$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139322e302f32342d3234203d3e2036323034.roa File: 37372e37352e3139322e302f32342d3234203d3e2036323034.roa (raw, json) Hash identifier: sLOstOjgeJ8AOzvvVPGaYK6OLCLFrBZJEnCCl0cYT64= Subject key identifier: 94:27:99:EA:4D:10:87:22:EF:7D:20:50:0E:8A:CC:A1:54:89:B2:70 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1578F7E3A6205460417592103694B172419B5A7E Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139322e302f32342d3234203d3e2036323034.roa Signing time: Wed 27 Mar 2024 20:57:53 +0000 ROA not before: Wed 27 Mar 2024 20:52:53 +0000 ROA not after: Wed 26 Mar 2025 20:57:53 +0000 asID: 6204 IP address blocks: 77.75.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 16:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:78:f7:e3:a6:20:54:60:41:75:92:10:36:94:b1:72:41:9b:5a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 27 20:52:53 2024 GMT Not After : Mar 26 20:57:53 2025 GMT Subject: CN=942799EA4D108722EF7D20500E8ACCA15489B270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:cc:04:04:d7:4d:bd:e7:e6:34:98:6b:f1: b9:93:cc:0d:91:c1:ac:56:1c:f4:d4:fa:6d:30:b6: 21:93:b2:57:7f:40:ba:30:a1:85:07:36:69:67:b4: 68:0a:77:e5:26:a1:67:ec:96:db:31:3b:4f:96:42: ca:a9:91:36:10:71:9b:b5:12:e4:92:77:d4:5c:26: 51:1f:f7:87:48:69:1f:fb:3f:cb:85:51:91:dd:ca: 5f:b4:22:0d:b8:ef:1b:a3:bd:76:2c:69:16:26:ec: 9c:0e:c0:1e:b4:fa:74:2f:f2:09:1a:13:d4:27:38: e2:01:2b:ee:d7:9f:1b:5d:0c:92:ac:fd:74:47:75: 44:a9:cd:4b:37:5a:5c:18:f9:ff:6a:fe:b7:d3:d1: 07:95:ed:54:3f:bb:3a:1a:e3:c9:5c:3e:73:d2:1a: 6d:b3:7c:43:34:c6:b5:12:f6:d5:99:75:73:ff:6e: 64:3a:79:08:22:bc:37:da:5c:0c:10:ea:e0:38:6b: ca:37:11:07:57:2c:5b:76:32:3f:d4:60:43:6a:49: de:c6:64:33:86:3a:69:09:6d:8a:a5:f0:02:20:03: e9:15:d0:1b:21:0b:e8:bd:e6:09:f1:54:39:51:f0: da:3b:01:2d:12:64:a0:43:73:3f:48:d6:7b:fa:2b: 64:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:27:99:EA:4D:10:87:22:EF:7D:20:50:0E:8A:CC:A1:54:89:B2:70 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139322e302f32342d3234203d3e2036323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.75.192.0/24 Signature Algorithm: sha256WithRSAEncryption 68:7c:e2:d0:ed:31:a8:bf:75:21:ef:ea:28:0c:28:dd:6c:b7: ee:ba:e6:11:6e:43:1b:c8:ec:37:e5:e2:ec:f2:60:4b:35:d3: c7:80:51:4e:b5:aa:5d:67:a8:e7:6c:92:21:27:f6:0a:93:65: 12:94:04:e2:10:0e:07:cf:e2:08:57:82:3c:a8:ab:4f:12:28: 79:e1:45:f7:f1:b5:af:71:66:c3:30:cb:0d:78:14:23:fa:01: 45:b1:88:f1:5b:9c:16:db:59:47:8b:c1:d9:d7:5b:fc:40:a3: 63:c0:8a:81:ae:32:32:33:87:f2:76:cd:9d:b8:29:0f:e9:60: 8e:d8:b8:8a:e2:e6:61:ed:c8:72:28:78:ac:eb:5a:2d:d9:4b: 65:e3:98:b7:af:c4:2f:54:92:68:9e:4c:db:f1:aa:eb:52:0a: d1:70:01:ed:77:67:a9:bd:90:af:28:02:db:97:de:42:73:27: 1a:b9:cb:e5:6b:9b:c3:1c:3d:8c:34:c9:c6:0e:cf:ef:c7:02: 71:d1:27:ce:6c:c6:bf:8e:5a:e1:e2:17:0d:52:dc:b8:b6:20: 90:4b:f3:ad:c0:87:90:96:1d:70:aa:f9:c1:70:59:cb:ad:71: be:b5:00:32:43:f0:cb:74:0c:8c:ce:68:79:cd:79:8b:41:d2: 4f:3f:46:e5 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUFXj346YgVGBBdZIQNpSxckGbWn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDAzMjcyMDUyNTNaFw0yNTAzMjYyMDU3NTNaMDMxMTAvBgNV BAMTKDk0Mjc5OUVBNEQxMDg3MjJFRjdEMjA1MDBFOEFDQ0ExNTQ4OUIyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAj8wEBNdNvefmNJhr8bmTzA2R waxWHPTU+m0wtiGTsld/QLowoYUHNmlntGgKd+UmoWfsltsxO0+WQsqpkTYQcZu1 EuSSd9RcJlEf94dIaR/7P8uFUZHdyl+0Ig247xujvXYsaRYm7JwOwB60+nQv8gka E9QnOOIBK+7XnxtdDJKs/XRHdUSpzUs3WlwY+f9q/rfT0QeV7VQ/uzoa48lcPnPS Gm2zfEM0xrUS9tWZdXP/bmQ6eQgivDfaXAwQ6uA4a8o3EQdXLFt2Mj/UYENqSd7G ZDOGOmkJbYql8AIgA+kV0BshC+i95gnxVDlR8No7AS0SZKBDcz9I1nv6K2Q7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUlCeZ6k0QhyLvfSBQDorMoVSJsnAwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM3MzcyZTM3MzUyZTMxMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzIzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUvAMA0GCSqGSIb3DQEB CwUAA4IBAQBofOLQ7TGov3Uh7+ooDCjdbLfuuuYRbkMbyOw35eLs8mBLNdPHgFFO tapdZ6jnbJIhJ/YKk2USlATiEA4Hz+IIV4I8qKtPEih54UX38bWvcWbDMMsNeBQj +gFFsYjxW5wW21lHi8HZ11v8QKNjwIqBrjIyM4fyds2duCkP6WCO2LiK4uZh7chy KHis61ot2Utl45i3r8QvVJJonkzb8arrUgrRcAHtd2epvZCvKALbl95Ccycaucvl a5vDHD2MNMnGDs/vxwJx0SfObMa/jlrh4hcNUty4tiCQS/OtwIeQlh1wqvnBcFnL rXG+tQAyQ/DLdAyMzmh5zXmLQdJPP0bl -----END CERTIFICATE-----Generated at Fri May 31 19:47:00 2024 by rpki-client on console-fra.rpki-client.org