$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209854.roa File: AS209854.roa (raw, json) Hash identifier: Vv/vH9pP3jNaFbds8zo1To3ZWYZEq5YvfN223W/Azvk= Subject key identifier: 28:0F:02:D2:3C:83:DD:04:2E:44:32:0D:2C:64:7C:38:9F:DB:B8:AC Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 09140403A5ED2ADC3ACABF1332A4F2E5AD30D38E Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209854.roa Signing time: Mon 08 Apr 2024 07:02:44 +0000 ROA not before: Mon 08 Apr 2024 06:57:44 +0000 ROA not after: Mon 07 Apr 2025 07:02:44 +0000 asID: 209854 IP address blocks: 89.117.40.0/24 maxlen: 24 89.117.41.0/24 maxlen: 24 89.117.42.0/24 maxlen: 24 89.117.43.0/24 maxlen: 24 89.117.44.0/24 maxlen: 24 89.117.45.0/24 maxlen: 24 89.117.46.0/24 maxlen: 24 89.117.47.0/24 maxlen: 24 89.117.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 May 2024 06:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:14:04:03:a5:ed:2a:dc:3a:ca:bf:13:32:a4:f2:e5:ad:30:d3:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Apr 8 06:57:44 2024 GMT Not After : Apr 7 07:02:44 2025 GMT Subject: CN=280F02D23C83DD042E44320D2C647C389FDBB8AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:30:58:f6:74:a5:0c:3c:2d:28:2e:cc:40:58: 82:22:7f:1b:de:dc:e0:bc:6b:53:14:c1:64:e5:09: 79:88:35:b3:e8:85:f1:7f:6f:63:3c:b4:a9:5c:23: ef:f9:8a:b6:d1:0b:39:dd:7e:cc:5c:40:d6:78:36: c0:58:f5:1a:ec:1e:46:83:83:9b:91:ab:00:90:58: 3d:d8:d6:07:5c:12:e8:bd:0e:27:9d:4a:60:23:08: 3a:18:20:88:b8:98:c2:1d:af:31:49:f8:ff:34:ab: de:5c:48:e2:50:1d:d5:22:68:ac:4e:04:ea:5a:27: 68:6a:7d:20:a4:3b:30:55:0e:da:9e:dd:f1:25:24: bb:21:f0:22:5e:05:90:4e:cf:25:f2:28:ce:f2:0e: d1:1c:c2:a8:1c:75:eb:c7:4f:82:1b:b9:78:cc:ae: d3:b7:99:b8:aa:69:ad:d0:18:d7:c3:e3:1d:72:9d: ca:84:1d:ee:88:4a:db:97:0e:bb:63:73:56:74:ce: 99:2f:b6:5f:50:e9:ad:a6:22:e2:04:b1:2b:77:41: a8:01:70:c6:d6:c0:e8:f4:69:d3:fe:d1:ce:a3:e1: d2:b5:9a:9a:5e:d4:01:0d:a7:71:0f:63:9b:b7:96: b5:19:42:43:29:2d:6c:99:ea:88:b5:ab:b6:aa:b6: 1d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0F:02:D2:3C:83:DD:04:2E:44:32:0D:2C:64:7C:38:9F:DB:B8:AC X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS209854.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.40.0/21 89.117.104.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:ef:72:df:11:fd:72:85:09:15:6e:1c:65:23:d8:81:b7:1a: 53:a0:5b:11:2d:63:34:f7:10:2b:ca:c0:73:e1:27:72:ed:d1: 19:a2:b1:f5:c2:d9:47:36:15:92:09:77:3d:8a:be:6d:31:69: de:ee:78:73:57:f7:62:0e:e1:4b:ce:63:3b:7e:75:b2:4b:cd: 10:be:56:64:11:14:96:94:13:81:43:12:56:ef:0a:c1:08:62: f5:c3:a2:e2:64:9a:c9:47:fb:24:6a:17:d0:71:ca:98:d5:85: fb:f3:1a:39:c2:d5:90:e9:ae:75:75:42:4d:32:59:62:1b:fe: f2:28:32:1f:1a:0b:ad:f1:de:02:94:93:7c:c5:f8:00:48:da: c3:72:4a:fa:27:62:33:0d:46:12:44:08:6e:53:83:f4:3a:c0: 38:9a:f8:03:ca:23:fc:94:5f:10:1b:6e:f8:9f:6c:c6:60:96: eb:86:c0:c5:b2:4c:3b:39:c0:4c:52:21:86:11:f3:2a:8c:8e: 42:d7:9a:92:28:de:d3:92:ee:5f:6b:8c:d2:ae:6a:8f:2c:6e: 6d:f1:4a:ce:66:e4:07:07:f1:74:73:7d:2a:a7:1f:86:70:2a: 7d:a7:d6:b5:c2:85:8c:b7:21:72:b0:eb:fe:b6:a1:51:bf:10: d0:93:d8:2d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUCRQEA6XtKtw6yr8TMqTy5a0w044wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA0MDgwNjU3NDRaFw0yNTA0MDcwNzAyNDRaMDMxMTAvBgNV BAMTKDI4MEYwMkQyM0M4M0REMDQyRTQ0MzIwRDJDNjQ3QzM4OUZEQkI4QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxMFj2dKUMPC0oLsxAWIIifxve 3OC8a1MUwWTlCXmINbPohfF/b2M8tKlcI+/5irbRCzndfsxcQNZ4NsBY9RrsHkaD g5uRqwCQWD3Y1gdcEui9DiedSmAjCDoYIIi4mMIdrzFJ+P80q95cSOJQHdUiaKxO BOpaJ2hqfSCkOzBVDtqe3fElJLsh8CJeBZBOzyXyKM7yDtEcwqgcdevHT4IbuXjM rtO3mbiqaa3QGNfD4x1yncqEHe6IStuXDrtjc1Z0zpkvtl9Q6a2mIuIEsSt3QagB cMbWwOj0adP+0c6j4dK1mppe1AENp3EPY5u3lrUZQkMpLWyZ6oi1q7aqth1pAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUKA8C0jyD3QQuRDINLGR8OJ/buKwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIwOTg1NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEA1l1KAMEAFl1aDANBgkq hkiG9w0BAQsFAAOCAQEACu9y3xH9coUJFW4cZSPYgbcaU6BbES1jNPcQK8rAc+En cu3RGaKx9cLZRzYVkgl3PYq+bTFp3u54c1f3Yg7hS85jO351skvNEL5WZBEUlpQT gUMSVu8KwQhi9cOi4mSayUf7JGoX0HHKmNWF+/MaOcLVkOmudXVCTTJZYhv+8igy HxoLrfHeApSTfMX4AEjaw3JK+idiMw1GEkQIblOD9DrAOJr4A8oj/JRfEBtu+J9s xmCW64bAxbJMOznATFIhhhHzKoyOQteakije05LuX2uM0q5qjyxubfFKzmbkBwfx dHN9KqcfhnAqfafWtcKFjLchcrDr/rahUb8Q0JPYLQ== -----END CERTIFICATE-----Generated at Wed May 8 18:12:00 2024 by rpki-client on console-fra.rpki-client.org