$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS206092.roa File: AS206092.roa (raw, json) Hash identifier: ckJFj7U9Vs3zl645vLmybd0DFj1HI/qPD0doD4SZjCk= Subject key identifier: 5E:28:7A:7A:60:F1:36:DB:1B:23:46:F9:B7:94:83:B5:E0:DC:88:3C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 01F0B95407EBD31C06FA517E95750E68E66E7B77 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS206092.roa Signing time: Tue 14 Jan 2025 10:53:51 +0000 ROA not before: Tue 14 Jan 2025 10:48:51 +0000 ROA not after: Tue 13 Jan 2026 10:53:51 +0000 asID: 206092 IP address blocks: 86.38.235.0/24 maxlen: 24 89.116.76.0/24 maxlen: 24 89.116.96.0/24 maxlen: 24 89.116.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 10:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f0:b9:54:07:eb:d3:1c:06:fa:51:7e:95:75:0e:68:e6:6e:7b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 14 10:48:51 2025 GMT Not After : Jan 13 10:53:51 2026 GMT Subject: CN=5E287A7A60F136DB1B2346F9B79483B5E0DC883C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f2:bc:31:de:72:a6:f3:ed:45:c9:26:f4:d5: b5:84:bb:bc:fe:e7:ee:2f:f5:59:af:3a:7d:65:d7: 2f:78:75:d1:38:3f:95:47:73:35:ac:69:ef:0f:c5: 1c:8e:46:db:0f:e3:82:de:2e:14:46:82:bc:27:29: e1:b0:91:7b:f4:fc:de:b6:ee:55:77:30:f3:89:1d: 3b:66:ae:63:b4:4e:6d:d6:c0:20:d4:b1:62:f1:16: 86:48:0b:2f:56:e5:d2:5d:af:8f:c2:ff:35:47:51: 7d:0f:a0:94:46:fb:4b:83:7f:08:8d:9f:2b:4f:f9: b3:39:0c:c5:3c:0a:66:50:16:9e:1b:09:12:29:cb: b3:49:ad:d6:82:55:fc:d4:9e:79:53:ec:66:9b:1b: a3:5b:51:7f:bc:f3:0d:5f:95:ee:1e:6a:e1:e8:9f: 04:ea:cc:39:37:58:97:66:7f:9d:14:35:48:86:92: e5:41:b7:42:9c:b3:68:64:fc:90:02:03:c9:82:77: 87:ab:f1:7a:f3:0e:29:61:91:98:e9:3f:ff:e7:73: a3:1e:20:35:cc:96:6b:44:69:83:3c:ac:f4:d0:be: 13:19:13:ca:a8:b9:4c:24:78:bf:38:c4:4e:eb:21: 45:7a:9b:d8:44:12:de:1c:60:f2:d5:e9:1a:48:70: cb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:28:7A:7A:60:F1:36:DB:1B:23:46:F9:B7:94:83:B5:E0:DC:88:3C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS206092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.235.0/24 89.116.76.0/24 89.116.96.0/24 89.116.123.0/24 Signature Algorithm: sha256WithRSAEncryption 23:ab:d7:98:ad:56:1a:17:70:3f:0c:b7:34:7f:0c:62:01:c8: 82:c4:ec:ca:3f:43:4c:3d:f3:bd:0e:e8:b8:1f:76:b5:30:a4: 25:eb:48:7a:02:45:92:76:08:66:d7:93:f0:0c:35:f4:7f:f0: 54:48:85:d7:0c:21:8d:b0:90:46:e9:7e:0d:8f:9d:a4:b3:5d: dc:7c:3f:62:b5:b4:ea:c5:a7:4d:bd:40:f6:f9:d0:bb:8c:00: 3d:02:bb:fa:7c:44:b8:10:e8:b9:a0:9a:09:c9:d2:ce:d2:7f: 0d:63:36:aa:d9:24:53:37:50:e2:a2:bc:54:f3:37:c9:d8:ad: d7:5b:51:be:1d:7c:95:1f:93:e9:e5:c3:11:94:11:94:d4:9c: 9d:8e:b2:94:0d:31:ac:6b:37:3d:45:71:4f:57:cb:84:0c:33: c9:50:cd:f5:29:1b:85:dc:ee:7f:4a:9b:f3:37:70:bf:da:67: 84:01:35:f3:f4:60:21:1a:b5:e9:7f:34:0c:97:e9:0d:e3:61: 41:ae:e3:b4:3e:76:ba:78:73:e9:95:21:26:79:e7:66:93:d4: 31:11:c3:fe:d1:08:8c:1d:fa:d9:66:d7:16:aa:cc:2b:d5:6b: 0b:40:1a:e4:c5:c0:52:40:79:2a:57:16:d4:71:56:fe:73:08: 21:81:5d:bf -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUAfC5VAfr0xwG+lF+lXUOaOZue3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAxMTQxMDQ4NTFaFw0yNjAxMTMxMDUzNTFaMDMxMTAvBgNV BAMTKDVFMjg3QTdBNjBGMTM2REIxQjIzNDZGOUI3OTQ4M0I1RTBEQzg4M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb8rwx3nKm8+1FySb01bWEu7z+ 5+4v9VmvOn1l1y94ddE4P5VHczWsae8PxRyORtsP44LeLhRGgrwnKeGwkXv0/N62 7lV3MPOJHTtmrmO0Tm3WwCDUsWLxFoZICy9W5dJdr4/C/zVHUX0PoJRG+0uDfwiN nytP+bM5DMU8CmZQFp4bCRIpy7NJrdaCVfzUnnlT7GabG6NbUX+88w1fle4eauHo nwTqzDk3WJdmf50UNUiGkuVBt0Kcs2hk/JACA8mCd4er8XrzDilhkZjpP//nc6Me IDXMlmtEaYM8rPTQvhMZE8qouUwkeL84xE7rIUV6m9hEEt4cYPLV6RpIcMuRAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUXih6emDxNtsbI0b5t5SDteDciDwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwNjA5Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAFYm6wMEAFl0TAMEAFl0 YAMEAFl0ezANBgkqhkiG9w0BAQsFAAOCAQEAI6vXmK1WGhdwPwy3NH8MYgHIgsTs yj9DTD3zvQ7ouB92tTCkJetIegJFknYIZteT8Aw19H/wVEiF1wwhjbCQRul+DY+d pLNd3Hw/YrW06sWnTb1A9vnQu4wAPQK7+nxEuBDouaCaCcnSztJ/DWM2qtkkUzdQ 4qK8VPM3ydit11tRvh18lR+T6eXDEZQRlNScnY6ylA0xrGs3PUVxT1fLhAwzyVDN 9Skbhdzuf0qb8zdwv9pnhAE18/RgIRq16X80DJfpDeNhQa7jtD52unhz6ZUhJnnn ZpPUMRHD/tEIjB362WbXFqrMK9VrC0Aa5MXAUkB5KlcW1HFW/nMIIYFdvw== -----END CERTIFICATE-----Generated at Sat Apr 5 03:56:40 2025 by rpki-client