$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1299.roa File: AS1299.roa (raw, json) Hash identifier: KTtmzwayTgZfkrvRI/uBihAGK+3xlnsIxCfKULTzsN0= Subject key identifier: 96:F8:71:B4:E7:D6:98:FC:DA:1A:BB:7C:03:77:0F:B0:42:EE:AA:29 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7B0E3A3ED5014373DEC62A48FCD202246ABBBE21 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1299.roa Signing time: Tue 31 Dec 2024 12:53:48 +0000 ROA not before: Tue 31 Dec 2024 12:48:48 +0000 ROA not after: Tue 30 Dec 2025 12:53:48 +0000 asID: 1299 IP address blocks: 89.116.210.0/23 maxlen: 24 89.117.88.0/22 maxlen: 24 89.117.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0e:3a:3e:d5:01:43:73:de:c6:2a:48:fc:d2:02:24:6a:bb:be:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 31 12:48:48 2024 GMT Not After : Dec 30 12:53:48 2025 GMT Subject: CN=96F871B4E7D698FCDA1ABB7C03770FB042EEAA29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:17:5f:c9:ee:3f:a2:34:ba:d0:bb:0b:da:2d: a3:5a:8f:8e:26:7a:c8:4e:aa:60:59:3d:72:e2:2a: 42:0a:5b:5a:9a:95:ba:f4:ef:26:2c:db:41:f9:c9: 2e:ff:ea:18:32:89:e0:d3:c9:6b:2a:cb:1e:6d:ef: 5b:af:0c:f1:96:08:0f:8e:98:e2:e0:88:e7:f2:44: 6f:65:ce:18:d3:b3:d0:34:d2:a9:d7:0a:f7:a5:3d: 9f:08:e7:26:83:a5:cf:a8:ae:2f:0e:e1:d5:ab:36: 55:39:06:41:59:8e:00:0c:4d:e2:8d:1a:e6:f1:93: e6:a9:6b:2f:93:5b:92:75:88:f8:d4:39:6d:f2:c9: 17:72:4e:69:41:0a:ad:22:11:99:b1:85:62:fe:a0: 8b:1d:2f:94:7a:87:95:a6:4c:91:a5:ad:a7:db:cf: 66:f3:c3:7a:8b:97:1f:12:06:60:39:6c:55:8f:cd: c2:d5:ee:9b:5e:a5:c6:43:36:46:d8:36:cf:6e:e5: 6b:bb:3d:f3:99:a2:7d:a3:13:ce:6e:f5:24:f2:f9: ec:41:6d:74:b3:7f:e1:01:b7:f8:f6:ea:af:b9:71: b3:bc:1c:71:87:c5:f9:82:17:0a:0f:dd:66:86:08: d7:3b:8f:c1:0f:31:fe:71:d0:1d:ef:13:be:0b:e5: 83:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F8:71:B4:E7:D6:98:FC:DA:1A:BB:7C:03:77:0F:B0:42:EE:AA:29 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.210.0/23 89.117.88.0/22 89.117.132.0/22 Signature Algorithm: sha256WithRSAEncryption 26:2e:8f:3a:dd:2d:8b:fd:50:1e:d8:4a:fb:c5:8d:3a:af:74: a5:b7:a2:fa:8a:52:78:1d:b5:60:e9:b7:93:52:fe:47:92:15: 43:5c:72:1a:54:5f:eb:64:0d:49:e4:ad:5a:cb:e1:77:a6:49: 40:54:57:cf:3b:57:95:1c:03:12:c3:d4:53:49:9e:f1:0f:14: e0:11:fa:c6:c8:5c:00:15:c7:10:38:c2:f3:93:1e:b0:e5:b4: 22:e8:99:fa:95:1f:77:97:ac:7b:84:21:8d:ab:32:a0:87:ea: db:82:a6:c9:08:f0:43:ef:66:59:bc:9f:ac:b1:57:de:5c:90: 12:1a:37:ff:39:33:14:7b:ca:2d:c5:c7:14:d4:a2:a2:31:8a: b1:a5:1f:06:6f:80:ec:8d:eb:c5:ff:ae:bf:74:1a:6d:19:d9: dd:65:5c:fe:91:36:d4:a7:9c:cd:c8:c1:0c:7b:f8:a7:16:41: be:22:db:69:61:8b:ac:af:52:a8:e6:19:c6:75:1e:a4:1b:ea: 12:7e:8b:b8:2b:ab:2e:57:09:e9:e5:97:a5:6b:45:33:5f:dc: 30:6a:86:f2:67:46:b4:05:f2:fa:df:94:8b:31:d9:be:2c:79: 7b:bc:af:44:cd:e8:79:f7:cc:45:fb:4d:30:e9:a3:82:00:1e: d8:d2:5c:bc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUew46PtUBQ3PexipI/NICJGq7viEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDEyMzExMjQ4NDhaFw0yNTEyMzAxMjUzNDhaMDMxMTAvBgNV BAMTKDk2Rjg3MUI0RTdENjk4RkNEQTFBQkI3QzAzNzcwRkIwNDJFRUFBMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUF1/J7j+iNLrQuwvaLaNaj44m eshOqmBZPXLiKkIKW1qalbr07yYs20H5yS7/6hgyieDTyWsqyx5t71uvDPGWCA+O mOLgiOfyRG9lzhjTs9A00qnXCvelPZ8I5yaDpc+ori8O4dWrNlU5BkFZjgAMTeKN Gubxk+apay+TW5J1iPjUOW3yyRdyTmlBCq0iEZmxhWL+oIsdL5R6h5WmTJGlrafb z2bzw3qLlx8SBmA5bFWPzcLV7ptepcZDNkbYNs9u5Wu7PfOZon2jE85u9STy+exB bXSzf+EBt/j26q+5cbO8HHGHxfmCFwoP3WaGCNc7j8EPMf5x0B3vE74L5YOpAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUlvhxtOfWmPzaGrt8A3cPsELuqikwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEyOTkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAFZdNIDBAJZdVgDBAJZdYQw DQYJKoZIhvcNAQELBQADggEBACYujzrdLYv9UB7YSvvFjTqvdKW3ovqKUngdtWDp t5NS/keSFUNcchpUX+tkDUnkrVrL4XemSUBUV887V5UcAxLD1FNJnvEPFOAR+sbI XAAVxxA4wvOTHrDltCLomfqVH3eXrHuEIY2rMqCH6tuCpskI8EPvZlm8n6yxV95c kBIaN/85MxR7yi3FxxTUoqIxirGlHwZvgOyN68X/rr90Gm0Z2d1lXP6RNtSnnM3I wQx7+KcWQb4i22lhi6yvUqjmGcZ1HqQb6hJ+i7grqy5XCenll6VrRTNf3DBqhvJn RrQF8vrflIsx2b4seXu8r0TN6Hn3zEX7TTDpo4IAHtjSXLw= -----END CERTIFICATE-----Generated at Fri Apr 4 20:21:15 2025 by rpki-client