$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa File: AS3356.roa (raw, json) Hash identifier: KKM1R3pXGgIYj7Br+R53o0m3501v6dD8FZTsiutQzLY= Subject key identifier: 27:21:FB:B6:2D:98:06:60:3C:E5:C5:45:E6:F1:B0:4C:0D:B2:D3:CA Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 120002DE2145F14B6980F379764C0B778CACEEB3 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa Signing time: Thu 07 Sep 2023 18:57:13 +0000 ROA not before: Thu 07 Sep 2023 18:52:13 +0000 ROA not after: Thu 05 Sep 2024 18:57:13 +0000 asID: 3356 IP address blocks: 86.38.7.0/24 maxlen: 24 86.38.151.0/24 maxlen: 24 89.116.54.0/24 maxlen: 24 89.116.125.0/24 maxlen: 24 89.117.135.0/24 maxlen: 24 89.117.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 04 May 2024 14:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:00:02:de:21:45:f1:4b:69:80:f3:79:76:4c:0b:77:8c:ac:ee:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 7 18:52:13 2023 GMT Not After : Sep 5 18:57:13 2024 GMT Subject: CN=2721FBB62D9806603CE5C545E6F1B04C0DB2D3CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b5:d7:9d:7c:2e:0b:fb:87:e8:8b:3e:e0:3b: 1c:1b:59:3f:5b:99:15:c6:ae:ef:96:6c:c7:c6:ec: e7:fe:b8:e5:15:a9:a0:f4:9e:cd:25:d9:1b:b2:fb: bf:6a:46:4e:2a:99:2c:c8:62:af:cd:d0:c0:59:27: a1:51:bf:0f:48:94:9a:e4:10:f6:43:c1:29:5c:9b: 76:1f:d6:b6:b8:ac:bf:93:01:a0:a9:4e:a9:49:e4: 11:29:bf:aa:26:72:d7:3a:62:df:2f:8d:66:a5:d7: 59:6a:aa:10:6c:3f:2f:ac:99:4c:3e:58:85:85:8d: 6d:ca:5a:cc:6b:83:3e:bc:de:9c:a2:a9:2e:23:5b: fc:18:76:60:37:cb:63:05:6b:95:a3:de:3d:58:1a: 09:76:1f:24:bb:b5:6f:98:50:4d:c1:d9:fb:73:7e: 97:a7:9b:9f:b5:e5:40:22:c6:1d:19:c8:16:92:b4: a7:e9:27:6d:e9:8f:af:4a:e6:97:14:a0:0c:b7:08: 93:cf:1a:82:56:2f:c2:bf:b8:61:00:0a:3c:64:b0: 72:b0:da:dd:7e:f8:9e:76:6c:57:61:8e:e9:f2:d0: 61:77:83:19:c9:43:dc:62:93:19:f7:44:d2:2a:62: ca:c5:32:cd:b5:3e:b6:76:cf:26:37:49:dd:28:af: a9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:21:FB:B6:2D:98:06:60:3C:E5:C5:45:E6:F1:B0:4C:0D:B2:D3:CA X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.7.0/24 86.38.151.0/24 89.116.54.0/24 89.116.125.0/24 89.117.135.0-89.117.136.255 Signature Algorithm: sha256WithRSAEncryption 29:d7:c4:9c:e3:1b:de:a8:0f:1f:25:c9:88:05:79:e1:b5:6c: 33:fc:ba:be:07:20:f7:97:12:9a:f7:35:4d:52:dd:79:7f:a5: 57:c2:d1:7d:b7:70:8b:8f:28:4e:0a:08:24:a1:3d:fe:ea:b5: e0:91:f8:80:b4:eb:6b:88:ad:5d:4f:c9:42:a1:33:9c:65:4e: 14:f2:a9:de:42:92:cf:d7:4f:57:4c:67:d3:6c:b4:16:92:35: 5f:b3:60:c8:80:fa:61:10:11:e2:08:9e:1f:10:e6:f2:87:6f: c9:b5:ce:72:ea:7e:a4:dc:b1:81:f2:1c:6d:13:fc:9e:fe:4b: c4:b3:c1:ca:e7:94:d6:a8:c9:dc:85:c5:a3:aa:d3:bb:22:73: 49:7c:0e:a0:c1:2d:31:38:9f:40:03:71:f6:fe:ca:5e:88:a8: a6:7a:b7:62:07:cb:5d:49:a6:9a:2c:bf:a1:af:6a:82:4c:79: 1d:80:00:fc:7d:e5:98:6e:df:2c:35:28:bf:fc:5b:75:06:25: 8f:21:89:4e:e8:bd:16:76:54:0e:e7:ca:85:eb:36:3b:1b:0f: e3:94:66:eb:c6:31:bd:ed:6c:e6:ea:c1:ac:2f:77:15:3d:59: 43:26:95:46:55:3b:3f:37:57:15:45:8e:a7:ec:1e:2b:8e:86: 39:1d:db:08 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUEgAC3iFF8UtpgPN5dkwLd4ys7rMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzA5MDcxODUyMTNaFw0yNDA5MDUxODU3MTNaMDMxMTAvBgNV BAMTKDI3MjFGQkI2MkQ5ODA2NjAzQ0U1QzU0NUU2RjFCMDRDMERCMkQzQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCstdedfC4L+4foiz7gOxwbWT9b mRXGru+WbMfG7Of+uOUVqaD0ns0l2Ruy+79qRk4qmSzIYq/N0MBZJ6FRvw9IlJrk EPZDwSlcm3Yf1ra4rL+TAaCpTqlJ5BEpv6omctc6Yt8vjWal11lqqhBsPy+smUw+ WIWFjW3KWsxrgz683pyiqS4jW/wYdmA3y2MFa5Wj3j1YGgl2HyS7tW+YUE3B2ftz fpenm5+15UAixh0ZyBaStKfpJ23pj69K5pcUoAy3CJPPGoJWL8K/uGEACjxksHKw 2t1++J52bFdhjuny0GF3gxnJQ9xikxn3RNIqYsrFMs21PrZ2zyY3Sd0or6k1AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUJyH7ti2YBmA85cVF5vGwTA2y08owHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzMzNTYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwPwYIKwYBBQUHAQcBAf8EMDAuMCwEAgABMCYDBABWJgcDBABWJpcDBABZdDYD BABZdH0wDAMEAFl1hwMEAFl1iDANBgkqhkiG9w0BAQsFAAOCAQEAKdfEnOMb3qgP HyXJiAV54bVsM/y6vgcg95cSmvc1TVLdeX+lV8LRfbdwi48oTgoIJKE9/uq14JH4 gLTra4itXU/JQqEznGVOFPKp3kKSz9dPV0xn02y0FpI1X7NgyID6YRAR4gieHxDm 8odvybXOcup+pNyxgfIcbRP8nv5LxLPByueU1qjJ3IXFo6rTuyJzSXwOoMEtMTif QANx9v7KXoiopnq3YgfLXUmmmiy/oa9qgkx5HYAA/H3lmG7fLDUov/xbdQYljyGJ Tui9FnZUDufKhes2OxsP45Rm68Yxve1s5urBrC93FT1ZQyaVRlU7PzdXFUWOp+we K46GOR3bCA== -----END CERTIFICATE-----Generated at Fri May 3 23:16:50 2024 by rpki-client on console-fra.rpki-client.org