$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa File: 33372e312e3233302e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: icURZCczxDzw0K7PBvoYMhS0uXp68lL7XhVp6wN4zhQ= Subject key identifier: F3:B3:D7:2F:02:25:A2:A4:C2:C3:A8:2A:7F:7B:12:1B:07:5A:B7:D3 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 2FDB5CFCEAF52B8046052BDE8EADEA01868DC9AD Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa Signing time: Tue 08 Oct 2024 11:43:22 +0000 ROA not before: Tue 08 Oct 2024 11:38:22 +0000 ROA not after: Tue 07 Oct 2025 11:43:22 +0000 asID: 61317 IP address blocks: 37.1.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:db:5c:fc:ea:f5:2b:80:46:05:2b:de:8e:ad:ea:01:86:8d:c9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 8 11:38:22 2024 GMT Not After : Oct 7 11:43:22 2025 GMT Subject: CN=F3B3D72F0225A2A4C2C3A82A7F7B121B075AB7D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:87:ed:a9:e1:51:37:0b:5d:c0:5d:2c:7d:df: 1a:63:d7:55:52:05:cb:5f:d9:3e:40:49:93:0a:fd: a6:70:f3:55:8c:09:00:b8:72:52:04:e8:ed:36:6a: 42:b9:9a:51:97:c0:f6:f8:19:c4:2a:0f:45:5b:55: 3e:ca:6e:54:2b:8d:b1:95:5f:cc:bd:8a:ee:05:f5: 7b:37:f5:42:2a:f0:c3:8c:e9:e9:3b:ee:b0:a2:a8: a8:0a:d1:f3:68:5b:fb:61:95:67:aa:fb:13:f7:7e: a1:54:0b:17:37:87:3d:e7:da:82:15:d3:e8:e1:f1: d9:72:e5:a7:da:e8:17:7d:bc:9c:c3:77:4a:c7:79: 19:16:0c:a3:83:af:91:84:db:1b:55:95:f3:d0:b9: b8:73:a2:b2:61:02:07:16:73:b0:e8:18:53:a4:f4: 7f:65:2a:ac:24:2f:7a:d8:21:44:f5:bd:7f:14:8a: c0:2c:95:42:62:eb:82:6a:ed:d5:b2:8c:9d:96:b6: ad:26:9d:4b:bd:42:e3:9f:b2:85:9d:ca:96:db:1d: d6:37:a4:94:a3:86:56:e0:3a:03:04:67:3d:cd:fc: 12:0b:69:f8:db:8f:50:3d:91:30:fd:ae:51:f9:24: db:08:76:69:43:74:4f:fb:f3:58:80:54:ed:be:05: b5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B3:D7:2F:02:25:A2:A4:C2:C3:A8:2A:7F:7B:12:1B:07:5A:B7:D3 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233302e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.230.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:b3:e8:14:bd:34:98:a8:b2:2d:34:fb:3c:f1:93:f8:b5:a4: 5e:3f:13:89:e3:3e:66:e3:54:87:af:e7:82:7a:80:12:83:e0: d7:93:2f:a5:ea:07:c8:d1:7c:7c:01:07:1b:8d:92:5d:71:96: 4f:8d:f1:76:2b:f0:38:98:4c:99:4d:0b:bd:52:12:7a:b8:0c: 31:a5:80:ae:a5:d0:c7:10:f4:93:9c:9f:29:6d:34:1e:1d:2a: e5:78:51:66:79:9c:80:dd:f0:f6:7b:6e:24:10:b4:6d:91:ea: 65:8c:c3:09:6a:fc:a9:13:f1:eb:84:b7:f5:64:3f:a8:01:76: 13:4c:7b:b9:e0:69:0a:e2:54:7e:c1:b8:3c:5c:5a:f8:95:d8: f7:80:61:d5:f9:9c:59:b3:9d:21:c0:7e:5e:56:10:54:f8:d5: ca:0a:71:16:75:b8:5e:e6:27:e3:7a:49:8f:e6:d5:e3:38:c9: d5:8a:a2:e7:a1:e3:79:0b:ef:8e:01:75:17:dc:ae:75:59:ab: 59:fc:e9:22:7d:b8:6d:4f:78:e3:0b:e1:73:a3:fb:b3:bd:53: 2c:8c:e7:e1:10:f7:f4:04:35:98:34:3e:8b:a0:48:c0:98:e4: d0:d0:99:21:39:66:ad:9b:64:6f:9a:a7:34:5f:69:54:51:27: 0e:00:32:c3 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUL9tc/Or1K4BGBSvejq3qAYaNya0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMDgxMTM4MjJaFw0yNTEwMDcxMTQzMjJaMDMxMTAvBgNV BAMTKEYzQjNENzJGMDIyNUEyQTRDMkMzQTgyQTdGN0IxMjFCMDc1QUI3RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMh+2p4VE3C13AXSx93xpj11VS Bctf2T5ASZMK/aZw81WMCQC4clIE6O02akK5mlGXwPb4GcQqD0VbVT7KblQrjbGV X8y9iu4F9Xs39UIq8MOM6ek77rCiqKgK0fNoW/thlWeq+xP3fqFUCxc3hz3n2oIV 0+jh8dly5afa6Bd9vJzDd0rHeRkWDKODr5GE2xtVlfPQubhzorJhAgcWc7DoGFOk 9H9lKqwkL3rYIUT1vX8UisAslUJi64Jq7dWyjJ2Wtq0mnUu9QuOfsoWdypbbHdY3 pJSjhlbgOgMEZz3N/BILafjbj1A9kTD9rlH5JNsIdmlDdE/781iAVO2+BbXZAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU87PXLwIloqTCw6gqf3sSGwdat9MwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHmMA0GCSqGSIb3DQEB CwUAA4IBAQBas+gUvTSYqLItNPs88ZP4taRePxOJ4z5m41SHr+eCeoASg+DXky+l 6gfI0Xx8AQcbjZJdcZZPjfF2K/A4mEyZTQu9UhJ6uAwxpYCupdDHEPSTnJ8pbTQe HSrleFFmeZyA3fD2e24kELRtkepljMMJavypE/HrhLf1ZD+oAXYTTHu54GkK4lR+ wbg8XFr4ldj3gGHV+ZxZs50hwH5eVhBU+NXKCnEWdbhe5ifjekmP5tXjOMnViqLn oeN5C++OAXUX3K51WatZ/OkifbhtT3jjC+Fzo/uzvVMsjOfhEPf0BDWYND6LoEjA mOTQ0JkhOWatm2Rvmqc0X2lUUScOADLD -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org