$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa File: AS9009.roa (raw, json) Hash identifier: PqIsXTfd8PX+F4JRRpzQJ2W7KxXcNBL7fPFflGrPpbM= Subject key identifier: DE:88:36:9A:8D:81:9D:C0:45:47:5D:3B:14:90:42:D1:7D:C8:D8:C2 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 0917E631A8562C77CD08845599814FA99E950AD2 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa Signing time: Mon 27 May 2024 10:25:10 +0000 ROA not before: Mon 27 May 2024 10:20:10 +0000 ROA not after: Mon 26 May 2025 10:25:10 +0000 asID: 9009 IP address blocks: 84.46.170.0/24 maxlen: 24 84.46.234.0/24 maxlen: 24 84.46.235.0/24 maxlen: 24 86.38.178.0/23 maxlen: 24 89.116.102.0/24 maxlen: 24 89.116.163.0/24 maxlen: 24 89.117.82.0/24 maxlen: 24 89.117.88.0/24 maxlen: 24 89.117.89.0/24 maxlen: 24 89.117.90.0/24 maxlen: 24 89.117.113.0/24 maxlen: 24 89.117.114.0/24 maxlen: 24 89.117.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 15 Jun 2024 02:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:17:e6:31:a8:56:2c:77:cd:08:84:55:99:81:4f:a9:9e:95:0a:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 27 10:20:10 2024 GMT Not After : May 26 10:25:10 2025 GMT Subject: CN=DE88369A8D819DC045475D3B149042D17DC8D8C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:e3:52:32:41:43:19:8b:63:09:99:cf:c7: 36:13:1e:a8:1e:41:ce:cd:ee:c3:96:cb:de:4e:9c: 55:88:28:cb:8c:39:aa:91:af:bb:82:12:aa:be:f2: a5:9e:a1:0b:e3:a3:d6:11:d2:44:0f:cb:55:ca:28: ef:3c:0f:c4:6f:ee:31:6d:a5:5e:f2:ac:20:14:44: 82:75:5b:0b:fe:e6:09:77:80:5d:de:e3:33:11:fc: fd:06:ad:6a:3c:29:e7:a7:c6:55:57:49:ad:69:59: c7:d2:cc:5b:18:f9:1d:5c:b9:a8:f4:f3:22:07:c3: f2:0d:50:5b:f6:a9:bb:97:98:cc:d0:6d:d0:7c:93: d8:d3:bd:e0:b2:24:97:d0:2e:c6:da:69:7b:99:a0: 69:8e:8d:04:45:c6:84:1b:2d:2f:50:bd:b8:11:b1: c1:b0:38:a6:07:3d:d9:1c:d3:c8:96:11:9d:e6:b5: f7:d5:60:44:9f:9a:8e:ce:a8:c5:b4:b1:5d:55:b3: 6b:c2:24:c9:f5:15:d6:d3:3e:88:c4:06:1b:c1:21: ba:a5:a4:4a:79:f2:9b:43:2f:6c:3a:21:61:2d:2a: c8:b5:e8:96:81:b3:b6:b1:a2:6b:35:78:29:8f:5e: 76:b0:e1:f6:33:db:17:c7:03:30:84:f0:00:d4:91: 0c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:88:36:9A:8D:81:9D:C0:45:47:5D:3B:14:90:42:D1:7D:C8:D8:C2 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.46.170.0/24 84.46.234.0/23 86.38.178.0/23 89.116.102.0/24 89.116.163.0/24 89.117.82.0/24 89.117.88.0-89.117.90.255 89.117.113.0-89.117.114.255 89.117.154.0/24 Signature Algorithm: sha256WithRSAEncryption ad:fb:a9:97:16:4d:e2:75:95:27:dd:70:9a:32:aa:3c:14:f1: ad:70:35:98:d7:24:86:39:cc:a7:f7:7c:99:2a:4a:89:d9:8f: 1a:93:6d:1e:80:38:ef:e4:53:bf:2c:13:56:8b:d4:3d:88:a4: 8c:85:51:66:ee:ca:49:55:65:3a:53:4d:71:b4:33:d7:5f:10: 09:73:cc:ef:cf:92:ba:a0:94:45:34:3e:f5:0c:eb:37:8a:40: 6e:52:fa:c6:96:52:1e:4d:eb:6c:9e:4f:a9:4f:31:a2:1e:ca: 81:73:68:35:23:db:d5:05:44:cc:d3:4c:03:fc:4c:7e:de:fe: c8:2d:9b:bc:d0:c5:0e:4a:fd:cf:f9:23:82:78:7d:ed:68:3a: 95:88:c9:b7:07:0d:2b:64:68:4f:d5:77:40:ef:a1:a9:c9:5b: 81:1b:2e:b1:3a:5c:1e:a2:79:54:c0:d3:63:91:c5:96:1b:f5: d8:8d:e9:db:1e:ff:96:71:8e:6b:c4:e5:f1:28:37:02:11:ec: 0f:75:a6:ea:89:02:19:36:af:8f:b7:4e:60:36:10:5e:1a:53: f8:e2:dc:95:b4:f9:d6:eb:d2:95:e7:82:39:26:8e:fb:dd:52: 72:a7:f0:63:1d:4b:be:fc:41:ff:cc:08:8e:8e:eb:24:f3:9f: 51:30:f5:ff -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUCRfmMahWLHfNCIRVmYFPqZ6VCtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA1MjcxMDIwMTBaFw0yNTA1MjYxMDI1MTBaMDMxMTAvBgNV BAMTKERFODgzNjlBOEQ4MTlEQzA0NTQ3NUQzQjE0OTA0MkQxN0RDOEQ4QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC41ONSMkFDGYtjCZnPxzYTHqge Qc7N7sOWy95OnFWIKMuMOaqRr7uCEqq+8qWeoQvjo9YR0kQPy1XKKO88D8Rv7jFt pV7yrCAURIJ1Wwv+5gl3gF3e4zMR/P0GrWo8KeenxlVXSa1pWcfSzFsY+R1cuaj0 8yIHw/INUFv2qbuXmMzQbdB8k9jTveCyJJfQLsbaaXuZoGmOjQRFxoQbLS9QvbgR scGwOKYHPdkc08iWEZ3mtffVYESfmo7OqMW0sV1Vs2vCJMn1FdbTPojEBhvBIbql pEp58ptDL2w6IWEtKsi16JaBs7axoms1eCmPXnaw4fYz2xfHAzCE8ADUkQwhAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQU3og2mo2BncBFR107FJBC0X3I2MIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzkwMDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwXwYIKwYBBQUHAQcBAf8EUDBOMEwEAgABMEYDBABULqoDBAFULuoDBAFWJrID BABZdGYDBABZdKMDBABZdVIwDAMEA1l1WAMEAFl1WjAMAwQAWXVxAwQAWXVyAwQA WXWaMA0GCSqGSIb3DQEBCwUAA4IBAQCt+6mXFk3idZUn3XCaMqo8FPGtcDWY1ySG Ocyn93yZKkqJ2Y8ak20egDjv5FO/LBNWi9Q9iKSMhVFm7spJVWU6U01xtDPXXxAJ c8zvz5K6oJRFND71DOs3ikBuUvrGllIeTetsnk+pTzGiHsqBc2g1I9vVBUTM00wD /Ex+3v7ILZu80MUOSv3P+SOCeH3taDqViMm3Bw0rZGhP1XdA76GpyVuBGy6xOlwe onlUwNNjkcWWG/XYjenbHv+WcY5rxOXxKDcCEewPdabqiQIZNq+Pt05gNhBeGlP4 4tyVtPnW69KV54I5Jo773VJyp/BjHUu+/EH/zAiOjusk859RMPX/ -----END CERTIFICATE-----Generated at Fri Jun 14 11:45:36 2024 by rpki-client on console-ams.rpki-client.org