$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS59432.roa File: AS59432.roa (raw, json) Hash identifier: +LS56hZ74JByryd4N+Ds8R/GBd7HobISE4xVTV3xk74= Subject key identifier: 88:A1:7A:A6:07:3C:31:8F:0F:A0:11:4D:C8:D8:44:01:D2:7E:FA:50 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 6F563EDF48BE31C38C201B26F942367EA7F1AEE3 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS59432.roa Signing time: Mon 14 Aug 2023 00:00:12 +0000 ROA not before: Sun 13 Aug 2023 23:55:12 +0000 ROA not after: Mon 12 Aug 2024 00:00:12 +0000 asID: 59432 IP address blocks: 89.116.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 13:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:56:3e:df:48:be:31:c3:8c:20:1b:26:f9:42:36:7e:a7:f1:ae:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Aug 13 23:55:12 2023 GMT Not After : Aug 12 00:00:12 2024 GMT Subject: CN=88A17AA6073C318F0FA0114DC8D84401D27EFA50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:83:37:63:91:81:34:d0:a6:8c:3c:e5:95:80: 83:45:e5:6d:12:ac:9c:6a:75:69:2b:e7:63:c5:ed: 46:36:40:e4:1a:f2:43:2b:ba:de:f4:30:9a:1a:9f: 25:4f:e3:db:14:e2:f9:20:b7:72:0a:ed:70:a4:e0: dd:bf:bc:09:41:1c:b3:c4:9d:60:a3:96:c1:f7:7f: 53:b8:a2:95:94:d5:5d:21:9b:47:9b:1c:63:bc:b1: 04:19:dd:b3:8c:41:b4:73:78:41:bf:0f:2f:55:f9: a9:58:c1:fc:d6:c7:57:18:0e:6d:00:ca:92:4d:3b: b3:0f:ea:87:3c:19:06:2c:a4:05:9d:7f:b5:b9:ad: c8:c7:10:98:83:4b:08:9a:2f:c5:10:bf:44:26:33: 7f:82:db:3d:a0:be:b9:3a:8c:c0:56:0c:2b:6b:8a: 42:ec:a5:00:92:bd:93:50:23:11:d2:04:2f:39:6e: 39:e5:27:db:c1:db:d6:ca:3e:1c:ce:a5:27:d7:ef: 5a:3c:4a:52:46:13:3d:ea:1a:37:a4:35:f2:64:78: cd:e7:fa:e1:b2:26:95:dd:bc:a0:e6:d8:7f:8c:b3: 7c:74:bf:2d:13:af:e0:2b:06:ad:c5:a0:59:3b:50: e0:1b:e6:c6:cb:fb:bd:04:60:92:e0:05:a4:21:14: 1f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A1:7A:A6:07:3C:31:8F:0F:A0:11:4D:C8:D8:44:01:D2:7E:FA:50 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS59432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.116.68.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:b6:20:ee:a5:a7:60:07:94:e0:d3:f2:69:31:f6:f1:9b:81: bd:9d:10:99:6a:dd:b6:d0:73:74:48:ac:4e:bb:ae:c3:27:80: 12:79:04:ac:16:33:86:8a:7d:09:bd:aa:61:d9:0c:7b:1a:ac: 54:68:f5:56:38:70:cc:b5:67:92:d1:91:63:89:d7:fa:43:ff: e1:9d:db:61:80:b7:55:4d:71:29:43:41:ec:84:41:dd:20:4c: 7d:95:ac:49:00:44:ae:ee:cf:07:c0:63:6d:78:05:3c:a5:0d: 44:2d:86:45:49:5b:e5:4b:e2:67:f2:2c:58:3d:30:8b:ef:6f: d2:c1:ce:bc:54:c9:fe:11:65:22:3a:e9:21:c1:e9:a1:91:b2: 81:7a:cf:77:ce:9f:cb:0f:6f:dd:5e:00:1a:67:b2:f0:27:b5: e8:15:3f:04:30:5a:d5:13:7e:08:0d:29:4b:08:84:05:0d:be: 7a:1d:23:f1:b9:9c:1f:ad:14:08:f4:1d:6a:cd:c9:12:68:41: 41:b0:1b:16:17:26:a0:e6:a4:42:85:56:03:a2:59:de:2e:2e: 77:e7:94:9f:e0:79:f6:9e:52:c3:8d:df:97:97:8e:a8:bf:72: 5e:81:c8:1c:e8:25:a8:83:4e:89:71:b1:cc:e5:d2:e6:26:14: f3:e2:2b:69 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUb1Y+30i+McOMIBsm+UI2fqfxruMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzA4MTMyMzU1MTJaFw0yNDA4MTIwMDAwMTJaMDMxMTAvBgNV BAMTKDg4QTE3QUE2MDczQzMxOEYwRkEwMTE0REM4RDg0NDAxRDI3RUZBNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gzdjkYE00KaMPOWVgINF5W0S rJxqdWkr52PF7UY2QOQa8kMrut70MJoanyVP49sU4vkgt3IK7XCk4N2/vAlBHLPE nWCjlsH3f1O4opWU1V0hm0ebHGO8sQQZ3bOMQbRzeEG/Dy9V+alYwfzWx1cYDm0A ypJNO7MP6oc8GQYspAWdf7W5rcjHEJiDSwiaL8UQv0QmM3+C2z2gvrk6jMBWDCtr ikLspQCSvZNQIxHSBC85bjnlJ9vB29bKPhzOpSfX71o8SlJGEz3qGjekNfJkeM3n +uGyJpXdvKDm2H+Ms3x0vy0Tr+ArBq3FoFk7UOAb5sbL+70EYJLgBaQhFB9/AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUiKF6pgc8MY8PoBFNyNhEAdJ++lAwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzU5NDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWXREMA0GCSqGSIb3DQEB CwUAA4IBAQAqtiDupadgB5Tg0/JpMfbxm4G9nRCZat220HN0SKxOu67DJ4ASeQSs FjOGin0Jvaph2Qx7GqxUaPVWOHDMtWeS0ZFjidf6Q//hndthgLdVTXEpQ0HshEHd IEx9laxJAESu7s8HwGNteAU8pQ1ELYZFSVvlS+Jn8ixYPTCL72/Swc68VMn+EWUi OukhwemhkbKBes93zp/LD2/dXgAaZ7LwJ7XoFT8EMFrVE34IDSlLCIQFDb56HSPx uZwfrRQI9B1qzckSaEFBsBsWFyag5qRChVYDolneLi5355Sf4Hn2nlLDjd+Xl46o v3Jegcgc6CWog06JcbHM5dLmJhTz4itp -----END CERTIFICATE-----Generated at Sun May 19 17:04:57 2024 by rpki-client on console-ams.rpki-client.org