$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa File: AS61317.roa (raw, json) Hash identifier: okSoNWS3vm3OCBkjS/74nAad1cZLRlN43XYuT9Rwrzw= Subject key identifier: 0F:16:22:86:73:AC:F6:D4:0A:80:C3:72:9B:8C:45:BE:88:EE:9C:44 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 260D2FEE811CACF8FDFB84B759FF4ABD79973529 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa Signing time: Sun 12 Jan 2025 00:00:36 +0000 ROA not before: Sat 11 Jan 2025 23:55:36 +0000 ROA not after: Sun 11 Jan 2026 00:00:36 +0000 asID: 61317 IP address blocks: 86.38.177.0/24 maxlen: 24 86.38.183.0/24 maxlen: 24 89.116.45.0/24 maxlen: 24 89.116.56.0/24 maxlen: 24 89.117.126.0/24 maxlen: 24 89.117.132.0/23 maxlen: 23 89.117.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 16 Feb 2025 22:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:0d:2f:ee:81:1c:ac:f8:fd:fb:84:b7:59:ff:4a:bd:79:97:35:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jan 11 23:55:36 2025 GMT Not After : Jan 11 00:00:36 2026 GMT Subject: CN=0F16228673ACF6D40A80C3729B8C45BE88EE9C44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f7:22:72:70:18:57:f6:45:d6:11:f7:4c:9c: 9d:b9:9a:cc:83:1f:96:f9:57:18:61:d6:f7:b9:2f: f8:0b:a4:e5:68:b6:3f:58:87:71:81:f9:0d:84:aa: 48:72:61:3f:00:e5:07:9b:09:28:08:fe:12:fa:ae: 48:e2:f0:a6:32:93:a1:f5:91:11:32:1a:bc:1f:26: 7a:14:ec:c6:d7:5e:e1:16:b0:df:e3:eb:bb:4c:53: b0:76:3b:7f:22:f6:2d:41:c9:07:c2:c1:17:66:53: 87:9b:c8:5c:92:cf:15:e0:a7:97:ad:02:bd:f4:95: b0:ed:33:46:1b:37:54:9a:d8:1f:38:83:e0:ac:d4: 78:88:dd:97:f3:9c:ef:59:b4:a9:ff:b7:03:58:f2: 63:e4:a5:64:74:3c:ad:15:e1:ea:ed:4e:12:e5:3e: 83:c7:60:9c:ca:21:41:eb:0b:55:27:b5:b4:4f:6b: 4a:20:ae:31:cc:07:b7:e8:53:9d:c5:96:97:cd:68: c3:32:fa:d3:da:f7:ea:eb:63:65:09:e0:17:96:67: dd:c7:a8:95:1c:44:00:e6:b9:45:50:da:88:c4:e6: 49:31:98:6d:75:86:d9:0d:ea:96:1e:31:9f:fb:6e: 6a:70:af:d2:25:98:ed:1d:20:9e:2c:3b:7d:0e:41: 87:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:16:22:86:73:AC:F6:D4:0A:80:C3:72:9B:8C:45:BE:88:EE:9C:44 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.38.177.0/24 86.38.183.0/24 89.116.45.0/24 89.116.56.0/24 89.117.126.0/24 89.117.132.0/23 89.117.215.0/24 Signature Algorithm: sha256WithRSAEncryption 98:7a:80:90:c4:ad:af:56:72:10:60:51:4d:e1:10:4f:24:f5: c3:50:e0:34:2a:39:6a:80:b4:28:1e:39:74:8d:8b:cf:49:3a: 09:07:77:18:46:bb:c9:4a:85:c5:a0:f7:78:af:4a:86:f9:99: 51:af:5b:80:fe:71:7f:be:cf:d1:ec:60:de:6f:ef:17:ca:bc: d3:31:7e:3d:c5:2e:f2:b1:3c:ed:70:f7:bb:27:c2:05:c1:49: f9:88:e7:65:d5:0a:ac:84:53:8a:9a:3f:24:6c:1b:56:13:ac: 31:cf:82:b3:76:44:33:15:9e:9e:40:53:48:38:6d:ab:78:d9: 7f:fa:56:cd:b4:4a:fa:d6:8e:b6:15:a6:ca:24:dd:6c:5b:46: ac:4c:28:73:18:ec:e2:08:6f:c2:05:6f:0b:b9:47:2c:59:c2: 71:5b:33:63:35:9b:cb:29:43:f0:23:76:46:64:62:5c:3e:fb: ce:d1:d9:9f:03:b5:f5:47:35:09:6e:07:ee:e3:64:a3:af:18: d0:42:d7:9b:5b:92:00:99:32:ab:f5:7c:22:04:1f:7d:45:82: 9f:3a:d1:55:59:9a:b0:65:d6:f9:bd:3b:c5:82:9c:69:18:76: 29:e8:54:06:6a:68:ad:21:7d:26:a7:67:e1:2c:e3:21:bc:02: 13:1e:92:83 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgIUJg0v7oEcrPj9+4S3Wf9KvXmXNSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNTAxMTEyMzU1MzZaFw0yNjAxMTEwMDAwMzZaMDMxMTAvBgNV BAMTKDBGMTYyMjg2NzNBQ0Y2RDQwQTgwQzM3MjlCOEM0NUJFODhFRTlDNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb9yJycBhX9kXWEfdMnJ25msyD H5b5Vxhh1ve5L/gLpOVotj9Yh3GB+Q2EqkhyYT8A5QebCSgI/hL6rkji8KYyk6H1 kREyGrwfJnoU7MbXXuEWsN/j67tMU7B2O38i9i1ByQfCwRdmU4ebyFySzxXgp5et Ar30lbDtM0YbN1Sa2B84g+Cs1HiI3ZfznO9ZtKn/twNY8mPkpWR0PK0V4ertThLl PoPHYJzKIUHrC1UntbRPa0ogrjHMB7foU53FlpfNaMMy+tPa9+rrY2UJ4BeWZ93H qJUcRADmuUVQ2ojE5kkxmG11htkN6pYeMZ/7bmpwr9IlmO0dIJ4sO30OQYeTAgMB AAGjggJSMIICTjAdBgNVHQ4EFgQUDxYihnOs9tQKgMNym4xFvojunEQwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzYxMzE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAViaxAwQAVia3AwQAWXQt AwQAWXQ4AwQAWXV+AwQBWXWEAwQAWXXXMA0GCSqGSIb3DQEBCwUAA4IBAQCYeoCQ xK2vVnIQYFFN4RBPJPXDUOA0KjlqgLQoHjl0jYvPSToJB3cYRrvJSoXFoPd4r0qG +ZlRr1uA/nF/vs/R7GDeb+8XyrzTMX49xS7ysTztcPe7J8IFwUn5iOdl1QqshFOK mj8kbBtWE6wxz4KzdkQzFZ6eQFNIOG2reNl/+lbNtEr61o62FabKJN1sW0asTChz GOziCG/CBW8LuUcsWcJxWzNjNZvLKUPwI3ZGZGJcPvvO0dmfA7X1RzUJbgfu42Sj rxjQQtebW5IAmTKr9XwiBB99RYKfOtFVWZqwZdb5vTvFgpxpGHYp6FQGamitIX0m p2fhLOMhvAITHpKD -----END CERTIFICATE-----Generated at Sun Feb 16 15:35:21 2025 by rpki-client