$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa File: AS9009.roa (raw, json) Hash identifier: QzTR3yMWTAEk4zaus45bgjEB+tAnMc99yctN2xpXTPQ= Subject key identifier: 7E:67:6E:AA:D1:15:51:F6:5C:E6:2D:75:00:88:A0:AD:F5:DE:D3:80 Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C Certificate serial: 50EC14E707BC73B23FB3A87911CBB7BD74ED74E7 Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa Signing time: Mon 17 Jun 2024 13:58:49 +0000 ROA not before: Mon 17 Jun 2024 13:53:49 +0000 ROA not after: Mon 16 Jun 2025 13:58:49 +0000 asID: 9009 IP address blocks: 84.46.170.0/24 maxlen: 24 84.46.234.0/24 maxlen: 24 84.46.235.0/24 maxlen: 24 86.38.178.0/23 maxlen: 24 89.116.102.0/24 maxlen: 24 89.116.163.0/24 maxlen: 24 89.116.215.0/24 maxlen: 24 89.117.64.0/24 maxlen: 24 89.117.65.0/24 maxlen: 24 89.117.82.0/24 maxlen: 24 89.117.88.0/24 maxlen: 24 89.117.89.0/24 maxlen: 24 89.117.90.0/24 maxlen: 24 89.117.113.0/24 maxlen: 24 89.117.114.0/24 maxlen: 24 89.117.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 02:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ec:14:e7:07:bc:73:b2:3f:b3:a8:79:11:cb:b7:bd:74:ed:74:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C Validity Not Before: Jun 17 13:53:49 2024 GMT Not After : Jun 16 13:58:49 2025 GMT Subject: CN=7E676EAAD11551F65CE62D750088A0ADF5DED380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f0:0e:53:79:4f:3d:41:e3:92:9c:a8:c6:53: bf:d2:70:17:23:e3:eb:f0:4d:91:33:1a:26:30:0e: a3:f2:ec:10:4b:32:66:b1:74:ed:8d:cd:d4:c9:8a: 46:2e:9c:1f:1b:0f:b4:8f:b1:0a:3f:f0:ed:18:7c: 94:c0:cb:91:65:c5:12:7f:aa:5d:8d:c9:d2:54:2c: 3c:84:ec:28:d3:ac:21:30:04:6c:7e:eb:49:7e:8b: 06:b2:8c:88:63:0d:d9:91:f2:24:a8:e8:19:f7:30: 21:8a:f1:d1:a4:6e:e2:90:1f:8e:38:4f:df:5a:28: 82:88:ad:a6:a0:b2:09:b6:aa:c2:22:c2:4f:db:43: b2:8e:29:14:cb:e0:fb:76:f5:f3:4e:00:ef:ac:5f: 71:8d:93:2c:d2:4f:fc:41:12:c3:d5:7b:e8:fb:5a: b3:5a:00:01:7f:ad:54:6e:cf:97:f9:62:ff:f1:82: 9c:56:4f:21:58:a3:a3:36:d2:4c:8b:04:b6:30:88: f9:56:ab:89:13:4c:2f:3e:41:61:6b:92:05:7c:51: 58:7c:8b:a8:9b:e7:fd:22:c8:8c:43:9c:51:3e:4a: 7f:f5:6c:b1:47:de:07:e2:3b:18:c1:5c:c9:61:d7: 61:89:36:d6:fb:8d:ae:3f:06:d2:f6:78:41:0c:e3: 7a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:67:6E:AA:D1:15:51:F6:5C:E6:2D:75:00:88:A0:AD:F5:DE:D3:80 X509v3 Authority Key Identifier: keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS9009.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.46.170.0/24 84.46.234.0/23 86.38.178.0/23 89.116.102.0/24 89.116.163.0/24 89.116.215.0/24 89.117.64.0/23 89.117.82.0/24 89.117.88.0-89.117.90.255 89.117.113.0-89.117.114.255 89.117.154.0/24 Signature Algorithm: sha256WithRSAEncryption 80:4e:27:07:a5:f7:f3:9e:29:f0:2b:67:35:d3:27:89:ac:4e: 4e:c2:30:81:6e:85:da:4f:42:97:c6:a0:7c:bf:87:7f:d4:36: 7f:35:de:4d:fa:ca:d7:37:b0:e8:47:f2:1b:a7:7b:f2:16:82: 3a:cb:d8:ee:09:af:b7:48:1b:0e:26:6d:93:36:80:a9:ef:c5: 08:fd:a6:ad:2f:39:07:d0:93:2d:e8:44:5f:9e:45:6f:5f:69: 6c:a8:0c:d7:cd:20:c5:fd:24:36:8a:f8:da:9c:7d:fc:ac:fc: 60:b0:9b:3b:bd:ed:87:b1:06:83:a3:19:49:77:21:bc:b2:fe: 8c:13:09:a6:c5:84:8b:cf:36:ff:dd:48:83:2d:f7:51:e4:8e: f9:ed:77:fc:36:65:16:6a:fa:1e:2e:38:28:99:8a:fb:6d:d5: 9c:32:c3:9b:1a:27:ee:02:b5:f4:5f:44:79:c1:05:b4:84:61: ad:6b:49:e4:02:e2:38:cf:21:5a:b3:fa:b0:1c:09:78:32:d5: 0f:03:0e:5e:9c:ff:9b:6b:8d:7f:9a:f2:ce:f0:87:cb:1c:d0: 7b:51:e5:1b:06:ec:c5:a4:cd:36:07:1a:ea:3e:d8:e6:ef:65: 63:aa:2e:8f:05:7f:47:02:35:85:b8:cd:25:f7:81:4c:25:54: f7:50:42:48 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUUOwU5we8c7I/s6h5Ecu3vXTtdOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0 OEVGMjc5QzAeFw0yNDA2MTcxMzUzNDlaFw0yNTA2MTYxMzU4NDlaMDMxMTAvBgNV BAMTKDdFNjc2RUFBRDExNTUxRjY1Q0U2MkQ3NTAwODhBMEFERjVERUQzODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx8A5TeU89QeOSnKjGU7/ScBcj 4+vwTZEzGiYwDqPy7BBLMmaxdO2NzdTJikYunB8bD7SPsQo/8O0YfJTAy5FlxRJ/ ql2NydJULDyE7CjTrCEwBGx+60l+iwayjIhjDdmR8iSo6Bn3MCGK8dGkbuKQH444 T99aKIKIraagsgm2qsIiwk/bQ7KOKRTL4Pt29fNOAO+sX3GNkyzST/xBEsPVe+j7 WrNaAAF/rVRuz5f5Yv/xgpxWTyFYo6M20kyLBLYwiPlWq4kTTC8+QWFrkgV8UVh8 i6ib5/0iyIxDnFE+Sn/1bLFH3gfiOxjBXMlh12GJNtb7ja4/BtL2eEEM43prAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUfmduqtEVUfZc5i11AIigrfXe04AwHwYDVR0j BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5 NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3 OUMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9yLm1h Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw ZWFkYTNkNzA1LTAvMC9BUzkwMDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwawYIKwYBBQUHAQcBAf8EXDBaMFgEAgABMFIDBABULqoDBAFULuoDBAFWJrID BABZdGYDBABZdKMDBABZdNcDBAFZdUADBABZdVIwDAMEA1l1WAMEAFl1WjAMAwQA WXVxAwQAWXVyAwQAWXWaMA0GCSqGSIb3DQEBCwUAA4IBAQCATicHpffzninwK2c1 0yeJrE5OwjCBboXaT0KXxqB8v4d/1DZ/Nd5N+srXN7DoR/Ibp3vyFoI6y9juCa+3 SBsOJm2TNoCp78UI/aatLzkH0JMt6ERfnkVvX2lsqAzXzSDF/SQ2ivjanH38rPxg sJs7ve2HsQaDoxlJdyG8sv6MEwmmxYSLzzb/3UiDLfdR5I757Xf8NmUWavoeLjgo mYr7bdWcMsObGifuArX0X0R5wQW0hGGta0nkAuI4zyFas/qwHAl4MtUPAw5enP+b a41/mvLO8IfLHNB7UeUbBuzFpM02BxrqPtjm72Vjqi6PBX9HAjWFuM0l94FMJVT3 UEJI -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org