$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5650.roa File: AS5650.roa (raw, json) Hash identifier: CRQiCVCduoXLLPQIBa7yjmGFuqcqu0Y8+XqVI7tDa5M= Subject key identifier: 00:DB:EB:33:A2:37:4D:8C:73:DA:28:14:2B:08:37:B3:F8:7D:40:06 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 1785B8EC57ED7E03102D8C3F97948A82699B5389 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5650.roa Signing time: Wed 20 Nov 2024 14:43:28 +0000 ROA not before: Wed 20 Nov 2024 14:38:28 +0000 ROA not after: Wed 19 Nov 2025 14:43:28 +0000 asID: 5650 IP address blocks: 89.116.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:85:b8:ec:57:ed:7e:03:10:2d:8c:3f:97:94:8a:82:69:9b:53:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Nov 20 14:38:28 2024 GMT Not After : Nov 19 14:43:28 2025 GMT Subject: CN=00DBEB33A2374D8C73DA28142B0837B3F87D4006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4d:1f:da:89:be:77:88:07:d5:a0:81:ee:19: ab:4d:79:b9:db:20:18:b4:d7:a8:41:7e:60:42:a8: ed:3c:67:e3:98:dd:26:8d:cc:4a:af:43:2d:af:8d: 4c:e2:15:3a:94:61:4d:6f:d2:1e:49:42:bb:0c:4d: d7:01:bc:b3:6a:4c:88:71:70:0b:cf:6b:ad:17:1a: c4:21:37:86:63:34:95:ee:c3:87:5f:a3:97:14:d6: b4:24:78:ea:21:28:50:8e:fc:e8:e6:39:81:b2:46: 80:c5:c9:99:ba:7f:ec:d8:41:ae:81:1b:56:29:f8: 84:db:86:17:c3:02:9a:42:e1:96:0d:5b:bf:cb:5a: d0:a4:f9:fb:1c:a1:dd:01:ce:23:c4:4e:54:8f:b2: 03:9b:0f:0e:b0:ff:54:9a:5b:96:d1:b3:af:7c:f3: 5d:26:70:9d:14:13:f7:4a:67:95:11:91:1e:79:b3: 34:6a:19:83:f6:bd:8e:37:e0:03:ec:f2:cd:cf:bd: c3:83:27:22:83:9a:31:d8:d5:76:a8:d6:34:29:89: 7f:65:dd:6c:61:51:74:8a:fb:03:78:e8:54:6b:a2: 0d:7f:fd:92:8c:2d:95:37:88:c4:cd:b9:2b:11:c7: b2:67:d5:67:ae:92:93:97:87:ec:da:d1:28:c6:2e: 26:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DB:EB:33:A2:37:4D:8C:73:DA:28:14:2B:08:37:B3:F8:7D:40:06 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS5650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.189.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:62:85:ba:02:df:5d:52:3e:e9:9f:0d:0a:04:ca:15:f4:7c: 17:07:d4:95:79:18:38:19:34:db:74:47:b5:4c:35:a4:8b:df: dc:b8:e9:94:02:b9:15:46:34:08:c6:36:0d:d2:ca:f7:15:f4: 3a:9b:f4:6d:5e:3d:75:bc:15:3c:b6:c3:fd:8a:b4:ad:24:d9: 74:7a:9e:a9:84:cd:37:cc:bc:bf:82:f2:31:f1:32:0a:97:1f: 58:97:39:cf:77:db:ac:11:43:d5:5c:31:02:90:90:1a:8e:2f: 80:70:79:33:39:88:52:a6:05:e0:32:2d:93:27:2b:c7:6c:f4: 2f:af:d5:f9:c0:8f:ac:de:c4:d9:1c:b3:5f:66:c7:4b:bb:b1: 7e:b6:bd:c1:7b:fe:15:03:2e:8f:50:53:65:6f:56:ea:72:c6: 0d:56:18:00:e1:b7:a6:b7:58:83:5c:f7:d6:5e:04:be:20:6e: 6d:1e:5c:82:73:79:ea:8d:58:a0:a3:8c:36:96:db:1b:b8:fa: c3:0c:91:e6:68:39:10:d7:f5:b5:22:47:a5:28:5e:65:40:6d: c1:12:0f:f4:d0:a0:02:0c:83:7b:45:84:08:ef:6f:20:bc:92: 79:fc:07:2a:db:89:aa:b6:46:b4:e5:98:5a:75:19:5d:08:df: dc:6a:24:7f -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUF4W47FftfgMQLYw/l5SKgmmbU4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDExMjAxNDM4MjhaFw0yNTExMTkxNDQzMjhaMDMxMTAvBgNV BAMTKDAwREJFQjMzQTIzNzREOEM3M0RBMjgxNDJCMDgzN0IzRjg3RDQwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXTR/aib53iAfVoIHuGatNebnb IBi016hBfmBCqO08Z+OY3SaNzEqvQy2vjUziFTqUYU1v0h5JQrsMTdcBvLNqTIhx cAvPa60XGsQhN4ZjNJXuw4dfo5cU1rQkeOohKFCO/OjmOYGyRoDFyZm6f+zYQa6B G1Yp+ITbhhfDAppC4ZYNW7/LWtCk+fscod0BziPETlSPsgObDw6w/1SaW5bRs698 810mcJ0UE/dKZ5URkR55szRqGYP2vY434APs8s3PvcODJyKDmjHY1Xao1jQpiX9l 3WxhUXSK+wN46FRrog1//ZKMLZU3iMTNuSsRx7Jn1WeukpOXh+za0SjGLiYPAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUANvrM6I3TYxz2igUKwg3s/h9QAYwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzU2NTAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZdL0wDQYJKoZIhvcNAQEL BQADggEBADtihboC311SPumfDQoEyhX0fBcH1JV5GDgZNNt0R7VMNaSL39y46ZQC uRVGNAjGNg3SyvcV9Dqb9G1ePXW8FTy2w/2KtK0k2XR6nqmEzTfMvL+C8jHxMgqX H1iXOc9326wRQ9VcMQKQkBqOL4BweTM5iFKmBeAyLZMnK8ds9C+v1fnAj6zexNkc s19mx0u7sX62vcF7/hUDLo9QU2VvVupyxg1WGADht6a3WINc99ZeBL4gbm0eXIJz eeqNWKCjjDaW2xu4+sMMkeZoORDX9bUiR6UoXmVAbcESD/TQoAIMg3tFhAjvbyC8 knn8Byrbiaq2RrTlmFp1GV0I39xqJH8= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:22 2024 by rpki-client on console-ams.rpki-client.org