$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa File: AS209043.roa (raw, json) Hash identifier: x5Y4p7sEkyj9tnE6BGU3TBI3monOc6t0n0Z8c7GQ2t8= Subject key identifier: 0C:17:38:1C:99:97:F3:B9:D0:79:73:E6:3D:8D:EC:13:60:70:44:55 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 4FCAAABAEDE4C737809B2B79B856DE4801520698 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa Signing time: Sat 28 Sep 2024 00:43:22 +0000 ROA not before: Sat 28 Sep 2024 00:38:22 +0000 ROA not after: Sat 27 Sep 2025 00:43:22 +0000 asID: 209043 IP address blocks: 89.116.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ca:aa:ba:ed:e4:c7:37:80:9b:2b:79:b8:56:de:48:01:52:06:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 28 00:38:22 2024 GMT Not After : Sep 27 00:43:22 2025 GMT Subject: CN=0C17381C9997F3B9D07973E63D8DEC1360704455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:58:fd:80:45:d7:8e:e1:88:d6:78:34:3b: 04:df:84:96:22:b2:9f:1f:3e:84:b7:6e:6b:f6:3a: 1b:2a:52:d0:41:a1:c1:ec:80:36:d9:c4:9f:6b:0a: 4f:78:8d:0b:1e:0c:3c:c7:07:4d:fd:ef:85:2e:bc: 51:92:3c:24:77:3a:5d:1a:62:ae:ab:48:56:f3:5c: ad:80:9a:3e:34:60:74:55:c4:b7:cd:3d:28:86:74: 2d:67:ac:3b:aa:95:a7:03:91:d7:45:66:92:bb:85: c1:02:71:f9:4a:f0:3c:c3:00:95:52:b2:66:30:67: 6e:6b:4c:49:b2:17:01:d8:74:c3:63:d4:50:82:35: ab:6f:a0:de:87:61:dc:d0:c9:87:2c:c9:82:0c:09: 0d:69:fe:db:88:60:86:dd:72:4c:a2:eb:fb:e6:0f: 21:39:1f:3f:d8:03:36:19:8b:a6:b1:64:be:d4:f6: 9e:d0:57:08:aa:fe:89:43:0a:eb:04:9a:c1:0f:9c: 7b:2f:a9:68:00:bc:ae:f9:e2:d2:0f:12:a9:57:a1: 6a:51:0e:42:b7:13:35:3d:b5:4a:3d:06:66:27:41: 30:88:75:3e:13:0d:13:e1:93:d0:6e:b2:68:87:b9: 96:22:ef:9c:26:34:cb:a7:4e:4e:10:fe:d9:20:d1: 90:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:17:38:1C:99:97:F3:B9:D0:79:73:E6:3D:8D:EC:13:60:70:44:55 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209043.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.137.0/24 Signature Algorithm: sha256WithRSAEncryption 54:3c:47:5a:68:af:9f:d5:48:d5:a8:a6:cc:6d:23:9f:33:24: 3a:1d:ee:a5:ae:06:76:34:46:c2:44:03:3c:65:5e:b5:b5:87: ea:e3:aa:73:41:35:89:91:21:90:5c:0c:75:48:da:d7:c8:8c: d4:91:58:38:d4:0c:a7:e9:45:03:b2:33:34:a5:a8:48:0a:02: b5:33:52:e5:60:7a:23:9a:85:b2:6b:03:0e:49:f9:d2:4b:63: eb:58:83:db:79:61:3c:7b:83:09:2f:70:60:af:d8:b5:b6:8f: af:bf:4f:bc:94:38:cd:f1:e2:8a:46:6b:e8:92:0c:dc:19:d1: 1f:a9:87:3c:e8:4f:de:ed:1f:56:40:70:14:ca:3d:5a:96:bf: 54:a7:43:c4:c2:f2:fe:c7:8d:af:1e:ef:1b:26:d8:e9:38:c2: 4b:18:b4:eb:29:7c:86:cd:ed:80:18:c3:b7:28:24:78:55:de: c0:67:f8:81:81:f8:bb:35:cb:b3:07:b1:0b:16:c8:d4:22:5e: ec:3d:6d:7e:9b:f6:f6:40:52:ef:f0:85:6c:f6:27:aa:80:33: 86:ae:59:96:6a:01:f5:f7:ba:c3:f9:b4:ae:3f:68:b8:3e:01: 93:c8:51:f4:12:98:8f:af:92:c1:bb:50:fc:96:47:14:d3:7d: 99:1a:14:d6 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUT8qquu3kxzeAmyt5uFbeSAFSBpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA5MjgwMDM4MjJaFw0yNTA5MjcwMDQzMjJaMDMxMTAvBgNV BAMTKDBDMTczODFDOTk5N0YzQjlEMDc5NzNFNjNEOERFQzEzNjA3MDQ0NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoHFj9gEXXjuGI1ng0OwTfhJYi sp8fPoS3bmv2OhsqUtBBocHsgDbZxJ9rCk94jQseDDzHB03974UuvFGSPCR3Ol0a Yq6rSFbzXK2Amj40YHRVxLfNPSiGdC1nrDuqlacDkddFZpK7hcECcflK8DzDAJVS smYwZ25rTEmyFwHYdMNj1FCCNatvoN6HYdzQyYcsyYIMCQ1p/tuIYIbdckyi6/vm DyE5Hz/YAzYZi6axZL7U9p7QVwiq/olDCusEmsEPnHsvqWgAvK754tIPEqlXoWpR DkK3EzU9tUo9BmYnQTCIdT4TDRPhk9BusmiHuZYi75wmNMunTk4Q/tkg0ZBHAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUDBc4HJmX87nQeXPmPY3sE2BwRFUwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTA0My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFl0iTANBgkqhkiG9w0B AQsFAAOCAQEAVDxHWmivn9VI1aimzG0jnzMkOh3upa4GdjRGwkQDPGVetbWH6uOq c0E1iZEhkFwMdUja18iM1JFYONQMp+lFA7IzNKWoSAoCtTNS5WB6I5qFsmsDDkn5 0ktj61iD23lhPHuDCS9wYK/YtbaPr79PvJQ4zfHiikZr6JIM3BnRH6mHPOhP3u0f VkBwFMo9Wpa/VKdDxMLy/seNrx7vGybY6TjCSxi06yl8hs3tgBjDtygkeFXewGf4 gYH4uzXLswexCxbI1CJe7D1tfpv29kBS7/CFbPYnqoAzhq5ZlmoB9fe6w/m0rj9o uD4Bk8hR9BKYj6+SwbtQ/JZHFNN9mRoU1g== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:22 2024 by rpki-client on console-ams.rpki-client.org