$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232392e302f32342d3234203d3e203631333137.roa File: 33372e312e3232392e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: AunOklV40wVBCDXM0RbpxvoLyHlHl0HKCXUokKG7D7A= Subject key identifier: CC:7E:4D:37:32:E7:FF:70:1E:01:18:01:6D:34:98:AC:6A:8E:24:55 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 215355DA6E20A35A2BA2125A5DF9D8282018672A Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232392e302f32342d3234203d3e203631333137.roa Signing time: Tue 07 Nov 2023 11:37:23 +0000 ROA not before: Tue 07 Nov 2023 11:32:23 +0000 ROA not after: Tue 05 Nov 2024 11:37:23 +0000 asID: 61317 IP address blocks: 37.1.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 07 May 2024 20:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:53:55:da:6e:20:a3:5a:2b:a2:12:5a:5d:f9:d8:28:20:18:67:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Nov 7 11:32:23 2023 GMT Not After : Nov 5 11:37:23 2024 GMT Subject: CN=CC7E4D3732E7FF701E0118016D3498AC6A8E2455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c2:60:e1:0f:23:30:d6:37:63:cd:a3:22:e9: fc:cc:73:60:10:7f:1d:5c:1f:2e:c3:88:f8:cf:e7: a2:e5:f6:e0:53:88:f7:45:a9:18:c2:23:26:0c:44: 02:b6:06:64:5c:8a:15:f3:2e:c0:35:ed:21:c6:69: 27:13:3a:b5:d0:46:b9:a3:c9:68:9a:fa:12:ad:1d: f9:fa:19:b4:03:20:9b:be:8d:3b:08:11:d1:3e:f1: 1e:48:42:b6:c2:96:ce:41:84:ec:76:4e:f8:98:c3: 60:f5:26:0f:2a:32:e6:b5:08:b1:92:79:ce:b4:e8: 1d:08:a2:eb:71:03:f6:23:7e:0c:46:83:f8:92:b3: 3e:07:c0:3e:ad:98:94:38:b0:34:4f:2e:eb:bd:29: 58:af:e9:91:fd:f1:53:86:f7:a7:4e:ac:3c:c6:ce: 5e:37:7f:d0:36:e2:de:6b:ae:86:7b:21:aa:98:93: 48:66:ce:45:6d:36:3f:d2:6d:79:45:b9:47:ac:54: 7d:96:c5:0f:86:da:e7:50:66:c3:56:78:c1:b7:74: f8:7c:2b:36:bb:84:14:99:05:b9:68:dc:18:97:95: 3c:54:fa:53:64:83:74:9b:4d:f1:57:e4:51:fc:91: 15:8c:6b:9d:cd:17:e8:99:3e:48:7d:4a:ad:43:10: 67:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7E:4D:37:32:E7:FF:70:1E:01:18:01:6D:34:98:AC:6A:8E:24:55 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232392e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.229.0/24 Signature Algorithm: sha256WithRSAEncryption 44:ed:6d:af:29:d0:c4:70:46:61:dd:59:7b:e6:ab:c0:74:63: 9e:24:a1:c9:39:47:11:4e:f4:84:59:0e:0b:d9:07:c6:c0:6b: db:3f:2e:83:ea:4a:b4:65:7d:9e:97:d2:8d:6d:51:7e:cd:1d: 47:a4:64:70:9c:4b:e4:32:bc:d5:b8:34:ad:3a:93:63:e1:12: 0a:3a:6d:ea:c7:86:59:80:18:e2:3c:e4:a2:f9:0b:56:f3:7a: fc:b5:a8:83:24:74:c8:63:9c:4f:cd:82:8f:a7:50:00:32:12: af:d4:d2:25:3d:87:a7:ed:dc:20:04:d0:c2:bb:34:9b:95:23: 4a:ba:3e:64:02:0b:d4:f9:ae:20:8d:90:01:93:e0:61:65:22: 31:d4:17:4a:0b:ab:4a:34:4b:04:1d:dd:0b:0a:3a:c5:04:b5: 3c:20:14:c3:c6:db:23:be:65:5f:ce:5d:f3:3d:e7:ee:f1:81: ff:4d:fe:38:ab:0d:d0:c3:94:d8:bd:06:30:21:90:50:f6:50: 17:79:4f:18:f7:22:2f:60:85:cb:b3:8f:01:dc:02:17:d8:ed: 71:18:d6:09:b2:be:ad:6d:7e:df:c6:9a:c3:38:a5:07:64:f6: e1:7b:2f:56:e1:48:e0:71:1c:82:9f:96:fc:58:28:84:a1:f4: d7:d8:24:58 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUIVNV2m4go1orohJaXfnYKCAYZyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yMzExMDcxMTMyMjNaFw0yNDExMDUxMTM3MjNaMDMxMTAvBgNV BAMTKENDN0U0RDM3MzJFN0ZGNzAxRTAxMTgwMTZEMzQ5OEFDNkE4RTI0NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcwmDhDyMw1jdjzaMi6fzMc2AQ fx1cHy7DiPjP56Ll9uBTiPdFqRjCIyYMRAK2BmRcihXzLsA17SHGaScTOrXQRrmj yWia+hKtHfn6GbQDIJu+jTsIEdE+8R5IQrbCls5BhOx2TviYw2D1Jg8qMua1CLGS ec606B0IoutxA/YjfgxGg/iSsz4HwD6tmJQ4sDRPLuu9KViv6ZH98VOG96dOrDzG zl43f9A24t5rroZ7IaqYk0hmzkVtNj/SbXlFuUesVH2WxQ+G2udQZsNWeMG3dPh8 Kza7hBSZBblo3BiXlTxU+lNkg3SbTfFX5FH8kRWMa53NF+iZPkh9Sq1DEGczAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUzH5NNzLn/3AeARgBbTSYrGqOJFUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHlMA0GCSqGSIb3DQEB CwUAA4IBAQBE7W2vKdDEcEZh3Vl75qvAdGOeJKHJOUcRTvSEWQ4L2QfGwGvbPy6D 6kq0ZX2el9KNbVF+zR1HpGRwnEvkMrzVuDStOpNj4RIKOm3qx4ZZgBjiPOSi+QtW 83r8taiDJHTIY5xPzYKPp1AAMhKv1NIlPYen7dwgBNDCuzSblSNKuj5kAgvU+a4g jZABk+BhZSIx1BdKC6tKNEsEHd0LCjrFBLU8IBTDxtsjvmVfzl3zPefu8YH/Tf44 qw3Qw5TYvQYwIZBQ9lAXeU8Y9yIvYIXLs48B3AIX2O1xGNYJsr6tbX7fxprDOKUH ZPbhey9W4UjgcRyCn5b8WCiEofTX2CRY -----END CERTIFICATE-----Generated at Tue May 7 12:21:26 2024 by rpki-client on console-fra.rpki-client.org