$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211585.roa File: AS211585.roa (raw, json) Hash identifier: EbvcQDvnfA74x/9KepRWExoXE+YKOhSvnEJ+Sorl/XY= Subject key identifier: F6:33:DE:96:5A:F7:54:0A:5A:FE:F8:0D:A0:3A:3E:9E:00:FB:CB:21 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 1E0CEB75CF08737919F9A1E73BB78A5D8B8BF579 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211585.roa Signing time: Fri 13 Dec 2024 13:53:48 +0000 ROA not before: Fri 13 Dec 2024 13:48:48 +0000 ROA not after: Fri 12 Dec 2025 13:53:48 +0000 asID: 211585 IP address blocks: 89.116.48.0/22 maxlen: 24 89.117.104.0/22 maxlen: 24 89.117.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:0c:eb:75:cf:08:73:79:19:f9:a1:e7:3b:b7:8a:5d:8b:8b:f5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 13 13:48:48 2024 GMT Not After : Dec 12 13:53:48 2025 GMT Subject: CN=F633DE965AF7540A5AFEF80DA03A3E9E00FBCB21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:92:8e:db:b7:38:d2:23:4d:81:e0:1c:52:d9: 74:4c:c6:29:54:d6:60:0e:a0:96:0b:c3:cb:8a:38: d5:df:ad:63:f9:ac:22:72:ee:9a:5c:44:61:47:d3: 9a:14:21:bf:50:2e:04:16:26:16:e3:3d:83:45:c2: fc:1b:5e:3f:37:74:72:47:e5:75:16:25:db:aa:f4: 11:6f:35:3f:92:71:b9:36:f3:7e:b4:d3:ab:6d:74: 43:4a:0a:8b:ee:de:04:06:4e:d1:96:a6:15:7f:75: 1c:c3:55:07:46:2b:5f:f7:90:91:7e:54:f7:40:99: 5a:b8:5b:78:1c:ea:90:97:c3:4c:bb:0a:9a:92:4f: 09:71:8e:46:08:d9:a1:35:2c:3d:5f:8f:d5:6c:43: 8a:3d:8a:3e:44:6d:7e:3a:2e:ec:3d:b7:fe:ab:73: 6c:9e:65:df:0d:d8:a0:8d:aa:f8:ea:95:27:ec:d5: da:18:1e:81:93:5f:56:54:c1:3b:51:6d:e8:9f:88: 88:09:f9:36:7e:28:37:6b:ae:88:04:7e:d3:44:ec: f3:de:a8:4b:6b:de:bc:a7:bf:47:a1:bf:4d:94:a9: 24:3d:9d:7a:1d:c6:e3:79:e0:37:56:8e:11:80:b2: d6:62:25:b5:04:48:27:3f:72:a9:8d:d5:fd:93:5e: 58:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:33:DE:96:5A:F7:54:0A:5A:FE:F8:0D:A0:3A:3E:9E:00:FB:CB:21 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211585.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.48.0/22 89.117.104.0/22 89.117.152.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:60:b2:c7:66:4a:63:ac:53:44:0b:ff:6f:f0:79:07:45:27: b6:98:89:fc:ba:e0:98:1b:40:d3:c1:27:70:70:b1:ed:7f:42: 6e:ba:54:78:15:80:ac:57:08:f1:ca:c2:87:16:0c:96:3d:b9: ef:10:ca:7f:a9:f2:77:26:d8:e2:96:56:59:77:25:4a:5a:5b: 99:49:74:be:49:d7:bc:d4:72:6b:f3:99:f6:01:88:da:bb:e0: 01:7b:ea:f2:c3:a4:72:28:6f:15:4b:32:fe:6b:2f:75:fc:ab: 1a:77:03:53:d9:20:f0:fc:20:48:86:88:95:6d:35:be:58:33: 05:56:dc:9e:4c:21:36:28:a1:5f:79:4d:ed:d2:94:6d:fe:3c: 83:71:4a:77:74:aa:f8:22:1f:b5:61:22:39:7d:0e:b5:29:11: 26:b6:38:b7:26:c7:7d:bb:9e:54:4d:90:aa:e4:61:f0:dc:51: f7:69:1b:45:f7:40:d1:cf:94:4d:6f:ea:a8:73:96:2a:8e:d9: b7:de:b1:38:e5:e4:75:15:8e:8e:4e:38:ee:d9:cf:47:79:95: a8:95:67:de:16:9c:20:dd:71:69:ee:6c:a0:db:45:1f:68:01: 86:2c:10:44:b5:bb:58:a0:9d:c5:e3:44:b4:c8:30:83:62:97: de:08:40:af -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHgzrdc8Ic3kZ+aHnO7eKXYuL9XkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDEyMTMxMzQ4NDhaFw0yNTEyMTIxMzUzNDhaMDMxMTAvBgNV BAMTKEY2MzNERTk2NUFGNzU0MEE1QUZFRjgwREEwM0EzRTlFMDBGQkNCMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVko7btzjSI02B4BxS2XRMxilU 1mAOoJYLw8uKONXfrWP5rCJy7ppcRGFH05oUIb9QLgQWJhbjPYNFwvwbXj83dHJH 5XUWJduq9BFvNT+Scbk2836006ttdENKCovu3gQGTtGWphV/dRzDVQdGK1/3kJF+ VPdAmVq4W3gc6pCXw0y7CpqSTwlxjkYI2aE1LD1fj9VsQ4o9ij5EbX46Luw9t/6r c2yeZd8N2KCNqvjqlSfs1doYHoGTX1ZUwTtRbeifiIgJ+TZ+KDdrrogEftNE7PPe qEtr3rynv0ehv02UqSQ9nXodxuN54DdWjhGAstZiJbUESCc/cqmN1f2TXlhJAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU9jPellr3VApa/vgNoDo+ngD7yyEwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxMTU4NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAll0MAMEAll1aAMEAll1 mDANBgkqhkiG9w0BAQsFAAOCAQEAb2Cyx2ZKY6xTRAv/b/B5B0UntpiJ/LrgmBtA 08EncHCx7X9CbrpUeBWArFcI8crChxYMlj257xDKf6nydybY4pZWWXclSlpbmUl0 vknXvNRya/OZ9gGI2rvgAXvq8sOkcihvFUsy/msvdfyrGncDU9kg8PwgSIaIlW01 vlgzBVbcnkwhNiihX3lN7dKUbf48g3FKd3Sq+CIftWEiOX0OtSkRJrY4tybHfbue VE2QquRh8NxR92kbRfdA0c+UTW/qqHOWKo7Zt96xOOXkdRWOjk447tnPR3mVqJVn 3hacIN1xae5soNtFH2gBhiwQRLW7WKCdxeNEtMgwg2KX3ghArw== -----END CERTIFICATE-----Generated at Fri Apr 4 20:18:52 2025 by rpki-client