$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232352e302f32342d3234203d3e203136323736.roa File: 33372e312e3232352e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: g8tzCot9rO8ApkFbq7C6udYnkugcYliZ4fPvMw0Bayo= Subject key identifier: 67:E6:28:4A:09:D5:86:E6:4C:EB:EE:65:DE:D0:14:0C:FC:B5:00:1E Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 4DCA5BF11634C6FA3D061B8A736802BE3BB1F321 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232352e302f32342d3234203d3e203136323736.roa Signing time: Tue 15 Oct 2024 13:56:33 +0000 ROA not before: Tue 15 Oct 2024 13:51:33 +0000 ROA not after: Tue 14 Oct 2025 13:56:33 +0000 asID: 16276 IP address blocks: 37.1.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 19:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ca:5b:f1:16:34:c6:fa:3d:06:1b:8a:73:68:02:be:3b:b1:f3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 15 13:51:33 2024 GMT Not After : Oct 14 13:56:33 2025 GMT Subject: CN=67E6284A09D586E64CEBEE65DED0140CFCB5001E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:40:ac:c2:8f:10:9b:4c:94:e8:12:d3:89: dc:1b:03:1a:dd:01:d1:09:0e:3a:1e:3b:1c:10:ec: ad:86:08:5e:08:d3:32:f2:5c:60:96:eb:df:8b:b8: aa:4a:b6:50:ac:fd:29:c1:53:65:8b:68:01:4f:bc: b6:6e:57:40:4d:30:3c:f3:1a:33:a9:d4:8a:fb:07: c9:8e:1c:ec:0c:c0:29:3a:e6:47:f9:fb:cd:15:45: fc:a2:c7:ad:aa:e0:a2:14:d1:42:f7:ba:5b:18:9e: ac:98:cf:38:34:e7:86:7e:b7:e8:eb:5f:99:e6:2b: b2:f2:b7:52:a3:77:b8:68:c1:46:60:3e:8f:b4:8b: f1:06:88:66:85:3f:ac:2c:b6:57:56:c8:d2:c0:14: bb:2d:4a:a2:92:20:07:13:a5:29:46:81:c3:a7:8f: 91:c9:75:5b:57:d3:af:2d:1a:5b:c7:80:05:15:15: 9e:eb:cb:ad:8f:50:52:ec:01:fc:84:19:21:8a:56: 74:cf:6b:4e:30:7b:2b:36:92:66:c8:6e:bf:60:52: e0:1f:38:22:6c:77:f7:42:6b:a1:de:00:d1:d7:ef: 31:3d:c4:4b:7e:32:c2:81:a3:dc:b2:5c:00:48:c0: cc:06:0a:d9:6d:a5:e3:66:c4:54:06:d8:30:5e:d7: 2b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E6:28:4A:09:D5:86:E6:4C:EB:EE:65:DE:D0:14:0C:FC:B5:00:1E X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232352e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.225.0/24 Signature Algorithm: sha256WithRSAEncryption 46:97:56:d9:03:cc:90:4d:b4:5d:04:6e:9e:57:9b:52:da:7a: 47:65:cf:01:ee:29:e3:07:b2:9a:2d:20:cf:b1:aa:e7:bd:62: 4c:bb:bf:f5:70:f9:d8:21:d2:72:17:99:27:f9:40:83:ea:71: b0:24:ea:5e:ac:90:25:bb:89:fb:25:97:49:d9:1e:59:7b:6b: 71:8e:ba:95:90:9d:ef:5d:1e:b4:39:ac:42:02:14:3a:e0:21: 16:f5:ca:23:57:71:00:15:26:08:f5:c9:e9:c7:d1:e2:a4:15: 87:82:e2:cb:11:7a:1a:4f:3a:f8:fa:cd:59:89:4e:3e:f8:df: 9c:d7:66:75:bc:2b:93:7f:a7:a8:75:36:76:8c:e0:a0:4e:29: 9a:15:e3:df:1e:02:f6:15:d6:1b:ee:93:03:33:c8:e2:a3:ed: 9d:80:72:b2:8f:ed:45:bc:f9:7f:e6:2e:e6:4a:5b:62:f2:80: 8d:ee:1c:94:0f:b6:41:9f:d7:0a:29:c5:e9:46:ad:da:36:d4: f0:94:3f:06:19:f9:41:8e:c6:35:80:ab:8c:3a:a6:a3:c9:bb: b5:98:00:0d:54:7d:bf:93:f7:fd:4f:48:61:25:1a:37:03:cc: f7:d1:54:74:e5:2f:56:34:44:87:a1:12:04:20:41:e2:50:d0: 21:45:cb:d6 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUTcpb8RY0xvo9BhuKc2gCvjux8yEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMTUxMzUxMzNaFw0yNTEwMTQxMzU2MzNaMDMxMTAvBgNV BAMTKDY3RTYyODRBMDlENTg2RTY0Q0VCRUU2NURFRDAxNDBDRkNCNTAwMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3JkCswo8Qm0yU6BLTidwbAxrd AdEJDjoeOxwQ7K2GCF4I0zLyXGCW69+LuKpKtlCs/SnBU2WLaAFPvLZuV0BNMDzz GjOp1Ir7B8mOHOwMwCk65kf5+80VRfyix62q4KIU0UL3ulsYnqyYzzg054Z+t+jr X5nmK7Lyt1Kjd7howUZgPo+0i/EGiGaFP6wstldWyNLAFLstSqKSIAcTpSlGgcOn j5HJdVtX068tGlvHgAUVFZ7ry62PUFLsAfyEGSGKVnTPa04weys2kmbIbr9gUuAf OCJsd/dCa6HeANHX7zE9xEt+MsKBo9yyXABIwMwGCtltpeNmxFQG2DBe1ysnAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUZ+YoSgnVhuZM6+5l3tAUDPy1AB4wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzUyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM2MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHhMA0GCSqGSIb3DQEB CwUAA4IBAQBGl1bZA8yQTbRdBG6eV5tS2npHZc8B7injB7KaLSDPsarnvWJMu7/1 cPnYIdJyF5kn+UCD6nGwJOperJAlu4n7JZdJ2R5Ze2txjrqVkJ3vXR60OaxCAhQ6 4CEW9cojV3EAFSYI9cnpx9HipBWHguLLEXoaTzr4+s1ZiU4++N+c12Z1vCuTf6eo dTZ2jOCgTimaFePfHgL2FdYb7pMDM8jio+2dgHKyj+1FvPl/5i7mSlti8oCN7hyU D7ZBn9cKKcXpRq3aNtTwlD8GGflBjsY1gKuMOqajybu1mAANVH2/k/f9T0hhJRo3 A8z30VR05S9WNESHoRIEIEHiUNAhRcvW -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org