:9a:4f:be:cb:f3:a1:ec:a7:7d:48:48: 83:a2:52:56:56:8b:9b:5d:6a:77:f3:ab:8d:bb:ff: 22:9e:28:7c:80:48:0c:73:b4:5d:47:a0:38:07:e6: cd:09:44:6d:5a:9b:22:30:b4:9a:3c:d0:f7:6a:56: 38:17:31:29:98:52:1d:6f:3b:01:72:27:e4:69:9f: 32:ad:c0:b9:50:1a:2b:53:02:e2:0e:c5:f2:41:66: 57:05:e0:5f:3d:8e:e2:4a:0e:dc:da:2d:6a:87:7d: 7d:8d:46:77:52:88:0b:73:ee:b9:5b:53:31:17:37: bd:6f:3f:e7:dc:99:da:9a:a5:71:9c:ba:c0:a7:22: 90:0f:53:7c:1b:14:58:a3:80:88:e8:04:d1:54:b3: c2:4a:49:22:0e:c0:ba:c5:9b:21:8f:75:08:c7:58: 64:30:04:fb:97:58:c0:88:18:08:72:7a:51:6b:65: 2f:4e:e6:2b:2f:22:75:06:0f:b9:ad:16:7c:3e:b5: 4a:42:c7:ef:14:11:69:d3:21:88:69:d6:47:06:4a: 45:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AB:89:BD:84:B9:FE:42:2E:D8:94:C1:B5:BC:B9:FB:A5:15:08:C7 X509v3 Authority Key Identifier: keyid:C9:72:E8:67:1D:ED:C4:3F:E9:08:B5:48:53:1C:96:9A:05:1C:D3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/C972E8671DEDC43FE908B548531C969A051CD34C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/2/C972E8671DEDC43FE908B548531C969A051CD34C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/ddd1818b-9fbf-440c-aaec-44a4d1590f87-0/0/38392e3138352e332e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.185.3.0/24 Signature Algorithm: sha256WithRSAEncryption 65:67:eb:a0:26:86:90:cd:a3:01:db:2c:4c:84:5b:63:5b:f2: 68:89:7e:62:4e:82:4e:e3:b7:4d:6e:b5:65:c2:16:62:c7:2b: 1f:1e:2f:f3:5a:e8:cc:63:55:e2:de:b5:4e:76:92:4e:6a:99: a4:89:30:63:49:88:34:52:5c:db:ec:a1:d4:87:38:67:ba:25: 4c:de:07:72:71:9a:0c:61:27:98:c1:76:61:4f:8c:a6:27:b6: cb:a8:53:6a:d4:4e:af:1b:a5:12:5b:80:dd:e6:c7:39:52:64: 59:43:d0:f9:cd:19:ad:5f:64:b9:d6:d3:68:6b:d2:63:9a:9f: 05:8e:41:f2:88:ab:4b:be:48:3a:9f:ac:fc:e9:1e:fa:83:75: 14:8e:e4:5b:ec:a9:33:60:9f:f3:b2:95:9c:9c:10:1e:d6:88: fa:8d:b7:9e:b0:87:30:ee:5b:ff:5e:c8:25:a2:9d:2b:85:48: 27:a1:5b:15:bb:a3:fd:1b:19:f5:d9:12:24:dd:09:54:bc:87: 32:95:18:e3:19:44:ce:73:a4:dd:41:66:25:15:c0:22:dd:b3: d5:a2:39:60:23:e0:fa:f9:d5:ec:47:dd:08:19:83:35:51:26: 90:65:dc:51:65:90:9d:bc:85:60:22:82:18:87:00:00:f0:2d: d0:d2:bf:1c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUdGC5LA9HoKRHVzfjbKeCKFxlbM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzk3MkU4NjcxREVEQzQzRkU5MDhCNTQ4NTMxQzk2OUEw NTFDRDM0QzAeFw0yNjAyMjMxNTAxMzRaFw0yNzAyMjIxNTA2MzRaMDMxMTAvBgNV BAMTKEI0QUI4OUJEODRCOUZFNDIyRUQ4OTRDMUI1QkNCOUZCQTUxNTA4QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6eBN2FkBcvl402Bv9ilVl6Nxd lciGzUg2cS+uT+pyi02KCgWcy+z0OPKVQG5PUzuaT77L86Hsp31ISIOiUlZWi5td anfzq427/yKeKHyASAxztF1HoDgH5s0JRG1amyIwtJo80PdqVjgXMSmYUh1vOwFy J+RpnzKtwLlQGitTAuIOxfJBZlcF4F89juJKDtzaLWqHfX2NRndSiAtz7rlbUzEX N71vP+fcmdqapXGcusCnIpAPU3wbFFijgIjoBNFUs8JKSSIOwLrFmyGPdQjHWGQw BPuXWMCIGAhyelFrZS9O5isvInUGD7mtFnw+tUpCx+8UEWnTIYhp1kcGSkXlAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUtKuJvYS5/kIu2JTBtby5+6UVCMcwHwYDVR0j BBgwFoAUyXLoZx3txD/pCLVIUxyWmgUc00wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v ZGRkMTgxOGItOWZiZi00NDBjLWFhZWMtNDRhNGQxNTkwZjg3LTAvMC9DOTcyRTg2 NzFERURDNDNGRTkwOEI1NDg1MzFDOTY5QTA1MUNEMzRDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzYxNzA4YTZiLTZjM2EtNDBhMC1hMzAyLTU5NWVj YzE3ODQ4Yy8yL0M5NzJFODY3MURFREM0M0ZFOTA4QjU0ODUzMUM5NjlBMDUxQ0Qz NEMuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kZGQxODE4Yi05ZmJmLTQ0MGMtYWFl Yy00NGE0ZDE1OTBmODctMC8wLzM4MzkyZTMxMzgzNTJlMzMyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWbkDMA0GCSqGSIb3DQEB CwUAA4IBAQBlZ+ugJoaQzaMB2yxMhFtjW/JoiX5iToJO47dNbrVlwhZixysfHi/z WujMY1Xi3rVOdpJOapmkiTBjSYg0Ulzb7KHUhzhnuiVM3gdycZoMYSeYwXZhT4ym J7bLqFNq1E6vG6USW4Dd5sc5UmRZQ9D5zRmtX2S51tNoa9Jjmp8FjkHyiKtLvkg6 n6z86R76g3UUjuRb7KkzYJ/zspWcnBAe1oj6jbeesIcw7lv/Xsglop0rhUgnoVsV u6P9Gxn12RIk3QlUvIcylRjjGUTOc6TdQWYlFcAi3bPVojlgI+D6+dXsR90IGYM1 USaQZdxRZZCdvIVgIoIYhwAA8C3Q0r8c -----END CERTIFICATE-----Generated at Mon Mar 2 02:42:39 2026 by rpki-client