$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS198020.roa File: AS198020.roa (raw, json) Hash identifier: AORd9eAyTjnxu5xXgK/WOQg+cH4Ml42Br0nIy+1uwO4= Subject key identifier: D0:2C:7B:05:52:D9:F9:B9:F1:9F:7F:FA:BF:8E:AC:B3:D7:E2:DF:89 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6CD96DEC2A62BC36A27378C66E97DA506C4A2780 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS198020.roa Signing time: Fri 29 Nov 2024 10:43:28 +0000 ROA not before: Fri 29 Nov 2024 10:38:28 +0000 ROA not after: Fri 28 Nov 2025 10:43:28 +0000 asID: 198020 IP address blocks: 86.38.182.0/24 maxlen: 24 86.38.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:d9:6d:ec:2a:62:bc:36:a2:73:78:c6:6e:97:da:50:6c:4a:27:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Nov 29 10:38:28 2024 GMT Not After : Nov 28 10:43:28 2025 GMT Subject: CN=D02C7B0552D9F9B9F19F7FFABF8EACB3D7E2DF89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:2a:55:e4:4e:0f:9a:6d:ec:b9:32:aa:0f: 4a:ec:0d:53:6a:d8:0e:ca:6a:23:3f:b1:6d:23:6b: 26:ef:68:b5:6a:2e:ff:f7:5d:ea:10:a8:43:05:9d: b8:35:d5:5e:31:04:e5:96:24:1b:ea:94:80:e6:40: a7:69:97:e6:45:73:a1:ea:b3:9f:05:69:be:5c:a1: 6d:2a:c9:e7:89:3f:e8:50:de:03:6a:f8:f6:24:42: f3:84:66:2e:3c:11:91:a5:6c:2c:83:23:9e:80:91: 98:04:ec:4b:95:d0:26:56:f0:bf:4e:7a:85:58:93: e8:29:70:5c:48:d2:3f:c2:09:8a:d7:e2:bc:64:0b: 76:6a:59:8b:7b:9e:6e:23:61:55:43:11:fe:7e:df: c7:9f:31:ab:ae:5a:c7:ee:34:88:b0:57:e3:ed:db: 34:cc:b6:4e:3e:43:43:55:56:95:d4:37:f9:d6:0a: 7e:c1:89:ec:c6:2e:da:cc:06:e2:e1:5b:68:ab:7e: 90:6b:da:57:8e:00:26:c7:da:2a:b7:b1:fd:52:a7: 83:b8:59:11:78:1e:ef:9a:fe:96:6e:b4:b3:8f:cc: 78:20:d8:0a:26:20:30:a1:8c:d4:b8:cd:9b:d7:a4: a7:7f:ba:51:c4:3f:43:a5:a7:69:07:df:d2:84:f7: e9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2C:7B:05:52:D9:F9:B9:F1:9F:7F:FA:BF:8E:AC:B3:D7:E2:DF:89 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS198020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.182.0/24 86.38.238.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:7a:f2:2c:41:a0:44:9e:fe:04:50:a5:1b:53:46:b4:83:3c: 7c:a7:ed:77:d4:d2:ca:b3:23:5d:fa:33:5b:24:63:f2:f4:45: 52:96:37:47:5a:bc:05:5a:7e:dc:f9:2a:3f:d1:5c:22:ed:30: 00:56:72:6a:88:ed:db:b2:fc:06:4e:d2:44:16:a1:e7:86:62: 45:1b:e9:c4:ec:33:8d:c6:5d:bf:0c:1f:03:3b:5c:0a:7e:5f: b4:d9:66:33:50:a9:e6:af:6d:ef:97:c0:74:95:2b:8a:82:f2: 11:72:32:58:15:16:b9:e1:fd:2b:41:24:53:03:29:a1:1a:b1: 39:be:0a:5a:61:43:f4:03:f5:99:e6:51:4e:e8:12:15:09:5c: 84:72:ba:1a:ad:ca:f9:ae:0f:86:10:69:c1:56:f2:d0:ad:d7: 1e:a4:a4:df:5f:45:39:4b:3f:93:55:8d:73:74:41:b9:12:a6: 7d:09:72:5c:bf:ab:87:9d:bf:8b:03:63:f9:2b:7c:ec:2c:3c: 34:6c:ea:b0:23:1d:cf:b4:23:bf:98:ae:83:b2:5b:94:68:d5: df:81:de:06:9e:d4:8e:9c:f8:f2:48:25:a6:50:48:67:73:7d: 4b:52:34:32:d8:ac:d3:53:29:fb:4e:8e:bb:77:8e:a4:76:a7: 22:32:00:4e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUbNlt7CpivDaic3jGbpfaUGxKJ4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDExMjkxMDM4MjhaFw0yNTExMjgxMDQzMjhaMDMxMTAvBgNV BAMTKEQwMkM3QjA1NTJEOUY5QjlGMTlGN0ZGQUJGOEVBQ0IzRDdFMkRGODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyWipV5E4Pmm3suTKqD0rsDVNq 2A7KaiM/sW0jaybvaLVqLv/3XeoQqEMFnbg11V4xBOWWJBvqlIDmQKdpl+ZFc6Hq s58Fab5coW0qyeeJP+hQ3gNq+PYkQvOEZi48EZGlbCyDI56AkZgE7EuV0CZW8L9O eoVYk+gpcFxI0j/CCYrX4rxkC3ZqWYt7nm4jYVVDEf5+38efMauuWsfuNIiwV+Pt 2zTMtk4+Q0NVVpXUN/nWCn7BiezGLtrMBuLhW2irfpBr2leOACbH2iq3sf1Sp4O4 WRF4Hu+a/pZutLOPzHgg2AomIDChjNS4zZvXpKd/ulHEP0Olp2kH39KE9+lfAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQU0Cx7BVLZ+bnxn3/6v46ss9fi34kwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzE5ODAyMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFYmtgMEAFYm7jANBgkq hkiG9w0BAQsFAAOCAQEAT3ryLEGgRJ7+BFClG1NGtIM8fKftd9TSyrMjXfozWyRj 8vRFUpY3R1q8BVp+3PkqP9FcIu0wAFZyaojt27L8Bk7SRBah54ZiRRvpxOwzjcZd vwwfAztcCn5ftNlmM1Cp5q9t75fAdJUrioLyEXIyWBUWueH9K0EkUwMpoRqxOb4K WmFD9AP1meZRTugSFQlchHK6Gq3K+a4PhhBpwVby0K3XHqSk319FOUs/k1WNc3RB uRKmfQlyXL+rh52/iwNj+St87Cw8NGzqsCMdz7Qjv5iug7JblGjV34HeBp7Ujpz4 8kglplBIZ3N9S1I0Mtis01Mp+06Ou3eOpHanIjIATg== -----END CERTIFICATE-----Generated at Sat Apr 5 00:43:38 2025 by rpki-client