$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS25369.roa File: AS25369.roa (raw, json) Hash identifier: ljsm7kUqdXoQ+KzLsG4Bul7r1N7MeyBecW4oYwEymLY= Subject key identifier: 08:8A:23:7A:CD:B5:43:DC:A1:D8:8F:E8:0E:CD:03:B0:13:D5:75:A0 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6A177E6C1381D3682D37B774CAA8F845A2517396 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS25369.roa Signing time: Thu 23 May 2024 00:00:21 +0000 ROA not before: Wed 22 May 2024 23:55:21 +0000 ROA not after: Thu 22 May 2025 00:00:21 +0000 asID: 25369 IP address blocks: 89.116.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:17:7e:6c:13:81:d3:68:2d:37:b7:74:ca:a8:f8:45:a2:51:73:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: May 22 23:55:21 2024 GMT Not After : May 22 00:00:21 2025 GMT Subject: CN=088A237ACDB543DCA1D88FE80ECD03B013D575A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9b:9d:4e:28:4e:d4:fb:1c:b7:3a:49:e3:ec: d9:89:15:8f:d0:af:56:74:03:14:97:fa:fb:33:a5: c3:9d:36:7c:1a:82:9c:6a:d7:55:4c:89:a6:28:a1: 02:34:3c:36:e0:11:0a:4b:02:cf:dc:46:a4:9f:9d: 03:dd:63:3f:dd:cc:0a:1f:02:11:fd:1f:ef:96:ba: b7:f5:ac:c2:2a:df:2c:8a:de:c4:04:bf:19:b4:7d: bd:c0:18:6c:3b:1d:9d:1b:92:0b:a5:7d:44:24:7c: 04:6c:cf:ed:05:f8:82:eb:10:73:99:d1:0f:dc:9d: e6:8c:f8:ec:dd:ad:e3:eb:78:26:aa:8e:0e:eb:23: 34:d9:29:f3:cf:66:0e:b1:5a:9a:6b:33:fb:65:aa: 1d:99:79:a6:40:e2:14:e4:61:25:74:a4:f1:e8:60: 17:9a:b5:9e:f3:1e:89:05:5c:87:76:12:ef:d9:26: f6:a3:ad:02:4d:2f:0b:bd:51:0e:30:2c:f4:01:b2: 7b:19:4c:33:c9:ea:f5:96:96:d8:2a:90:59:dd:67: 46:63:8b:ae:42:d9:b2:ab:36:1e:18:e5:e5:a2:39: 7d:7f:2f:21:cf:5e:de:d4:88:3e:4f:75:8d:92:f4: c2:84:54:40:a2:ce:e0:5e:40:de:d1:4b:8a:e0:ce: d1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8A:23:7A:CD:B5:43:DC:A1:D8:8F:E8:0E:CD:03:B0:13:D5:75:A0 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS25369.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.48.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:7c:e8:11:d6:80:e2:49:cd:b0:cf:26:0a:e5:1a:d8:c1:d8: 86:59:6b:4c:86:36:57:db:8c:6f:fe:98:e0:3c:18:80:f6:b9: da:de:44:f9:ce:62:82:2a:e4:82:c7:6b:77:76:ee:04:cd:47: 51:81:70:ac:6d:b4:f4:dd:66:05:21:96:d0:59:8e:96:a6:42: eb:31:e0:5e:a8:6a:f8:1e:a3:c6:e3:82:0f:7b:4a:21:7c:fa: 3a:23:f9:34:5a:34:e3:eb:60:b8:71:2f:a1:ff:1a:b5:b2:90: d6:04:d7:00:00:38:b3:c8:62:61:5a:75:91:ac:14:b2:98:1e: 7e:6a:ed:12:1e:b3:de:55:27:2b:b9:65:8f:e4:03:33:da:63: 5a:9c:09:76:b2:56:f8:83:51:8d:b3:32:dd:4c:0a:b1:fb:25: 63:2b:16:b0:28:b8:15:ee:1e:bc:14:8a:49:ab:5e:a3:2c:21: 35:03:71:67:9d:80:5c:02:90:bf:62:6c:9a:ce:7b:03:c2:0d: c3:eb:10:f3:eb:3d:72:29:47:46:c4:fb:ea:bc:d8:6c:30:73: e7:ae:b8:ed:91:6e:44:1d:65:88:38:30:40:0b:ff:c7:7f:28: 5c:05:cd:10:c8:6f:bc:d5:7d:6c:40:ce:53:87:e8:bf:cd:a0: 4c:ce:91:cb -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUahd+bBOB02gtN7d0yqj4RaJRc5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA1MjIyMzU1MjFaFw0yNTA1MjIwMDAwMjFaMDMxMTAvBgNV BAMTKDA4OEEyMzdBQ0RCNTQzRENBMUQ4OEZFODBFQ0QwM0IwMTNENTc1QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgm51OKE7U+xy3Oknj7NmJFY/Q r1Z0AxSX+vszpcOdNnwagpxq11VMiaYooQI0PDbgEQpLAs/cRqSfnQPdYz/dzAof AhH9H++Wurf1rMIq3yyK3sQEvxm0fb3AGGw7HZ0bkgulfUQkfARsz+0F+ILrEHOZ 0Q/cneaM+OzdrePreCaqjg7rIzTZKfPPZg6xWpprM/tlqh2ZeaZA4hTkYSV0pPHo YBeatZ7zHokFXId2Eu/ZJvajrQJNLwu9UQ4wLPQBsnsZTDPJ6vWWltgqkFndZ0Zj i65C2bKrNh4Y5eWiOX1/LyHPXt7UiD5PdY2S9MKEVECizuBeQN7RS4rgztExAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUCIojes21Q9yh2I/oDs0DsBPVdaAwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzI1MzY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWXQwMA0GCSqGSIb3DQEB CwUAA4IBAQAufOgR1oDiSc2wzyYK5RrYwdiGWWtMhjZX24xv/pjgPBiA9rna3kT5 zmKCKuSCx2t3du4EzUdRgXCsbbT03WYFIZbQWY6WpkLrMeBeqGr4HqPG44IPe0oh fPo6I/k0WjTj62C4cS+h/xq1spDWBNcAADizyGJhWnWRrBSymB5+au0SHrPeVScr uWWP5AMz2mNanAl2slb4g1GNszLdTAqx+yVjKxawKLgV7h68FIpJq16jLCE1A3Fn nYBcApC/YmyaznsDwg3D6xDz6z1yKUdGxPvqvNhsMHPnrrjtkW5EHWWIODBAC//H fyhcBc0QyG+81X1sQM5Th+i/zaBMzpHL -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org