$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232372e302f32342d3234203d3e203136323736.roa File: 33372e312e3232372e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: AVdlgr9765XPtdl1TnT9eoozadS+o2+dPidY6GGM5Go= Subject key identifier: 22:BE:45:62:01:96:18:BA:DB:F8:EF:07:71:51:0D:80:52:47:CE:F9 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 061CF7362BC5299F7D3DEE599AFB04BF03DA8F9F Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232372e302f32342d3234203d3e203136323736.roa Signing time: Tue 15 Oct 2024 13:56:34 +0000 ROA not before: Tue 15 Oct 2024 13:51:34 +0000 ROA not after: Tue 14 Oct 2025 13:56:34 +0000 asID: 16276 IP address blocks: 37.1.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 19:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:1c:f7:36:2b:c5:29:9f:7d:3d:ee:59:9a:fb:04:bf:03:da:8f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 15 13:51:34 2024 GMT Not After : Oct 14 13:56:34 2025 GMT Subject: CN=22BE4562019618BADBF8EF0771510D805247CEF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fe:6d:b0:11:ff:de:25:43:8f:7f:2b:48:b6: 4b:c5:98:fc:a8:70:b6:d6:1f:cb:03:55:5a:97:a9: 8f:46:3c:de:48:a1:92:52:13:cc:65:3a:cb:b0:d5: cb:a7:54:20:d6:93:69:71:a0:c3:87:77:2e:33:d1: 18:4f:45:89:60:c9:14:e6:36:88:43:01:a6:b7:54: 93:6d:95:64:3c:b4:51:5f:5c:6d:bb:31:05:56:01: b1:30:e5:40:94:55:3a:35:e1:0a:52:97:30:82:c1: a2:80:85:55:4f:37:6b:0c:bd:c0:09:78:71:6d:30: e9:9f:a5:e9:6a:83:bd:97:78:d7:eb:05:fc:45:38: 50:1c:87:77:7d:11:28:33:80:f3:68:61:1f:b2:2c: b7:f7:f8:c6:e6:42:6e:ea:2c:3b:19:32:1d:13:5f: b5:dd:a5:ee:4d:10:90:56:bf:78:5b:38:2e:1e:bb: 23:f8:f4:b2:40:76:91:21:d7:b4:63:13:ec:c9:ac: cc:24:7f:5a:6c:1f:0b:6d:41:cc:47:81:30:70:a7: 75:51:6a:1b:e3:32:9d:7e:eb:11:2c:40:1d:fc:91: 0d:93:40:a8:64:47:aa:12:1d:a3:e3:69:76:86:b8: dd:b2:52:26:98:00:ef:d7:65:8f:bf:f0:92:98:9b: 9a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BE:45:62:01:96:18:BA:DB:F8:EF:07:71:51:0D:80:52:47:CE:F9 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232372e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.227.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f8:b2:5c:06:2a:31:72:17:fb:fb:b8:b2:01:d5:dd:fb:59: 37:74:b0:d2:99:96:07:8d:5c:cc:e5:c1:7d:a0:10:c7:c3:a3: 7d:05:1b:18:8f:69:d3:c7:40:95:08:3f:64:5e:1d:1c:a2:31: 0f:94:29:0d:ce:1f:25:e4:c4:17:e1:85:52:4d:78:bf:25:2a: 4f:ce:0d:6a:b6:13:a4:1e:4f:1e:d4:0f:f7:43:62:83:d2:56: 1e:53:06:f7:a6:f0:bc:fd:e3:e7:0b:78:8a:59:89:94:a2:c8: 6e:0d:2a:2f:c1:19:d2:5f:a1:71:79:7b:bc:7e:42:76:4e:4c: 5e:83:19:d1:58:81:64:b9:4e:67:f9:40:ca:99:0a:d6:04:5d: ec:21:19:6d:4b:e6:13:37:d8:82:31:4e:b7:d1:20:62:93:07: 02:e8:5d:ca:58:71:7f:0c:f6:2b:21:a2:91:75:5f:26:99:a5: 38:2b:cf:88:3d:ed:de:42:fe:0b:41:87:6d:1d:de:9d:fb:02: 63:6d:4c:f6:34:16:06:48:d3:49:02:9c:e2:fe:04:da:78:d3: 67:11:af:64:70:3c:38:0b:bd:97:92:f8:65:62:55:a0:e6:c7: 8d:94:b3:b8:3a:74:19:72:40:fe:b1:56:57:85:b7:97:60:80: c9:dd:91:a9 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUBhz3NivFKZ99Pe5ZmvsEvwPaj58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMTUxMzUxMzRaFw0yNTEwMTQxMzU2MzRaMDMxMTAvBgNV BAMTKDIyQkU0NTYyMDE5NjE4QkFEQkY4RUYwNzcxNTEwRDgwNTI0N0NFRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc/m2wEf/eJUOPfytItkvFmPyo cLbWH8sDVVqXqY9GPN5IoZJSE8xlOsuw1cunVCDWk2lxoMOHdy4z0RhPRYlgyRTm NohDAaa3VJNtlWQ8tFFfXG27MQVWAbEw5UCUVTo14QpSlzCCwaKAhVVPN2sMvcAJ eHFtMOmfpelqg72XeNfrBfxFOFAch3d9ESgzgPNoYR+yLLf3+MbmQm7qLDsZMh0T X7Xdpe5NEJBWv3hbOC4euyP49LJAdpEh17RjE+zJrMwkf1psHwttQcxHgTBwp3VR ahvjMp1+6xEsQB38kQ2TQKhkR6oSHaPjaXaGuN2yUiaYAO/XZY+/8JKYm5rJAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUIr5FYgGWGLrb+O8HcVENgFJHzvkwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzcyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM2MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHjMA0GCSqGSIb3DQEB CwUAA4IBAQBe+LJcBioxchf7+7iyAdXd+1k3dLDSmZYHjVzM5cF9oBDHw6N9BRsY j2nTx0CVCD9kXh0cojEPlCkNzh8l5MQX4YVSTXi/JSpPzg1qthOkHk8e1A/3Q2KD 0lYeUwb3pvC8/ePnC3iKWYmUoshuDSovwRnSX6FxeXu8fkJ2TkxegxnRWIFkuU5n +UDKmQrWBF3sIRltS+YTN9iCMU630SBikwcC6F3KWHF/DPYrIaKRdV8mmaU4K8+I Pe3eQv4LQYdtHd6d+wJjbUz2NBYGSNNJApzi/gTaeNNnEa9kcDw4C72XkvhlYlWg 5seNlLO4OnQZckD+sVZXhbeXYIDJ3ZGp -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org