$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa File: AS209242.roa (raw, json) Hash identifier: +tHzsk0vwsF2EDgYKvdV2D4TeQ+D8tBko3WXQBBXy44= Subject key identifier: 4E:10:50:4E:D2:7D:F6:AD:CB:50:87:FF:58:7A:A1:91:06:08:86:52 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 28C3DD265A147F9D03B3516CF453F74557476285 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa Signing time: Tue 12 Nov 2024 10:53:57 +0000 ROA not before: Tue 12 Nov 2024 10:48:57 +0000 ROA not after: Tue 11 Nov 2025 10:53:57 +0000 asID: 209242 IP address blocks: 86.38.214.0/24 maxlen: 24 89.116.46.0/23 maxlen: 24 89.116.180.0/24 maxlen: 24 89.116.250.0/24 maxlen: 24 89.116.252.0/24 maxlen: 24 89.117.84.0/24 maxlen: 24 89.117.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c3:dd:26:5a:14:7f:9d:03:b3:51:6c:f4:53:f7:45:57:47:62:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Nov 12 10:48:57 2024 GMT Not After : Nov 11 10:53:57 2025 GMT Subject: CN=4E10504ED27DF6ADCB5087FF587AA19106088652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:45:fc:cc:54:4b:0c:22:72:cc:a6:df:7a:22: 49:fd:6a:62:86:a4:82:09:dc:74:cc:f7:20:c5:7c: 83:de:4e:a0:1b:85:3d:bc:4e:1b:a9:63:ab:00:b5: d3:e1:65:7d:ed:ef:c8:08:90:8d:cd:4e:08:1d:d2: dc:4d:fe:16:de:8f:ac:1d:82:49:5b:53:45:2f:5a: b9:67:b7:97:39:58:a4:2b:31:2c:8f:22:8d:f7:9f: 7b:21:97:7a:90:de:ed:ef:1f:13:14:c7:5c:38:db: 8b:e7:b7:c8:f8:f5:ba:37:c2:f5:62:e0:a2:47:bb: fa:8c:10:3c:22:0b:dd:4b:bd:91:ff:6b:8d:5b:ab: 76:3c:ac:fc:0b:e2:39:77:42:c0:ca:29:1b:18:24: d6:3b:c3:9e:f1:4a:44:00:35:2f:a1:86:c4:87:34: 03:d6:45:50:3f:d0:14:64:b3:64:40:c5:a3:84:bf: 94:00:f7:9d:8b:84:57:ca:98:4a:6f:75:05:00:37: 42:1b:a9:2c:26:ca:23:e0:2c:9b:ee:cd:03:af:4c: d4:86:8d:65:d0:6a:ee:d4:48:20:a2:ab:21:98:3a: 6d:f3:50:64:fd:a8:a6:5c:83:ad:06:aa:6a:a0:c2: 07:3e:94:85:f3:21:28:c6:41:cb:7f:82:7c:f3:3c: ab:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:10:50:4E:D2:7D:F6:AD:CB:50:87:FF:58:7A:A1:91:06:08:86:52 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.214.0/24 89.116.46.0/23 89.116.180.0/24 89.116.250.0/24 89.116.252.0/24 89.117.84.0/24 89.117.112.0/24 Signature Algorithm: sha256WithRSAEncryption 23:c1:18:b4:c5:c1:c9:e6:08:65:bd:b5:f4:1b:53:ef:ad:da: b5:f4:ea:01:fa:e1:3c:1d:f5:1c:41:6b:ee:44:39:1a:10:e3: 45:f7:cd:ee:23:71:48:49:45:f4:1d:99:e9:c7:4e:ce:0f:c8: f9:03:77:fa:53:d1:39:22:a5:12:81:d0:17:88:c3:b5:11:05: e8:ee:a2:36:f8:f2:18:7e:bb:27:1b:41:10:b7:9c:12:ca:e4: 86:bc:a7:2c:73:f3:35:1b:d3:44:42:df:b1:67:1f:4e:2c:1e: b7:7d:8a:8a:05:83:28:f6:5e:3e:4c:8a:ef:9f:7b:01:81:7d: f9:1d:21:42:ff:1c:90:c9:e3:61:34:2c:d1:7f:15:fe:76:9a: 60:b0:30:07:a5:26:96:f5:14:66:b8:87:5a:6b:e7:3a:a6:42: c7:dd:5e:27:64:36:0d:f1:cc:f0:59:e3:55:d6:38:ce:31:e2: 69:a9:56:41:b6:67:3a:0a:e2:ad:b2:af:fd:62:a4:25:a3:81: ac:7a:ce:06:d6:93:05:c4:69:0e:54:e7:0e:6c:af:48:11:49: d3:51:a7:7a:bf:25:9c:ec:8b:2c:9a:74:af:74:86:50:11:95: 11:63:75:2e:ea:17:97:68:a7:e2:2f:67:95:ca:46:a3:8c:89: c4:d3:c1:e5 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUKMPdJloUf50Ds1Fs9FP3RVdHYoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDExMTIxMDQ4NTdaFw0yNTExMTExMDUzNTdaMDMxMTAvBgNV BAMTKDRFMTA1MDRFRDI3REY2QURDQjUwODdGRjU4N0FBMTkxMDYwODg2NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmRfzMVEsMInLMpt96Ikn9amKG pIIJ3HTM9yDFfIPeTqAbhT28ThupY6sAtdPhZX3t78gIkI3NTggd0txN/hbej6wd gklbU0UvWrlnt5c5WKQrMSyPIo33n3shl3qQ3u3vHxMUx1w424vnt8j49bo3wvVi 4KJHu/qMEDwiC91LvZH/a41bq3Y8rPwL4jl3QsDKKRsYJNY7w57xSkQANS+hhsSH NAPWRVA/0BRks2RAxaOEv5QA952LhFfKmEpvdQUAN0IbqSwmyiPgLJvuzQOvTNSG jWXQau7USCCiqyGYOm3zUGT9qKZcg60Gqmqgwgc+lIXzISjGQct/gnzzPKsfAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUThBQTtJ99q3LUIf/WHqhkQYIhlIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTI0Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjBDBggrBgEFBQcBBwEB/wQ0MDIwMAQCAAEwKgMEAFYm1gMEAVl0LgMEAFl0 tAMEAFl0+gMEAFl0/AMEAFl1VAMEAFl1cDANBgkqhkiG9w0BAQsFAAOCAQEAI8EY tMXByeYIZb219BtT763atfTqAfrhPB31HEFr7kQ5GhDjRffN7iNxSElF9B2Z6cdO zg/I+QN3+lPROSKlEoHQF4jDtREF6O6iNvjyGH67JxtBELecEsrkhrynLHPzNRvT RELfsWcfTiwet32KigWDKPZePkyK7597AYF9+R0hQv8ckMnjYTQs0X8V/naaYLAw B6UmlvUUZriHWmvnOqZCx91eJ2Q2DfHM8FnjVdY4zjHiaalWQbZnOgrirbKv/WKk JaOBrHrOBtaTBcRpDlTnDmyvSBFJ01Gner8lnOyLLJp0r3SGUBGVEWN1LuoXl2in 4i9nlcpGo4yJxNPB5Q== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:44 2024 by rpki-client on console-ams.rpki-client.org