$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa File: 33372e312e3233312e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: VCGuNufD1mP+I6hZgJ+griNPUgBGsesTGLTS3fdTcco= Subject key identifier: 77:18:7A:7A:C6:3B:9B:CE:35:51:BE:FC:4A:64:F1:86:2B:EF:08:B4 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0C8CC9DFAA3B6E60F3E9974866F411019C74A60D Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa Signing time: Tue 07 Nov 2023 11:37:07 +0000 ROA not before: Tue 07 Nov 2023 11:32:07 +0000 ROA not after: Tue 05 Nov 2024 11:37:07 +0000 asID: 61317 IP address blocks: 37.1.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 04 May 2024 14:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8c:c9:df:aa:3b:6e:60:f3:e9:97:48:66:f4:11:01:9c:74:a6:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Nov 7 11:32:07 2023 GMT Not After : Nov 5 11:37:07 2024 GMT Subject: CN=77187A7AC63B9BCE3551BEFC4A64F1862BEF08B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1e:af:cf:fc:ab:82:db:31:55:73:ea:48:5a: 19:09:9c:9e:88:9c:bd:77:ab:bc:43:fc:f4:a1:43: ef:e7:89:7a:78:5a:80:5d:36:e8:aa:18:50:18:e7: e5:e5:2c:82:12:94:2a:24:de:6b:3f:82:6e:9e:a0: 59:d8:21:2d:1d:8c:83:9c:fb:4f:91:44:e3:04:69: 3c:02:b3:b0:ad:a7:1b:ae:21:e5:7a:b9:a4:fd:9a: 11:da:e2:50:12:ac:d1:38:e2:e4:e0:16:11:92:cb: 68:a0:ba:f7:5f:ad:45:1b:aa:f7:26:5a:b8:24:52: ce:11:9d:c7:a1:bc:15:2f:4d:3e:fb:50:e0:ec:78: e1:c6:ad:42:6e:18:1f:1f:9d:4d:d8:5c:ba:62:50: 3d:aa:8c:0e:ee:9c:82:4b:be:2c:97:68:93:de:dc: 47:ae:ac:e9:8a:f9:4d:e6:ee:f0:00:e2:16:4d:30: 9c:ee:bb:f7:11:a3:a5:c0:96:75:02:3d:51:b7:a7: 60:e7:58:40:46:fb:82:da:31:c0:49:48:be:83:aa: 69:43:00:43:bb:19:79:eb:c0:0b:ba:95:c5:2f:a5: 3c:10:1d:9b:05:48:30:41:bd:0d:13:fb:00:5b:1e: 90:7a:fc:15:92:b3:a9:5e:67:e6:b4:ff:60:3e:a2: 7d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:18:7A:7A:C6:3B:9B:CE:35:51:BE:FC:4A:64:F1:86:2B:EF:08:B4 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.231.0/24 Signature Algorithm: sha256WithRSAEncryption 24:35:1a:01:24:b8:56:9e:9e:e4:7b:0d:12:c2:1b:8b:37:e5: e4:c4:97:b1:a7:ab:ae:39:42:50:30:b0:b8:86:39:94:33:cd: 71:bd:51:a4:be:d7:2f:5b:a5:fc:05:db:0f:68:2f:63:bc:56: 2e:83:49:84:13:8b:f5:6a:95:70:ea:71:21:cc:26:d9:17:65: 5a:4d:4c:e9:16:ae:e7:86:21:d7:70:50:a1:88:9c:a1:21:38: 01:93:f4:59:1a:3d:1d:f3:96:f6:8f:b5:c9:65:91:b1:e6:7e: 17:98:cb:40:a7:5e:51:22:1a:56:e9:be:66:73:7b:ee:64:31: 29:71:b7:c9:42:63:be:90:01:45:ac:c4:9a:62:20:3e:46:a7: 7a:bd:b6:9a:7a:9f:00:39:da:29:1f:30:cc:b5:17:1a:99:b9: 27:74:92:83:aa:18:73:d4:e8:1d:9a:aa:75:28:4d:25:11:db: 43:3b:26:36:35:8a:11:1b:af:79:55:f5:18:9f:c8:ee:51:6b: a0:32:e3:b5:cf:50:d9:cb:e9:10:89:30:c6:9e:28:64:69:ec: df:c5:96:4c:f7:bb:ca:ad:6f:a9:c3:c2:fe:85:46:40:0d:e9: d5:e5:28:b9:79:fc:83:fa:f1:b6:d1:99:60:26:10:95:80:5a: 48:6d:7a:46 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUDIzJ36o7bmDz6ZdIZvQRAZx0pg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yMzExMDcxMTMyMDdaFw0yNDExMDUxMTM3MDdaMDMxMTAvBgNV BAMTKDc3MTg3QTdBQzYzQjlCQ0UzNTUxQkVGQzRBNjRGMTg2MkJFRjA4QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Hq/P/KuC2zFVc+pIWhkJnJ6I nL13q7xD/PShQ+/niXp4WoBdNuiqGFAY5+XlLIISlCok3ms/gm6eoFnYIS0djIOc +0+RROMEaTwCs7CtpxuuIeV6uaT9mhHa4lASrNE44uTgFhGSy2iguvdfrUUbqvcm WrgkUs4RncehvBUvTT77UODseOHGrUJuGB8fnU3YXLpiUD2qjA7unIJLviyXaJPe 3EeurOmK+U3m7vAA4hZNMJzuu/cRo6XAlnUCPVG3p2DnWEBG+4LaMcBJSL6DqmlD AEO7GXnrwAu6lcUvpTwQHZsFSDBBvQ0T+wBbHpB6/BWSs6leZ+a0/2A+on03AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUdxh6esY7m841Ub78SmTxhivvCLQwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHnMA0GCSqGSIb3DQEB CwUAA4IBAQAkNRoBJLhWnp7kew0SwhuLN+XkxJexp6uuOUJQMLC4hjmUM81xvVGk vtcvW6X8BdsPaC9jvFYug0mEE4v1apVw6nEhzCbZF2VaTUzpFq7nhiHXcFChiJyh ITgBk/RZGj0d85b2j7XJZZGx5n4XmMtAp15RIhpW6b5mc3vuZDEpcbfJQmO+kAFF rMSaYiA+Rqd6vbaaep8AOdopHzDMtRcambkndJKDqhhz1Ogdmqp1KE0lEdtDOyY2 NYoRG695VfUYn8juUWugMuO1z1DZy+kQiTDGnihkaezfxZZM97vKrW+pw8L+hUZA DenV5Si5efyD+vG20ZlgJhCVgFpIbXpG -----END CERTIFICATE-----Generated at Sat May 4 02:34:27 2024 by rpki-client on console-fra.rpki-client.org