$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232382e302f32342d3234203d3e203631333137.roa File: 33372e312e3232382e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: r/CWwCEm+DNdv0i3Khq29UfT41m1eyngkWFtChD1fCU= Subject key identifier: 9E:87:5D:D4:82:1A:87:BD:EC:B1:4F:D9:D1:9A:B6:B3:AD:9C:DA:0F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5D85B1C62D40FFAAC939BA732FCCB7CEA508C321 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232382e302f32342d3234203d3e203631333137.roa Signing time: Tue 08 Oct 2024 11:43:22 +0000 ROA not before: Tue 08 Oct 2024 11:38:22 +0000 ROA not after: Tue 07 Oct 2025 11:43:22 +0000 asID: 61317 IP address blocks: 37.1.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 12:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:85:b1:c6:2d:40:ff:aa:c9:39:ba:73:2f:cc:b7:ce:a5:08:c3:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 8 11:38:22 2024 GMT Not After : Oct 7 11:43:22 2025 GMT Subject: CN=9E875DD4821A87BDECB14FD9D19AB6B3AD9CDA0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9e:07:2f:4b:12:de:23:cb:56:c4:b9:36:a9: 7b:2f:8a:96:d8:03:a5:a2:94:d7:5a:a0:dd:64:3d: 14:22:4f:9e:f8:4c:76:6e:65:1c:09:c3:d6:ca:7e: c7:12:c9:ea:06:12:4e:e6:f9:67:d0:d5:4b:1c:04: b8:79:1c:63:3e:c9:1d:c3:f6:1e:52:80:1a:05:3e: d9:ec:23:fc:f7:1f:a3:bb:86:88:a6:e5:a0:7c:42: c1:52:40:bf:a9:3c:2e:44:e1:36:68:7e:f3:29:cc: 2a:37:b9:26:0b:30:ef:f0:3c:dc:b8:40:49:28:2c: 10:20:6e:39:b2:73:81:72:43:82:be:69:cc:b1:a5: e2:57:6b:b1:ff:7c:57:41:27:b5:17:0e:8e:01:7e: 85:10:cf:8c:58:e7:b5:98:47:3f:33:b6:82:86:b8: c4:10:b7:5d:2f:e8:fa:50:fe:b6:a8:dd:82:1f:79: 31:86:d6:31:ae:5e:e1:08:9f:7b:0e:81:b3:f4:f4: 12:61:25:73:82:4f:a8:55:1e:c8:5f:b1:93:81:6b: 1a:e0:ec:5b:bf:b8:56:3c:fa:4e:54:ae:a7:a1:e2: 38:ad:31:f8:58:75:13:95:15:0a:45:23:a1:6a:c0: 92:6c:ad:56:65:79:b8:c4:0e:29:be:ac:8f:ce:5b: da:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:87:5D:D4:82:1A:87:BD:EC:B1:4F:D9:D1:9A:B6:B3:AD:9C:DA:0F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232382e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.228.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:85:91:26:f0:d3:eb:6a:a0:a6:c0:88:81:2c:80:93:46:2f: 40:22:ee:59:6a:a2:97:92:04:d1:aa:23:51:c1:79:99:ab:0c: 26:98:5e:08:df:01:3c:cf:f3:85:0c:1a:ae:9c:04:62:71:4e: e6:da:d5:fe:17:ee:2a:2b:52:d7:dc:89:f4:9e:d1:5b:cc:6d: cb:95:65:41:ac:08:7a:fc:d9:f6:c2:5b:f6:97:92:96:79:f4: 69:89:ad:06:4b:5d:74:b3:50:11:c0:58:b0:58:a4:a2:4b:46: e3:fc:fa:72:69:7c:ac:1e:dd:09:3d:94:90:a3:86:e0:19:d0: 7f:ea:bd:aa:52:7b:38:5a:e3:0d:66:9c:5c:16:b2:e4:2e:39: 07:fc:ea:1c:1c:96:3b:38:3b:2a:e2:26:80:2c:c0:e9:22:73: 5c:9b:4b:a0:a7:3f:06:71:00:f7:4e:02:44:c6:de:04:bb:8f: d7:d8:0a:c4:69:23:31:d6:50:ae:97:88:74:d1:7b:43:7c:bb: 29:7a:d0:18:c5:f9:a4:d2:ae:75:2a:8a:ed:39:e2:a1:db:d0: 4b:04:aa:09:eb:e0:57:c8:f2:1e:d9:70:54:b4:5f:48:2a:27: 25:a4:16:73:c0:5a:63:1d:e4:e2:b1:5c:b1:73:bb:ec:c8:5e: dc:7d:a6:d5 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUXYWxxi1A/6rJObpzL8y3zqUIwyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMDgxMTM4MjJaFw0yNTEwMDcxMTQzMjJaMDMxMTAvBgNV BAMTKDlFODc1REQ0ODIxQTg3QkRFQ0IxNEZEOUQxOUFCNkIzQUQ5Q0RBMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQngcvSxLeI8tWxLk2qXsvipbY A6WilNdaoN1kPRQiT574THZuZRwJw9bKfscSyeoGEk7m+WfQ1UscBLh5HGM+yR3D 9h5SgBoFPtnsI/z3H6O7hoim5aB8QsFSQL+pPC5E4TZofvMpzCo3uSYLMO/wPNy4 QEkoLBAgbjmyc4FyQ4K+acyxpeJXa7H/fFdBJ7UXDo4BfoUQz4xY57WYRz8ztoKG uMQQt10v6PpQ/rao3YIfeTGG1jGuXuEIn3sOgbP09BJhJXOCT6hVHshfsZOBaxrg 7Fu/uFY8+k5Urqeh4jitMfhYdROVFQpFI6FqwJJsrVZlebjEDim+rI/OW9r1AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUnodd1IIah73ssU/Z0Zq2s62c2g8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzgyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHkMA0GCSqGSIb3DQEB CwUAA4IBAQA6hZEm8NPraqCmwIiBLICTRi9AIu5ZaqKXkgTRqiNRwXmZqwwmmF4I 3wE8z/OFDBqunARicU7m2tX+F+4qK1LX3In0ntFbzG3LlWVBrAh6/Nn2wlv2l5KW efRpia0GS110s1ARwFiwWKSiS0bj/PpyaXysHt0JPZSQo4bgGdB/6r2qUns4WuMN ZpxcFrLkLjkH/OocHJY7ODsq4iaALMDpInNcm0ugpz8GcQD3TgJExt4Eu4/X2ArE aSMx1lCul4h00XtDfLspetAYxfmk0q51KortOeKh29BLBKoJ6+BXyPIe2XBUtF9I KiclpBZzwFpjHeTisVyxc7vsyF7cfabV -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:10 2024 by rpki-client on console-ams.rpki-client.org