$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa File: AS9009.roa (raw, json) Hash identifier: U+JpmiG/xc1ernXFrswCZGYGY5fqKcptAcii+jxvmpE= Subject key identifier: 9D:C0:88:A4:57:97:23:C0:F3:E9:64:6B:85:C2:66:0D:00:B1:C4:FC Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 24B6B2141AE6BDFED8EB488C6B22EFE504C1B844 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa Signing time: Thu 21 Sep 2023 09:31:50 +0000 ROA not before: Thu 21 Sep 2023 09:26:50 +0000 ROA not after: Thu 19 Sep 2024 09:31:50 +0000 asID: 9009 IP address blocks: 89.117.88.0/24 maxlen: 24 89.117.89.0/24 maxlen: 24 89.117.90.0/24 maxlen: 24 89.117.113.0/24 maxlen: 24 89.117.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 07 May 2024 01:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b6:b2:14:1a:e6:bd:fe:d8:eb:48:8c:6b:22:ef:e5:04:c1:b8:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Sep 21 09:26:50 2023 GMT Not After : Sep 19 09:31:50 2024 GMT Subject: CN=9DC088A4579723C0F3E9646B85C2660D00B1C4FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1b:50:75:1a:c9:37:f4:9a:13:b4:ce:28:3d: 97:65:1d:d4:47:21:51:a9:20:ba:f0:fa:b8:f8:ef: 82:e1:07:b7:df:08:5e:5f:58:c9:c4:dc:ef:fd:90: f1:ef:8d:76:86:9e:3a:f2:4a:19:b6:85:9f:6f:48: 59:5a:d4:51:98:3b:71:41:49:9d:f4:f3:70:59:11: 75:f7:dc:0f:16:03:a8:75:6f:15:95:b3:44:7a:39: d3:1e:e4:7a:06:c4:29:6f:42:18:f0:57:93:d8:b0: ce:3a:91:75:de:aa:34:77:d3:82:fb:94:43:75:3e: 52:c4:2c:1e:e8:69:74:a1:65:3b:55:3c:3c:ab:37: 0f:eb:92:6d:a6:03:4d:ff:92:a1:94:c2:a1:e1:05: 36:9c:8a:f7:36:5f:eb:4d:1c:13:9a:12:c7:9a:92: ef:96:08:d1:a5:0f:74:33:d0:d3:ab:b8:dd:9a:46: c4:f4:c9:fd:26:16:f1:0a:f4:7d:db:95:b0:eb:fa: a1:f4:c3:6d:86:59:ac:47:52:8c:b6:ef:fc:b9:a1: cf:17:50:47:64:f5:9d:90:63:6d:11:5a:10:00:28: 49:c3:24:f1:6a:b8:97:e0:d2:92:80:71:fb:4b:af: 21:c2:82:31:8d:57:85:19:e9:38:9f:3d:23:d0:d5: 13:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C0:88:A4:57:97:23:C0:F3:E9:64:6B:85:C2:66:0D:00:B1:C4:FC X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.117.88.0-89.117.90.255 89.117.113.0-89.117.114.255 Signature Algorithm: sha256WithRSAEncryption 13:8f:23:09:a3:e2:24:96:86:bd:7d:2c:88:98:78:57:ef:b7: 38:f9:29:61:0a:37:41:f0:24:9e:a9:36:4f:f6:19:5d:33:54: 07:06:ee:45:32:10:85:47:f4:cb:56:6c:34:48:21:3a:35:31: 0c:12:54:f8:95:d9:a0:97:a6:f3:db:57:fb:45:d7:df:b6:a5: 2e:30:a1:0c:88:5e:45:6e:89:11:1e:b3:11:d9:35:06:1d:e1: 30:d1:02:21:b2:20:21:d3:3b:44:0c:8f:d3:a2:bf:20:11:c1: d1:ad:71:3b:6c:f5:49:f2:48:9e:48:12:d4:f2:4e:4f:5d:26: a7:cd:27:c4:0d:b5:48:0c:60:50:3f:c1:7c:40:68:b9:16:bd: 8a:a8:74:a6:e1:89:83:18:2b:71:73:a9:4d:5a:9a:34:99:df: a5:8a:8b:9a:a7:ff:8e:7f:cf:86:3f:82:fa:7a:12:ec:49:cf: 6a:c8:16:af:03:32:46:cb:c8:f6:18:bd:a0:82:d4:ad:b5:a8: d1:7a:73:ee:66:83:cd:52:3f:bc:39:f3:aa:6a:77:c9:32:55: 71:18:4f:6e:25:9c:03:c6:60:59:d8:a5:77:4a:51:a1:ba:da: 57:b8:0b:89:f9:a2:be:1e:54:d5:12:01:aa:98:5f:8c:72:ae: cb:b3:5a:82 -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgIUJLayFBrmvf7Y60iMayLv5QTBuEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yMzA5MjEwOTI2NTBaFw0yNDA5MTkwOTMxNTBaMDMxMTAvBgNV BAMTKDlEQzA4OEE0NTc5NzIzQzBGM0U5NjQ2Qjg1QzI2NjBEMDBCMUM0RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbG1B1Gsk39JoTtM4oPZdlHdRH IVGpILrw+rj474LhB7ffCF5fWMnE3O/9kPHvjXaGnjryShm2hZ9vSFla1FGYO3FB SZ3083BZEXX33A8WA6h1bxWVs0R6OdMe5HoGxClvQhjwV5PYsM46kXXeqjR304L7 lEN1PlLELB7oaXShZTtVPDyrNw/rkm2mA03/kqGUwqHhBTacivc2X+tNHBOaEsea ku+WCNGlD3Qz0NOruN2aRsT0yf0mFvEK9H3blbDr+qH0w22GWaxHUoy27/y5oc8X UEdk9Z2QY20RWhAAKEnDJPFquJfg0pKAcftLryHCgjGNV4UZ6TifPSPQ1ROrAgMB AAGjggJDMIICPzAdBgNVHQ4EFgQUncCIpFeXI8Dz6WRrhcJmDQCxxPwwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzkwMDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwNQYIKwYBBQUHAQcBAf8EJjAkMCIEAgABMBwwDAMEA1l1WAMEAFl1WjAMAwQA WXVxAwQAWXVyMA0GCSqGSIb3DQEBCwUAA4IBAQATjyMJo+Ikloa9fSyImHhX77c4 +SlhCjdB8CSeqTZP9hldM1QHBu5FMhCFR/TLVmw0SCE6NTEMElT4ldmgl6bz21f7 RdfftqUuMKEMiF5FbokRHrMR2TUGHeEw0QIhsiAh0ztEDI/Tor8gEcHRrXE7bPVJ 8kieSBLU8k5PXSanzSfEDbVIDGBQP8F8QGi5Fr2KqHSm4YmDGCtxc6lNWpo0md+l iouap/+Of8+GP4L6ehLsSc9qyBavAzJGy8j2GL2ggtSttajRenPuZoPNUj+8OfOq anfJMlVxGE9uJZwDxmBZ2KV3SlGhutpXuAuJ+aK+HlTVEgGqmF+Mcq7Ls1qC -----END CERTIFICATE-----Generated at Mon May 6 06:25:02 2024 by rpki-client on console-fra.rpki-client.org