$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1239.roa File: AS1239.roa (raw, json) Hash identifier: 5yE/N1BNzg6idkMb/vF+0SuX0qCpYwSIo4jn9DUl824= Subject key identifier: 12:AD:F2:BE:41:01:50:DF:BA:20:EB:BD:5A:0B:88:CD:C1:DE:C4:B4 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3EE93B18E7B57E4807A812C82771AEE68E7400A6 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1239.roa Signing time: Wed 10 Apr 2024 00:00:12 +0000 ROA not before: Tue 09 Apr 2024 23:55:12 +0000 ROA not after: Wed 09 Apr 2025 00:00:12 +0000 asID: 1239 IP address blocks: 86.38.4.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.189.0/24 maxlen: 24 89.116.242.0/23 maxlen: 24 89.116.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 07:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e9:3b:18:e7:b5:7e:48:07:a8:12:c8:27:71:ae:e6:8e:74:00:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 9 23:55:12 2024 GMT Not After : Apr 9 00:00:12 2025 GMT Subject: CN=12ADF2BE410150DFBA20EBBD5A0B88CDC1DEC4B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d5:ee:71:10:63:4f:a9:9c:84:dd:35:de:0f: 97:e8:81:5a:3b:5b:ee:de:d5:b8:d7:28:ba:9a:76: 4e:89:60:1f:58:80:c6:80:9c:62:1e:00:aa:93:b3: 71:b1:4b:54:a9:bb:27:ef:ea:7f:f1:0a:bd:a7:00: 34:39:23:ea:43:fb:04:35:0e:06:6e:33:61:61:5d: 72:1c:00:24:e6:4e:3d:21:78:52:f8:d7:83:6f:90: b0:f8:4a:07:ee:92:39:2c:b8:d7:80:00:a9:75:bf: ce:f0:f6:6e:e4:d3:5d:45:7e:6f:1d:10:61:7e:1f: 94:59:42:e5:6a:c3:ae:f6:c9:55:eb:d9:35:3a:33: 05:85:34:93:a5:c6:7c:ac:71:e3:af:3c:e8:e8:5e: 1c:0f:36:54:b3:22:a7:6e:f3:af:8e:fa:ef:6d:90: a4:09:f2:4d:3a:3e:1c:2f:7a:79:bd:9f:3b:42:e1: e1:d8:f7:b3:a8:15:bb:48:d9:ae:31:d7:54:b8:60: 1d:19:01:09:fb:20:74:5c:b7:ae:c1:a9:2f:a6:18: 40:aa:34:03:94:19:db:ad:ac:d1:a6:e7:ea:e6:fa: f1:47:3b:bc:27:6b:89:de:0f:45:ff:52:c5:3d:0a: 95:32:d9:3d:a8:e0:16:81:5c:8c:02:2b:f2:5f:da: 2e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AD:F2:BE:41:01:50:DF:BA:20:EB:BD:5A:0B:88:CD:C1:DE:C4:B4 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.4.0/23 86.38.246.0/23 89.116.189.0/24 89.116.242.0/23 89.116.246.0/23 Signature Algorithm: sha256WithRSAEncryption a6:ec:34:d3:f8:f1:3a:26:42:fd:e5:73:6b:45:a2:cb:10:59: 47:67:bd:0b:5f:d8:82:62:5c:15:70:f7:62:2a:46:e9:58:cd: 25:32:37:65:eb:0a:0a:eb:93:89:3f:fe:09:4c:47:a1:9c:be: 30:fb:a4:62:e8:59:42:1d:58:54:87:2e:81:65:63:ec:a5:65: fd:2a:42:1f:ba:8d:14:c3:af:22:11:96:d3:fb:c8:8a:45:53: b4:c0:c7:f4:6e:f7:c2:c0:0b:27:48:68:b0:cb:f6:5e:36:73: 6d:71:40:85:d1:15:f2:4e:e0:00:46:de:28:45:08:9a:25:6d: 78:86:b8:4c:f5:cc:47:cb:5b:f3:55:44:18:ba:d2:4d:51:f1: bf:ce:46:20:c3:44:2c:12:24:54:de:f9:f7:23:28:5f:7c:ab: 17:41:d3:e1:92:68:f3:50:7c:c3:f7:98:1c:9d:c0:b6:03:e3: 16:5f:0e:bd:6f:a3:c7:36:a8:98:fd:0d:c8:86:29:cf:3b:d7: 77:b9:4f:2d:ae:8a:9c:fe:b7:be:b2:59:33:f3:1a:33:c3:70: 85:d0:49:3c:98:1c:b3:19:65:d0:1e:24:dc:7d:7b:af:b4:08: e1:d6:23:f5:bf:27:c0:c2:15:f2:51:87:2a:b1:66:4a:de:fd: 2e:b8:61:c3 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUPuk7GOe1fkgHqBLIJ3Gu5o50AKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA0MDkyMzU1MTJaFw0yNTA0MDkwMDAwMTJaMDMxMTAvBgNV BAMTKDEyQURGMkJFNDEwMTUwREZCQTIwRUJCRDVBMEI4OENEQzFERUM0QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp1e5xEGNPqZyE3TXeD5fogVo7 W+7e1bjXKLqadk6JYB9YgMaAnGIeAKqTs3GxS1Spuyfv6n/xCr2nADQ5I+pD+wQ1 DgZuM2FhXXIcACTmTj0heFL414NvkLD4SgfukjksuNeAAKl1v87w9m7k011Ffm8d EGF+H5RZQuVqw672yVXr2TU6MwWFNJOlxnysceOvPOjoXhwPNlSzIqdu86+O+u9t kKQJ8k06Phwvenm9nztC4eHY97OoFbtI2a4x11S4YB0ZAQn7IHRct67BqS+mGECq NAOUGdutrNGm5+rm+vFHO7wna4neD0X/UsU9CpUy2T2o4BaBXIwCK/Jf2i63AgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUEq3yvkEBUN+6IOu9WguIzcHexLQwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBAFWJgQDBAFWJvYDBABZdL0D BAFZdPIDBAFZdPYwDQYJKoZIhvcNAQELBQADggEBAKbsNNP48TomQv3lc2tFossQ WUdnvQtf2IJiXBVw92IqRulYzSUyN2XrCgrrk4k//glMR6GcvjD7pGLoWUIdWFSH LoFlY+ylZf0qQh+6jRTDryIRltP7yIpFU7TAx/Ru98LACydIaLDL9l42c21xQIXR FfJO4ABG3ihFCJolbXiGuEz1zEfLW/NVRBi60k1R8b/ORiDDRCwSJFTe+fcjKF98 qxdB0+GSaPNQfMP3mBydwLYD4xZfDr1vo8c2qJj9DciGKc8713e5Ty2uipz+t76y WTPzGjPDcIXQSTyYHLMZZdAeJNx9e6+0COHWI/W/J8DCFfJRhyqxZkre/S64YcM= -----END CERTIFICATE-----Generated at Fri May 31 20:32:21 2024 by rpki-client on console-ams.rpki-client.org