$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS396073.roa File: AS396073.roa (raw, json) Hash identifier: +OeeA4vXKV/rqP9rSTjFG89ou7nKWKntI2VnSV+5Pc4= Subject key identifier: 25:36:37:5E:30:9C:38:AA:11:64:09:E9:4F:49:FF:AE:74:72:7B:42 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 33B055582FAD4399B54C1BE1DEFDA9CEBA7D7C42 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS396073.roa Signing time: Fri 12 Jan 2024 15:05:08 +0000 ROA not before: Fri 12 Jan 2024 15:00:08 +0000 ROA not after: Fri 10 Jan 2025 15:05:08 +0000 asID: 396073 IP address blocks: 86.38.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:b0:55:58:2f:ad:43:99:b5:4c:1b:e1:de:fd:a9:ce:ba:7d:7c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 12 15:00:08 2024 GMT Not After : Jan 10 15:05:08 2025 GMT Subject: CN=2536375E309C38AA116409E94F49FFAE74727B42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:f4:ef:b9:49:51:a3:ed:a7:60:78:d8:db: e1:ca:0c:70:0b:b1:72:df:09:5a:22:be:6e:4b:62: c4:2c:85:c7:87:1b:3c:40:be:18:b9:13:61:3c:40: ed:34:a5:1d:c3:2e:4a:8e:bc:49:ce:05:2a:d4:c0: 2b:8c:28:3f:02:a7:36:e5:e0:f6:47:e4:b7:d6:50: 05:c8:b0:84:68:96:8a:b4:0a:56:7a:1c:6d:3b:52: c2:b3:f9:ef:18:1b:af:86:14:82:a5:bc:6c:e4:b0: 6f:11:d1:bc:ed:b7:88:4f:ec:7a:81:9d:44:b0:63: 50:0c:a3:32:9b:16:84:55:f1:0c:70:64:76:bf:0d: da:33:36:92:4c:f4:60:f8:9d:7c:29:42:e6:b1:6e: d1:0a:49:0c:04:8d:8b:80:da:9f:9a:6d:a4:73:0a: 97:30:32:dd:e7:3c:1f:0a:46:5c:91:ae:30:cb:20: 8e:00:79:08:4b:88:97:c2:36:68:a2:ef:2c:5d:28: 58:4c:2c:b7:33:9e:c2:7f:7b:63:ef:25:a0:ef:ee: a3:8f:8a:73:47:97:bb:62:14:e0:97:e1:e8:ec:bd: 67:79:e7:7d:fe:a6:02:b8:85:df:31:a4:35:40:6b: 80:cb:87:8d:7a:13:df:1f:46:b9:73:b7:df:07:e3: af:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:36:37:5E:30:9C:38:AA:11:64:09:E9:4F:49:FF:AE:74:72:7B:42 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS396073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.225.0/24 Signature Algorithm: sha256WithRSAEncryption 83:23:aa:dc:ec:b5:bb:df:64:15:d2:38:22:8f:98:44:4b:af: e0:9f:91:c6:91:d7:02:54:6e:96:63:59:52:e3:41:ac:3a:7a: d7:a1:76:38:e6:5d:24:ac:90:a6:87:d4:f3:ed:22:1a:b2:85: a5:f4:88:85:5e:db:ad:7c:d8:db:a4:5e:b8:13:72:b6:40:71: 49:9e:81:7b:84:89:28:44:5a:c8:8c:de:65:0d:52:cd:70:85: 89:70:9d:36:57:4a:ef:2f:33:64:ac:e4:94:23:01:2e:22:48: 31:ad:9a:eb:98:94:86:01:0f:37:2f:44:58:a8:a2:87:d0:00: c1:7d:56:25:7b:84:fa:a5:b2:f3:b5:7f:7e:37:5c:85:40:f7: 94:09:70:85:2b:b3:f1:1d:17:99:0e:7e:53:c9:49:9c:df:87: 4a:43:d2:7d:e6:26:90:16:6b:52:cf:f5:86:ee:d6:a6:72:16: bc:57:cf:09:5e:67:24:6d:40:5f:2e:28:a3:14:b2:54:e3:9c: d9:27:98:4b:a7:02:b6:1c:8c:5c:57:56:14:be:75:ef:32:a5: 36:34:98:36:c4:c9:86:4f:41:1c:68:36:c6:fb:a1:13:98:2e: 82:0b:62:1c:ff:83:4c:10:7b:e8:44:95:1f:82:91:21:ae:e5: ec:0e:bc:4a -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgIUM7BVWC+tQ5m1TBvh3v2pzrp9fEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMTIxNTAwMDhaFw0yNTAxMTAxNTA1MDhaMDMxMTAvBgNV BAMTKDI1MzYzNzVFMzA5QzM4QUExMTY0MDlFOTRGNDlGRkFFNzQ3MjdCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHePTvuUlRo+2nYHjY2+HKDHAL sXLfCVoivm5LYsQshceHGzxAvhi5E2E8QO00pR3DLkqOvEnOBSrUwCuMKD8Cpzbl 4PZH5LfWUAXIsIRoloq0ClZ6HG07UsKz+e8YG6+GFIKlvGzksG8R0bztt4hP7HqB nUSwY1AMozKbFoRV8QxwZHa/DdozNpJM9GD4nXwpQuaxbtEKSQwEjYuA2p+abaRz CpcwMt3nPB8KRlyRrjDLII4AeQhLiJfCNmii7yxdKFhMLLcznsJ/e2PvJaDv7qOP inNHl7tiFOCX4ejsvWd5533+pgK4hd8xpDVAa4DLh416E98fRrlzt98H469LAgMB AAGjggIvMIICKzAdBgNVHQ4EFgQUJTY3XjCcOKoRZAnpT0n/rnRye0IwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzM5NjA3My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYm4TANBgkqhkiG9w0B AQsFAAOCAQEAgyOq3Oy1u99kFdI4Io+YREuv4J+RxpHXAlRulmNZUuNBrDp616F2 OOZdJKyQpofU8+0iGrKFpfSIhV7brXzY26ReuBNytkBxSZ6Be4SJKERayIzeZQ1S zXCFiXCdNldK7y8zZKzklCMBLiJIMa2a65iUhgEPNy9EWKiih9AAwX1WJXuE+qWy 87V/fjdchUD3lAlwhSuz8R0XmQ5+U8lJnN+HSkPSfeYmkBZrUs/1hu7WpnIWvFfP CV5nJG1AXy4ooxSyVOOc2SeYS6cCthyMXFdWFL517zKlNjSYNsTJhk9BHGg2xvuh E5guggtiHP+DTBB76ESVH4KRIa7l7A68Sg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org