$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa File: AS210443.roa (raw, json) Hash identifier: eDUuL7tNMty2QepkSwzKbW3GA8e/701v1LzyD9LE/fs= Subject key identifier: 01:6D:36:E5:D0:9A:8A:06:50:D0:A7:37:86:E2:C1:EF:19:82:DB:EF Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7239E11DE4AD48B6780335983EC8EDE87EF70375 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa Signing time: Tue 30 Jan 2024 12:41:22 +0000 ROA not before: Tue 30 Jan 2024 12:36:22 +0000 ROA not after: Tue 28 Jan 2025 12:41:22 +0000 asID: 210443 IP address blocks: 86.38.184.0/23 maxlen: 24 86.38.186.0/23 maxlen: 24 86.38.246.0/23 maxlen: 24 89.116.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:39:e1:1d:e4:ad:48:b6:78:03:35:98:3e:c8:ed:e8:7e:f7:03:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 30 12:36:22 2024 GMT Not After : Jan 28 12:41:22 2025 GMT Subject: CN=016D36E5D09A8A0650D0A73786E2C1EF1982DBEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f8:1a:f2:bf:7b:04:54:25:52:79:6c:aa:02: 9d:92:a6:1d:f3:2c:30:ca:09:f2:23:d8:88:75:41: d8:b5:25:43:4e:19:a6:13:dc:1c:80:0e:9e:77:f5: 76:05:6f:e3:7d:9f:76:54:0a:cc:ca:2a:9f:92:ff: 72:5c:6e:51:6f:8c:fd:0b:b8:79:a0:16:71:d8:35: 6f:5c:cf:f1:0f:f5:c5:57:d9:59:cb:07:55:f5:b0: 4b:29:d6:55:f0:73:56:b4:f4:14:62:d6:01:59:a8: e4:f5:4c:1c:bc:24:df:e3:ec:77:b3:d3:a1:25:67: 30:f1:7d:30:3b:ec:a8:86:80:1e:6e:d1:e5:8f:cf: 2d:71:6f:2e:45:28:2d:06:b8:06:69:e1:10:0e:b0: 20:3f:da:2c:4c:10:14:28:85:a0:a6:76:0e:ec:b1: 3f:6f:e2:58:1f:18:54:cf:3a:6b:6c:32:21:d6:49: ce:7c:f0:92:9b:4b:9f:50:ee:0c:41:a9:4a:b6:90: 0e:3f:5f:8b:23:9b:c6:b2:ae:b7:13:a3:cd:3b:4a: ce:25:2d:25:dd:2b:64:0d:d5:7d:99:26:33:cc:fc: 88:53:e7:17:e8:56:66:66:4c:fc:eb:c3:14:7c:69: 6d:34:3e:61:d8:39:60:12:db:f3:c2:94:10:35:30: 99:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:6D:36:E5:D0:9A:8A:06:50:D0:A7:37:86:E2:C1:EF:19:82:DB:EF X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS210443.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.184.0/22 86.38.246.0/23 89.116.210.0/23 Signature Algorithm: sha256WithRSAEncryption 88:66:21:80:2d:f7:5b:28:05:3c:06:d9:f4:b5:1e:1c:2a:b9: 24:97:94:2c:fc:a3:80:a8:b4:a5:ac:14:59:bc:59:2e:89:98: e7:10:48:78:89:76:cc:8e:ef:3b:af:10:98:62:c7:f1:8a:f4: bb:be:c1:fe:24:68:59:f5:b5:57:4d:7a:aa:4c:fe:59:96:41: d8:92:3d:27:63:1b:36:49:e3:a0:25:a9:5e:77:0d:1d:0d:7e: 3d:f5:63:20:9d:9d:29:1c:f6:ac:93:02:fb:1d:1a:ec:a5:6b: de:3c:b0:12:8d:75:88:36:91:6c:6c:52:ea:8a:38:a8:25:cb: 8b:1d:64:4f:0c:47:90:d1:b2:d9:b6:6b:d2:c3:73:01:b4:b5: 8b:17:a6:df:2b:0d:1e:32:23:21:88:0d:a2:93:f5:46:f9:8f: 1c:96:b4:ad:11:84:3a:8b:65:10:29:cf:bc:41:50:89:bf:d1: 23:c0:8c:13:a7:c3:e0:9a:98:5e:b7:3c:d3:48:63:26:65:df: b4:f8:7e:5a:a6:80:00:b1:a2:12:ac:28:7e:2d:55:7b:3b:bd: 71:fe:ab:0e:5b:73:10:fc:b7:9d:89:dd:4c:e1:c0:95:c1:fe: f8:31:87:f6:f0:52:8a:ef:3a:7a:19:61:12:46:87:9e:f2:1d: 21:07:b4:9e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUcjnhHeStSLZ4AzWYPsjt6H73A3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMzAxMjM2MjJaFw0yNTAxMjgxMjQxMjJaMDMxMTAvBgNV BAMTKDAxNkQzNkU1RDA5QThBMDY1MEQwQTczNzg2RTJDMUVGMTk4MkRCRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc+Bryv3sEVCVSeWyqAp2Sph3z LDDKCfIj2Ih1Qdi1JUNOGaYT3ByADp539XYFb+N9n3ZUCszKKp+S/3JcblFvjP0L uHmgFnHYNW9cz/EP9cVX2VnLB1X1sEsp1lXwc1a09BRi1gFZqOT1TBy8JN/j7Hez 06ElZzDxfTA77KiGgB5u0eWPzy1xby5FKC0GuAZp4RAOsCA/2ixMEBQohaCmdg7s sT9v4lgfGFTPOmtsMiHWSc588JKbS59Q7gxBqUq2kA4/X4sjm8ayrrcTo807Ss4l LSXdK2QN1X2ZJjPM/IhT5xfoVmZmTPzrwxR8aW00PmHYOWAS2/PClBA1MJlDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUAW025dCaigZQ0Kc3huLB7xmC2+8wHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMDQ0My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAlYmuAMEAVYm9gMEAVl0 0jANBgkqhkiG9w0BAQsFAAOCAQEAiGYhgC33WygFPAbZ9LUeHCq5JJeULPyjgKi0 pawUWbxZLomY5xBIeIl2zI7vO68QmGLH8Yr0u77B/iRoWfW1V016qkz+WZZB2JI9 J2MbNknjoCWpXncNHQ1+PfVjIJ2dKRz2rJMC+x0a7KVr3jywEo11iDaRbGxS6oo4 qCXLix1kTwxHkNGy2bZr0sNzAbS1ixem3ysNHjIjIYgNopP1RvmPHJa0rRGEOotl ECnPvEFQib/RI8CME6fD4JqYXrc800hjJmXftPh+WqaAALGiEqwofi1Vezu9cf6r DltzEPy3nYndTOHAlcH++DGH9vBSiu86ehlhEkaHnvIdIQe0ng== -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org