$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32332d3234203d3e20383334.roa File: 33372e312e3232342e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: XNWFRtN9AjVr0Mh8c+zxVKgcE0wc5nPINBRn5bbKE/8= Subject key identifier: 12:4C:17:70:63:43:9B:3B:E4:0A:05:C9:90:A4:BC:CC:CB:59:4E:DC Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0D5EA3B7DD510CC60E125B5B607BF9D36BA71423 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32332d3234203d3e20383334.roa Signing time: Fri 17 Jan 2025 08:03:02 +0000 ROA not before: Fri 17 Jan 2025 07:58:02 +0000 ROA not after: Fri 16 Jan 2026 08:03:02 +0000 asID: 834 IP address blocks: 37.1.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Feb 2025 00:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:5e:a3:b7:dd:51:0c:c6:0e:12:5b:5b:60:7b:f9:d3:6b:a7:14:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jan 17 07:58:02 2025 GMT Not After : Jan 16 08:03:02 2026 GMT Subject: CN=124C177063439B3BE40A05C990A4BCCCCB594EDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:de:9e:6d:08:6e:34:4b:6d:78:20:b3:d2:55: bc:5c:41:12:65:2f:db:92:fb:04:ac:c7:37:4b:01: 36:d5:ae:b4:7e:b2:e5:7c:94:fe:75:66:18:ad:26: e2:37:a9:14:69:ee:c2:d6:a7:65:be:3b:df:1d:a2: 68:06:c7:ac:fb:42:37:89:18:b6:8a:16:d4:21:12: 22:b3:65:23:cf:af:1d:5f:cf:f1:dc:3a:ae:cd:31: bf:37:55:38:0a:f2:0a:5d:a8:af:0b:62:ec:e8:60: bf:dc:f3:b2:48:30:b6:21:90:99:2d:c0:3e:ab:2b: b6:17:d2:54:8d:82:c0:7d:34:79:fd:ab:dd:41:07: a0:2c:2c:48:0b:af:ce:dd:57:2e:ac:ce:8b:97:3e: 23:76:14:d0:62:23:06:33:8b:b1:3b:aa:db:ca:51: 03:fd:bd:4f:73:78:9c:90:b6:fa:a1:59:e5:ce:05: 33:41:fb:8e:b3:4a:20:0c:28:4f:6b:b5:45:0d:ef: 33:ed:f8:13:4a:54:c6:b1:68:b2:94:6e:78:8d:e5: ae:12:02:9c:ac:c5:7b:4f:98:c1:83:e4:a2:e3:72: d4:17:a3:8b:74:46:de:d4:50:88:ac:e7:01:31:c3: 37:1b:0f:a1:fd:2d:3c:d9:71:6e:28:5c:eb:1b:2a: 67:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4C:17:70:63:43:9B:3B:E4:0A:05:C9:90:A4:BC:CC:CB:59:4E:DC X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.224.0/23 Signature Algorithm: sha256WithRSAEncryption 12:3d:7e:41:49:9e:e2:4b:2d:7e:8e:6a:97:56:9b:8f:3c:a9: 4b:22:40:01:4a:c5:a1:81:dd:4d:6a:c5:36:de:57:6a:8b:bc: ba:76:34:12:32:54:1f:08:eb:be:6d:f3:9e:10:f9:52:dd:2d: b5:c3:77:83:0a:42:c9:e6:fe:d4:bc:df:fb:7a:8a:a8:f2:db: 0f:3f:ba:31:99:ba:fc:f3:de:81:fe:7b:6d:8e:ed:8a:4a:cd: cf:4f:79:79:c8:4e:dd:6f:c9:20:04:0f:81:75:dc:8f:bb:dd: eb:e1:cf:9f:85:b3:78:c0:c2:7b:ac:b3:89:ae:98:91:68:f2: db:52:09:0b:39:7c:c9:26:65:2b:8e:fc:2e:c0:6c:83:e2:06: dc:42:58:45:55:fe:3c:e7:33:fc:a9:ff:21:a1:04:51:0e:8e: ae:80:df:e4:5f:29:9e:f5:20:dc:4b:f1:81:b4:5b:98:80:66: 60:33:27:49:2d:87:e4:70:e2:8c:36:18:9e:6f:8e:76:5c:76: 75:df:d2:a0:1a:17:8f:8d:63:3f:3a:42:8a:09:bd:e9:fa:4b: 62:e3:12:06:0c:1b:70:b3:19:4e:e4:da:ed:d1:0b:1f:de:ed: 6a:dd:7e:c9:5f:d6:e6:bf:eb:3d:ee:7c:7a:4d:cb:45:66:5e: 63:06:99:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUDV6jt91RDMYOEltbYHv502unFCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAxMTcwNzU4MDJaFw0yNjAxMTYwODAzMDJaMDMxMTAvBgNV BAMTKDEyNEMxNzcwNjM0MzlCM0JFNDBBMDVDOTkwQTRCQ0NDQ0I1OTRFREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK3p5tCG40S214ILPSVbxcQRJl L9uS+wSsxzdLATbVrrR+suV8lP51ZhitJuI3qRRp7sLWp2W+O98domgGx6z7QjeJ GLaKFtQhEiKzZSPPrx1fz/HcOq7NMb83VTgK8gpdqK8LYuzoYL/c87JIMLYhkJkt wD6rK7YX0lSNgsB9NHn9q91BB6AsLEgLr87dVy6szouXPiN2FNBiIwYzi7E7qtvK UQP9vU9zeJyQtvqhWeXOBTNB+46zSiAMKE9rtUUN7zPt+BNKVMaxaLKUbniN5a4S ApysxXtPmMGD5KLjctQXo4t0Rt7UUIis5wExwzcbD6H9LTzZcW4oXOsbKmeHAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUEkwXcGNDmzvkCgXJkKS8zMtZTtwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzMzNzJlMzEyZTMyMzIzNDJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASUB4DANBgkqhkiG9w0BAQsFAAOC AQEAEj1+QUme4kstfo5ql1abjzypSyJAAUrFoYHdTWrFNt5Xaou8unY0EjJUHwjr vm3znhD5Ut0ttcN3gwpCyeb+1Lzf+3qKqPLbDz+6MZm6/PPegf57bY7tikrNz095 echO3W/JIAQPgXXcj7vd6+HPn4WzeMDCe6yzia6YkWjy21IJCzl8ySZlK478LsBs g+IG3EJYRVX+POcz/Kn/IaEEUQ6OroDf5F8pnvUg3EvxgbRbmIBmYDMnSS2H5HDi jDYYnm+Odlx2dd/SoBoXj41jPzpCigm96fpLYuMSBgwbcLMZTuTa7dELH97tat1+ yV/W5r/rPe58ek3LRWZeYwaZ9g== -----END CERTIFICATE-----Generated at Wed Feb 5 08:43:27 2025 by rpki-client