$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS40021.roa File: AS40021.roa (raw, json) Hash identifier: lz9EpT07na5w8Wa92tHaDbksizuyg8mIHXrLuYEMZuM= Subject key identifier: F3:5E:5D:BE:FE:31:04:E6:6C:24:C2:DB:21:1F:76:25:48:2D:AF:34 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 55E3FC0A1F0ADEC093325C59CDEF8D0900BBEDF0 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS40021.roa Signing time: Fri 26 Jul 2024 14:05:19 +0000 ROA not before: Fri 26 Jul 2024 14:00:19 +0000 ROA not after: Fri 25 Jul 2025 14:05:19 +0000 asID: 40021 IP address blocks: 89.117.16.0/21 maxlen: 21 89.117.72.0/21 maxlen: 24 89.117.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e3:fc:0a:1f:0a:de:c0:93:32:5c:59:cd:ef:8d:09:00:bb:ed:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jul 26 14:00:19 2024 GMT Not After : Jul 25 14:05:19 2025 GMT Subject: CN=F35E5DBEFE3104E66C24C2DB211F7625482DAF34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:25:14:16:4f:07:e5:5f:b5:6d:c1:9a:4e:34: 71:30:86:5f:f1:c8:48:fe:14:01:03:47:38:e6:57: 8a:72:17:19:d5:2c:2d:a0:cc:26:62:5f:dd:0e:37: 8c:d5:18:f0:1c:3d:82:3c:77:e1:f7:5d:ac:dd:06: 90:79:0c:18:33:d2:11:15:ba:41:36:61:84:e5:49: 17:3a:5f:48:0c:b4:88:41:3a:4a:d5:88:85:f0:2e: e3:64:58:37:2e:21:9b:2b:93:7b:e7:50:94:6e:38: ca:38:b5:55:ca:61:6d:ba:8b:2b:07:0c:b1:98:66: f9:af:0e:0d:79:ca:4d:68:20:89:5b:3d:44:fc:6e: 73:70:2e:99:d3:bc:c1:fb:5c:ab:a5:28:2f:83:c6: 1e:bf:07:f4:25:7a:9c:8f:5c:1a:c6:e8:f1:3d:ca: 8d:a4:3e:e8:70:3f:c5:eb:5a:1a:6a:bb:95:43:59: 36:b4:2b:e1:d4:c6:d5:5f:91:74:56:e7:1b:fd:ea: ac:34:39:46:45:49:db:bb:15:d7:3c:f5:ba:64:e0: 4f:b1:fd:05:f9:7c:a2:c4:b8:c0:01:e5:42:14:d7: 83:89:d3:44:4c:19:40:15:44:41:06:a2:ee:83:40: ce:70:23:18:9a:22:73:f1:a8:ab:2f:7f:74:d7:83: c4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5E:5D:BE:FE:31:04:E6:6C:24:C2:DB:21:1F:76:25:48:2D:AF:34 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS40021.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.16.0/21 89.117.72.0/21 89.117.144.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:13:9c:f4:83:59:27:7c:fc:ac:5e:03:fd:31:d5:cf:92:49: 22:ef:be:59:1d:ff:b3:d5:0d:74:11:a2:fb:95:13:22:3e:f3: ac:4e:13:77:29:38:c7:cb:fa:36:a9:9d:1c:17:f0:a3:6f:59: 92:1b:2e:98:c9:e4:b2:30:be:ff:f0:59:e9:be:38:77:92:20: 8b:d0:9b:97:64:38:d9:0a:94:aa:74:7a:46:b5:57:60:d0:df: e1:9d:ca:39:37:90:dc:57:59:8f:ca:68:40:cb:4a:4e:c6:d7: e6:7e:a8:d4:8e:94:b3:13:73:60:8d:3a:f5:19:30:6a:53:dd: 64:39:a3:97:b2:cb:49:50:83:ba:ec:a9:47:96:8f:bf:aa:5b: 45:90:6a:86:9d:40:5d:f9:ed:4d:52:cf:96:69:5f:ec:26:4e: 99:33:19:34:1d:ff:4e:68:2b:a5:fd:50:df:ac:6b:cc:55:49: c3:bf:e6:35:cd:31:8f:f3:13:bc:d9:b0:81:34:97:ed:e7:e7: 0f:77:74:96:40:b1:5e:32:8c:dd:2b:6c:bd:5a:f0:ba:02:62: de:93:be:78:6c:fe:70:72:b8:0a:8c:aa:ed:de:1f:ad:0e:d8: 59:a7:d7:a4:6a:17:d4:4a:4c:0e:f0:e3:b7:32:72:c4:91:b9: e2:f6:13:16 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUVeP8Ch8K3sCTMlxZze+NCQC77fAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA3MjYxNDAwMTlaFw0yNTA3MjUxNDA1MTlaMDMxMTAvBgNV BAMTKEYzNUU1REJFRkUzMTA0RTY2QzI0QzJEQjIxMUY3NjI1NDgyREFGMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3JRQWTwflX7VtwZpONHEwhl/x yEj+FAEDRzjmV4pyFxnVLC2gzCZiX90ON4zVGPAcPYI8d+H3XazdBpB5DBgz0hEV ukE2YYTlSRc6X0gMtIhBOkrViIXwLuNkWDcuIZsrk3vnUJRuOMo4tVXKYW26iysH DLGYZvmvDg15yk1oIIlbPUT8bnNwLpnTvMH7XKulKC+Dxh6/B/QlepyPXBrG6PE9 yo2kPuhwP8XrWhpqu5VDWTa0K+HUxtVfkXRW5xv96qw0OUZFSdu7Fdc89bpk4E+x /QX5fKLEuMAB5UIU14OJ00RMGUAVREEGou6DQM5wIxiaInPxqKsvf3TXg8RjAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU815dvv4xBOZsJMLbIR92JUgtrzQwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzQwMDIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDWXUQAwQDWXVIAwQDWXWQ MA0GCSqGSIb3DQEBCwUAA4IBAQAbE5z0g1knfPysXgP9MdXPkkki775ZHf+z1Q10 EaL7lRMiPvOsThN3KTjHy/o2qZ0cF/Cjb1mSGy6YyeSyML7/8Fnpvjh3kiCL0JuX ZDjZCpSqdHpGtVdg0N/hnco5N5DcV1mPymhAy0pOxtfmfqjUjpSzE3NgjTr1GTBq U91kOaOXsstJUIO67KlHlo+/qltFkGqGnUBd+e1NUs+WaV/sJk6ZMxk0Hf9OaCul /VDfrGvMVUnDv+Y1zTGP8xO82bCBNJft5+cPd3SWQLFeMozdK2y9WvC6AmLek754 bP5wcrgKjKrt3h+tDthZp9ekahfUSkwO8OO3MnLEkbni9hMW -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:22 2024 by rpki-client on console-ams.rpki-client.org