$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS25369.roa File: AS25369.roa (raw, json) Hash identifier: E8f1HuFL0fL0xPq6Vjn5sq3rOMj03ZwyYwO+pM8+QAU= Subject key identifier: F7:8C:11:7B:35:FB:F2:C6:A0:1D:E6:0F:B0:B5:DD:A1:2E:D1:3F:74 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 7326DB0472B9C4704A1037BD833D896650280BC2 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS25369.roa Signing time: Sun 17 Dec 2023 21:17:16 +0000 ROA not before: Sun 17 Dec 2023 21:12:16 +0000 ROA not after: Sun 15 Dec 2024 21:17:16 +0000 asID: 25369 IP address blocks: 89.116.48.0/22 maxlen: 24 89.116.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 04 May 2024 00:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:26:db:04:72:b9:c4:70:4a:10:37:bd:83:3d:89:66:50:28:0b:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 17 21:12:16 2023 GMT Not After : Dec 15 21:17:16 2024 GMT Subject: CN=F78C117B35FBF2C6A01DE60FB0B5DDA12ED13F74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6f:cb:08:f0:85:b2:82:89:a2:79:54:80:d0: d5:f4:9f:7f:b5:a4:fc:e0:09:07:bb:55:e0:bd:68: a7:75:a8:2d:56:7a:4d:63:4c:af:cc:aa:58:60:d9: d7:06:76:5d:4b:b6:f9:ae:33:2d:70:f9:80:7a:ed: 03:9c:5a:6a:a8:7f:73:66:f1:5e:3b:5b:0e:e4:95: 8c:c4:3f:27:24:f0:b5:0e:dd:85:ff:86:50:e9:1b: e8:c6:34:4d:9a:23:7d:af:92:dc:94:15:b6:24:d6: 9e:ea:a4:13:a2:ad:7e:49:0f:af:bc:02:90:90:9e: 45:c3:48:3f:57:2d:a9:0a:1e:5e:20:16:fa:e4:89: 12:e1:1e:70:a0:4c:d5:ff:61:cb:d2:dd:7a:ef:91: eb:0e:cc:ec:1e:19:b2:9e:a8:f1:81:5c:14:37:2f: c6:9c:bb:a9:a6:c6:39:71:39:35:8a:25:8c:05:fd: 22:96:5f:4d:7a:78:82:1d:44:2c:32:e9:03:4a:6f: ab:d0:a0:69:5e:7b:87:f8:51:63:39:dd:a4:eb:ad: 69:08:45:15:c3:e6:78:91:ba:32:c0:44:3c:29:cd: fe:1d:66:d1:f8:88:cb:46:53:a4:7b:28:cd:c5:78: a2:73:79:f2:40:32:eb:f9:ce:9b:57:ef:a2:d1:5f: 9c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8C:11:7B:35:FB:F2:C6:A0:1D:E6:0F:B0:B5:DD:A1:2E:D1:3F:74 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS25369.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.48.0/22 89.116.165.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:6a:2e:52:2c:1c:50:88:1b:d9:cb:6f:f5:13:15:24:ea:7f: b2:b2:3f:0e:fb:54:d6:b3:0b:a0:da:30:8c:c5:1a:5e:c7:c3: 99:6f:c6:13:e4:de:52:ec:be:68:70:14:53:d0:ea:f4:64:95: 69:78:e0:ad:d9:22:09:98:01:33:b7:2f:88:9f:69:84:ae:23: 95:8f:5a:6d:77:a5:cd:b5:ad:ae:ea:b9:f8:78:03:d1:c6:39: b9:dd:75:18:a4:a6:68:63:c1:2d:32:6e:3f:3c:28:cf:4f:3f: 1d:5d:f6:03:ba:4a:92:85:cb:ed:77:77:73:da:a9:3a:6e:76: df:79:a3:eb:a1:43:f9:52:d0:a7:0d:91:b2:db:ae:1b:42:b5: 96:5d:ff:21:4c:e9:47:26:12:bc:06:6b:58:26:1d:4a:72:06: 18:31:dc:46:3e:29:3f:dd:f4:f2:31:61:80:7b:e5:85:f2:da: 69:d2:83:ae:27:ae:a9:7c:83:63:95:af:93:13:b9:77:8e:8a: ff:b9:e6:2a:ed:be:32:2e:95:8a:d8:bb:a5:f0:79:b2:da:46: 18:e0:02:86:0f:a3:47:d4:9c:c8:60:ba:78:90:ce:42:a3:e1: aa:8f:1d:62:bd:2e:ba:68:cc:ce:f1:b1:ee:56:f9:a4:b7:5e: b1:e3:55:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcybbBHK5xHBKEDe9gz2JZlAoC8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzEyMTcyMTEyMTZaFw0yNDEyMTUyMTE3MTZaMDMxMTAvBgNV BAMTKEY3OEMxMTdCMzVGQkYyQzZBMDFERTYwRkIwQjVEREExMkVEMTNGNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjb8sI8IWygomieVSA0NX0n3+1 pPzgCQe7VeC9aKd1qC1Wek1jTK/Mqlhg2dcGdl1LtvmuMy1w+YB67QOcWmqof3Nm 8V47Ww7klYzEPyck8LUO3YX/hlDpG+jGNE2aI32vktyUFbYk1p7qpBOirX5JD6+8 ApCQnkXDSD9XLakKHl4gFvrkiRLhHnCgTNX/YcvS3XrvkesOzOweGbKeqPGBXBQ3 L8acu6mmxjlxOTWKJYwF/SKWX016eIIdRCwy6QNKb6vQoGlee4f4UWM53aTrrWkI RRXD5niRujLARDwpzf4dZtH4iMtGU6R7KM3FeKJzefJAMuv5zptX76LRX5xrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU94wRezX78sagHeYPsLXdoS7RP3QwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzI1MzY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCWXQwAwQAWXSlMA0GCSqG SIb3DQEBCwUAA4IBAQBrai5SLBxQiBvZy2/1ExUk6n+ysj8O+1TWswug2jCMxRpe x8OZb8YT5N5S7L5ocBRT0Or0ZJVpeOCt2SIJmAEzty+In2mEriOVj1ptd6XNta2u 6rn4eAPRxjm53XUYpKZoY8EtMm4/PCjPTz8dXfYDukqShcvtd3dz2qk6bnbfeaPr oUP5UtCnDZGy264bQrWWXf8hTOlHJhK8BmtYJh1KcgYYMdxGPik/3fTyMWGAe+WF 8tpp0oOuJ66pfINjla+TE7l3jor/ueYq7b4yLpWK2Lul8Hmy2kYY4AKGD6NH1JzI YLp4kM5Co+Gqjx1ivS66aMzO8bHuVvmkt16x41U4 -----END CERTIFICATE-----Generated at Fri May 3 04:42:11 2024 by rpki-client on console-fra.rpki-client.org