$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209737.roa File: AS209737.roa (raw, json) Hash identifier: qmJVVe1k5u09zFB6Lq9v33gAfRR8Ll397wJyUkul1Is= Subject key identifier: 5D:72:E0:CE:2E:DA:93:68:D3:2B:7D:91:E8:62:C9:A1:E5:91:9A:5D Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 12A012E8012184780A50368A5BC077C27A2D9858 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209737.roa Signing time: Fri 12 Jan 2024 13:53:20 +0000 ROA not before: Fri 12 Jan 2024 13:48:20 +0000 ROA not after: Fri 10 Jan 2025 13:53:20 +0000 asID: 209737 IP address blocks: 89.116.48.0/22 maxlen: 24 89.116.126.0/23 maxlen: 24 89.117.104.0/22 maxlen: 24 89.117.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a0:12:e8:01:21:84:78:0a:50:36:8a:5b:c0:77:c2:7a:2d:98:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 12 13:48:20 2024 GMT Not After : Jan 10 13:53:20 2025 GMT Subject: CN=5D72E0CE2EDA9368D32B7D91E862C9A1E5919A5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:60:3d:57:b6:20:ab:fe:21:4d:76:25:71:fa: 8e:f3:54:a5:09:4a:23:b3:c5:40:4d:25:4c:9b:3e: c0:f5:e0:ba:83:f7:b9:12:d7:fb:ed:29:8a:5f:ef: b9:a2:3a:2a:d9:e8:4e:71:58:bd:45:f1:39:51:54: d1:4e:70:0a:95:c1:ee:23:f1:36:00:13:91:4b:cf: 87:2b:65:46:96:c0:12:a8:82:29:ca:d7:9a:df:37: 75:93:f6:05:b0:5a:00:59:58:66:51:5a:00:94:d7: 65:78:a1:d2:28:11:e4:ed:78:d7:29:0e:ac:f9:0a: d5:5c:10:76:99:52:dc:68:6d:c8:94:8c:d7:bd:26: b1:05:22:46:14:f9:68:c9:7b:d4:1c:5b:09:ec:39: 70:f0:88:27:7b:39:4f:7d:93:0d:1b:cc:68:6a:43: 72:63:a9:94:ca:e3:ed:30:49:e4:c7:a3:15:38:5c: 3a:24:be:df:2c:0b:99:0c:f1:3a:24:84:71:8f:aa: 94:3c:3e:82:35:35:5b:1f:9b:7e:01:fb:4f:47:32: cb:e9:08:4b:77:da:7f:7a:e5:e3:3c:f3:c4:81:97: c0:0e:80:f1:f3:3e:3f:ee:34:ff:35:09:27:d5:06: 31:c9:98:85:f4:5a:09:01:b6:35:33:d4:cd:8f:71: 15:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:72:E0:CE:2E:DA:93:68:D3:2B:7D:91:E8:62:C9:A1:E5:91:9A:5D X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.48.0/22 89.116.126.0/23 89.117.104.0/22 89.117.152.0/22 Signature Algorithm: sha256WithRSAEncryption 47:64:f5:77:58:98:b6:bc:c1:ea:73:d6:60:5c:c1:99:3b:f4: 04:46:7d:5a:c5:c3:95:24:1c:b2:13:2e:7b:dd:a6:a3:db:88: c6:44:32:10:33:b2:98:cb:d7:61:3e:02:64:1e:b0:25:eb:56: e8:b3:fc:68:bf:5e:56:f8:6f:12:65:20:cf:e0:9a:06:51:aa: 82:35:d7:9a:05:d8:7a:1d:4b:ae:d9:1c:0c:3f:79:8c:8a:c6: 1e:ab:cd:18:c0:3e:60:a1:87:9f:73:5e:c8:d9:ec:50:f6:f7: a9:c6:63:cd:c9:e7:86:82:60:e3:8f:61:d8:65:14:ae:56:ab: 58:2c:ba:74:03:be:23:3e:4e:91:1b:b8:a6:ad:0a:da:76:69: d9:80:61:22:e7:84:f6:8a:83:d1:98:a9:be:40:55:3e:26:40: dc:18:73:67:69:d3:3f:84:e7:0b:9c:7c:96:78:ed:89:7d:45: 5f:30:f2:2f:c4:31:82:33:ff:38:5c:a4:cc:3d:01:ad:bc:30: 84:9e:56:f0:f9:aa:ef:6c:02:3d:03:4c:2f:d9:43:9a:67:f0: bd:d2:4f:f2:03:02:ec:2a:2a:c2:8d:89:a1:8b:74:20:7b:0f: 82:80:07:c0:ac:25:a5:88:5f:c6:ff:d5:63:d3:df:59:b2:49: 40:ea:59:99 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUEqAS6AEhhHgKUDaKW8B3wnotmFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMTIxMzQ4MjBaFw0yNTAxMTAxMzUzMjBaMDMxMTAvBgNV BAMTKDVENzJFMENFMkVEQTkzNjhEMzJCN0Q5MUU4NjJDOUExRTU5MTlBNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOYD1XtiCr/iFNdiVx+o7zVKUJ SiOzxUBNJUybPsD14LqD97kS1/vtKYpf77miOirZ6E5xWL1F8TlRVNFOcAqVwe4j 8TYAE5FLz4crZUaWwBKoginK15rfN3WT9gWwWgBZWGZRWgCU12V4odIoEeTteNcp Dqz5CtVcEHaZUtxobciUjNe9JrEFIkYU+WjJe9QcWwnsOXDwiCd7OU99kw0bzGhq Q3JjqZTK4+0wSeTHoxU4XDokvt8sC5kM8TokhHGPqpQ8PoI1NVsfm34B+09HMsvp CEt32n965eM888SBl8AOgPHzPj/uNP81CSfVBjHJmIX0WgkBtjUz1M2PcRXtAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUXXLgzi7ak2jTK32R6GLJoeWRml0wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAll0MAMEAVl0fgMEAll1 aAMEAll1mDANBgkqhkiG9w0BAQsFAAOCAQEAR2T1d1iYtrzB6nPWYFzBmTv0BEZ9 WsXDlSQcshMue92mo9uIxkQyEDOymMvXYT4CZB6wJetW6LP8aL9eVvhvEmUgz+Ca BlGqgjXXmgXYeh1LrtkcDD95jIrGHqvNGMA+YKGHn3NeyNnsUPb3qcZjzcnnhoJg 449h2GUUrlarWCy6dAO+Iz5OkRu4pq0K2nZp2YBhIueE9oqD0ZipvkBVPiZA3Bhz Z2nTP4TnC5x8lnjtiX1FXzDyL8QxgjP/OFykzD0BrbwwhJ5W8Pmq72wCPQNML9lD mmfwvdJP8gMC7Coqwo2JoYt0IHsPgoAHwKwlpYhfxv/VY9PfWbJJQOpZmQ== -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org