$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209737.roa File: AS209737.roa (raw, json) Hash identifier: XvwAsYO/r+faPZkkK0d0Apep0I/+or8GO9AGk9nC1D8= Subject key identifier: A9:B2:D0:33:51:AF:BC:A8:34:5C:88:CF:AC:F5:31:CA:72:E8:84:00 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 05A6493F3C75FB45C86A841941796FE6214C84B5 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209737.roa Signing time: Fri 13 Dec 2024 13:53:48 +0000 ROA not before: Fri 13 Dec 2024 13:48:48 +0000 ROA not after: Fri 12 Dec 2025 13:53:48 +0000 asID: 209737 IP address blocks: 89.116.48.0/22 maxlen: 24 89.116.126.0/23 maxlen: 24 89.117.104.0/22 maxlen: 24 89.117.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 11 Apr 2025 08:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a6:49:3f:3c:75:fb:45:c8:6a:84:19:41:79:6f:e6:21:4c:84:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 13 13:48:48 2024 GMT Not After : Dec 12 13:53:48 2025 GMT Subject: CN=A9B2D03351AFBCA8345C88CFACF531CA72E88400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b1:b2:87:c5:2b:46:0f:4e:81:de:e1:35:a5: 6e:34:40:80:ae:83:92:ae:dd:14:87:a8:74:77:99: 61:ab:e3:35:5c:43:e9:d0:a8:de:36:68:e2:5c:b6: 3a:fe:aa:71:f4:96:15:ed:16:87:eb:4f:27:0b:cb: 2b:46:05:8a:a0:d4:e8:52:79:a1:70:1b:6f:89:dd: e7:0a:1a:14:ec:4b:d0:9b:9d:79:e1:5a:6f:72:2e: f2:03:6e:67:dc:ef:68:ca:53:2f:25:de:77:e4:ff: 43:8e:0f:6a:71:9b:2b:94:84:1c:3e:c0:c6:a4:e5: 13:90:ff:d3:65:3d:10:25:91:c1:97:de:cb:6f:bf: 77:fa:2d:8b:80:32:39:dc:65:0b:90:24:df:75:23: 22:95:91:a2:62:02:dd:a0:ba:4b:a3:9a:2d:92:6a: cf:7c:3e:69:b2:39:dc:e8:57:30:c1:19:17:00:7e: 3c:08:ca:85:cc:95:95:0d:50:1b:5a:47:a8:cb:7b: 33:a9:1a:36:ac:22:5f:d2:d4:f6:16:c2:dc:6d:b1: 95:e3:f1:3f:f9:1d:8c:ff:ae:c4:6a:c8:44:ad:c6: cc:65:40:8e:a8:6a:92:1b:93:2e:6a:89:02:f8:8b: 00:1a:b8:1f:fa:53:38:1c:4d:ed:70:f9:24:6b:37: 20:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B2:D0:33:51:AF:BC:A8:34:5C:88:CF:AC:F5:31:CA:72:E8:84:00 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.48.0/22 89.116.126.0/23 89.117.104.0/22 89.117.152.0/22 Signature Algorithm: sha256WithRSAEncryption 13:37:60:cf:ac:71:88:13:6a:f1:40:84:6a:b8:72:f1:0b:2f: ce:b4:bd:21:79:b7:0f:f5:b4:7f:5f:93:9b:43:66:e6:26:af: b0:bd:cb:18:96:3e:71:7c:6e:d2:65:56:00:5a:ab:25:9a:4a: 2f:3b:a2:c7:96:f0:30:9d:da:88:dc:e4:69:05:9b:18:df:9a: 81:5d:f7:73:fe:10:77:df:b2:d8:78:a9:a0:26:d4:e8:98:13: 76:a7:86:f5:98:53:74:e3:9a:cf:92:45:de:ef:5b:4f:0c:68: 43:d7:7c:0c:8f:de:6d:ac:c2:64:1e:a8:2f:e1:78:e2:f9:4b: 22:02:b8:ee:c9:23:4d:bc:02:9c:68:89:db:19:52:36:cd:64: a5:9a:a3:51:3f:31:89:51:bd:a0:bb:f8:de:d0:a3:dd:6c:38: 97:a6:3a:99:91:d0:ac:fb:05:39:f7:8c:9b:8d:a7:a0:e0:f8: 32:58:59:e4:65:75:8e:ef:f7:de:37:09:4c:94:6c:06:2e:69: 3d:84:24:94:1a:06:e7:57:b7:d4:e1:11:a4:cf:d3:08:de:21: f1:41:17:f0:be:2f:77:d8:31:10:19:8e:39:f4:02:6e:b0:98: 8d:9b:8a:db:9a:d3:ee:a6:64:6a:41:74:ac:fe:a7:3d:8b:8a: 0e:d3:43:87 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUBaZJPzx1+0XIaoQZQXlv5iFMhLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDEyMTMxMzQ4NDhaFw0yNTEyMTIxMzUzNDhaMDMxMTAvBgNV BAMTKEE5QjJEMDMzNTFBRkJDQTgzNDVDODhDRkFDRjUzMUNBNzJFODg0MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0sbKHxStGD06B3uE1pW40QICu g5Ku3RSHqHR3mWGr4zVcQ+nQqN42aOJctjr+qnH0lhXtFofrTycLyytGBYqg1OhS eaFwG2+J3ecKGhTsS9CbnXnhWm9yLvIDbmfc72jKUy8l3nfk/0OOD2pxmyuUhBw+ wMak5ROQ/9NlPRAlkcGX3stvv3f6LYuAMjncZQuQJN91IyKVkaJiAt2gukujmi2S as98PmmyOdzoVzDBGRcAfjwIyoXMlZUNUBtaR6jLezOpGjasIl/S1PYWwtxtsZXj 8T/5HYz/rsRqyEStxsxlQI6oapIbky5qiQL4iwAauB/6UzgcTe1w+SRrNyDJAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUqbLQM1GvvKg0XIjPrPUxynLohAAwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAll0MAMEAVl0fgMEAll1 aAMEAll1mDANBgkqhkiG9w0BAQsFAAOCAQEAEzdgz6xxiBNq8UCEarhy8QsvzrS9 IXm3D/W0f1+Tm0Nm5iavsL3LGJY+cXxu0mVWAFqrJZpKLzuix5bwMJ3aiNzkaQWb GN+agV33c/4Qd9+y2HipoCbU6JgTdqeG9ZhTdOOaz5JF3u9bTwxoQ9d8DI/ebazC ZB6oL+F44vlLIgK47skjTbwCnGiJ2xlSNs1kpZqjUT8xiVG9oLv43tCj3Ww4l6Y6 mZHQrPsFOfeMm42noOD4MlhZ5GV1ju/33jcJTJRsBi5pPYQklBoG51e31OERpM/T CN4h8UEX8L4vd9gxEBmOOfQCbrCYjZuK25rT7qZkakF0rP6nPYuKDtNDhw== -----END CERTIFICATE-----Generated at Thu Apr 10 13:07:57 2025 by rpki-client