$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20383334.roa File: 33372e3233302e34382e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: wan4CFSaMDhy+tm89j8LkRZHN+fzyy7GZI2elPGPp0E= Subject key identifier: 2D:BD:76:4A:13:18:37:A0:AA:F0:87:E6:87:A8:22:72:17:96:38:15 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1C1086C5524EB5C7E8B9D2A53ADD70B1EEEA4E81 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20383334.roa Signing time: Thu 21 Mar 2024 07:34:56 +0000 ROA not before: Thu 21 Mar 2024 07:29:56 +0000 ROA not after: Thu 20 Mar 2025 07:34:56 +0000 asID: 834 IP address blocks: 37.230.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 02 May 2024 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:10:86:c5:52:4e:b5:c7:e8:b9:d2:a5:3a:dd:70:b1:ee:ea:4e:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 21 07:29:56 2024 GMT Not After : Mar 20 07:34:56 2025 GMT Subject: CN=2DBD764A131837A0AAF087E687A8227217963815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b5:ca:29:31:99:1e:f8:1f:a6:4d:e6:23:98: 9a:a8:9a:63:46:35:d0:38:3a:55:47:e3:e5:11:f3: 19:22:dc:97:82:85:d4:29:7d:f8:6a:bf:e2:25:c2: c9:5e:23:b7:43:eb:42:fd:90:0b:72:ad:eb:91:b2: 26:b5:65:ef:da:bb:36:a2:78:a0:5d:d5:44:bb:02: df:d3:f3:d0:67:db:77:2f:c6:1d:c1:6c:ad:5e:25: 17:19:84:56:a7:22:4b:5e:43:47:72:77:fb:10:ae: 58:43:91:9e:85:a4:32:58:46:7b:22:63:a7:aa:cb: 06:58:2e:45:c0:aa:05:82:97:b6:ad:63:fe:81:0b: 60:b6:16:45:96:49:8c:ba:20:c7:3d:88:1c:2f:29: fe:d2:0a:bd:a8:62:be:b6:02:ab:c6:58:a4:18:d0: 10:94:6c:6c:be:63:00:aa:41:0b:9a:77:1a:13:c6: 9d:94:fd:38:18:47:08:9b:c6:9d:c9:82:f5:c0:5d: 9e:3c:11:6c:81:a3:b2:d3:6b:01:54:4a:39:96:0b: 49:b1:28:f9:d4:5c:0b:c3:eb:a6:57:c9:33:a4:b8: c0:b8:0a:b5:a9:6b:6f:6a:9e:96:45:ee:89:6f:a0: 36:03:69:4e:b4:88:99:f1:76:75:3f:99:0a:54:36: 92:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BD:76:4A:13:18:37:A0:AA:F0:87:E6:87:A8:22:72:17:96:38:15 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34382e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.48.0/24 Signature Algorithm: sha256WithRSAEncryption 51:6e:aa:92:26:79:37:6e:13:14:3e:52:e7:e6:4a:f4:d6:fd: ae:a9:74:04:9a:13:c8:5f:3d:a0:c2:45:99:cb:cd:de:76:e3: fb:45:01:2b:09:83:87:9a:e9:75:ef:37:1f:87:e2:ba:27:8d: 6f:42:32:6a:5f:4f:02:9d:ac:f3:e4:7a:0c:04:45:c2:f1:37: 51:f1:64:03:fd:75:d7:9d:f5:f3:1d:f7:92:93:1e:6d:49:75: 3e:23:56:3a:e3:3d:29:a6:4b:10:44:7f:58:57:93:e6:ed:25: 1e:96:26:17:8b:ca:fd:56:34:75:90:dc:a1:40:fa:9d:1c:18: 8c:97:13:94:75:cd:5a:55:16:97:f0:f1:cd:9a:0d:f8:d3:cb: a1:61:75:0a:3b:d7:c6:4f:43:3c:73:2c:35:cb:7a:17:36:ce: 5a:5a:eb:38:ac:a4:c2:5b:78:d0:28:e1:eb:7f:54:b1:2e:28: 01:13:a7:4f:f1:2a:ec:03:70:36:9c:89:76:d1:b0:68:b2:2e: a3:0d:18:16:90:e9:f1:a4:33:f9:f5:99:1f:b4:1b:8c:5d:b0: cb:6a:b4:70:8d:88:53:69:2c:e1:ce:3e:b5:73:82:41:0c:8e: e1:5d:c7:5e:a5:1f:6d:e5:14:23:50:0b:50:eb:89:ac:3b:e9: a6:00:43:5f -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUHBCGxVJOtcfoudKlOt1wse7qToEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDAzMjEwNzI5NTZaFw0yNTAzMjAwNzM0NTZaMDMxMTAvBgNV BAMTKDJEQkQ3NjRBMTMxODM3QTBBQUYwODdFNjg3QTgyMjcyMTc5NjM4MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCatcopMZke+B+mTeYjmJqommNG NdA4OlVH4+UR8xki3JeChdQpffhqv+IlwsleI7dD60L9kAtyreuRsia1Ze/auzai eKBd1US7At/T89Bn23cvxh3BbK1eJRcZhFanIkteQ0dyd/sQrlhDkZ6FpDJYRnsi Y6eqywZYLkXAqgWCl7atY/6BC2C2FkWWSYy6IMc9iBwvKf7SCr2oYr62AqvGWKQY 0BCUbGy+YwCqQQuadxoTxp2U/TgYRwibxp3JgvXAXZ48EWyBo7LTawFUSjmWC0mx KPnUXAvD66ZXyTOkuMC4CrWpa29qnpZF7olvoDYDaU60iJnxdnU/mQpUNpLTAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQULb12ShMYN6Cq8Ifmh6gicheWOBUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzIzMzMwMmUzNDM4MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeYwMA0GCSqGSIb3DQEBCwUA A4IBAQBRbqqSJnk3bhMUPlLn5kr01v2uqXQEmhPIXz2gwkWZy83eduP7RQErCYOH mul17zcfh+K6J41vQjJqX08Cnazz5HoMBEXC8TdR8WQD/XXXnfXzHfeSkx5tSXU+ I1Y64z0ppksQRH9YV5Pm7SUeliYXi8r9VjR1kNyhQPqdHBiMlxOUdc1aVRaX8PHN mg3408uhYXUKO9fGT0M8cyw1y3oXNs5aWus4rKTCW3jQKOHrf1SxLigBE6dP8Srs A3A2nIl20bBosi6jDRgWkOnxpDP59ZkftBuMXbDLarRwjYhTaSzhzj61c4JBDI7h XcdepR9t5RQjUAtQ64msO+mmAENf -----END CERTIFICATE-----Generated at Thu May 2 04:01:02 2024 by rpki-client on console-fra.rpki-client.org