$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203136323736.roa File: 33372e312e3232342e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: cJlp06jnLmrxb8TxwJBWr5Mk/PmOwS5cGsZrtOOYBhk= Subject key identifier: 09:AA:87:4C:E4:D7:44:5B:52:17:24:35:1F:3E:1B:2F:91:AE:25:1E Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 2D1D9716C4635EA62B93DCE18874759EAFE3DCD7 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203136323736.roa Signing time: Tue 15 Oct 2024 13:56:35 +0000 ROA not before: Tue 15 Oct 2024 13:51:35 +0000 ROA not after: Tue 14 Oct 2025 13:56:35 +0000 asID: 16276 IP address blocks: 37.1.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 19:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1d:97:16:c4:63:5e:a6:2b:93:dc:e1:88:74:75:9e:af:e3:dc:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 15 13:51:35 2024 GMT Not After : Oct 14 13:56:35 2025 GMT Subject: CN=09AA874CE4D7445B521724351F3E1B2F91AE251E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ca:ea:0e:85:ff:47:9c:e9:d9:1a:98:21:d0: 05:86:17:e2:d9:43:00:14:73:8f:a7:14:aa:ad:8f: ee:42:2d:55:d9:a2:92:2f:d2:b4:a0:ca:9d:8c:cc: 5f:30:b5:81:09:e4:cf:12:1c:2a:ec:94:31:bf:c6: 53:4c:7c:aa:dd:40:26:b9:1d:24:82:78:3e:c2:ff: 54:ea:2f:10:99:ef:02:7d:42:82:e2:e7:7b:ea:96: af:24:b0:3a:a9:9c:dc:f2:46:0a:27:05:9a:3c:e2: 86:68:ec:05:79:da:2f:52:55:83:37:92:74:ae:c8: 64:c6:bc:3b:8f:e8:d6:96:ff:02:90:c1:c9:2b:b9: 0e:92:6a:44:fc:db:41:0c:d7:6f:e6:2d:94:16:32: 3b:ca:67:43:b9:67:0c:82:25:bf:d3:ac:4a:b5:c6: a6:b3:94:bd:2e:d3:24:97:08:45:4d:54:be:74:72: dd:60:16:bd:3f:cb:75:3f:32:07:4c:1a:a0:e5:da: 5f:90:ff:82:01:9d:78:f8:82:e9:44:61:06:25:27: 15:4c:51:70:e7:87:59:14:e2:c6:33:6e:1a:5a:17: 5e:8e:77:26:4d:42:45:c2:6d:09:6b:b2:a6:57:96: 61:9e:fa:1b:f3:6a:be:06:72:f2:8a:0d:20:07:a7: c5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AA:87:4C:E4:D7:44:5B:52:17:24:35:1F:3E:1B:2F:91:AE:25:1E X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.224.0/24 Signature Algorithm: sha256WithRSAEncryption 93:75:fb:08:79:ed:cf:89:1d:af:bd:92:60:30:18:4d:b9:40: 18:70:6b:c7:eb:0e:5f:df:d2:e6:82:28:5c:bc:25:f8:cf:1c: 77:cf:9d:9a:3f:dd:51:f8:77:40:bc:a1:e6:42:77:8f:69:75: 32:36:6c:f8:c4:70:99:e8:4b:1c:20:a5:60:27:86:95:15:db: 30:ff:c7:7e:a2:ed:bb:3a:ad:16:56:04:34:83:99:02:57:bf: 9e:6c:b3:3c:07:34:cd:c9:54:ed:6d:60:5e:af:09:94:be:41: 02:7f:44:24:42:93:8b:c9:31:e7:69:5c:e0:a9:ea:2f:e1:be: de:29:7f:cc:ac:b7:e9:05:53:e0:09:ba:de:94:73:a6:33:f7: a7:35:9b:8d:18:43:a5:73:30:0e:03:67:0d:bf:3b:94:90:7b: 4f:d4:cf:22:ff:77:00:61:e0:b1:1d:4c:11:d7:38:53:29:cd: 72:39:69:38:ce:1d:6e:ed:24:d0:2a:2b:79:c6:2e:21:f0:94: dd:29:3c:83:ea:69:f1:b1:5b:81:f4:c2:4e:42:de:6d:e5:0a: 4e:4d:70:0e:d4:76:5c:0b:4e:db:df:ce:96:20:0c:15:34:3e: 5c:40:92:3b:5c:3b:28:9f:59:3c:db:5d:28:24:2f:da:ed:d5: 92:59:8e:71 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIULR2XFsRjXqYrk9zhiHR1nq/j3NcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMTUxMzUxMzVaFw0yNTEwMTQxMzU2MzVaMDMxMTAvBgNV BAMTKDA5QUE4NzRDRTRENzQ0NUI1MjE3MjQzNTFGM0UxQjJGOTFBRTI1MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwyuoOhf9HnOnZGpgh0AWGF+LZ QwAUc4+nFKqtj+5CLVXZopIv0rSgyp2MzF8wtYEJ5M8SHCrslDG/xlNMfKrdQCa5 HSSCeD7C/1TqLxCZ7wJ9QoLi53vqlq8ksDqpnNzyRgonBZo84oZo7AV52i9SVYM3 knSuyGTGvDuP6NaW/wKQwckruQ6SakT820EM12/mLZQWMjvKZ0O5ZwyCJb/TrEq1 xqazlL0u0ySXCEVNVL50ct1gFr0/y3U/MgdMGqDl2l+Q/4IBnXj4gulEYQYlJxVM UXDnh1kU4sYzbhpaF16OdyZNQkXCbQlrsqZXlmGe+hvzar4GcvKKDSAHp8U3AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUCaqHTOTXRFtSFyQ1Hz4bL5GuJR4wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM2MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHgMA0GCSqGSIb3DQEB CwUAA4IBAQCTdfsIee3PiR2vvZJgMBhNuUAYcGvH6w5f39LmgihcvCX4zxx3z52a P91R+HdAvKHmQnePaXUyNmz4xHCZ6EscIKVgJ4aVFdsw/8d+ou27Oq0WVgQ0g5kC V7+ebLM8BzTNyVTtbWBerwmUvkECf0QkQpOLyTHnaVzgqeov4b7eKX/MrLfpBVPg CbrelHOmM/enNZuNGEOlczAOA2cNvzuUkHtP1M8i/3cAYeCxHUwR1zhTKc1yOWk4 zh1u7STQKit5xi4h8JTdKTyD6mnxsVuB9MJOQt5t5QpOTXAO1HZcC07b386WIAwV ND5cQJI7XDson1k8210oJC/a7dWSWY5x -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org