$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa File: AS210443.roa (raw, json) Hash identifier: d97Ib3YPFYj4nNppfpWhIJMlARMIYWF1MFff3LeQ3gg= Subject key identifier: 26:C4:71:6E:2C:12:6E:16:4E:61:61:7C:F9:A9:AA:92:88:41:73:2A Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 4366E7EC2B042A966DB3C299520C303EE4A4FD5D Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa Signing time: Tue 31 Dec 2024 12:53:48 +0000 ROA not before: Tue 31 Dec 2024 12:48:48 +0000 ROA not after: Tue 30 Dec 2025 12:53:48 +0000 asID: 210443 IP address blocks: 86.38.184.0/23 maxlen: 24 86.38.186.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:66:e7:ec:2b:04:2a:96:6d:b3:c2:99:52:0c:30:3e:e4:a4:fd:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 31 12:48:48 2024 GMT Not After : Dec 30 12:53:48 2025 GMT Subject: CN=26C4716E2C126E164E61617CF9A9AA928841732A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:3a:1e:81:9b:9a:29:41:b7:6b:8d:55:09: eb:78:f2:4f:d8:97:c3:a4:23:a3:43:50:fb:23:06: 21:20:c4:8a:7d:df:3e:00:66:a1:c2:93:73:2b:1f: 83:74:55:86:af:75:61:4a:cb:40:cd:a3:2b:cf:aa: 7a:96:51:90:97:a7:93:cd:e1:8d:fd:7a:4f:40:c7: 2d:e4:5e:7d:a5:41:f1:02:fe:63:ff:61:6d:18:9b: 8f:71:16:1b:86:27:e6:06:cc:0e:6c:b3:cb:23:a1: 2e:a0:24:81:ba:aa:e3:10:13:30:c7:67:78:90:5f: 05:b7:54:f2:da:cc:35:04:9e:ce:c3:e3:1b:6a:e9: 24:f5:6f:8c:10:8d:ba:54:14:aa:c8:9c:cc:0c:bd: 8c:53:6b:a0:c5:1f:0b:2d:c5:ea:0c:c6:69:21:c5: fb:24:b0:50:1a:c9:3a:48:fc:c9:90:b3:64:54:c4: 0c:bf:df:39:21:be:a5:78:d1:a4:66:ea:da:81:99: 77:a4:fd:3a:1c:e4:e2:ba:b2:f1:8b:65:21:a7:02: ef:ab:5b:6b:18:95:4b:34:84:f1:86:4e:5a:73:57: 7a:51:17:76:f9:f5:03:22:cd:15:1e:b3:91:63:f3: ed:33:ce:2e:6c:59:45:c3:80:d7:72:37:e2:8c:09: 42:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C4:71:6E:2C:12:6E:16:4E:61:61:7C:F9:A9:AA:92:88:41:73:2A X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/22 86.38.246.0/23 89.116.210.0/23 Signature Algorithm: sha256WithRSAEncryption 56:28:5d:b9:84:56:00:df:8f:fd:1f:df:66:b3:30:10:65:4c: c7:a1:8d:ad:aa:4b:29:51:d7:14:42:c1:6f:e1:01:e1:00:b2: 06:44:dc:27:8f:7a:a2:65:45:64:9b:57:a5:11:68:74:03:8b: 53:78:0c:f8:3a:c3:b9:b5:76:90:fa:6e:35:4a:2b:e3:25:7e: 74:2f:7b:13:de:b1:9c:1c:4e:b2:12:4d:0d:2d:a1:0c:09:09: d4:5e:a5:11:10:b3:cb:0e:eb:5d:df:c9:29:10:65:ad:fa:56: ae:d0:bc:e1:74:03:cd:86:98:5b:c0:97:fa:f4:59:f3:bc:cc: b1:55:1f:0c:f1:e6:e8:2e:4c:a1:ac:4e:c0:52:21:e5:1f:b0: 92:0c:5b:2e:43:71:3b:8a:ad:9e:4d:2b:42:ce:ed:7b:e5:90: 6e:a2:37:49:87:86:cb:ff:a5:70:77:f6:ae:cd:c5:03:5a:03: 78:97:7b:a1:8d:e9:67:bd:05:22:ed:d8:68:f4:eb:86:b6:67: f4:e9:82:9d:b9:bb:6f:11:0f:c2:5c:a2:99:ff:f7:ce:ec:6e: a2:ac:45:73:ed:40:54:ba:11:8f:14:ae:8c:f0:a1:55:38:6d: bd:d8:67:e0:a5:a6:aa:cd:f6:ff:dc:85:3d:4e:a8:21:2f:27: 54:6a:1c:5b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQ2bn7CsEKpZts8KZUgwwPuSk/V0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDEyMzExMjQ4NDhaFw0yNTEyMzAxMjUzNDhaMDMxMTAvBgNV BAMTKDI2QzQ3MTZFMkMxMjZFMTY0RTYxNjE3Q0Y5QTlBQTkyODg0MTczMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+wzoegZuaKUG3a41VCet48k/Y l8OkI6NDUPsjBiEgxIp93z4AZqHCk3MrH4N0VYavdWFKy0DNoyvPqnqWUZCXp5PN 4Y39ek9Axy3kXn2lQfEC/mP/YW0Ym49xFhuGJ+YGzA5ss8sjoS6gJIG6quMQEzDH Z3iQXwW3VPLazDUEns7D4xtq6ST1b4wQjbpUFKrInMwMvYxTa6DFHwstxeoMxmkh xfsksFAayTpI/MmQs2RUxAy/3zkhvqV40aRm6tqBmXek/Toc5OK6svGLZSGnAu+r W2sYlUs0hPGGTlpzV3pRF3b59QMizRUes5Fj8+0zzi5sWUXDgNdyN+KMCULdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUJsRxbiwSbhZOYWF8+amqkohBcyowHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMDQ0My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlYmuAMEAVYm9gMEAVl0 0jANBgkqhkiG9w0BAQsFAAOCAQEAVihduYRWAN+P/R/fZrMwEGVMx6GNrapLKVHX FELBb+EB4QCyBkTcJ496omVFZJtXpRFodAOLU3gM+DrDubV2kPpuNUor4yV+dC97 E96xnBxOshJNDS2hDAkJ1F6lERCzyw7rXd/JKRBlrfpWrtC84XQDzYaYW8CX+vRZ 87zMsVUfDPHm6C5MoaxOwFIh5R+wkgxbLkNxO4qtnk0rQs7te+WQbqI3SYeGy/+l cHf2rs3FA1oDeJd7oY3pZ70FIu3YaPTrhrZn9OmCnbm7bxEPwlyimf/3zuxuoqxF c+1AVLoRjxSujPChVThtvdhn4KWmqs32/9yFPU6oIS8nVGocWw== -----END CERTIFICATE-----Generated at Fri Apr 4 20:18:56 2025 by rpki-client