$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139372e302f32342d3234203d3e20323130353432.roa File: 37372e37352e3139372e302f32342d3234203d3e20323130353432.roa (raw, json) Hash identifier: QB96alCKK0djvxe4HTuscalvcDfYkZVyA+YlPMyzdP4= Subject key identifier: B0:12:CA:9A:22:33:A7:45:06:EC:3F:3E:68:4D:BA:3A:2B:FD:88:6F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 29B6DDA93C4CB923EDB5B37F3BB1B68AC2236DB5 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139372e302f32342d3234203d3e20323130353432.roa Signing time: Mon 17 Mar 2025 07:53:58 +0000 ROA not before: Mon 17 Mar 2025 07:48:58 +0000 ROA not after: Mon 16 Mar 2026 07:53:58 +0000 asID: 210542 IP address blocks: 77.75.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 12 Apr 2025 04:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b6:dd:a9:3c:4c:b9:23:ed:b5:b3:7f:3b:b1:b6:8a:c2:23:6d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 17 07:48:58 2025 GMT Not After : Mar 16 07:53:58 2026 GMT Subject: CN=B012CA9A2233A74506EC3F3E684DBA3A2BFD886F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b7:81:7f:07:5e:6e:b4:fd:0d:49:76:8e:32: 3b:a2:56:f2:c9:19:ff:b3:95:b9:61:79:12:6e:9d: 42:40:44:c5:ee:3a:01:be:9e:fe:02:bb:49:46:3d: ae:03:c9:ee:8f:c0:f6:6d:61:a5:c4:4b:5a:dd:11: fd:b2:c4:d8:24:b8:12:30:45:26:94:bb:46:ea:72: 3e:65:3b:97:a4:f1:b7:ee:9c:b1:c5:04:cf:b5:a6: 11:bf:98:73:b8:33:2b:6d:b5:29:ed:8b:cb:a8:3b: 39:37:4c:5f:5e:c0:b2:23:d8:64:4e:66:ee:08:29: 4a:b4:38:d3:55:58:6d:a4:71:c3:86:62:70:fa:de: d0:56:ac:8c:e2:62:5c:3e:98:cb:78:01:d5:78:a6: 76:e8:83:39:47:b9:e8:4b:4f:75:15:d2:16:b8:9a: 43:e6:f9:2a:9e:a1:ca:27:f1:1c:d6:aa:e4:b0:b1: eb:d3:1a:dd:d6:02:9c:c3:94:9f:56:3b:99:e0:8d: 69:4d:99:ae:69:53:a0:b6:d7:c2:e6:df:4a:c3:5c: 7a:10:78:4f:99:cd:03:f7:fd:b3:40:92:32:ad:59: fc:f7:fa:ca:d8:b2:62:d8:7d:a1:53:15:69:00:c8: 2b:28:3c:ec:89:88:af:f2:8f:ce:c7:30:20:80:fb: a0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:12:CA:9A:22:33:A7:45:06:EC:3F:3E:68:4D:BA:3A:2B:FD:88:6F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139372e302f32342d3234203d3e20323130353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.75.197.0/24 Signature Algorithm: sha256WithRSAEncryption 18:dc:2f:b9:96:2d:db:81:a9:8a:77:c3:f9:a5:29:27:ec:38: af:eb:09:fb:e2:76:29:54:3f:01:33:1e:ca:bd:a8:31:60:a7: 07:37:6c:57:4b:52:d4:c0:18:9d:a2:d9:c8:06:c8:6c:fd:53: 7b:8b:a4:91:09:08:47:97:4a:42:c7:1e:d5:0f:8f:ad:1c:cd: a7:b3:ce:16:a0:1c:5a:e3:74:02:95:b0:58:83:6a:60:9d:cc: 15:a6:48:38:7a:ab:f2:38:28:d5:98:bd:af:1d:46:e0:d3:30: 43:13:33:1a:17:22:c0:54:6d:40:97:2b:95:c1:8d:a7:44:dc: e3:e1:f1:d9:59:54:29:d4:e2:20:19:5b:ae:c6:35:db:b7:41: a4:df:e0:d0:92:51:c8:10:d7:4f:3f:7b:98:f1:42:78:19:5f: 46:80:ea:14:c7:a7:a1:d4:f6:57:8a:e4:46:9b:8a:b4:d1:eb: 0b:4a:60:05:d0:ca:ee:58:7e:9b:55:13:90:69:1c:24:4e:f2: 97:6b:95:ef:2b:53:c1:a4:d9:8f:72:b6:82:2e:91:03:79:24: d7:e1:42:1c:b8:89:12:6f:c4:92:fc:c9:1c:93:b7:c1:eb:f1: f5:02:3c:08:6c:67:30:e7:ef:24:5f:e8:7f:0a:3e:7e:eb:3a: b5:26:c5:4b -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUKbbdqTxMuSPttbN/O7G2isIjbbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAzMTcwNzQ4NThaFw0yNjAzMTYwNzUzNThaMDMxMTAvBgNV BAMTKEIwMTJDQTlBMjIzM0E3NDUwNkVDM0YzRTY4NERCQTNBMkJGRDg4NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCot4F/B15utP0NSXaOMjuiVvLJ Gf+zlblheRJunUJARMXuOgG+nv4Cu0lGPa4Dye6PwPZtYaXES1rdEf2yxNgkuBIw RSaUu0bqcj5lO5ek8bfunLHFBM+1phG/mHO4MytttSnti8uoOzk3TF9ewLIj2GRO Zu4IKUq0ONNVWG2kccOGYnD63tBWrIziYlw+mMt4AdV4pnbogzlHuehLT3UV0ha4 mkPm+Sqeocon8RzWquSwsevTGt3WApzDlJ9WO5ngjWlNma5pU6C218Lm30rDXHoQ eE+ZzQP3/bNAkjKtWfz3+srYsmLYfaFTFWkAyCsoPOyJiK/yj87HMCCA+6BLAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUsBLKmiIzp0UG7D8+aE26Oiv9iG8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM3MzcyZTM3MzUyZTMxMzkzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzMDM1MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1LxTANBgkqhkiG 9w0BAQsFAAOCAQEAGNwvuZYt24GpinfD+aUpJ+w4r+sJ++J2KVQ/ATMeyr2oMWCn BzdsV0tS1MAYnaLZyAbIbP1Te4ukkQkIR5dKQsce1Q+PrRzNp7POFqAcWuN0ApWw WINqYJ3MFaZIOHqr8jgo1Zi9rx1G4NMwQxMzGhciwFRtQJcrlcGNp0Tc4+Hx2VlU KdTiIBlbrsY127dBpN/g0JJRyBDXTz97mPFCeBlfRoDqFMenodT2V4rkRpuKtNHr C0pgBdDK7lh+m1UTkGkcJE7yl2uV7ytTwaTZj3K2gi6RA3kk1+FCHLiJEm/EkvzJ HJO3wevx9QI8CGxnMOfvJF/ofwo+fus6tSbFSw== -----END CERTIFICATE-----Generated at Fri Apr 11 14:44:57 2025 by rpki-client