$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36312e302f32342d3234203d3e20383334.roa File: 33372e3233302e36312e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: p9g/jNAU5kX7WoUHLWlLXFhPVHxsXCJqRgkI5pzg+hM= Subject key identifier: 6E:C0:A0:CA:F8:4C:B3:24:46:AF:60:2A:58:0B:87:FF:9B:7C:56:43 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 4BE5163FB0B6D70D39054DF9223F75214340BDDB Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36312e302f32342d3234203d3e20383334.roa Signing time: Thu 11 Apr 2024 13:26:20 +0000 ROA not before: Thu 11 Apr 2024 13:21:20 +0000 ROA not after: Thu 10 Apr 2025 13:26:20 +0000 asID: 834 IP address blocks: 37.230.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 02 May 2024 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e5:16:3f:b0:b6:d7:0d:39:05:4d:f9:22:3f:75:21:43:40:bd:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 11 13:21:20 2024 GMT Not After : Apr 10 13:26:20 2025 GMT Subject: CN=6EC0A0CAF84CB32446AF602A580B87FF9B7C5643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:da:c0:ae:a3:be:bb:03:4c:d6:35:6c:9f:27: 81:8d:76:aa:2e:db:ba:70:c3:a9:9d:9e:c9:c0:9a: 6d:2c:c2:6b:8a:48:87:52:5b:d5:0c:2e:f1:9a:b3: 37:0d:0b:ec:70:d2:4a:74:e0:74:6e:62:0b:0c:8e: 34:10:92:f7:5b:e8:d1:4e:6d:4b:93:f5:3c:25:a2: 9a:ad:ff:1c:83:42:06:b9:e3:53:57:30:d5:70:a7: bd:7d:e7:5f:21:1e:f2:db:39:cf:57:aa:19:04:79: 80:79:50:e1:d2:1c:f3:1c:0b:b7:31:87:3f:dc:ab: 27:2e:2f:a1:67:2c:e9:19:ee:8b:06:a3:e0:bb:01: a3:85:3f:37:30:d3:ec:f1:01:01:8b:6a:14:49:23: 8a:7b:91:76:5a:a5:f9:18:9b:34:b0:6e:e5:d7:c5: fc:e3:2f:06:7d:8d:99:43:5e:0b:a4:6e:8b:79:c0: 2f:96:d0:1b:c7:1f:f1:1c:ca:05:41:33:70:3a:99: 07:fb:e8:d4:02:6f:3d:83:5c:ee:04:ea:3b:cf:91: e6:8d:a8:91:dd:8e:9e:81:e6:d5:d1:76:f1:4d:16: e8:6a:d2:cb:30:90:7b:1a:fa:57:3b:8d:ef:36:52: b8:b6:3f:51:08:2d:3a:c8:f9:bd:cb:4e:e2:61:f9: 7a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C0:A0:CA:F8:4C:B3:24:46:AF:60:2A:58:0B:87:FF:9B:7C:56:43 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36312e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.61.0/24 Signature Algorithm: sha256WithRSAEncryption 03:48:e9:d7:76:4f:6f:27:4c:00:5b:7d:1f:d8:08:25:92:09: 46:f6:ac:24:9c:eb:dc:aa:99:49:9a:c1:5a:80:4d:a6:68:7d: c4:26:85:7f:76:51:b5:0a:ed:66:4e:98:ea:62:47:06:f0:9a: c1:39:93:87:29:c2:8e:32:3f:7f:53:27:81:aa:8c:38:3e:e5: 6e:57:99:e9:6b:ad:c2:82:f6:6e:a2:a2:25:f9:a1:de:90:f7: 08:57:5d:2b:d7:0c:ea:de:c5:c4:31:7f:38:4b:94:0f:88:64: fa:f4:cc:eb:d0:6a:9c:22:14:f2:cb:38:73:a3:ef:18:76:80: 8a:99:96:8e:e5:b0:cf:5c:de:c4:48:d2:44:5c:9e:c9:ff:e0: 01:41:13:06:67:b9:6e:a2:0b:4a:8e:82:c9:e2:be:10:d7:33: 1d:a0:57:cf:94:38:cb:4d:d5:46:35:63:16:36:e9:3a:56:03: 8d:a8:10:1a:e9:f4:5f:a4:3a:c1:13:83:81:7b:76:d1:28:db: a7:07:6d:3f:fc:f8:b1:c1:96:e7:69:95:df:94:d1:1c:87:e7: f0:00:b1:f5:c2:55:36:c5:c0:87:27:90:47:0e:59:71:cd:db: 5d:28:71:28:be:12:0c:f7:e3:13:f7:cd:91:a1:c8:e2:ae:54: e3:e1:09:44 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUS+UWP7C21w05BU35Ij91IUNAvdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA0MTExMzIxMjBaFw0yNTA0MTAxMzI2MjBaMDMxMTAvBgNV BAMTKDZFQzBBMENBRjg0Q0IzMjQ0NkFGNjAyQTU4MEI4N0ZGOUI3QzU2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq2sCuo767A0zWNWyfJ4GNdqou 27pww6mdnsnAmm0swmuKSIdSW9UMLvGaszcNC+xw0kp04HRuYgsMjjQQkvdb6NFO bUuT9Twlopqt/xyDQga541NXMNVwp719518hHvLbOc9XqhkEeYB5UOHSHPMcC7cx hz/cqycuL6FnLOkZ7osGo+C7AaOFPzcw0+zxAQGLahRJI4p7kXZapfkYmzSwbuXX xfzjLwZ9jZlDXgukbot5wC+W0BvHH/EcygVBM3A6mQf76NQCbz2DXO4E6jvPkeaN qJHdjp6B5tXRdvFNFuhq0sswkHsa+lc7je82Uri2P1EILTrI+b3LTuJh+XopAgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUbsCgyvhMsyRGr2AqWAuH/5t8VkMwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzIzMzMwMmUzNjMxMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJeY9MA0GCSqGSIb3DQEBCwUA A4IBAQADSOnXdk9vJ0wAW30f2AglkglG9qwknOvcqplJmsFagE2maH3EJoV/dlG1 Cu1mTpjqYkcG8JrBOZOHKcKOMj9/UyeBqow4PuVuV5npa63CgvZuoqIl+aHekPcI V10r1wzq3sXEMX84S5QPiGT69Mzr0GqcIhTyyzhzo+8YdoCKmZaO5bDPXN7ESNJE XJ7J/+ABQRMGZ7luogtKjoLJ4r4Q1zMdoFfPlDjLTdVGNWMWNuk6VgONqBAa6fRf pDrBE4OBe3bRKNunB20//PixwZbnaZXflNEch+fwALH1wlU2xcCHJ5BHDllxzdtd KHEovhIM9+MT982RocjirlTj4QlE -----END CERTIFICATE-----Generated at Thu May 2 03:10:51 2024 by rpki-client on console-ams.rpki-client.org