$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS133296.roa File: AS133296.roa (raw, json) Hash identifier: Lq6FRWml+wKgCUjBjPG2u9HVkBOd8zDrGaVINvqIqTQ= Subject key identifier: 20:DA:54:FE:28:CD:E2:09:5D:AB:A6:8C:5B:B9:9E:5D:C3:91:E5:22 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 10A961A21088C25940C0F556ED98341687E9F4A1 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS133296.roa Signing time: Wed 29 Nov 2023 22:04:53 +0000 ROA not before: Wed 29 Nov 2023 21:59:53 +0000 ROA not after: Wed 27 Nov 2024 22:04:53 +0000 asID: 133296 IP address blocks: 89.117.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 13:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a9:61:a2:10:88:c2:59:40:c0:f5:56:ed:98:34:16:87:e9:f4:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Nov 29 21:59:53 2023 GMT Not After : Nov 27 22:04:53 2024 GMT Subject: CN=20DA54FE28CDE2095DABA68C5BB99E5DC391E522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:aa:92:ae:f9:6c:0e:5e:6f:42:8e:53:8a:da: 55:79:53:57:a6:e5:c0:ba:ce:c3:a6:e0:8b:d5:5a: 55:f6:da:87:21:cb:d3:9b:d5:01:b0:59:9d:9d:63: f2:0c:b8:33:bb:64:07:fb:e7:b3:0b:c7:0d:7a:e9: d1:ab:39:1e:f3:4d:be:4a:dd:f2:da:8e:3e:6c:91: 79:e1:7d:65:82:d6:4d:6d:c4:36:b4:62:d3:66:14: ec:b6:a0:1e:81:72:30:71:4b:10:c2:71:5c:80:7e: 5f:b5:27:10:95:f0:93:f7:78:aa:46:26:8e:88:f6: b4:20:eb:d1:ff:96:39:70:2f:32:bc:d0:e0:1f:dc: 43:c9:f7:45:15:ec:1d:0f:0b:0a:ce:f3:01:c3:7c: 22:f5:27:50:96:97:b1:8e:5e:16:ff:b4:df:e9:64: 34:1c:c6:d5:62:15:ca:02:90:00:48:2b:d4:63:67: 29:fa:a1:1f:be:9b:f9:3d:5c:5f:fd:aa:75:8a:fa: 75:e4:f3:1b:d8:50:73:cb:80:91:2b:97:15:45:e8: 4f:98:4f:ec:90:e2:0a:8c:9b:6b:61:ec:aa:17:e5: 54:a0:39:b7:16:c8:2b:76:5e:a3:06:43:da:96:f4: ab:8a:c5:2d:42:a2:da:93:59:f2:de:24:83:f0:bb: 7b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DA:54:FE:28:CD:E2:09:5D:AB:A6:8C:5B:B9:9E:5D:C3:91:E5:22 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS133296.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.171.0/24 Signature Algorithm: sha256WithRSAEncryption 72:55:30:73:6f:3a:23:d1:bb:c9:ee:ac:88:5a:3d:0c:74:cd: 5a:2d:5e:0d:13:54:08:67:de:8b:7a:5f:38:18:a2:9e:c2:56: b5:23:82:26:1b:4d:3d:f0:38:27:8b:d0:b6:83:b6:8c:b7:31: 24:d5:29:86:11:ea:5f:85:48:2f:00:5d:7e:46:18:ed:14:42: 00:84:18:69:c0:f5:cd:16:97:48:77:ec:d7:d2:3a:ba:06:28: bd:56:63:52:81:f4:67:e5:c7:6f:89:5f:fc:4d:4d:61:3e:81: 4a:ad:f1:02:53:8f:fb:7f:fe:f7:a6:07:a6:f9:c9:bc:a7:26: c2:7c:d3:fd:af:2d:6e:d8:e4:88:01:9a:cc:3d:02:2f:f9:68: 9e:16:4e:5d:27:c1:b7:3b:61:be:58:07:16:81:fe:8e:27:b3: 8d:75:07:7b:ad:c7:3e:ff:1f:b0:39:cb:3e:49:d8:9e:a2:c2: 75:2b:d6:29:bd:4e:a4:d6:f7:fa:17:37:8b:24:29:46:f3:25: 9c:cc:d9:5a:d5:6f:11:3c:32:e8:c1:eb:d2:34:1d:69:fc:cf: 79:a6:d5:d9:da:ac:4f:a4:a9:32:1e:02:bb:97:10:cc:ca:35: 45:35:f0:b1:7d:57:07:3f:f4:36:51:cb:e6:5b:97:34:fb:1f: 6d:bd:8c:f1 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUEKlhohCIwllAwPVW7Zg0Fofp9KEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzExMjkyMTU5NTNaFw0yNDExMjcyMjA0NTNaMDMxMTAvBgNV BAMTKDIwREE1NEZFMjhDREUyMDk1REFCQTY4QzVCQjk5RTVEQzM5MUU1MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkqpKu+WwOXm9CjlOK2lV5U1em 5cC6zsOm4IvVWlX22ochy9Ob1QGwWZ2dY/IMuDO7ZAf757MLxw166dGrOR7zTb5K 3fLajj5skXnhfWWC1k1txDa0YtNmFOy2oB6BcjBxSxDCcVyAfl+1JxCV8JP3eKpG Jo6I9rQg69H/ljlwLzK80OAf3EPJ90UV7B0PCwrO8wHDfCL1J1CWl7GOXhb/tN/p ZDQcxtViFcoCkABIK9RjZyn6oR++m/k9XF/9qnWK+nXk8xvYUHPLgJErlxVF6E+Y T+yQ4gqMm2th7KoX5VSgObcWyCt2XqMGQ9qW9KuKxS1CotqTWfLeJIPwu3vJAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUINpU/ijN4gldq6aMW7meXcOR5SIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzEzMzI5Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl1qzANBgkqhkiG9w0B AQsFAAOCAQEAclUwc286I9G7ye6siFo9DHTNWi1eDRNUCGfei3pfOBiinsJWtSOC JhtNPfA4J4vQtoO2jLcxJNUphhHqX4VILwBdfkYY7RRCAIQYacD1zRaXSHfs19I6 ugYovVZjUoH0Z+XHb4lf/E1NYT6BSq3xAlOP+3/+96YHpvnJvKcmwnzT/a8tbtjk iAGazD0CL/lonhZOXSfBtzthvlgHFoH+jiezjXUHe63HPv8fsDnLPknYnqLCdSvW Kb1OpNb3+hc3iyQpRvMlnMzZWtVvETwy6MHr0jQdafzPeabV2dqsT6SpMh4Cu5cQ zMo1RTXwsX1XBz/0NlHL5luXNPsfbb2M8Q== -----END CERTIFICATE-----Generated at Sun May 19 15:45:22 2024 by rpki-client on console-fra.rpki-client.org