$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa File: AS209242.roa (raw, json) Hash identifier: wYWRf8CXfrj/2+Do8nsRDky1lGkWl0XDyz8FTsbf0tU= Subject key identifier: 64:C0:0D:E3:D9:E5:AD:95:56:A0:04:3F:1C:9B:91:15:53:1B:78:1C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 282C7FF39586DD5EB514BE9A45E81E23A4C8D881 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa Signing time: Mon 08 Jan 2024 14:43:35 +0000 ROA not before: Mon 08 Jan 2024 14:38:35 +0000 ROA not after: Mon 06 Jan 2025 14:43:35 +0000 asID: 209242 IP address blocks: 86.38.214.0/24 maxlen: 24 89.116.46.0/23 maxlen: 24 89.116.161.0/24 maxlen: 24 89.116.180.0/24 maxlen: 24 89.116.250.0/24 maxlen: 24 89.116.252.0/24 maxlen: 24 89.117.84.0/24 maxlen: 24 89.117.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 07 May 2024 19:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:2c:7f:f3:95:86:dd:5e:b5:14:be:9a:45:e8:1e:23:a4:c8:d8:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 8 14:38:35 2024 GMT Not After : Jan 6 14:43:35 2025 GMT Subject: CN=64C00DE3D9E5AD9556A0043F1C9B9115531B781C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2d:ef:09:2c:e7:46:af:f0:43:95:dc:64:4d: 7f:74:5b:4c:56:f6:43:2d:f9:8a:eb:95:de:39:cf: dd:21:f4:fd:e0:3c:03:33:b6:10:6a:14:05:4f:37: 15:bc:b0:c8:53:9d:15:94:a2:de:9b:61:9e:d5:25: 37:d0:70:c7:70:ad:ce:38:60:aa:11:14:1c:e9:dd: 60:7e:c8:07:f8:4f:e0:b5:47:b6:bb:78:12:22:88: c8:80:a5:92:64:9c:db:8e:68:db:0a:08:ea:17:b3: 96:6b:db:7c:f7:3d:53:d5:2e:cc:f9:fb:e0:f8:35: 40:55:0c:f4:dd:14:6a:b2:b9:16:ca:e9:dc:ec:be: fd:ba:77:85:71:46:26:5a:bc:ad:94:39:6d:ff:17: 29:74:97:7c:9e:21:e2:6a:80:e6:f1:e0:8f:4e:3b: 08:1f:e2:24:d1:37:fc:34:2c:ae:df:d1:11:6b:ab: c4:c3:02:a1:dd:87:94:ea:1d:d5:85:c6:d3:34:0e: 82:72:b2:50:66:cb:c0:cb:b6:c0:ee:78:5f:ee:bd: 95:25:3b:52:de:d9:00:fd:8f:b4:76:33:02:9f:fa: d4:9b:92:d4:18:cc:ba:24:2e:24:48:4b:f8:dc:57: 50:66:38:a4:1f:1d:69:99:df:8d:27:96:b6:9e:d0: ff:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C0:0D:E3:D9:E5:AD:95:56:A0:04:3F:1C:9B:91:15:53:1B:78:1C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.214.0/24 89.116.46.0/23 89.116.161.0/24 89.116.180.0/24 89.116.250.0/24 89.116.252.0/24 89.117.84.0/24 89.117.112.0/24 Signature Algorithm: sha256WithRSAEncryption 88:80:54:5e:55:ec:01:27:c9:61:53:6b:82:7a:9b:48:39:be: 8a:e6:02:e8:a6:10:62:2f:90:02:b3:d6:b0:12:58:1d:4e:34: 75:28:71:9a:6a:7b:28:28:fd:ea:85:22:42:78:86:0a:77:74: 6d:e9:f5:b4:43:64:3a:91:d9:63:85:d2:b9:2f:05:52:ba:b0: b5:2a:04:8d:b6:33:5f:c1:64:41:aa:83:7c:17:ce:bc:64:64: a3:bc:b8:db:45:f9:5d:2d:2e:f8:8a:b7:72:e9:9a:60:22:7a: 65:8f:37:b7:eb:bd:fd:a4:1e:49:f2:87:67:c7:bc:f8:41:3a: 06:40:88:6f:6a:84:0e:fb:89:55:2d:f5:d7:ee:7c:ca:21:5f: c1:6c:be:b1:91:95:10:27:e3:a9:1a:7e:91:73:9a:26:c3:b4: 56:fd:b0:de:61:af:d9:a2:5d:7e:c8:61:0c:33:b6:a4:9a:60: 24:4a:e0:a2:d4:c6:bd:f1:24:9c:2f:26:74:8e:e8:db:54:4b: 8c:cd:bc:aa:5d:95:1f:0e:f8:9d:54:ca:12:c8:53:db:dd:a4: 58:4a:5b:8c:7e:97:a4:b1:24:0d:c0:68:d0:c2:17:5f:c4:0f: 1a:30:ed:e5:67:aa:f6:ec:4a:7f:10:cd:a6:95:cb:b7:67:f4: fd:58:4d:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUKCx/85WG3V61FL6aRegeI6TI2IEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMDgxNDM4MzVaFw0yNTAxMDYxNDQzMzVaMDMxMTAvBgNV BAMTKDY0QzAwREUzRDlFNUFEOTU1NkEwMDQzRjFDOUI5MTE1NTMxQjc4MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBLe8JLOdGr/BDldxkTX90W0xW 9kMt+Yrrld45z90h9P3gPAMzthBqFAVPNxW8sMhTnRWUot6bYZ7VJTfQcMdwrc44 YKoRFBzp3WB+yAf4T+C1R7a7eBIiiMiApZJknNuOaNsKCOoXs5Zr23z3PVPVLsz5 ++D4NUBVDPTdFGqyuRbK6dzsvv26d4VxRiZavK2UOW3/Fyl0l3yeIeJqgObx4I9O Owgf4iTRN/w0LK7f0RFrq8TDAqHdh5TqHdWFxtM0DoJyslBmy8DLtsDueF/uvZUl O1Le2QD9j7R2MwKf+tSbktQYzLokLiRIS/jcV1BmOKQfHWmZ340nlrae0P+nAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUZMAN49nlrZVWoAQ/HJuRFVMbeBwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTI0Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjBJBggrBgEFBQcBBwEB/wQ6MDgwNgQCAAEwMAMEAFYm1gMEAVl0LgMEAFl0 oQMEAFl0tAMEAFl0+gMEAFl0/AMEAFl1VAMEAFl1cDANBgkqhkiG9w0BAQsFAAOC AQEAiIBUXlXsASfJYVNrgnqbSDm+iuYC6KYQYi+QArPWsBJYHU40dShxmmp7KCj9 6oUiQniGCnd0ben1tENkOpHZY4XSuS8FUrqwtSoEjbYzX8FkQaqDfBfOvGRko7y4 20X5XS0u+Iq3cumaYCJ6ZY83t+u9/aQeSfKHZ8e8+EE6BkCIb2qEDvuJVS311+58 yiFfwWy+sZGVECfjqRp+kXOaJsO0Vv2w3mGv2aJdfshhDDO2pJpgJErgotTGvfEk nC8mdI7o21RLjM28ql2VHw74nVTKEshT292kWEpbjH6XpLEkDcBo0MIXX8QPGjDt 5Weq9uxKfxDNppXLt2f0/VhNyw== -----END CERTIFICATE-----Generated at Tue May 7 03:08:49 2024 by rpki-client on console-ams.rpki-client.org