$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS51167.roa File: AS51167.roa (raw, json) Hash identifier: +CxhqJCkVJQOppbMGQ2OE8q4JVDqQ1XRCbMLxmFQdcY= Subject key identifier: 2A:85:4A:D5:58:E1:EC:0F:B0:9B:1B:A2:D4:A4:6B:52:08:AC:77:0D Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 03B9FA7AE037518B8F6F76795ED18A471E2456 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS51167.roa Signing time: Mon 05 Aug 2024 15:05:19 +0000 ROA not before: Mon 05 Aug 2024 15:00:19 +0000 ROA not after: Mon 04 Aug 2025 15:05:19 +0000 asID: 51167 IP address blocks: 84.46.240.0/20 maxlen: 24 89.116.24.0/21 maxlen: 24 89.117.16.0/21 maxlen: 21 89.117.48.0/20 maxlen: 24 89.117.72.0/21 maxlen: 24 89.117.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b9:fa:7a:e0:37:51:8b:8f:6f:76:79:5e:d1:8a:47:1e:24:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 5 15:00:19 2024 GMT Not After : Aug 4 15:05:19 2025 GMT Subject: CN=2A854AD558E1EC0FB09B1BA2D4A46B5208AC770D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4a:41:95:d1:19:44:5b:30:4e:16:e5:eb:fa: 12:b8:6b:e5:1f:cd:bb:69:5f:ca:0c:0f:34:50:a6: 60:04:30:2e:e4:bd:0b:87:37:5e:8e:64:35:b0:70: ad:85:f9:3f:a7:38:cd:ea:2f:1b:4f:73:46:26:06: 52:61:f8:18:06:55:ef:89:dd:98:0a:49:8d:94:1b: a1:63:9c:a2:8d:f6:1a:1d:3a:8f:73:46:52:4a:2c: 37:ed:d0:82:c2:14:c0:70:22:50:89:99:81:f5:61: 2e:49:4c:d0:fc:1f:e7:d3:85:a0:a4:8d:c9:ec:49: ff:f4:4e:92:5f:ca:c3:9b:e0:6f:de:e7:40:a1:87: 9e:9e:ed:f6:49:90:52:27:5a:cc:13:68:92:7b:b1: b9:d6:7b:1a:2e:dc:2a:a1:51:88:99:49:68:f7:f9: b5:29:a4:d2:03:ed:fd:d5:2e:7d:ac:af:1f:6a:a8: 78:6d:1c:ea:42:03:8e:2f:96:3a:81:86:67:e7:93: 46:e5:65:d4:b1:5a:17:ad:b8:ba:e8:1c:2b:f4:57: 16:fd:59:09:e9:20:88:61:9b:b0:4a:77:a0:b7:74: 9d:d4:80:c6:c3:31:eb:8f:98:04:56:cd:fa:28:3a: 2a:81:63:43:8a:c8:57:73:ea:76:06:8f:4e:d7:cf: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:85:4A:D5:58:E1:EC:0F:B0:9B:1B:A2:D4:A4:6B:52:08:AC:77:0D X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS51167.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.46.240.0/20 89.116.24.0/21 89.117.16.0/21 89.117.48.0/20 89.117.72.0/21 89.117.144.0/21 Signature Algorithm: sha256WithRSAEncryption 85:d5:ab:e8:1b:c7:70:cb:df:ac:2c:7a:71:a3:49:ec:58:63: e9:b2:f5:f6:8e:6e:01:87:a8:9b:fc:7b:44:77:a5:87:eb:b8: 0e:e1:e9:94:29:a5:6b:5e:df:71:fc:6a:2f:df:65:cf:21:61: 38:4f:32:16:10:cc:b4:51:c4:2c:3d:ff:22:5f:b0:a0:5c:c5: ad:fa:a9:e8:70:d9:16:b3:de:df:c7:4e:ca:1a:98:d0:31:5e: 1b:3d:2a:e9:42:76:64:7c:cb:a9:7e:32:5a:ec:0e:18:e3:51: 89:0c:e3:23:0d:bd:08:66:a2:03:72:42:9e:96:77:8a:14:71: 7b:29:a8:d7:72:04:84:d6:c3:4e:07:bf:cf:b4:38:84:c8:ad: 51:fa:c1:7b:83:d3:da:0f:3a:8a:18:96:82:90:13:1d:a1:47: 2f:d2:95:de:3c:35:b9:ba:5c:2a:ea:40:7b:92:d2:93:c3:c2: 2a:42:02:ad:62:ef:c9:d7:b7:0b:95:e2:59:75:f9:77:91:cb: a4:6f:5e:f1:90:a3:83:5b:b8:92:7e:5f:3f:94:9b:ff:ac:6c: b1:28:45:bf:fe:95:6f:44:0c:69:fb:2f:6b:33:c9:fb:9a:af: ac:bb:a7:e5:ee:5b:9c:5a:c7:fd:38:1b:ec:60:59:c1:0f:c5: aa:99:17:cf -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgITA7n6euA3UYuPb3Z5XtGKRx4kVjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhEMzQ2MDY5NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4 RUYyNzlDMB4XDTI0MDgwNTE1MDAxOVoXDTI1MDgwNDE1MDUxOVowMzExMC8GA1UE AxMoMkE4NTRBRDU1OEUxRUMwRkIwOUIxQkEyRDRBNDZCNTIwOEFDNzcwRDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAORKQZXRGURbME4W5ev6Erhr5R/N u2lfygwPNFCmYAQwLuS9C4c3Xo5kNbBwrYX5P6c4zeovG09zRiYGUmH4GAZV74nd mApJjZQboWOcoo32Gh06j3NGUkosN+3QgsIUwHAiUImZgfVhLklM0Pwf59OFoKSN yexJ//ROkl/Kw5vgb97nQKGHnp7t9kmQUidazBNoknuxudZ7Gi7cKqFRiJlJaPf5 tSmk0gPt/dUufayvH2qoeG0c6kIDji+WOoGGZ+eTRuVl1LFaF624uugcK/RXFv1Z CekgiGGbsEp3oLd0ndSAxsMx64+YBFbN+ig6KoFjQ4rIV3PqdgaPTtfPCDkCAwEA AaOCAkwwggJIMB0GA1UdDgQWBBQqhUrVWOHsD7CbG6LUpGtSCKx3DTAfBgNVHSME GDAWgBTTRgaUnThdtCcU/nEnT6yZSO8nnDAOBgNVHQ8BAf8EBAMCB4AwgYgGA1Ud HwSBgDB+MHygeqB4hnZyc3luYzovL3IubWFnZWxsYW4uaXB4by5jb20vcmVwby81 MjhhMjE4Zi1hZDI4LTQwZDItYmQ3Zi0zNTBlYWRhM2Q3MDUtMC8wL0QzNDYwNjk0 OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3OUMuY3JsMIGeBggrBgEFBQcB AQSBkTCBjjCBiwYIKwYBBQUHMAKGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJp cGUubmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJm OGE0M2IxLzMvRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0OEVGMjc5 Qy5jZXIwcQYIKwYBBQUHAQsEZTBjMGEGCCsGAQUFBzALhlVyc3luYzovL3IubWFn ZWxsYW4uaXB4by5jb20vcmVwby81MjhhMjE4Zi1hZDI4LTQwZDItYmQ3Zi0zNTBl YWRhM2Q3MDUtMC8wL0FTNTExNjcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgABMCQDBARULvADBANZdBgDBANZdRAD BARZdTADBANZdUgDBANZdZAwDQYJKoZIhvcNAQELBQADggEBAIXVq+gbx3DL36ws enGjSexYY+my9faObgGHqJv8e0R3pYfruA7h6ZQppWte33H8ai/fZc8hYThPMhYQ zLRRxCw9/yJfsKBcxa36qehw2Raz3t/HTsoamNAxXhs9KulCdmR8y6l+MlrsDhjj UYkM4yMNvQhmogNyQp6Wd4oUcXspqNdyBITWw04Hv8+0OITIrVH6wXuD09oPOooY loKQEx2hRy/Sld48Nbm6XCrqQHuS0pPDwipCAq1i78nXtwuV4ll1+XeRy6RvXvGQ o4NbuJJ+Xz+Um/+sbLEoRb/+lW9EDGn7L2szyfuar6y7p+XuW5xax/04G+xgWcEP xaqZF88= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org