$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS206092.roa File: AS206092.roa (raw, json) Hash identifier: 2h/F8P58gfxCs0L5aE3rEEysTB1J7JV1xV6H86Y+8Nc= Subject key identifier: 76:6F:CD:3C:80:4B:BA:24:D6:90:3D:2F:DC:C3:82:6C:EE:D3:70:32 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 28EF37C43B31764EC2DBC9165A613782EF9DBC04 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS206092.roa Signing time: Tue 13 Feb 2024 10:05:12 +0000 ROA not before: Tue 13 Feb 2024 10:00:12 +0000 ROA not after: Tue 11 Feb 2025 10:05:12 +0000 asID: 206092 IP address blocks: 86.38.235.0/24 maxlen: 24 89.116.76.0/24 maxlen: 24 89.116.96.0/24 maxlen: 24 89.116.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 08 May 2024 12:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ef:37:c4:3b:31:76:4e:c2:db:c9:16:5a:61:37:82:ef:9d:bc:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Feb 13 10:00:12 2024 GMT Not After : Feb 11 10:05:12 2025 GMT Subject: CN=766FCD3C804BBA24D6903D2FDCC3826CEED37032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b0:06:d9:de:fa:db:7a:4c:34:f1:e4:3e:c0: 74:53:c6:50:91:d2:cf:68:36:6e:e8:cc:a8:03:51: c2:e8:4b:92:3f:04:f9:6e:09:3e:ae:a3:13:77:7b: 9a:0d:6e:35:37:fd:c1:3a:f7:40:17:cf:9b:2f:cd: 30:8f:4a:65:de:a8:8c:37:e8:67:62:a7:e3:01:54: c7:86:db:04:e0:1b:72:c7:da:a1:c9:ba:87:94:59: db:2c:54:fc:8e:47:d6:ff:10:79:9e:48:36:7b:03: 0d:d4:34:03:31:f8:72:33:d7:df:d7:c2:ae:a0:af: 68:07:66:71:71:60:5e:bb:46:0a:be:f2:f4:7a:81: 88:20:b5:9c:f5:86:57:59:71:58:bb:ef:f6:7e:2b: 1a:65:d1:6c:fc:72:49:e3:66:34:87:db:69:18:40: a3:b7:72:ae:e2:c3:f2:81:13:46:36:f0:77:98:55: d9:eb:b0:cd:79:4c:55:56:6a:e3:90:7e:69:98:56: f3:f6:3c:ab:4e:2c:bb:62:46:81:59:6d:18:6e:6e: d5:59:b6:d8:8d:a8:9a:e9:b9:71:9c:8f:91:ca:0f: b4:b9:f1:ee:94:be:ec:50:5a:9f:14:5f:64:5b:9e: 5e:89:30:05:e4:8c:73:b2:78:97:14:1b:4f:26:e9: 07:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6F:CD:3C:80:4B:BA:24:D6:90:3D:2F:DC:C3:82:6C:EE:D3:70:32 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS206092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.235.0/24 89.116.76.0/24 89.116.96.0/24 89.116.123.0/24 Signature Algorithm: sha256WithRSAEncryption 31:f3:4d:8c:60:ad:5d:e8:94:f3:00:9c:6b:50:d1:23:fd:ac: 70:ac:48:2a:bb:de:43:4e:41:b2:77:78:a2:60:dc:e6:6b:2f: 2c:4c:01:7c:92:9b:3f:73:27:24:08:ef:b4:2b:fb:5c:35:c6: fa:dc:01:09:60:b3:7c:3f:5d:a5:71:0a:e5:84:41:92:20:16: 1c:b7:d9:42:73:1e:e1:cd:82:21:10:fe:86:4c:0e:4e:70:af: fd:a2:3d:28:c5:27:9d:ae:b7:c3:48:9f:46:fc:7b:67:83:0a: 99:cc:54:b5:5d:31:07:58:c5:68:92:27:e8:d4:ae:f8:39:d7: 59:86:4c:85:b0:5e:12:fe:a5:9f:87:a3:2a:8d:f5:f9:c5:35: 52:42:c1:e8:1c:c6:99:05:31:54:52:f8:70:c9:1b:1a:71:af: 5c:09:b2:6c:51:6d:18:51:90:03:1e:25:57:fc:ad:03:c8:9b: 75:de:ea:87:cb:9b:99:4e:a8:60:db:c7:83:65:27:76:3c:ba: ea:8c:39:b5:29:da:e8:ed:21:12:ac:c1:e7:92:a5:e8:82:72: b6:6c:26:d0:9f:59:1f:1b:66:fc:73:32:bd:6f:25:62:9c:26: ad:c7:b5:34:02:a4:af:c3:17:d7:0e:02:7f:b7:99:4b:02:5a: 42:80:96:3c -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUKO83xDsxdk7C28kWWmE3gu+dvAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAyMTMxMDAwMTJaFw0yNTAyMTExMDA1MTJaMDMxMTAvBgNV BAMTKDc2NkZDRDNDODA0QkJBMjRENjkwM0QyRkRDQzM4MjZDRUVEMzcwMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZsAbZ3vrbekw08eQ+wHRTxlCR 0s9oNm7ozKgDUcLoS5I/BPluCT6uoxN3e5oNbjU3/cE690AXz5svzTCPSmXeqIw3 6Gdip+MBVMeG2wTgG3LH2qHJuoeUWdssVPyOR9b/EHmeSDZ7Aw3UNAMx+HIz19/X wq6gr2gHZnFxYF67Rgq+8vR6gYggtZz1hldZcVi77/Z+Kxpl0Wz8cknjZjSH22kY QKO3cq7iw/KBE0Y28HeYVdnrsM15TFVWauOQfmmYVvP2PKtOLLtiRoFZbRhubtVZ ttiNqJrpuXGcj5HKD7S58e6UvuxQWp8UX2Rbnl6JMAXkjHOyeJcUG08m6QdTAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUdm/NPIBLuiTWkD0v3MOCbO7TcDIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwNjA5Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFYm6wMEAFl0TAMEAFl0 YAMEAFl0ezANBgkqhkiG9w0BAQsFAAOCAQEAMfNNjGCtXeiU8wCca1DRI/2scKxI KrveQ05Bsnd4omDc5msvLEwBfJKbP3MnJAjvtCv7XDXG+twBCWCzfD9dpXEK5YRB kiAWHLfZQnMe4c2CIRD+hkwOTnCv/aI9KMUnna63w0ifRvx7Z4MKmcxUtV0xB1jF aJIn6NSu+DnXWYZMhbBeEv6ln4ejKo31+cU1UkLB6BzGmQUxVFL4cMkbGnGvXAmy bFFtGFGQAx4lV/ytA8ibdd7qh8ubmU6oYNvHg2Undjy66ow5tSna6O0hEqzB55Kl 6IJytmwm0J9ZHxtm/HMyvW8lYpwmrce1NAKkr8MX1w4Cf7eZSwJaQoCWPA== -----END CERTIFICATE-----Generated at Tue May 7 21:35:32 2024 by rpki-client on console-ams.rpki-client.org