$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5065.roa File: AS5065.roa (raw, json) Hash identifier: ktjWVPDYSncTv7KWySljeD+SmNJ5158/wuO1CAAlgGU= Subject key identifier: B7:1B:18:65:72:D7:85:87:58:D9:94:C6:82:23:C9:2B:C5:75:E3:3C Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 67EF95A0E250C590709D0767D176980FE0D5A47E Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5065.roa Signing time: Fri 19 Jan 2024 12:30:11 +0000 ROA not before: Fri 19 Jan 2024 12:25:11 +0000 ROA not after: Fri 17 Jan 2025 12:30:11 +0000 asID: 5065 IP address blocks: 89.116.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 05 May 2024 13:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ef:95:a0:e2:50:c5:90:70:9d:07:67:d1:76:98:0f:e0:d5:a4:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 19 12:25:11 2024 GMT Not After : Jan 17 12:30:11 2025 GMT Subject: CN=B71B186572D7858758D994C68223C92BC575E33C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7d:e6:d8:6c:6b:49:6d:b8:33:e2:23:82:8f: 1a:f2:be:e3:78:9c:ad:6e:54:ee:da:e2:35:60:57: d5:f0:43:11:15:91:66:eb:b6:97:9d:e1:31:e3:7a: a7:12:d7:bb:c8:e7:46:db:cf:5f:d5:c3:10:dd:e2: 19:db:1c:26:60:b8:48:30:75:e6:04:10:be:db:c6: 1a:02:32:95:93:69:5d:db:a9:19:4b:e7:2b:d3:a7: 2e:75:1e:4e:05:f9:a3:33:7c:d7:5c:a6:49:50:03: 45:c6:3a:dc:6c:5a:9d:fa:2d:db:df:9b:ad:14:27: e0:19:ba:b0:5c:97:0b:0d:b4:2d:4e:8e:ec:7f:9f: 40:2c:f7:bf:33:90:c8:b9:a1:40:43:ac:de:86:a9: 6c:d3:f2:b3:a4:12:cc:76:83:fe:01:e1:f4:dc:56: 52:b6:f0:cc:eb:76:7c:04:82:ad:d4:e6:a3:ab:61: 21:7d:77:61:3b:65:8a:8f:12:e2:d0:37:0e:e5:cb: 44:a3:bc:d8:25:5c:eb:20:8e:a5:a2:83:8e:42:5b: 4a:ed:8d:12:61:f9:15:a9:13:7d:1d:4b:67:66:df: 05:3f:32:5b:3d:6d:d0:4d:01:05:37:84:33:f1:c7: 69:e4:cc:b0:23:23:68:52:99:3d:79:70:ab:65:04: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1B:18:65:72:D7:85:87:58:D9:94:C6:82:23:C9:2B:C5:75:E3:3C X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.150.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:a4:7f:4f:85:22:f2:ef:83:01:9c:5d:6d:c5:78:a1:12:e0: 33:1a:e3:89:52:e6:df:c3:27:30:47:77:67:b1:dd:e9:d2:e0: 8a:e9:11:6f:6a:f0:87:41:1b:2a:84:3f:d9:12:26:1c:ab:78: b1:38:8d:8d:d4:0b:46:5a:79:d7:c1:80:c4:1d:ba:d3:f9:3b: ec:3a:b9:cc:54:e1:f8:78:5b:be:dc:bc:78:21:6c:65:8e:f5: 92:47:fe:92:92:48:bc:ea:68:41:fa:ff:9c:1c:da:81:34:ee: 20:d1:5c:1a:e8:cd:0a:64:1e:6a:6a:30:b7:1f:65:3f:81:86: 4e:c3:96:28:83:ba:e8:ed:0c:01:16:00:47:b7:07:21:75:55: 0c:b9:09:d7:19:69:8c:b3:c1:c5:c5:ad:eb:c6:ce:b9:0a:cb: 62:58:74:5a:17:7e:52:18:4e:23:0a:39:47:5f:ca:94:6a:10: 5e:71:aa:91:a9:14:48:36:b7:ca:36:33:db:4f:b1:59:9f:94: c9:83:21:a5:d5:64:68:23:4f:f6:00:20:c5:d7:71:54:3b:aa: 8b:e8:04:28:51:53:fc:b7:63:33:5a:b8:8e:cc:26:26:f6:54: b3:49:f1:b4:cd:f6:b3:cd:7b:b7:8d:0d:c4:6a:76:19:cc:79: 07:23:9c:d0 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUZ++VoOJQxZBwnQdn0XaYD+DVpH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDAxMTkxMjI1MTFaFw0yNTAxMTcxMjMwMTFaMDMxMTAvBgNV BAMTKEI3MUIxODY1NzJENzg1ODc1OEQ5OTRDNjgyMjNDOTJCQzU3NUUzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7febYbGtJbbgz4iOCjxryvuN4 nK1uVO7a4jVgV9XwQxEVkWbrtped4THjeqcS17vI50bbz1/VwxDd4hnbHCZguEgw deYEEL7bxhoCMpWTaV3bqRlL5yvTpy51Hk4F+aMzfNdcpklQA0XGOtxsWp36Ldvf m60UJ+AZurBclwsNtC1Ojux/n0As978zkMi5oUBDrN6GqWzT8rOkEsx2g/4B4fTc VlK28MzrdnwEgq3U5qOrYSF9d2E7ZYqPEuLQNw7ly0SjvNglXOsgjqWig45CW0rt jRJh+RWpE30dS2dm3wU/Mls9bdBNAQU3hDPxx2nkzLAjI2hSmT15cKtlBGyLAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUtxsYZXLXhYdY2ZTGgiPJK8V14zwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzUwNjUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZdJYwDQYJKoZIhvcNAQEL BQADggEBACqkf0+FIvLvgwGcXW3FeKES4DMa44lS5t/DJzBHd2ex3enS4IrpEW9q 8IdBGyqEP9kSJhyreLE4jY3UC0ZaedfBgMQdutP5O+w6ucxU4fh4W77cvHghbGWO 9ZJH/pKSSLzqaEH6/5wc2oE07iDRXBrozQpkHmpqMLcfZT+Bhk7DliiDuujtDAEW AEe3ByF1VQy5CdcZaYyzwcXFrevGzrkKy2JYdFoXflIYTiMKOUdfypRqEF5xqpGp FEg2t8o2M9tPsVmflMmDIaXVZGgjT/YAIMXXcVQ7qovoBChRU/y3YzNauI7MJib2 VLNJ8bTN9rPNe7eNDcRqdhnMeQcjnNA= -----END CERTIFICATE-----Generated at Sat May 4 17:59:02 2024 by rpki-client on console-fra.rpki-client.org