$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa File: AS210441.roa (raw, json) Hash identifier: 5HB6r3MY6W1Ua3p1vs02MvPFVQMi/cwWfY6wQ/afATU= Subject key identifier: BA:41:DC:EF:08:F3:09:2A:99:28:0D:26:0D:F3:01:C4:8B:96:BF:C9 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 36E4A08DEFDA1D00EA5874946F2583FF889C8DAB Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa Signing time: Tue 30 Jan 2024 12:41:17 +0000 ROA not before: Tue 30 Jan 2024 12:36:17 +0000 ROA not after: Tue 28 Jan 2025 12:41:17 +0000 asID: 210441 IP address blocks: 86.38.184.0/23 maxlen: 24 86.38.186.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.172.0/23 maxlen: 24 89.116.210.0/23 maxlen: 24 89.117.88.0/22 maxlen: 24 89.117.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 13:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e4:a0:8d:ef:da:1d:00:ea:58:74:94:6f:25:83:ff:88:9c:8d:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 30 12:36:17 2024 GMT Not After : Jan 28 12:41:17 2025 GMT Subject: CN=BA41DCEF08F3092A99280D260DF301C48B96BFC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:70:3b:9c:af:a4:78:be:63:35:9e:9a:32: 34:6b:85:24:03:d8:b2:8a:a5:50:05:b5:c2:a2:12: 8e:82:ba:b3:5a:f5:fa:e6:4f:9b:12:2b:d0:28:3a: 71:9c:0b:a4:f5:83:f2:75:32:e5:04:e2:85:8d:29: a7:01:73:e3:38:10:97:af:f5:be:97:66:b1:23:a9: 2e:6f:10:30:88:4a:cc:d6:40:af:98:65:c4:3b:9f: e3:1b:3f:0b:22:b5:75:ec:27:4d:65:87:13:26:59: b6:f4:7f:8d:84:78:73:98:47:d5:5a:30:3a:05:fe: 62:9b:7d:73:f7:d1:d1:67:c1:74:ec:2a:cd:a6:7b: 2f:cb:94:63:07:88:67:e6:f3:eb:5e:ca:80:ad:9d: 8d:37:80:64:c3:cf:1a:99:87:c4:b8:fe:1c:62:3a: 1e:be:8b:1d:72:00:a3:58:c3:1f:87:44:2e:da:df: ea:5c:ef:34:f9:4b:b3:50:7e:c7:77:b9:73:94:f8: 02:e5:7c:83:90:c9:bb:f8:63:1d:82:45:41:29:99: 9a:d4:78:ad:bb:14:56:ad:18:6f:90:c3:0f:09:ed: 3e:dd:47:90:be:1d:b6:8d:e6:17:2f:0e:11:a5:fe: d0:b2:84:8b:f7:36:06:1a:67:8f:81:58:71:4e:1b: 0d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:41:DC:EF:08:F3:09:2A:99:28:0D:26:0D:F3:01:C4:8B:96:BF:C9 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210441.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/22 86.38.246.0/23 89.116.172.0/23 89.116.210.0/23 89.117.88.0/22 89.117.132.0/22 Signature Algorithm: sha256WithRSAEncryption 32:5d:53:44:c5:1e:1c:ca:4f:44:c2:74:e6:dd:fb:c3:63:e1: bd:3a:8e:3e:ea:84:74:b4:6d:18:b1:67:f1:26:e3:e8:94:77: b3:17:e4:56:be:c1:58:e8:77:ee:df:76:46:f0:80:cb:45:d3: 9b:c4:61:25:d5:02:34:ec:83:19:f8:5f:7a:9e:4f:7e:c3:c2: b5:81:fd:68:b8:41:a1:bd:ab:22:60:3c:67:91:10:b1:81:ba: db:de:cd:18:a7:3a:91:ae:a2:0d:6e:f0:60:bd:21:c6:d5:a9: fd:67:96:df:31:2f:e3:a6:32:64:f7:90:bc:85:d5:19:ef:f7: af:4e:47:53:6a:fc:20:fc:f9:7b:28:d3:a8:17:42:51:f6:0f: e7:aa:21:67:84:9f:9e:60:00:a9:52:ff:ee:76:45:20:16:71: 42:f1:df:23:56:9e:e6:b4:3a:8b:a9:99:a9:7d:78:8e:11:6c: 3c:db:02:a1:58:84:ec:6c:21:ee:60:04:47:2e:b0:a6:35:bf: a6:5c:69:29:74:2b:8c:d1:f3:f1:11:da:e7:61:99:e6:4e:15: 8a:64:25:52:c0:22:55:61:5b:55:96:1b:5a:ce:14:5f:b7:ce: 4e:cd:72:4a:19:9c:3e:56:cc:a6:cd:10:23:90:65:24:28:cf: 86:3f:59:27 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUNuSgje/aHQDqWHSUbyWD/4icjaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMzAxMjM2MTdaFw0yNTAxMjgxMjQxMTdaMDMxMTAvBgNV BAMTKEJBNDFEQ0VGMDhGMzA5MkE5OTI4MEQyNjBERjMwMUM0OEI5NkJGQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw9nA7nK+keL5jNZ6aMjRrhSQD 2LKKpVAFtcKiEo6CurNa9frmT5sSK9AoOnGcC6T1g/J1MuUE4oWNKacBc+M4EJev 9b6XZrEjqS5vEDCISszWQK+YZcQ7n+MbPwsitXXsJ01lhxMmWbb0f42EeHOYR9Va MDoF/mKbfXP30dFnwXTsKs2mey/LlGMHiGfm8+teyoCtnY03gGTDzxqZh8S4/hxi Oh6+ix1yAKNYwx+HRC7a3+pc7zT5S7NQfsd3uXOU+ALlfIOQybv4Yx2CRUEpmZrU eK27FFatGG+Qww8J7T7dR5C+HbaN5hcvDhGl/tCyhIv3NgYaZ4+BWHFOGw0JAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUukHc7wjzCSqZKA0mDfMBxIuWv8kwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMDQ0MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAlYmuAMEAVYm9gMEAVl0 rAMEAVl00gMEAll1WAMEAll1hDANBgkqhkiG9w0BAQsFAAOCAQEAMl1TRMUeHMpP RMJ05t37w2PhvTqOPuqEdLRtGLFn8Sbj6JR3sxfkVr7BWOh37t92RvCAy0XTm8Rh JdUCNOyDGfhfep5PfsPCtYH9aLhBob2rImA8Z5EQsYG6297NGKc6ka6iDW7wYL0h xtWp/WeW3zEv46YyZPeQvIXVGe/3r05HU2r8IPz5eyjTqBdCUfYP56ohZ4SfnmAA qVL/7nZFIBZxQvHfI1ae5rQ6i6mZqX14jhFsPNsCoViE7Gwh7mAERy6wpjW/plxp KXQrjNHz8RHa52GZ5k4VimQlUsAiVWFbVZYbWs4UX7fOTs1yShmcPlbMps0QI5Bl JCjPhj9ZJw== -----END CERTIFICATE-----Generated at Sun May 19 17:04:57 2024 by rpki-client on console-ams.rpki-client.org