$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1299.roa File: AS1299.roa (raw, json) Hash identifier: Xoih2j7jhJfpdfJpbOOysurRWWnwn6uc/Yw0loYh0Zc= Subject key identifier: EE:26:76:60:A1:07:88:3E:31:8A:5D:DB:DA:43:12:E0:3E:F6:30:E7 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 3153D88BD5E6235F06275FE36BF675C65830FBE3 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1299.roa Signing time: Tue 30 Jan 2024 12:40:14 +0000 ROA not before: Tue 30 Jan 2024 12:35:14 +0000 ROA not after: Tue 28 Jan 2025 12:40:14 +0000 asID: 1299 IP address blocks: 89.116.210.0/23 maxlen: 24 89.117.88.0/22 maxlen: 24 89.117.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:53:d8:8b:d5:e6:23:5f:06:27:5f:e3:6b:f6:75:c6:58:30:fb:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 30 12:35:14 2024 GMT Not After : Jan 28 12:40:14 2025 GMT Subject: CN=EE267660A107883E318A5DDBDA4312E03EF630E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:42:b0:10:c4:6d:85:cc:66:cd:f8:89:5f:56: 76:0b:18:c6:32:9d:3f:63:a7:99:86:ce:0b:55:20: 66:d7:40:06:1c:e9:de:10:2e:07:1f:81:7d:31:81: 7b:dc:34:b2:70:02:ea:64:c9:98:c9:b5:cd:a3:a4: 4b:95:8b:a8:02:5c:79:0d:10:28:77:e1:5b:cd:e6: 17:9d:ce:25:cb:f3:73:d0:f3:5b:eb:cd:52:1c:20: dd:22:4d:3c:64:14:cb:49:a6:91:36:c6:53:7e:15: 64:e6:33:2e:f3:cf:25:bd:b0:93:cb:90:f7:0d:e2: 8e:d1:87:18:25:08:df:42:bc:79:4f:ad:87:21:cd: 19:fe:59:5c:f2:0c:f6:20:f6:10:ff:9e:6b:f3:dc: b7:69:c0:12:2c:02:83:d5:56:bc:72:5f:e8:18:40: dc:68:3c:a9:25:85:29:ce:03:67:42:57:13:af:bb: 9b:b6:d6:d5:40:f9:42:23:40:09:b1:cd:95:65:3e: 0a:63:b7:2f:e4:8d:93:f4:09:28:c1:3c:b6:cf:a4: 47:5a:72:42:f8:df:f5:e2:07:3d:1c:87:59:50:fe: b1:5d:a6:63:ab:b6:f4:8b:cf:4c:b5:0b:11:89:c6: 35:0d:dc:79:0d:91:03:1e:a5:a8:77:98:a7:dc:d0: 72:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:26:76:60:A1:07:88:3E:31:8A:5D:DB:DA:43:12:E0:3E:F6:30:E7 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS1299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.210.0/23 89.117.88.0/22 89.117.132.0/22 Signature Algorithm: sha256WithRSAEncryption 74:f6:a6:2c:ea:5d:1b:a4:47:85:2e:8e:4b:f0:a4:94:41:eb: 7f:81:9d:31:ee:4d:21:0b:56:94:80:49:2b:45:c7:03:13:17: bc:18:c2:f2:08:8e:67:b3:1a:71:66:de:62:f7:02:0d:5f:06: 74:54:71:0e:26:fe:0d:cd:08:18:3d:e0:f9:29:1c:3c:6c:1b: 9d:f1:da:80:27:3a:fa:8b:29:b5:ae:f8:d9:2b:6f:8a:68:32: 99:24:8f:fa:e5:d6:d4:b2:50:dd:75:33:e1:1f:96:b0:7b:b8: dc:ce:39:62:29:b9:7b:20:e9:b3:49:fe:7b:5b:93:7a:ec:d6: 6c:7e:09:e0:3b:e5:11:b7:aa:b4:e6:ca:be:b8:94:8f:1c:1a: 39:56:92:1a:53:63:30:84:21:1b:c1:de:c9:df:ca:66:98:ed: 39:32:bd:73:50:59:f9:ec:bb:e6:4b:65:4b:46:8c:f3:79:2e: 0a:98:79:56:0b:25:ef:ba:70:20:e6:78:c1:cb:54:73:86:6d: 6d:08:53:32:7e:de:77:8d:88:c7:89:fb:6e:62:10:60:47:4d: 1b:55:d7:b5:90:37:84:ac:50:3e:58:c3:8c:36:c0:8f:02:48: d3:60:7a:cd:0a:71:75:44:51:3a:79:20:57:b7:41:e3:57:04: a5:18:2b:d1 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMVPYi9XmI18GJ1/ja/Z1xlgw++MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMzAxMjM1MTRaFw0yNTAxMjgxMjQwMTRaMDMxMTAvBgNV BAMTKEVFMjY3NjYwQTEwNzg4M0UzMThBNUREQkRBNDMxMkUwM0VGNjMwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPQrAQxG2FzGbN+IlfVnYLGMYy nT9jp5mGzgtVIGbXQAYc6d4QLgcfgX0xgXvcNLJwAupkyZjJtc2jpEuVi6gCXHkN ECh34VvN5hedziXL83PQ81vrzVIcIN0iTTxkFMtJppE2xlN+FWTmMy7zzyW9sJPL kPcN4o7RhxglCN9CvHlPrYchzRn+WVzyDPYg9hD/nmvz3LdpwBIsAoPVVrxyX+gY QNxoPKklhSnOA2dCVxOvu5u21tVA+UIjQAmxzZVlPgpjty/kjZP0CSjBPLbPpEda ckL43/XiBz0ch1lQ/rFdpmOrtvSLz0y1CxGJxjUN3HkNkQMepah3mKfc0HJ/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU7iZ2YKEHiD4xil3b2kMS4D72MOcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEyOTkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBAFZdNIDBAJZdVgDBAJZdYQw DQYJKoZIhvcNAQELBQADggEBAHT2pizqXRukR4UujkvwpJRB63+BnTHuTSELVpSA SStFxwMTF7wYwvIIjmezGnFm3mL3Ag1fBnRUcQ4m/g3NCBg94PkpHDxsG53x2oAn OvqLKbWu+Nkrb4poMpkkj/rl1tSyUN11M+EflrB7uNzOOWIpuXsg6bNJ/ntbk3rs 1mx+CeA75RG3qrTmyr64lI8cGjlWkhpTYzCEIRvB3snfymaY7TkyvXNQWfnsu+ZL ZUtGjPN5LgqYeVYLJe+6cCDmeMHLVHOGbW0IUzJ+3neNiMeJ+25iEGBHTRtV17WQ N4SsUD5Yw4w2wI8CSNNges0KcXVEUTp5IFe3QeNXBKUYK9E= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:00 2024 by rpki-client on console-fra.rpki-client.org