$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa File: AS13213.roa (raw, json) Hash identifier: 8TfY57ZbPAkdvPg2ydhr6Y4uKqs3WTlv/NZB80ApVDY= Subject key identifier: E2:C8:B1:AE:68:B0:3A:C2:C5:4A:EE:D9:3E:ED:69:01:41:0A:BD:99 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 34476249599F0887712936A8AA8646199FC7086E Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa Signing time: Tue 11 Jun 2024 09:41:24 +0000 ROA not before: Tue 11 Jun 2024 09:36:24 +0000 ROA not after: Tue 10 Jun 2025 09:41:24 +0000 asID: 13213 IP address blocks: 86.38.248.0/24 maxlen: 24 86.38.249.0/24 maxlen: 24 86.38.250.0/24 maxlen: 24 86.38.251.0/24 maxlen: 24 86.38.252.0/24 maxlen: 24 86.38.253.0/24 maxlen: 24 86.38.254.0/24 maxlen: 24 86.38.255.0/24 maxlen: 24 89.116.62.0/24 maxlen: 24 89.116.200.0/24 maxlen: 24 89.116.241.0/24 maxlen: 24 89.117.80.0/24 maxlen: 24 89.117.83.0/24 maxlen: 24 89.117.91.0/24 maxlen: 24 89.117.105.0/24 maxlen: 24 89.117.106.0/24 maxlen: 24 89.117.107.0/24 maxlen: 24 89.117.155.0/24 maxlen: 24 89.117.160.0/24 maxlen: 24 89.117.161.0/24 maxlen: 24 89.117.162.0/24 maxlen: 24 89.117.163.0/24 maxlen: 24 89.117.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:47:62:49:59:9f:08:87:71:29:36:a8:aa:86:46:19:9f:c7:08:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 11 09:36:24 2024 GMT Not After : Jun 10 09:41:24 2025 GMT Subject: CN=E2C8B1AE68B03AC2C54AEED93EED6901410ABD99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ca:8b:db:8e:4f:57:c7:21:f0:c1:18:07:8e: c9:aa:13:64:62:41:d1:9b:70:b8:da:83:5f:7b:17: f9:37:1c:ec:97:0e:f7:d1:5f:0a:13:79:85:b4:54: 84:6a:c8:35:42:6b:8f:3f:53:03:4d:e6:36:44:d7: a4:fb:4d:40:60:91:b2:41:b9:fc:60:11:d7:bf:7f: 00:c4:a7:eb:0f:8f:64:06:e4:c3:f8:b6:07:18:f1: 41:1c:72:02:2e:ab:f9:50:a6:f2:e2:19:58:1a:df: 9b:de:cb:c2:6b:d7:7b:ca:53:86:de:69:38:43:42: e3:87:90:26:92:51:af:21:53:ff:d8:f1:89:72:86: cc:43:ad:b4:16:64:11:d1:e5:9a:97:f5:b5:ec:ff: a3:1e:9c:ef:cc:e4:2e:d6:0a:be:49:ca:b0:0e:4f: a5:24:fd:02:fe:a5:a5:fe:bc:7a:74:b4:e7:d1:0d: 3f:03:11:ea:63:63:59:71:11:cb:ca:4c:16:9d:d5: e6:bd:a1:c5:37:41:9c:2a:4d:17:0c:b5:27:7d:18: 8c:c4:13:d6:68:89:f0:56:3b:8a:20:2f:18:a8:50: 03:d2:c2:c2:a2:c6:15:e9:97:ce:c2:a3:3f:98:8d: 26:81:aa:89:4c:0c:0f:5f:0d:92:93:2a:65:87:c7: 99:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C8:B1:AE:68:B0:3A:C2:C5:4A:EE:D9:3E:ED:69:01:41:0A:BD:99 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS13213.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.248.0/21 89.116.62.0/24 89.116.200.0/24 89.116.241.0/24 89.117.80.0/24 89.117.83.0/24 89.117.91.0/24 89.117.105.0-89.117.107.255 89.117.155.0/24 89.117.160.0/22 89.117.218.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:3b:2d:ab:b8:f2:89:80:20:7f:c7:5a:29:5e:54:83:c5:1e: 80:4d:5b:18:e2:13:78:e6:43:6b:4d:2b:93:5d:6c:a1:6c:c5: 96:7f:3b:a2:54:6e:84:2e:83:16:c4:6b:dc:89:f5:fc:45:f9: 85:07:0f:ed:1e:9c:13:af:cd:ac:2c:26:69:f4:a5:bf:95:1d: 47:18:45:6d:21:8d:96:15:16:11:1a:8c:24:67:03:43:b0:42: ef:a5:47:ae:36:60:00:2f:b5:d9:58:78:d9:f3:bf:06:6f:f2: 9e:b4:75:2b:33:86:b4:68:cb:73:38:d2:53:58:2c:d3:c0:4e: cf:0e:54:f0:a9:a4:0c:a1:ba:16:d1:ee:61:ed:ab:d4:85:e0: 06:0c:38:28:e4:14:32:62:f2:6a:93:0b:94:b0:3b:79:89:dc: 08:09:33:c1:5f:59:3e:0d:d4:cc:96:be:69:f7:b0:2b:6f:a3: be:ff:bd:0f:ec:00:a1:35:a1:76:5f:ef:43:16:19:68:0b:ec: 71:68:f2:30:b3:c2:a7:97:6b:49:db:22:f8:f5:23:17:33:93: 3d:20:f0:28:a4:99:f0:b3:1a:33:a8:8c:a2:0e:eb:01:9e:40: d7:a1:62:03:bf:46:46:3d:b0:b5:77:09:b7:f1:7b:4a:e0:22: 44:91:78:db -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUNEdiSVmfCIdxKTaoqoZGGZ/HCG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA2MTEwOTM2MjRaFw0yNTA2MTAwOTQxMjRaMDMxMTAvBgNV BAMTKEUyQzhCMUFFNjhCMDNBQzJDNTRBRUVEOTNFRUQ2OTAxNDEwQUJEOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIyovbjk9XxyHwwRgHjsmqE2Ri QdGbcLjag197F/k3HOyXDvfRXwoTeYW0VIRqyDVCa48/UwNN5jZE16T7TUBgkbJB ufxgEde/fwDEp+sPj2QG5MP4tgcY8UEccgIuq/lQpvLiGVga35vey8Jr13vKU4be aThDQuOHkCaSUa8hU//Y8YlyhsxDrbQWZBHR5ZqX9bXs/6MenO/M5C7WCr5JyrAO T6Uk/QL+paX+vHp0tOfRDT8DEepjY1lxEcvKTBad1ea9ocU3QZwqTRcMtSd9GIzE E9ZoifBWO4ogLxioUAPSwsKixhXpl87Coz+YjSaBqolMDA9fDZKTKmWHx5nNAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQU4sixrmiwOsLFSu7ZPu1pAUEKvZkwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEzMjEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQDVib4AwQAWXQ+AwQAWXTI AwQAWXTxAwQAWXVQAwQAWXVTAwQAWXVbMAwDBABZdWkDBAJZdWgDBABZdZsDBAJZ daADBABZddowDQYJKoZIhvcNAQELBQADggEBAJs7Lau48omAIH/HWileVIPFHoBN WxjiE3jmQ2tNK5NdbKFsxZZ/O6JUboQugxbEa9yJ9fxF+YUHD+0enBOvzawsJmn0 pb+VHUcYRW0hjZYVFhEajCRnA0OwQu+lR642YAAvtdlYeNnzvwZv8p60dSszhrRo y3M40lNYLNPATs8OVPCppAyhuhbR7mHtq9SF4AYMOCjkFDJi8mqTC5SwO3mJ3AgJ M8FfWT4N1MyWvmn3sCtvo77/vQ/sAKE1oXZf70MWGWgL7HFo8jCzwqeXa0nbIvj1 Ixczkz0g8CikmfCzGjOojKIO6wGeQNehYgO/RkY9sLV3Cbfxe0rgIkSReNs= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:00 2024 by rpki-client on console-fra.rpki-client.org