$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS214159.roa File: AS214159.roa (raw, json) Hash identifier: d7RCujKWjNeSLEZhcqf6w3X9MxGhFZd0pgm1AFmfL6A= Subject key identifier: 53:D8:95:14:3A:4A:8F:EA:AC:EB:8A:CD:2D:29:1F:81:A3:DF:1A:97 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 122080850ED428E280891D58FABBB05C8B10325B Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS214159.roa Signing time: Thu 23 Jan 2025 17:31:45 +0000 ROA not before: Thu 23 Jan 2025 17:26:45 +0000 ROA not after: Thu 22 Jan 2026 17:31:45 +0000 asID: 214159 IP address blocks: 86.38.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 10:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:20:80:85:0e:d4:28:e2:80:89:1d:58:fa:bb:b0:5c:8b:10:32:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 23 17:26:45 2025 GMT Not After : Jan 22 17:31:45 2026 GMT Subject: CN=53D895143A4A8FEAACEB8ACD2D291F81A3DF1A97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:c8:ef:f4:a4:5c:96:21:49:fe:e4:e4:50: e1:70:d5:be:ca:8d:9a:35:8a:64:e5:19:a8:93:cc: 3b:bb:88:f1:63:c0:13:67:3f:59:33:99:36:b2:cd: ac:dc:d3:e5:bb:25:59:1b:c5:cf:c6:ff:be:83:f4: 41:cd:15:e0:f6:9a:42:a7:99:e9:fd:48:5f:da:40: 0a:c1:8b:ee:fb:48:b5:1c:2c:f8:a9:03:8a:b6:e4: cc:59:34:60:b4:f7:c2:97:27:64:f0:0b:f0:b5:ee: fe:82:30:70:e4:81:dd:fd:e7:6e:e3:2d:c9:d3:d9: d3:ff:df:d4:9f:a0:f6:6e:74:b7:7c:a8:fd:34:fe: 03:8e:fe:c3:e8:eb:68:1d:d5:00:53:3c:c7:13:2f: 60:59:3b:60:91:35:c2:ce:fa:e2:b4:74:60:85:46: d1:74:f8:88:64:6d:17:25:0d:4a:47:2b:e6:f3:27: bc:ec:65:e2:af:9a:e1:27:8e:84:61:2c:22:69:a9: af:19:ab:26:af:75:58:bc:51:95:5c:19:bf:fa:09: 5d:81:9a:0d:90:36:df:1d:f4:63:60:97:ea:fe:f5: d4:bd:31:39:06:5e:9f:21:43:87:e8:7c:92:d5:d5: d3:dd:84:13:3c:ea:ae:a2:6f:c7:c3:bd:2c:35:5f: a5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D8:95:14:3A:4A:8F:EA:AC:EB:8A:CD:2D:29:1F:81:A3:DF:1A:97 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS214159.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.253.0/24 Signature Algorithm: sha256WithRSAEncryption 93:d1:dc:29:44:be:f0:9a:f9:57:63:2f:6c:7d:1c:c0:e2:0b: e9:65:ce:e7:2c:31:f7:b8:ae:8c:f7:f4:54:4e:76:56:1f:2c: 3d:35:a2:b7:90:39:d6:e6:01:6c:9b:97:83:72:60:d0:6b:7f: db:e5:72:ca:b7:51:8c:50:23:ba:ec:b9:f9:36:91:db:5f:f4: a2:61:f2:55:f9:79:35:29:73:04:5f:5f:06:70:61:d8:dc:11: 3d:34:eb:14:d2:26:ac:1b:31:b7:e3:e5:25:2a:8a:2c:ef:24: 5e:71:74:40:16:b8:0e:86:4e:a2:0d:03:ad:e0:a4:f3:ce:1a: 66:0a:a1:d4:4e:65:14:98:6d:ee:f8:d8:17:1f:92:ed:09:28: f9:1f:f0:e4:2b:16:fd:16:5c:fc:3c:8e:31:3b:24:04:ac:e0: 4c:50:44:13:f6:c8:d9:b7:65:5a:92:42:ab:8d:02:3b:b3:16: b0:31:e1:4f:55:1b:4d:43:79:ec:10:41:62:19:6d:83:4d:31: 2d:b3:09:46:95:ac:a4:7f:87:5c:1b:12:c0:c9:4d:93:4f:e8: df:1b:ae:16:c8:69:9f:1a:2e:17:9e:51:27:e4:8b:c9:79:2a: b5:d3:ef:37:6d:28:94:a9:36:3f:99:96:d9:91:cc:b7:c0:21: c3:ac:4a:1d -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUEiCAhQ7UKOKAiR1Y+ruwXIsQMlswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAxMjMxNzI2NDVaFw0yNjAxMjIxNzMxNDVaMDMxMTAvBgNV BAMTKDUzRDg5NTE0M0E0QThGRUFBQ0VCOEFDRDJEMjkxRjgxQTNERjFBOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHv8jv9KRcliFJ/uTkUOFw1b7K jZo1imTlGaiTzDu7iPFjwBNnP1kzmTayzazc0+W7JVkbxc/G/76D9EHNFeD2mkKn men9SF/aQArBi+77SLUcLPipA4q25MxZNGC098KXJ2TwC/C17v6CMHDkgd39527j LcnT2dP/39SfoPZudLd8qP00/gOO/sPo62gd1QBTPMcTL2BZO2CRNcLO+uK0dGCF RtF0+IhkbRclDUpHK+bzJ7zsZeKvmuEnjoRhLCJpqa8ZqyavdVi8UZVcGb/6CV2B mg2QNt8d9GNgl+r+9dS9MTkGXp8hQ4fofJLV1dPdhBM86q6ib8fDvSw1X6WNAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUU9iVFDpKj+qs64rNLSkfgaPfGpcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxNDE1OS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYm/TANBgkqhkiG9w0B AQsFAAOCAQEAk9HcKUS+8Jr5V2MvbH0cwOIL6WXO5ywx97iujPf0VE52Vh8sPTWi t5A51uYBbJuXg3Jg0Gt/2+VyyrdRjFAjuuy5+TaR21/0omHyVfl5NSlzBF9fBnBh 2NwRPTTrFNImrBsxt+PlJSqKLO8kXnF0QBa4DoZOog0DreCk884aZgqh1E5lFJht 7vjYFx+S7Qko+R/w5CsW/RZc/DyOMTskBKzgTFBEE/bI2bdlWpJCq40CO7MWsDHh T1UbTUN57BBBYhltg00xLbMJRpWspH+HXBsSwMlNk0/o3xuuFshpnxouF55RJ+SL yXkqtdPvN20olKk2P5mW2ZHMt8Ahw6xKHQ== -----END CERTIFICATE-----Generated at Sat Apr 5 03:55:42 2025 by rpki-client