$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS40021.roa File: AS40021.roa (raw, json) Hash identifier: yeAFw//jtJ2MpnZw4/Vx0yb8uVkDcMrpot8QKSoI0Kg= Subject key identifier: 65:A2:2C:CB:BF:D2:44:B1:36:CF:9D:F7:EF:DB:FD:36:F6:00:2D:61 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 66AAFD9FFCF511DABEBC02896DA673F15CD4B205 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS40021.roa Signing time: Fri 25 Aug 2023 13:38:14 +0000 ROA not before: Fri 25 Aug 2023 13:33:14 +0000 ROA not after: Fri 23 Aug 2024 13:38:14 +0000 asID: 40021 IP address blocks: 89.117.16.0/21 maxlen: 21 89.117.72.0/21 maxlen: 24 89.117.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 13:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:aa:fd:9f:fc:f5:11:da:be:bc:02:89:6d:a6:73:f1:5c:d4:b2:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 25 13:33:14 2023 GMT Not After : Aug 23 13:38:14 2024 GMT Subject: CN=65A22CCBBFD244B136CF9DF7EFDBFD36F6002D61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2f:1a:a2:fa:cf:db:49:5a:91:25:ba:67:34: 27:b9:87:8a:65:14:a2:b7:e4:ea:15:e0:54:1b:bc: 1f:77:96:5c:a9:9a:c8:bf:19:5b:0e:0d:53:2d:72: f0:0c:b3:2c:17:17:a3:75:66:d9:25:7c:ee:93:21: 0b:4d:be:12:32:d7:64:e1:53:fa:4f:c2:65:63:83: ef:5a:6f:e7:a5:3a:fd:f4:14:18:91:2f:0b:a7:03: d2:18:fa:b4:e8:1c:ff:63:be:54:ab:5e:d2:e5:2f: a5:bb:e8:0a:69:fc:e9:fa:24:9f:67:b9:d2:da:db: 88:70:3a:ce:f8:01:ec:2c:39:59:2f:82:8b:fb:75: 45:0f:70:19:58:4c:01:ff:63:0b:e0:c8:95:a6:b6: 87:17:0f:36:3c:cb:80:4f:ac:40:4c:43:bf:50:81: b0:ac:35:e4:81:0d:67:c6:c0:98:02:3d:e4:c3:dc: 56:93:3f:5d:ce:ad:66:92:eb:f7:c2:c6:a2:26:03: 2b:97:0a:f0:86:fe:95:b2:85:b7:5e:8c:cf:b3:5c: 56:81:e1:ab:d4:a3:9e:9e:b3:b8:d6:c0:5e:4b:52: 84:57:61:4a:d4:94:4e:40:4b:ad:58:4a:02:78:90: d9:93:6d:bd:12:f6:87:8b:ba:4d:c6:8e:13:9f:ff: 3f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A2:2C:CB:BF:D2:44:B1:36:CF:9D:F7:EF:DB:FD:36:F6:00:2D:61 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS40021.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.16.0/21 89.117.72.0/21 89.117.144.0/21 Signature Algorithm: sha256WithRSAEncryption 62:8c:33:42:c2:1d:81:67:35:4d:f4:a4:b7:fd:27:06:5a:ea: 99:5c:07:d7:f0:34:54:fc:aa:b3:43:5b:4c:09:b7:7e:5a:ed: 78:52:44:4d:1a:2a:e8:25:c9:51:06:a9:61:33:04:7f:e1:4a: 93:cc:bf:42:c0:69:73:09:00:b0:44:d7:68:6a:82:68:bc:90: 16:64:17:38:38:84:e8:6f:7c:73:a3:17:60:ac:73:47:57:25: 32:20:f3:16:d2:b1:d6:ed:4b:e6:58:9a:62:7f:c1:5c:c6:f3: 1d:ba:db:87:e0:86:f5:0d:6b:4d:6a:e4:60:d1:75:b0:d0:f3: 74:75:d8:ce:19:71:9f:3c:a9:09:e7:8c:d3:a6:4b:4e:c7:f1: 56:04:94:e1:b9:c9:92:c4:89:ea:07:01:b2:31:ac:0b:a9:56: e1:5b:5a:e7:ae:ea:a8:4d:66:f2:72:a7:2b:c5:c8:74:34:ef: ab:b1:4d:12:08:db:f5:41:7c:a2:aa:78:ea:cc:7a:b2:32:18: f0:d7:fd:5b:6c:d1:2b:0d:31:fc:37:9f:2b:36:ee:cd:31:b3: 58:c6:cf:1c:d5:2b:fd:60:5f:bc:d4:d6:84:a9:1a:16:3a:0d: 73:57:c4:b0:13:f4:be:48:ba:ee:08:84:e8:9f:f7:3c:a1:62: 12:98:af:46 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUZqr9n/z1Edq+vAKJbaZz8VzUsgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzA4MjUxMzMzMTRaFw0yNDA4MjMxMzM4MTRaMDMxMTAvBgNV BAMTKDY1QTIyQ0NCQkZEMjQ0QjEzNkNGOURGN0VGREJGRDM2RjYwMDJENjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiLxqi+s/bSVqRJbpnNCe5h4pl FKK35OoV4FQbvB93llypmsi/GVsODVMtcvAMsywXF6N1ZtklfO6TIQtNvhIy12Th U/pPwmVjg+9ab+elOv30FBiRLwunA9IY+rToHP9jvlSrXtLlL6W76App/On6JJ9n udLa24hwOs74AewsOVkvgov7dUUPcBlYTAH/YwvgyJWmtocXDzY8y4BPrEBMQ79Q gbCsNeSBDWfGwJgCPeTD3FaTP13OrWaS6/fCxqImAyuXCvCG/pWyhbdejM+zXFaB 4avUo56es7jWwF5LUoRXYUrUlE5AS61YSgJ4kNmTbb0S9oeLuk3GjhOf/z9ZAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUZaIsy7/SRLE2z53379v9NvYALWEwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzQwMDIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDWXUQAwQDWXVIAwQDWXWQ MA0GCSqGSIb3DQEBCwUAA4IBAQBijDNCwh2BZzVN9KS3/ScGWuqZXAfX8DRU/Kqz Q1tMCbd+Wu14UkRNGiroJclRBqlhMwR/4UqTzL9CwGlzCQCwRNdoaoJovJAWZBc4 OITob3xzoxdgrHNHVyUyIPMW0rHW7UvmWJpif8FcxvMdutuH4Ib1DWtNauRg0XWw 0PN0ddjOGXGfPKkJ54zTpktOx/FWBJThucmSxInqBwGyMawLqVbhW1rnruqoTWby cqcrxch0NO+rsU0SCNv1QXyiqnjqzHqyMhjw1/1bbNErDTH8N58rNu7NMbNYxs8c 1Sv9YF+81NaEqRoWOg1zV8SwE/S+SLruCITon/c8oWISmK9G -----END CERTIFICATE-----Generated at Sun May 19 17:04:57 2024 by rpki-client on console-ams.rpki-client.org