$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: GuEtunO1BGxO9QCUSA09n7e7/iSMYLcsFDIZ+A85zXM= Subject key identifier: DA:4C:50:94:E8:AD:B3:A6:26:E3:71:84:2F:D1:F9:F5:49:C1:66:E0 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 38B21EF4DA93E889804481D6E1EDED2986C0AEC2 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rpki.telecentras.lt/repo/lt-lrtc-ca/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa Signing time: Mon 09 Jan 2023 14:25:26 +0000 ROA not before: Mon 09 Jan 2023 14:20:26 +0000 ROA not after: Mon 08 Jan 2024 14:25:26 +0000 asID: 16509 IP address blocks: 86.38.232.0/24 maxlen: 24 89.116.141.0/24 maxlen: 24 89.116.244.0/24 maxlen: 24 89.117.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rpki.telecentras.lt/repo/lt-lrtc-ca/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rpki.telecentras.lt/repo/lt-lrtc-ca/3/B6E126F80FD68622BA733D13D8E6ABFABCEFBC95.crl rsync://rpki.telecentras.lt/repo/lt-lrtc-ca/3/B6E126F80FD68622BA733D13D8E6ABFABCEFBC95.mft rsync://rpki.ripe.net/repository/DEFAULT/tuEm-A_WhiK6cz0T2Oar-rzvvJU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 16 Mar 2023 04:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b2:1e:f4:da:93:e8:89:80:44:81:d6:e1:ed:ed:29:86:c0:ae:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 9 14:20:26 2023 GMT Not After : Jan 8 14:25:26 2024 GMT Subject: CN=DA4C5094E8ADB3A626E371842FD1F9F549C166E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:53:ec:dc:50:6d:61:f3:1a:e8:b6:a2:50:46: 2a:69:1f:f4:9c:3f:57:6f:da:db:b6:ea:18:f4:45: 8e:0c:30:8f:b1:90:8f:2d:cf:39:d8:95:85:2d:80: 35:66:e4:d4:b4:fb:43:1d:20:01:bf:bc:a2:86:4f: 5e:22:d5:1a:f0:a1:a2:b3:31:a4:e8:da:14:98:67: 31:cf:87:2b:89:f5:a3:ec:a0:64:b2:a2:bd:77:cc: 23:55:30:a6:d2:0c:77:22:b6:23:42:00:36:19:8b: 20:97:43:2e:bd:d1:a4:14:00:78:32:91:de:de:29: 37:d1:95:13:77:d6:97:f8:91:4e:b3:95:d5:79:e4: 53:f4:2c:76:ef:67:97:22:36:da:d7:9e:bf:ed:6f: 22:bb:f5:59:6e:35:2b:f6:6d:52:75:7e:a6:3d:22: 95:c9:b2:20:1e:fa:51:55:12:fe:77:eb:39:b6:b9: e9:f9:27:63:03:f7:fa:10:f5:6e:e7:28:b6:69:be: 7c:c9:a3:65:af:fe:8e:22:0f:9d:88:73:9d:c9:c3: 24:ee:c4:79:3b:34:fa:4b:bf:b0:36:54:75:f0:25: 5e:69:a1:a7:61:80:23:ef:32:ee:f1:32:04:02:e4: c8:ff:44:44:cb:49:54:d8:47:33:06:ed:c1:92:dd: 09:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:4C:50:94:E8:AD:B3:A6:26:E3:71:84:2F:D1:F9:F5:49:C1:66:E0 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.telecentras.lt/repo/lt-lrtc-ca/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.232.0/24 89.116.141.0/24 89.116.244.0/24 89.117.129.0/24 Signature Algorithm: sha256WithRSAEncryption cd:e7:38:51:75:58:14:da:8a:79:60:36:c8:26:03:ec:f8:72: fe:02:5d:07:30:64:18:13:15:59:ce:37:04:5a:cf:a2:44:53: 71:33:dd:d2:5a:f2:4e:61:35:d5:43:f0:02:2c:38:87:36:a9: 0c:08:70:2f:a5:5f:81:b2:af:e4:d2:17:84:9c:e3:63:b6:bf: 56:be:fd:84:b1:16:03:2a:f7:2c:40:db:3f:de:1f:b2:db:ca: 55:1c:b8:e0:95:9a:ea:e1:8a:8a:28:f8:84:17:5b:c1:4f:65: 70:64:16:d9:be:ee:8b:70:cb:b2:c2:36:51:66:39:ea:d0:d0: c7:a0:73:c7:f1:71:2f:72:f4:64:03:92:38:06:6f:72:37:e4: 91:b0:1c:22:38:e1:62:c7:04:59:f7:48:d4:0f:b2:fa:9b:6d: 7b:42:a3:b4:7d:e3:17:c4:0e:c3:b0:61:5c:8f:c1:73:6e:ed: 49:ce:5c:6c:cc:c6:04:f2:4c:5d:98:03:51:2e:dc:56:5f:2e: aa:39:b2:fc:a0:12:40:43:b6:3c:2e:11:f7:e9:4e:9f:ed:c4: b6:b2:14:cf:82:6a:86:e3:13:a1:ce:34:61:f6:c6:73:33:ea: 1c:10:62:da:fe:6d:5a:5c:51:58:2f:19:4d:cf:80:df:1d:2d: 21:e7:25:2e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUOLIe9NqT6ImARIHW4e3tKYbArsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzAxMDkxNDIwMjZaFw0yNDAxMDgxNDI1MjZaMDMxMTAvBgNV BAMTKERBNEM1MDk0RThBREIzQTYyNkUzNzE4NDJGRDFGOUY1NDlDMTY2RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+U+zcUG1h8xrotqJQRippH/Sc P1dv2tu26hj0RY4MMI+xkI8tzznYlYUtgDVm5NS0+0MdIAG/vKKGT14i1RrwoaKz MaTo2hSYZzHPhyuJ9aPsoGSyor13zCNVMKbSDHcitiNCADYZiyCXQy690aQUAHgy kd7eKTfRlRN31pf4kU6zldV55FP0LHbvZ5ciNtrXnr/tbyK79VluNSv2bVJ1fqY9 IpXJsiAe+lFVEv536zm2uen5J2MD9/oQ9W7nKLZpvnzJo2Wv/o4iD52Ic53JwyTu xHk7NPpLv7A2VHXwJV5poadhgCPvMu7xMgQC5Mj/RETLSVTYRzMG7cGS3QkDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU2kxQlOits6Ym43GEL9H59UnBZuAwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDB2BggrBgEFBQcB AQRqMGgwZgYIKwYBBQUHMAKGWnJzeW5jOi8vcnBraS50ZWxlY2VudHJhcy5sdC9y ZXBvL2x0LWxydGMtY2EvMy9EMzQ2MDY5NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5 OTQ4RUYyNzlDLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuGVXJzeW5j Oi8vci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvLzUyOGEyMThmLWFkMjgtNDBkMi1i ZDdmLTM1MGVhZGEzZDcwNS0wLzAvQVMxNjUwOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFYm6AMEAFl0 jQMEAFl09AMEAFl1gTANBgkqhkiG9w0BAQsFAAOCAQEAzec4UXVYFNqKeWA2yCYD 7Phy/gJdBzBkGBMVWc43BFrPokRTcTPd0lryTmE11UPwAiw4hzapDAhwL6VfgbKv 5NIXhJzjY7a/Vr79hLEWAyr3LEDbP94fstvKVRy44JWa6uGKiij4hBdbwU9lcGQW 2b7ui3DLssI2UWY56tDQx6Bzx/FxL3L0ZAOSOAZvcjfkkbAcIjjhYscEWfdI1A+y +ptte0KjtH3jF8QOw7BhXI/Bc27tSc5cbMzGBPJMXZgDUS7cVl8uqjmy/KASQEO2 PC4R9+lOn+3EtrIUz4JqhuMToc40YfbGczPqHBBi2v5tWlxRWC8ZTc+A3x0tIecl Lg== -----END CERTIFICATE-----Generated at Wed Mar 15 11:44:56 2023 by rpki-client on console-fra.rpki-client.org