$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS198510.roa File: AS198510.roa (raw, json) Hash identifier: rJekAscs+foJdn4GeXtYFceNpazByeIC318IbQ3SK6Y= Subject key identifier: 91:0D:9F:5C:01:B5:E0:33:A7:88:62:5D:53:E0:75:47:8F:87:EB:8D Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 66533A0BED32FC4BDD1CC87650E2200D21E575D9 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS198510.roa Signing time: Sat 25 May 2024 10:25:23 +0000 ROA not before: Sat 25 May 2024 10:20:23 +0000 ROA not after: Sat 24 May 2025 10:25:23 +0000 asID: 198510 IP address blocks: 89.116.165.0/24 maxlen: 24 89.116.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 07:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:53:3a:0b:ed:32:fc:4b:dd:1c:c8:76:50:e2:20:0d:21:e5:75:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 25 10:20:23 2024 GMT Not After : May 24 10:25:23 2025 GMT Subject: CN=910D9F5C01B5E033A788625D53E075478F87EB8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1a:c1:cb:de:c1:77:c1:be:f5:8e:e4:f7:58: f1:f5:39:59:6e:65:4e:71:7d:5f:8c:99:7c:60:f1: a6:1c:6b:16:f4:ec:59:6c:c4:74:bf:cf:64:71:9b: 7b:a2:39:de:a2:de:f5:79:96:9c:7c:ce:c6:94:0f: 11:aa:3f:0b:2a:97:af:5a:a7:35:d5:83:65:c2:98: 6b:01:ed:f8:9a:22:f8:c6:89:1f:be:7c:9b:28:15: 75:7a:14:37:66:cd:fb:48:3b:25:04:26:43:82:32: a1:5f:89:fe:a3:13:16:ca:6f:8d:8f:43:fc:28:f4: 7b:93:0a:5f:23:75:8f:e3:3e:40:0c:06:5a:83:b5: 2d:da:e7:13:89:38:8a:b2:ca:5f:5c:eb:20:59:16: 27:4e:02:6c:5b:3a:72:09:78:d9:36:b7:fd:ea:89: d8:d2:68:38:ae:f2:7f:3f:7a:f2:0a:95:0c:14:8a: 50:eb:9c:d1:17:31:ed:90:77:76:9d:9c:6d:14:a2: 44:49:24:01:8f:f1:ff:a0:f2:9f:3f:91:6f:78:fd: 84:a7:3f:6d:97:54:83:5a:27:d8:3e:d6:5a:9c:ae: 64:7d:96:8a:39:3c:85:8a:4c:e4:cc:31:cf:bf:92: cc:bb:ff:6e:6c:b8:67:b7:26:90:51:72:c6:69:7d: 7c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:0D:9F:5C:01:B5:E0:33:A7:88:62:5D:53:E0:75:47:8F:87:EB:8D X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS198510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.165.0/24 89.116.221.0/24 Signature Algorithm: sha256WithRSAEncryption 37:3f:3a:b7:5b:54:2e:7c:6a:cb:2a:1a:b4:56:6e:4f:20:fc: 66:37:5a:d6:12:9e:15:90:a0:eb:f2:05:90:47:45:d7:ff:3c: ad:fc:f9:c3:14:2a:f7:db:fd:39:94:4f:fe:c8:38:c9:2a:d4: 32:30:0d:df:bb:c6:d7:d4:cb:c8:1e:7d:2d:e9:4e:ab:07:74: 92:34:7f:6e:fb:05:05:54:a7:cc:1b:a5:00:25:35:69:a4:53: 08:ce:87:bf:22:c1:4f:95:73:58:8f:c8:58:c9:ed:c9:23:c7: e0:ac:ee:ce:b0:de:cd:8b:de:3f:12:e1:05:e2:70:f0:6c:cf: 25:ad:25:3d:5c:a5:9c:3d:f4:94:e6:69:01:4f:fd:9e:ba:36: cc:04:37:d2:3d:ef:d4:16:72:8c:84:71:82:75:a8:fc:2c:26: 2d:1c:00:87:82:3a:e0:4c:23:d9:ba:43:2c:a8:16:8f:a4:33: ec:33:d7:ec:b6:48:80:98:90:19:cd:8d:b7:d5:2a:27:64:a8: 2a:4f:da:bd:39:c8:3b:5e:26:c1:be:ef:93:3e:c4:e8:f8:86: 1c:28:6c:1c:b4:98:14:11:0e:28:58:a6:91:de:f2:30:c6:73: ca:03:0a:13:77:d5:44:d8:4d:d4:ae:b3:68:56:29:63:e9:6d: eb:30:3f:f9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUZlM6C+0y/EvdHMh2UOIgDSHlddkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA1MjUxMDIwMjNaFw0yNTA1MjQxMDI1MjNaMDMxMTAvBgNV BAMTKDkxMEQ5RjVDMDFCNUUwMzNBNzg4NjI1RDUzRTA3NTQ3OEY4N0VCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2GsHL3sF3wb71juT3WPH1OVlu ZU5xfV+MmXxg8aYcaxb07FlsxHS/z2Rxm3uiOd6i3vV5lpx8zsaUDxGqPwsql69a pzXVg2XCmGsB7fiaIvjGiR++fJsoFXV6FDdmzftIOyUEJkOCMqFfif6jExbKb42P Q/wo9HuTCl8jdY/jPkAMBlqDtS3a5xOJOIqyyl9c6yBZFidOAmxbOnIJeNk2t/3q idjSaDiu8n8/evIKlQwUilDrnNEXMe2Qd3adnG0UokRJJAGP8f+g8p8/kW94/YSn P22XVINaJ9g+1lqcrmR9loo5PIWKTOTMMc+/ksy7/25suGe3JpBRcsZpfXxZAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUkQ2fXAG14DOniGJdU+B1R4+H640wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE5ODUxMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFl0pQMEAFl03TANBgkq hkiG9w0BAQsFAAOCAQEANz86t1tULnxqyyoatFZuTyD8Zjda1hKeFZCg6/IFkEdF 1/88rfz5wxQq99v9OZRP/sg4ySrUMjAN37vG19TLyB59LelOqwd0kjR/bvsFBVSn zBulACU1aaRTCM6HvyLBT5VzWI/IWMntySPH4KzuzrDezYvePxLhBeJw8GzPJa0l PVylnD30lOZpAU/9nro2zAQ30j3v1BZyjIRxgnWo/CwmLRwAh4I64Ewj2bpDLKgW j6Qz7DPX7LZIgJiQGc2Nt9UqJ2SoKk/avTnIO14mwb7vkz7E6PiGHChsHLSYFBEO KFimkd7yMMZzygMKE3fVRNhN1K6zaFYpY+lt6zA/+Q== -----END CERTIFICATE-----Generated at Fri May 31 22:12:27 2024 by rpki-client on console-fra.rpki-client.org