$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS396073.roa File: AS396073.roa (raw, json) Hash identifier: w7TuasBL5Smix/lwpElltQF5rILZ7O5Ku7b5Zew6DCs= Subject key identifier: 40:AF:1C:D4:E0:5E:E4:25:E1:04:2C:7E:C3:65:09:D3:F6:6D:7D:87 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 4A598F73E3F0ADF9BE0CCC28A2415C61D858113F Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS396073.roa Signing time: Fri 13 Dec 2024 15:53:48 +0000 ROA not before: Fri 13 Dec 2024 15:48:48 +0000 ROA not after: Fri 12 Dec 2025 15:53:48 +0000 asID: 396073 IP address blocks: 86.38.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 08:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:59:8f:73:e3:f0:ad:f9:be:0c:cc:28:a2:41:5c:61:d8:58:11:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Dec 13 15:48:48 2024 GMT Not After : Dec 12 15:53:48 2025 GMT Subject: CN=40AF1CD4E05EE425E1042C7EC36509D3F66D7D87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:56:3c:f4:fe:ec:fd:d4:95:03:17:de:11:da: 19:20:95:ec:eb:12:54:15:b7:97:00:d1:37:c9:d1: f5:09:05:d7:24:10:e7:38:dc:5f:3a:a4:57:02:f5: 10:1e:14:60:45:22:8f:79:a8:58:72:b5:0b:b3:5a: 5e:06:13:fe:6d:d2:d5:63:ca:85:a9:95:d2:31:b8: f8:b2:12:ea:ae:a7:b6:6e:91:fd:2b:27:87:d8:f6: 21:5a:bb:72:98:8f:94:f6:6c:3f:63:54:b6:c6:44: 22:95:41:31:12:f2:17:cd:cc:7f:4f:8a:3f:0c:5f: b9:2b:da:a6:39:88:5a:7c:06:5f:f7:39:a6:d2:87: ec:f6:ab:f4:04:09:74:9b:23:2f:5b:92:ef:a3:33: b0:4f:24:7a:0a:0f:9c:2f:61:d0:bb:a9:92:d6:52: d9:de:79:cb:48:a1:2c:11:7f:9d:0d:36:4a:a7:64: 4d:35:41:8e:ab:14:92:a1:b8:8a:8e:7f:4e:97:d0: 1c:39:2e:ac:15:64:36:83:a2:e4:fb:ca:46:b4:f2: 03:2e:12:b7:82:56:b2:c9:e9:1d:fd:71:4e:78:0c: e5:26:73:02:88:a4:0e:5f:4b:a0:01:30:81:88:0b: 82:c6:07:e8:9d:33:8e:f5:0d:22:64:20:5d:fb:90: 79:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AF:1C:D4:E0:5E:E4:25:E1:04:2C:7E:C3:65:09:D3:F6:6D:7D:87 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS396073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.225.0/24 Signature Algorithm: sha256WithRSAEncryption 42:5a:ac:e9:71:f1:86:f3:69:9d:cf:9d:d2:ed:70:03:89:b3: 58:39:31:74:05:10:d9:37:b9:d7:10:db:0f:85:a3:06:8c:7f: fd:06:ed:cd:f8:b9:2c:7e:a7:8d:a3:5c:70:af:76:f6:0e:62: 46:4b:60:b2:78:20:6d:6d:44:76:77:b3:af:c0:09:ac:40:89: 26:6c:f6:44:73:23:56:f6:c5:6c:40:d0:7d:98:02:8f:cb:cc: 6c:6f:de:0f:55:0f:fe:73:4f:40:65:d8:73:7f:e2:04:69:54: 75:54:44:36:8e:4f:f9:93:71:9a:32:ef:70:d3:4a:cf:61:32: 84:00:2d:7a:c5:67:8f:7d:db:72:bd:16:27:f2:9b:d8:c7:b6: ab:22:b5:21:85:20:7c:48:da:a9:3f:8a:b9:bf:52:f8:b8:31: ff:85:7f:06:9d:a3:16:31:9b:f3:51:ee:79:61:be:7b:a2:88: 35:a4:e5:27:4a:ad:c4:0a:03:74:14:de:48:b2:bf:12:f0:f7: 40:bc:61:38:66:33:4c:c7:5a:14:82:3e:b5:e4:bd:4b:73:55: 95:d3:a7:f1:80:f7:14:a6:4e:86:e6:5c:03:c4:08:f8:4d:17: 43:26:96:b4:07:bf:58:06:c5:a5:de:d7:3e:86:8a:de:ae:4a: 2d:3e:00:64 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUSlmPc+Pwrfm+DMwookFcYdhYET8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDEyMTMxNTQ4NDhaFw0yNTEyMTIxNTUzNDhaMDMxMTAvBgNV BAMTKDQwQUYxQ0Q0RTA1RUU0MjVFMTA0MkM3RUMzNjUwOUQzRjY2RDdEODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Vjz0/uz91JUDF94R2hkglezr ElQVt5cA0TfJ0fUJBdckEOc43F86pFcC9RAeFGBFIo95qFhytQuzWl4GE/5t0tVj yoWpldIxuPiyEuqup7Zukf0rJ4fY9iFau3KYj5T2bD9jVLbGRCKVQTES8hfNzH9P ij8MX7kr2qY5iFp8Bl/3OabSh+z2q/QECXSbIy9bku+jM7BPJHoKD5wvYdC7qZLW UtneectIoSwRf50NNkqnZE01QY6rFJKhuIqOf06X0Bw5LqwVZDaDouT7yka08gMu EreCVrLJ6R39cU54DOUmcwKIpA5fS6ABMIGIC4LGB+idM471DSJkIF37kHlHAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUQK8c1OBe5CXhBCx+w2UJ0/ZtfYcwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzM5NjA3My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYm4TANBgkqhkiG9w0B AQsFAAOCAQEAQlqs6XHxhvNpnc+d0u1wA4mzWDkxdAUQ2Te51xDbD4WjBox//Qbt zfi5LH6njaNccK929g5iRktgsnggbW1Ednezr8AJrECJJmz2RHMjVvbFbEDQfZgC j8vMbG/eD1UP/nNPQGXYc3/iBGlUdVRENo5P+ZNxmjLvcNNKz2EyhAAtesVnj33b cr0WJ/Kb2Me2qyK1IYUgfEjaqT+Kub9S+Lgx/4V/Bp2jFjGb81HueWG+e6KINaTl J0qtxAoDdBTeSLK/EvD3QLxhOGYzTMdaFII+teS9S3NVldOn8YD3FKZOhuZcA8QI +E0XQyaWtAe/WAbFpd7XPoaK3q5KLT4AZA== -----END CERTIFICATE-----Generated at Fri Apr 4 20:17:03 2025 by rpki-client