$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa File: 33372e312e3233302e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: L21PhHaWl1ZL1WVSopwM76VLNL3w2kItcII70vSoCeo= Subject key identifier: 5B:7C:0C:D3:FE:F9:35:60:AE:60:0E:24:07:B3:80:41:B8:E5:B2:78 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1E9F890B86CBEC76F03DAB749D323BC9055C5165 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa Signing time: Tue 07 Nov 2023 11:37:15 +0000 ROA not before: Tue 07 Nov 2023 11:32:15 +0000 ROA not after: Tue 05 Nov 2024 11:37:15 +0000 asID: 61317 IP address blocks: 37.1.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 04 May 2024 14:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:9f:89:0b:86:cb:ec:76:f0:3d:ab:74:9d:32:3b:c9:05:5c:51:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Nov 7 11:32:15 2023 GMT Not After : Nov 5 11:37:15 2024 GMT Subject: CN=5B7C0CD3FEF93560AE600E2407B38041B8E5B278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:05:45:86:c3:9b:19:1e:df:0c:27:c0:45:2f: 76:f5:26:44:87:3b:da:4d:61:04:4f:cf:c4:40:3f: 63:56:9d:41:b7:2e:37:cb:a5:37:8f:30:98:12:61: 6c:4e:be:c9:a1:b6:e5:41:61:24:02:bc:f6:67:6b: 82:61:7b:03:7c:a2:1c:35:2d:fe:14:b9:1a:f4:71: 85:0f:83:6f:78:4d:c1:f3:2a:52:2f:07:01:2a:ef: 5d:0d:3f:df:5c:de:e0:1a:ed:ad:15:80:09:ed:cb: fd:70:3a:ce:de:03:f7:4c:4c:ad:6a:72:2e:48:50: 89:72:ea:5e:19:30:1f:38:96:1c:73:57:d6:99:a9: fd:a1:cf:93:0f:fc:42:9a:3e:77:10:65:4d:60:ed: 70:81:6c:40:4b:16:79:c4:08:93:34:11:31:40:64: 53:70:24:a9:ea:e3:2b:72:3c:47:3e:08:69:6c:a6: e6:24:8f:25:4c:8f:1a:7e:4e:8a:a6:da:5e:1f:15: 14:40:13:ea:e4:1e:e9:4f:8b:8c:cc:f6:08:f8:ec: ff:3e:8c:1b:62:74:49:60:0b:8b:15:8a:16:ce:3c: 55:3a:65:94:3c:52:f9:66:59:c0:c5:9a:19:c6:45: 1e:54:cc:32:83:de:cd:af:16:36:3d:4e:25:52:91: 5d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7C:0C:D3:FE:F9:35:60:AE:60:0E:24:07:B3:80:41:B8:E5:B2:78 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.230.0/24 Signature Algorithm: sha256WithRSAEncryption 24:18:46:40:60:ca:53:b7:95:d8:f7:ad:ec:b1:52:4d:3d:1f: 24:8a:e5:5d:9d:98:89:4f:82:d6:a3:1e:ea:15:b1:b4:5f:39: 2a:38:33:30:0e:97:8c:95:40:1f:a2:1e:1a:8e:ba:9e:04:2c: 2e:6c:f7:93:0f:ba:cc:0e:5a:7d:7e:67:53:69:0f:10:ec:9a: de:e9:89:51:d1:61:4a:9d:99:7d:0b:83:b6:ba:38:ae:b2:4c: 7b:7d:27:ff:af:1e:53:5b:fd:eb:24:7d:b7:f2:27:31:36:66: af:b1:99:42:8d:ec:63:6d:d5:04:ca:77:5b:46:a8:c5:c9:da: 18:1a:13:d2:63:d8:df:2f:eb:28:d4:1a:03:f1:f1:23:9b:1a: b7:85:eb:b5:6d:39:aa:69:49:57:f7:30:4f:f3:16:f3:01:f6: 81:de:1d:0f:60:cf:48:66:d7:81:e6:7f:95:19:7a:9e:ba:80: 61:5f:6a:e8:fb:a3:cf:ff:52:b4:b6:65:eb:d5:e7:89:28:7c: 54:1b:22:02:6b:c8:9d:2c:ba:2c:ba:fa:30:32:3c:3f:ab:4f: bc:fa:3a:da:80:62:d0:2a:2a:99:8e:98:b6:0c:a5:a0:70:e3: fb:ce:51:4d:47:07:54:2f:ca:8f:a3:c7:dc:b8:2d:d7:17:da: c9:23:41:51 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUHp+JC4bL7HbwPat0nTI7yQVcUWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yMzExMDcxMTMyMTVaFw0yNDExMDUxMTM3MTVaMDMxMTAvBgNV BAMTKDVCN0MwQ0QzRkVGOTM1NjBBRTYwMEUyNDA3QjM4MDQxQjhFNUIyNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNBUWGw5sZHt8MJ8BFL3b1JkSH O9pNYQRPz8RAP2NWnUG3LjfLpTePMJgSYWxOvsmhtuVBYSQCvPZna4JhewN8ohw1 Lf4UuRr0cYUPg294TcHzKlIvBwEq710NP99c3uAa7a0VgAnty/1wOs7eA/dMTK1q ci5IUIly6l4ZMB84lhxzV9aZqf2hz5MP/EKaPncQZU1g7XCBbEBLFnnECJM0ETFA ZFNwJKnq4ytyPEc+CGlspuYkjyVMjxp+Toqm2l4fFRRAE+rkHulPi4zM9gj47P8+ jBtidElgC4sVihbOPFU6ZZQ8UvlmWcDFmhnGRR5UzDKD3s2vFjY9TiVSkV1tAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUW3wM0/75NWCuYA4kB7OAQbjlsngwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHmMA0GCSqGSIb3DQEB CwUAA4IBAQAkGEZAYMpTt5XY963ssVJNPR8kiuVdnZiJT4LWox7qFbG0XzkqODMw DpeMlUAfoh4ajrqeBCwubPeTD7rMDlp9fmdTaQ8Q7Jre6YlR0WFKnZl9C4O2ujiu skx7fSf/rx5TW/3rJH238icxNmavsZlCjexjbdUEyndbRqjFydoYGhPSY9jfL+so 1BoD8fEjmxq3heu1bTmqaUlX9zBP8xbzAfaB3h0PYM9IZteB5n+VGXqeuoBhX2ro +6PP/1K0tmXr1eeJKHxUGyICa8idLLosuvowMjw/q0+8+jragGLQKiqZjpi2DKWg cOP7zlFNRwdUL8qPo8fcuC3XF9rJI0FR -----END CERTIFICATE-----Generated at Sat May 4 01:50:55 2024 by rpki-client on console-ams.rpki-client.org