$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa File: AS3356.roa (raw, json) Hash identifier: /yqF8sEbzwY2en2wM4qk8T3EnQScF0IBe1nnRrofe+c= Subject key identifier: CA:F9:C5:1E:CE:01:A1:B4:B3:D9:35:BD:05:41:BD:97:70:38:BE:97 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 5B0947AF57EB99415CB4C7F9776B612E2C2ED227 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa Signing time: Thu 08 Aug 2024 19:05:19 +0000 ROA not before: Thu 08 Aug 2024 19:00:19 +0000 ROA not after: Thu 07 Aug 2025 19:05:19 +0000 asID: 3356 IP address blocks: 86.38.7.0/24 maxlen: 24 86.38.151.0/24 maxlen: 24 89.116.54.0/24 maxlen: 24 89.116.125.0/24 maxlen: 24 89.117.135.0/24 maxlen: 24 89.117.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 16 Feb 2025 22:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:09:47:af:57:eb:99:41:5c:b4:c7:f9:77:6b:61:2e:2c:2e:d2:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 8 19:00:19 2024 GMT Not After : Aug 7 19:05:19 2025 GMT Subject: CN=CAF9C51ECE01A1B4B3D935BD0541BD977038BE97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5e:86:73:0e:27:a6:2a:56:63:8a:47:89:2b: 35:98:35:59:9d:8f:5f:70:c3:2c:ad:d1:75:00:d3: 76:51:8a:3e:1f:e6:1c:c1:39:6f:0e:27:52:1c:8c: 1a:f7:b5:e4:16:02:de:cb:08:9f:50:ac:23:54:20: 37:24:b7:b0:b1:fd:d9:69:bb:5f:3e:59:6d:ea:64: 1e:d7:7d:80:18:c0:52:be:5d:c4:9b:2f:15:5f:92: 15:a7:80:69:f7:51:16:28:ad:d1:17:02:dd:6c:5f: 72:7c:e8:f5:8a:24:8d:1e:87:d3:82:01:d2:39:1c: 7e:ae:35:48:dc:5a:c3:56:a5:ea:ac:91:97:3d:5e: 2c:e7:70:09:0b:c9:e4:58:a7:e3:e5:8a:1e:e8:8c: 41:75:bd:73:b6:02:71:4c:7a:de:95:7b:67:3b:7f: 40:58:2d:59:6a:96:29:54:14:18:a1:49:5b:e9:59: 87:c8:6c:33:4a:1a:d5:0c:e6:6f:7b:05:c6:02:7d: ae:b4:5e:ff:69:8a:c5:ee:b4:40:d8:89:0e:42:5a: 9c:9c:8f:20:68:84:43:4e:22:9c:8a:c0:a4:01:20: eb:fa:ef:42:65:4a:59:bb:7c:a2:fb:8b:42:44:05: 1f:3a:e4:aa:5d:88:66:f5:a2:ff:84:21:2a:8a:02: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F9:C5:1E:CE:01:A1:B4:B3:D9:35:BD:05:41:BD:97:70:38:BE:97 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3356.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.7.0/24 86.38.151.0/24 89.116.54.0/24 89.116.125.0/24 89.117.135.0-89.117.136.255 Signature Algorithm: sha256WithRSAEncryption c5:ab:a8:5a:0e:1d:3b:5a:d7:94:33:43:96:c4:3e:8f:0e:ed: 2c:c6:cb:27:aa:c2:66:5e:53:7d:93:51:5f:f7:2d:fb:12:48: 6e:36:8e:03:bf:56:dc:ad:27:d4:bc:ac:15:c9:b8:ac:0a:58: 66:22:72:87:9d:23:d5:c9:67:fb:e5:f0:12:04:af:30:ab:f7: 0b:87:86:3f:e1:b5:cd:3b:87:9e:be:74:b2:36:80:ac:58:34: df:f3:b8:44:4f:e3:79:a5:09:e1:57:88:45:db:45:2e:48:00: 76:d5:b5:9d:94:17:fe:65:c2:63:0a:d3:63:df:95:84:5a:06: 55:2f:88:db:80:f6:e6:f3:58:8a:49:e9:84:49:e3:fe:26:72: 10:b8:07:a5:39:40:62:c2:85:04:96:e1:4a:dd:6d:af:49:4e: ad:46:9d:1f:cb:59:38:21:43:b9:ae:40:6f:84:8c:7a:3b:50: fa:44:70:d5:ed:f4:a4:a6:0c:6b:e0:44:6f:f8:69:0b:78:2b: c1:1d:48:82:d9:3d:95:32:37:bf:54:25:4c:ae:2d:63:90:c9: 48:da:d2:43:ff:8a:41:19:12:2c:f5:b9:9a:b4:f6:50:80:36: f0:bf:c2:b5:8a:1f:5c:f0:90:a4:3a:eb:27:8d:eb:17:b0:f8: 63:85:a7:e4 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUWwlHr1frmUFctMf5d2thLiwu0icwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA4MDgxOTAwMTlaFw0yNTA4MDcxOTA1MTlaMDMxMTAvBgNV BAMTKENBRjlDNTFFQ0UwMUExQjRCM0Q5MzVCRDA1NDFCRDk3NzAzOEJFOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfXoZzDiemKlZjikeJKzWYNVmd j19wwyyt0XUA03ZRij4f5hzBOW8OJ1IcjBr3teQWAt7LCJ9QrCNUIDckt7Cx/dlp u18+WW3qZB7XfYAYwFK+XcSbLxVfkhWngGn3URYordEXAt1sX3J86PWKJI0eh9OC AdI5HH6uNUjcWsNWpeqskZc9XizncAkLyeRYp+Plih7ojEF1vXO2AnFMet6Ve2c7 f0BYLVlqlilUFBihSVvpWYfIbDNKGtUM5m97BcYCfa60Xv9pisXutEDYiQ5CWpyc jyBohENOIpyKwKQBIOv670JlSlm7fKL7i0JEBR865KpdiGb1ov+EISqKAqF5AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUyvnFHs4BobSz2TW9BUG9l3A4vpcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzMzNTYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwPwYIKwYBBQUHAQcBAf8EMDAuMCwEAgABMCYDBABWJgcDBABWJpcDBABZdDYD BABZdH0wDAMEAFl1hwMEAFl1iDANBgkqhkiG9w0BAQsFAAOCAQEAxauoWg4dO1rX lDNDlsQ+jw7tLMbLJ6rCZl5TfZNRX/ct+xJIbjaOA79W3K0n1LysFcm4rApYZiJy h50j1cln++XwEgSvMKv3C4eGP+G1zTuHnr50sjaArFg03/O4RE/jeaUJ4VeIRdtF LkgAdtW1nZQX/mXCYwrTY9+VhFoGVS+I24D25vNYiknphEnj/iZyELgHpTlAYsKF BJbhSt1tr0lOrUadH8tZOCFDua5Ab4SMejtQ+kRw1e30pKYMa+BEb/hpC3grwR1I gtk9lTI3v1QlTK4tY5DJSNrSQ/+KQRkSLPW5mrT2UIA28L/CtYofXPCQpDrrJ43r F7D4Y4Wn5A== -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:01 2025 by rpki-client