$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS21859.roa File: AS21859.roa (raw, json) Hash identifier: e/CDkaW1KFDcaRWHTLF5nGfeMzIq4BU6eS4DDX6Knfg= Subject key identifier: CE:2F:EE:48:F2:8C:6C:F0:79:6C:99:62:11:3F:AF:C8:05:0D:F8:42 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 28B4F9DF428CE6E9E58A11883AD290CD8F6E7F11 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS21859.roa Signing time: Mon 04 Nov 2024 06:06:12 +0000 ROA not before: Mon 04 Nov 2024 06:01:12 +0000 ROA not after: Mon 03 Nov 2025 06:06:12 +0000 asID: 21859 IP address blocks: 86.38.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:b4:f9:df:42:8c:e6:e9:e5:8a:11:88:3a:d2:90:cd:8f:6e:7f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Nov 4 06:01:12 2024 GMT Not After : Nov 3 06:06:12 2025 GMT Subject: CN=CE2FEE48F28C6CF0796C9962113FAFC8050DF842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:ff:7d:17:92:d6:93:56:b6:7b:cc:9a:e2: df:be:1e:42:04:83:e8:23:b6:1e:c0:d8:e2:d2:bc: 64:44:f8:87:f1:f2:61:35:63:27:15:3f:c6:6f:46: a1:84:52:36:1c:a4:32:ea:5b:95:b0:12:5b:52:c7: 12:cb:60:45:6b:f2:9f:8a:d2:79:ec:6b:16:12:dc: 0c:0e:bb:84:f1:40:25:a2:b9:3f:49:0e:da:1a:fb: 22:46:db:35:29:2e:6c:71:20:3a:9c:88:aa:3d:f3: 09:27:9f:9a:f6:f1:af:02:6e:b7:7d:8e:e7:28:74: a0:7a:45:b9:1f:96:7b:16:36:b0:99:85:f8:60:36: 44:00:55:a6:9b:c4:a5:95:fa:5f:8c:d1:1f:2c:dd: e7:13:bf:72:b9:03:dc:94:fd:a7:51:4a:e9:43:ef: 82:e9:e9:55:49:f8:94:7e:b6:32:ec:09:bd:87:f0: 9e:f9:56:27:ba:d2:ce:1f:05:13:68:5f:98:a0:a2: bd:08:60:13:20:52:ae:18:4f:81:b1:1d:78:9a:4c: 5f:37:5c:c3:5f:34:01:c1:7f:0c:6c:9f:6c:21:dd: d6:dc:11:88:85:73:f1:49:2f:5e:c6:98:ba:97:18: 15:ae:66:1a:2e:50:7f:9a:cf:79:07:78:69:0e:64: d6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2F:EE:48:F2:8C:6C:F0:79:6C:99:62:11:3F:AF:C8:05:0D:F8:42 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS21859.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.246.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:08:5b:07:25:d4:d3:67:bc:8e:97:1b:9d:e8:32:be:b6:4f: 4d:4c:82:ae:03:53:54:1d:be:24:21:e2:d4:85:14:28:61:66: 91:b9:af:e6:cd:84:0f:50:66:6e:3a:93:47:97:bd:d5:35:f7: 0c:02:d0:ee:c5:d2:6a:91:73:6e:e1:22:4b:7d:10:af:01:05: 2e:80:9f:f4:e9:d3:e8:4e:d5:13:8f:d2:c9:33:af:a3:05:75: 2d:d1:cf:43:c1:17:7a:29:68:3f:22:61:0d:ea:a0:f0:3a:8f: 2e:f1:bb:28:68:07:93:a4:3f:12:0a:27:b1:9f:c7:ed:0c:05: f4:8e:1f:97:1d:83:79:8d:c8:8d:01:00:c4:c9:9b:a4:6f:b8: c3:43:ba:01:ba:37:8a:b3:89:0f:55:68:fb:5a:42:37:f6:c7: f7:49:79:f4:17:ef:59:ae:7b:8f:a8:20:23:57:1c:a3:72:f5: 97:e3:53:d3:dd:43:63:b0:1b:38:6c:3b:b8:b8:70:ff:e3:31: 4c:bd:11:0b:a4:55:c7:6a:eb:5a:2f:3e:aa:be:ce:dc:47:68: 16:43:4d:dd:fe:23:43:09:29:2d:8b:41:f3:e8:a6:e5:db:1b: 43:2c:e2:b1:74:c7:ab:d3:7b:96:5a:f3:af:a6:1a:25:75:35: 65:1f:9a:09 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUKLT530KM5unlihGIOtKQzY9ufxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDExMDQwNjAxMTJaFw0yNTExMDMwNjA2MTJaMDMxMTAvBgNV BAMTKENFMkZFRTQ4RjI4QzZDRjA3OTZDOTk2MjExM0ZBRkM4MDUwREY4NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLd/99F5LWk1a2e8ya4t++HkIE g+gjth7A2OLSvGRE+Ifx8mE1YycVP8ZvRqGEUjYcpDLqW5WwEltSxxLLYEVr8p+K 0nnsaxYS3AwOu4TxQCWiuT9JDtoa+yJG2zUpLmxxIDqciKo98wknn5r28a8Cbrd9 jucodKB6RbkflnsWNrCZhfhgNkQAVaabxKWV+l+M0R8s3ecTv3K5A9yU/adRSulD 74Lp6VVJ+JR+tjLsCb2H8J75Vie60s4fBRNoX5igor0IYBMgUq4YT4GxHXiaTF83 XMNfNAHBfwxsn2wh3dbcEYiFc/FJL17GmLqXGBWuZhouUH+az3kHeGkOZNYLAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUzi/uSPKMbPB5bJliET+vyAUN+EIwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzIxODU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVib2MA0GCSqGSIb3DQEB CwUAA4IBAQAdCFsHJdTTZ7yOlxud6DK+tk9NTIKuA1NUHb4kIeLUhRQoYWaRua/m zYQPUGZuOpNHl73VNfcMAtDuxdJqkXNu4SJLfRCvAQUugJ/06dPoTtUTj9LJM6+j BXUt0c9DwRd6KWg/ImEN6qDwOo8u8bsoaAeTpD8SCiexn8ftDAX0jh+XHYN5jciN AQDEyZukb7jDQ7oBujeKs4kPVWj7WkI39sf3SXn0F+9ZrnuPqCAjVxyjcvWX41PT 3UNjsBs4bDu4uHD/4zFMvRELpFXHautaLz6qvs7cR2gWQ03d/iNDCSkti0Hz6Kbl 2xtDLOKxdMer03uWWvOvpholdTVlH5oJ -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org