$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e203136323736.roa File: 33372e312e3232362e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: pNwE5y9YUQZ4mAHbJQSWNxAhvl5R89DZckh6+tV9YTk= Subject key identifier: 87:5A:86:97:A4:A2:47:70:2E:BD:6B:D8:21:6B:84:9B:D4:BF:F1:A6 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5923E3A58A73D539DE2481D0D62F87EB4CAD43A0 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e203136323736.roa Signing time: Tue 15 Oct 2024 13:56:33 +0000 ROA not before: Tue 15 Oct 2024 13:51:33 +0000 ROA not after: Tue 14 Oct 2025 13:56:33 +0000 asID: 16276 IP address blocks: 37.1.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 19:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:23:e3:a5:8a:73:d5:39:de:24:81:d0:d6:2f:87:eb:4c:ad:43:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 15 13:51:33 2024 GMT Not After : Oct 14 13:56:33 2025 GMT Subject: CN=875A8697A4A247702EBD6BD8216B849BD4BFF1A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:af:fd:b2:8d:eb:9a:3e:73:c7:62:c3:89:da: ba:63:83:7b:cb:00:9e:6d:6a:67:26:73:a2:f3:96: 0f:b1:47:69:aa:2d:50:a2:e4:2e:46:6d:67:61:7c: aa:ce:12:45:76:f8:44:93:55:d3:2d:b5:f8:6a:f6: 08:a8:a3:da:c8:8a:84:98:2a:34:7f:af:17:f4:8c: 30:a6:69:6d:9d:70:dc:5f:20:03:51:f9:a1:f4:03: ca:b9:e8:fc:1b:8c:70:2a:8b:49:d6:b2:ef:8b:0b: fc:ba:67:55:5d:75:49:7a:ae:06:fc:0f:c2:16:db: 15:9f:a5:6a:cf:0a:63:5c:3b:21:a1:9b:fe:45:dd: 43:dc:3c:a6:47:d7:d9:c7:c6:dc:07:bb:5f:8c:c5: 90:ed:cf:c4:c8:11:7c:33:49:c8:9f:15:d0:3c:23: 2b:1a:e8:95:7a:26:83:57:85:fb:c9:7b:c5:fc:c9: 63:bc:a6:0d:5f:28:6c:53:74:cc:7e:c4:b5:c4:f9: 18:d9:43:89:03:cd:d9:7d:2f:f2:bb:39:c0:ca:a9: 30:77:1a:bf:63:59:8a:31:69:db:54:26:1c:de:6d: c8:a0:df:ca:55:78:09:d4:be:bd:7e:6b:8a:11:94: a7:80:7e:d4:20:5b:49:f9:61:9b:1f:57:f0:2c:eb: b2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5A:86:97:A4:A2:47:70:2E:BD:6B:D8:21:6B:84:9B:D4:BF:F1:A6 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.226.0/24 Signature Algorithm: sha256WithRSAEncryption 87:73:e9:fb:f5:59:71:07:27:39:11:b6:cf:71:84:7a:9c:35: ec:94:0c:72:20:ad:1c:71:91:b5:56:29:41:c1:97:cc:e0:75: 9e:7c:3e:5e:17:08:96:4d:22:65:22:58:3b:6c:87:a8:1c:00: ed:b0:a0:bd:b4:a6:1b:e8:d0:28:5e:c5:e9:1f:fc:28:a1:e8: ba:75:0a:f8:a7:34:dd:c2:9b:86:a4:91:77:fd:8c:a1:73:22: 24:66:c4:4d:e3:24:73:a4:55:06:8b:1a:17:d4:57:f8:b3:d6: 97:f0:43:9c:dd:14:66:8a:ab:e3:b6:aa:ec:be:4a:db:62:62: 1e:cb:5a:70:f6:75:02:ca:55:b2:f1:1d:5b:e9:e3:59:37:b9: c6:4b:ec:ed:9f:a7:1f:04:07:0b:42:be:0a:18:d5:39:b5:71: b3:ba:b9:24:ee:f8:80:39:39:e8:41:41:54:ad:5b:26:15:f0: 07:84:3f:d3:26:63:0e:83:83:8d:04:95:0b:15:37:02:9c:b2: 7c:7a:2c:9f:f4:62:08:2b:2f:e0:e9:00:5f:b8:d3:b3:79:14: 39:1e:90:fd:47:e9:73:13:27:70:91:ab:63:7e:92:bb:1c:8d: 94:b8:bc:65:77:00:ca:18:5f:fa:57:e5:27:1f:35:a2:1b:ac: fb:a1:b2:5a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUWSPjpYpz1TneJIHQ1i+H60ytQ6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMTUxMzUxMzNaFw0yNTEwMTQxMzU2MzNaMDMxMTAvBgNV BAMTKDg3NUE4Njk3QTRBMjQ3NzAyRUJENkJEODIxNkI4NDlCRDRCRkYxQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUr/2yjeuaPnPHYsOJ2rpjg3vL AJ5tamcmc6Lzlg+xR2mqLVCi5C5GbWdhfKrOEkV2+ESTVdMttfhq9gioo9rIioSY KjR/rxf0jDCmaW2dcNxfIANR+aH0A8q56PwbjHAqi0nWsu+LC/y6Z1VddUl6rgb8 D8IW2xWfpWrPCmNcOyGhm/5F3UPcPKZH19nHxtwHu1+MxZDtz8TIEXwzScifFdA8 Iysa6JV6JoNXhfvJe8X8yWO8pg1fKGxTdMx+xLXE+RjZQ4kDzdl9L/K7OcDKqTB3 Gr9jWYoxadtUJhzebcig38pVeAnUvr1+a4oRlKeAftQgW0n5YZsfV/As67K7AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUh1qGl6SiR3AuvWvYIWuEm9S/8aYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzYyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM2MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHiMA0GCSqGSIb3DQEB CwUAA4IBAQCHc+n79VlxByc5EbbPcYR6nDXslAxyIK0ccZG1VilBwZfM4HWefD5e FwiWTSJlIlg7bIeoHADtsKC9tKYb6NAoXsXpH/wooei6dQr4pzTdwpuGpJF3/Yyh cyIkZsRN4yRzpFUGixoX1Ff4s9aX8EOc3RRmiqvjtqrsvkrbYmIey1pw9nUCylWy 8R1b6eNZN7nGS+ztn6cfBAcLQr4KGNU5tXGzurkk7viAOTnoQUFUrVsmFfAHhD/T JmMOg4ONBJULFTcCnLJ8eiyf9GIIKy/g6QBfuNOzeRQ5HpD9R+lzEydwkatjfpK7 HI2UuLxldwDKGF/6V+UnHzWiG6z7obJa -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org