$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa File: AS210441.roa (raw, json) Hash identifier: G966QhwHthT/yw8Y4tIvkgVw+bxtaYZJwSdaexRO9xU= Subject key identifier: D3:F8:D8:BF:15:CB:10:D1:56:4D:FB:50:E0:C8:EF:13:C4:0F:91:07 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6343B16C45FA337C1C1BED0C761DEC79D0D2B582 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa Signing time: Tue 31 Dec 2024 12:53:48 +0000 ROA not before: Tue 31 Dec 2024 12:48:48 +0000 ROA not after: Tue 30 Dec 2025 12:53:48 +0000 asID: 210441 IP address blocks: 86.38.184.0/23 maxlen: 24 86.38.186.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.172.0/23 maxlen: 24 89.116.210.0/23 maxlen: 24 89.117.88.0/22 maxlen: 24 89.117.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:b1:6c:45:fa:33:7c:1c:1b:ed:0c:76:1d:ec:79:d0:d2:b5:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 31 12:48:48 2024 GMT Not After : Dec 30 12:53:48 2025 GMT Subject: CN=D3F8D8BF15CB10D1564DFB50E0C8EF13C40F9107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c3:02:20:35:00:e2:51:77:c2:3b:74:1b:86: 59:ca:93:4a:68:79:ba:a1:88:6f:33:ee:77:5d:a1: b4:fc:11:d9:7a:a2:5e:7c:48:02:2d:85:c7:d6:6d: c2:c2:ee:5b:94:23:e1:83:72:3c:75:71:89:43:eb: bb:eb:c8:26:51:77:1f:7d:0d:6e:e7:8c:e3:b4:d4: 1d:e3:ea:b9:3b:63:22:00:dd:68:69:82:d3:eb:8d: 50:6a:69:b7:f4:e0:e1:76:16:61:9b:94:08:5f:7d: 36:0d:e6:4f:c8:52:e0:c8:e3:3c:08:4a:5c:c8:27: 94:4d:fd:a8:35:a0:53:53:59:98:4f:6c:5a:3a:6e: 10:29:b5:60:5d:c3:89:7d:e3:cb:c8:3c:d6:c4:e5: 6f:9b:8d:7a:91:94:73:26:e4:3b:c5:d5:57:8b:68: be:3f:b0:0c:77:ad:87:2b:44:36:5a:27:5a:df:8d: 9e:1b:08:79:aa:09:e4:1f:17:b2:d7:6a:93:44:50: b0:3b:ad:74:ea:ac:a3:f9:d9:5d:2e:90:22:c2:f1: 92:13:8e:cb:dc:8c:09:e4:5b:b4:9f:3e:15:90:02: 44:02:08:4b:39:ed:0f:01:03:23:55:94:04:29:48: 06:b2:ca:08:15:bb:56:8d:37:0f:ce:8d:a3:e5:ea: 67:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F8:D8:BF:15:CB:10:D1:56:4D:FB:50:E0:C8:EF:13:C4:0F:91:07 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/22 86.38.246.0/23 89.116.172.0/23 89.116.210.0/23 89.117.88.0/22 89.117.132.0/22 Signature Algorithm: sha256WithRSAEncryption 94:16:26:81:bd:bd:5c:3c:10:1f:a7:3d:49:e2:16:66:d0:c7: b6:6c:5a:a8:f6:e7:ea:da:0a:e0:32:0e:25:cb:24:08:37:41: d8:ca:e0:2a:56:d6:f3:27:4d:84:f2:ad:83:de:40:22:24:1a: ac:08:12:b7:93:37:7f:40:d5:27:59:d5:1a:3c:e8:d2:e3:a5: 73:0d:11:c4:49:bf:49:7b:98:96:16:f7:cf:3d:ee:ec:a7:6c: 58:10:a4:30:88:8a:18:a6:5f:82:47:b6:cf:23:66:ac:63:4d: 1f:76:dc:37:36:87:28:60:c0:20:9b:b3:31:ec:e3:6d:df:ad: 2e:dd:3f:ec:08:de:a8:3e:7c:f9:32:6e:58:25:aa:27:07:30: f9:64:65:5d:02:53:f2:52:ed:11:3d:80:92:30:a6:0c:91:11: d6:8a:1e:fd:53:1d:07:9a:22:0f:8e:0b:3c:ff:9b:80:b6:60: 22:14:5a:6b:79:59:2c:36:e6:bc:dd:e1:fd:0f:06:fa:89:7f: c2:77:b2:d3:49:a2:d9:c0:cd:61:c7:32:18:a8:39:79:e7:83: 12:d2:20:b2:42:58:3a:06:7f:da:2a:88:d0:fb:46:a1:1a:8b: 15:31:3a:ed:31:2c:5c:16:f0:ab:2f:19:4a:14:b9:18:e5:e1: 2e:ad:83:84 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUY0OxbEX6M3wcG+0Mdh3sedDStYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDEyMzExMjQ4NDhaFw0yNTEyMzAxMjUzNDhaMDMxMTAvBgNV BAMTKEQzRjhEOEJGMTVDQjEwRDE1NjRERkI1MEUwQzhFRjEzQzQwRjkxMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwwIgNQDiUXfCO3QbhlnKk0po ebqhiG8z7nddobT8Edl6ol58SAIthcfWbcLC7luUI+GDcjx1cYlD67vryCZRdx99 DW7njOO01B3j6rk7YyIA3WhpgtPrjVBqabf04OF2FmGblAhffTYN5k/IUuDI4zwI SlzIJ5RN/ag1oFNTWZhPbFo6bhAptWBdw4l948vIPNbE5W+bjXqRlHMm5DvF1VeL aL4/sAx3rYcrRDZaJ1rfjZ4bCHmqCeQfF7LXapNEULA7rXTqrKP52V0ukCLC8ZIT jsvcjAnkW7SfPhWQAkQCCEs57Q8BAyNVlAQpSAayyggVu1aNNw/OjaPl6mf9AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQU0/jYvxXLENFWTftQ4MjvE8QPkQcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMDQ0MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAlYmuAMEAVYm9gMEAVl0 rAMEAVl00gMEAll1WAMEAll1hDANBgkqhkiG9w0BAQsFAAOCAQEAlBYmgb29XDwQ H6c9SeIWZtDHtmxaqPbn6toK4DIOJcskCDdB2MrgKlbW8ydNhPKtg95AIiQarAgS t5M3f0DVJ1nVGjzo0uOlcw0RxEm/SXuYlhb3zz3u7KdsWBCkMIiKGKZfgke2zyNm rGNNH3bcNzaHKGDAIJuzMezjbd+tLt0/7AjeqD58+TJuWCWqJwcw+WRlXQJT8lLt ET2AkjCmDJER1ooe/VMdB5oiD44LPP+bgLZgIhRaa3lZLDbmvN3h/Q8G+ol/wney 00mi2cDNYccyGKg5eeeDEtIgskJYOgZ/2iqI0PtGoRqLFTE67TEsXBbwqy8ZShS5 GOXhLq2DhA== -----END CERTIFICATE-----Generated at Fri Apr 4 20:19:10 2025 by rpki-client