$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: H8SNdo7/qRDQkhd7stcJ09VRuKVyJaE3eqQgJYS/zVA= Subject key identifier: 96:21:91:55:C7:1E:AE:78:1A:5D:B1:96:44:14:E2:AD:C3:80:9E:8E Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6366BC56D184DD84686C8DA8D84FB139FC511436 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa Signing time: Thu 07 Mar 2024 12:51:17 +0000 ROA not before: Thu 07 Mar 2024 12:46:17 +0000 ROA not after: Thu 06 Mar 2025 12:51:17 +0000 asID: 14618 IP address blocks: 86.38.232.0/24 maxlen: 24 89.116.141.0/24 maxlen: 24 89.116.244.0/24 maxlen: 24 89.117.15.0/24 maxlen: 24 89.117.28.0/24 maxlen: 24 89.117.81.0/24 maxlen: 24 89.117.129.0/24 maxlen: 24 89.117.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Apr 2024 12:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:66:bc:56:d1:84:dd:84:68:6c:8d:a8:d8:4f:b1:39:fc:51:14:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Mar 7 12:46:17 2024 GMT Not After : Mar 6 12:51:17 2025 GMT Subject: CN=96219155C71EAE781A5DB1964414E2ADC3809E8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:36:a2:1e:0e:16:d4:47:f4:df:c3:6c:c0:32: e9:4c:7d:05:23:75:72:3e:41:9c:44:2d:56:c2:29: 52:6b:14:a5:05:fb:b9:77:c0:07:e6:93:4a:5b:1b: 50:a2:76:5b:e9:a4:e2:b5:85:54:e2:11:ac:67:29: b0:a3:89:63:2e:87:c5:1b:86:26:17:43:aa:78:7b: ae:54:31:96:03:7e:4f:11:b0:19:19:20:d7:2f:17: 38:68:a2:82:1f:61:95:6a:ee:84:50:0c:9a:7d:d0: 6a:6f:8e:67:8f:60:f6:8a:a0:f7:ba:f9:ec:c9:fa: b4:f8:66:d0:3b:1c:3e:2a:2f:c6:30:ad:c9:9a:87: 35:7c:ad:cb:1d:41:1f:26:e0:c9:8c:8c:43:58:de: 91:d8:2e:52:a0:55:d0:20:81:13:65:4a:17:e6:59: 39:2c:49:52:ac:8b:5c:61:53:5a:a5:52:52:60:68: cf:92:31:a7:68:83:58:a0:8a:05:9b:82:ea:bf:a3: 90:f3:2c:46:44:02:ea:fb:b6:1d:ce:2b:19:38:f5: 0d:c5:7c:82:84:3f:ba:3a:a8:6b:d6:d5:64:df:57: ea:6f:57:18:2d:cc:57:50:7c:b5:b5:89:70:70:c1: 0b:a9:14:44:eb:d4:e4:0e:20:06:33:6f:4b:fa:06: f1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:21:91:55:C7:1E:AE:78:1A:5D:B1:96:44:14:E2:AD:C3:80:9E:8E X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.232.0/24 89.116.141.0/24 89.116.244.0/24 89.117.15.0/24 89.117.28.0/24 89.117.81.0/24 89.117.129.0/24 89.117.153.0/24 Signature Algorithm: sha256WithRSAEncryption 28:a6:79:59:de:de:52:04:a4:8d:ba:c6:30:57:ab:4c:06:69: 52:84:35:6a:58:85:7f:ea:c5:db:18:c8:de:dc:eb:76:56:44: 29:ad:4a:93:15:ee:ff:30:a1:5a:74:5b:df:93:43:4a:5e:1f: 18:d7:2f:95:c8:96:c1:b0:a6:39:cf:bb:e3:68:13:67:50:6f: d6:97:6e:8a:59:b0:8c:b8:92:f4:ae:4e:04:63:0f:f5:bd:10: 26:ee:b0:6a:b6:c8:1b:62:79:7d:b7:e6:f6:73:fb:36:70:ff: 34:29:8e:99:76:c1:ce:46:03:2a:f7:cc:66:00:0f:46:ca:d5: d2:d8:34:9f:56:43:70:40:60:c5:48:61:95:cb:94:07:3d:8f: 4b:0c:e0:b1:9d:3d:05:22:b4:27:d0:b7:ce:42:ef:83:57:c9: d3:4f:47:43:b2:35:fa:d0:67:fa:dd:e7:d8:34:1f:34:54:a3: f6:49:4f:a0:11:eb:9a:64:b5:45:63:de:df:a0:1c:7d:7e:0a: d9:56:7c:51:8e:42:ce:61:72:8c:b3:92:88:ca:6c:76:31:39: 53:b3:49:4e:44:37:fb:77:19:40:c7:9f:49:70:f6:92:be:cc: af:dd:db:68:8a:31:77:84:36:8a:94:73:65:c9:d8:67:8c:29: e9:8a:b5:9c -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIUY2a8VtGE3YRobI2o2E+xOfxRFDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAzMDcxMjQ2MTdaFw0yNTAzMDYxMjUxMTdaMDMxMTAvBgNV BAMTKDk2MjE5MTU1QzcxRUFFNzgxQTVEQjE5NjQ0MTRFMkFEQzM4MDlFOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtNqIeDhbUR/Tfw2zAMulMfQUj dXI+QZxELVbCKVJrFKUF+7l3wAfmk0pbG1CidlvppOK1hVTiEaxnKbCjiWMuh8Ub hiYXQ6p4e65UMZYDfk8RsBkZINcvFzhoooIfYZVq7oRQDJp90GpvjmePYPaKoPe6 +ezJ+rT4ZtA7HD4qL8YwrcmahzV8rcsdQR8m4MmMjENY3pHYLlKgVdAggRNlShfm WTksSVKsi1xhU1qlUlJgaM+SMadog1igigWbguq/o5DzLEZEAur7th3OKxk49Q3F fIKEP7o6qGvW1WTfV+pvVxgtzFdQfLW1iXBwwQupFETr1OQOIAYzb0v6BvH/AgMB AAGjggJYMIICVDAdBgNVHQ4EFgQUliGRVccerngaXbGWRBTircOAno4wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE0NjE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAViboAwQAWXSNAwQAWXT0 AwQAWXUPAwQAWXUcAwQAWXVRAwQAWXWBAwQAWXWZMA0GCSqGSIb3DQEBCwUAA4IB AQAopnlZ3t5SBKSNusYwV6tMBmlShDVqWIV/6sXbGMje3Ot2VkQprUqTFe7/MKFa dFvfk0NKXh8Y1y+VyJbBsKY5z7vjaBNnUG/Wl26KWbCMuJL0rk4EYw/1vRAm7rBq tsgbYnl9t+b2c/s2cP80KY6ZdsHORgMq98xmAA9GytXS2DSfVkNwQGDFSGGVy5QH PY9LDOCxnT0FIrQn0LfOQu+DV8nTT0dDsjX60Gf63efYNB80VKP2SU+gEeuaZLVF Y97foBx9fgrZVnxRjkLOYXKMs5KIymx2MTlTs0lORDf7dxlAx59JcPaSvsyv3dto ijF3hDaKlHNlydhnjCnpirWc -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:47 2024 by rpki-client on console-ams.rpki-client.org