$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa File: 33372e312e3233312e302f32342d3234203d3e203631333137.roa (raw, json) Hash identifier: WCk+PpHECj5y9IFNmHZfDwAMViTxmHEdmumkRuGKUCg= Subject key identifier: 6C:1E:D3:37:6E:BA:E4:2C:9E:D5:9E:F8:C4:FA:8E:89:F6:5D:98:C5 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1EF663B636211E7BAC0C5F529BC630DB8F3D486D Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa Signing time: Tue 08 Oct 2024 11:43:22 +0000 ROA not before: Tue 08 Oct 2024 11:38:22 +0000 ROA not after: Tue 07 Oct 2025 11:43:22 +0000 asID: 61317 IP address blocks: 37.1.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:f6:63:b6:36:21:1e:7b:ac:0c:5f:52:9b:c6:30:db:8f:3d:48:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 8 11:38:22 2024 GMT Not After : Oct 7 11:43:22 2025 GMT Subject: CN=6C1ED3376EBAE42C9ED59EF8C4FA8E89F65D98C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c7:ba:c2:8d:3c:d3:6b:7d:c3:8a:00:ee:78: ab:52:ab:60:f3:50:f1:ee:93:23:14:83:e5:08:48: f9:5e:e6:ba:29:9b:86:5d:ee:99:a2:2f:93:51:c2: c3:d3:fc:0c:84:df:d9:f3:57:3a:86:cd:c7:b1:ef: 70:72:4d:6c:71:f2:a1:24:54:40:a0:a5:a9:6f:6c: 33:e5:d3:f7:f5:eb:b4:25:b2:bd:3b:10:3a:f1:70: 93:77:65:9d:fa:8f:da:a7:eb:20:4d:7d:28:59:57: 39:12:0b:63:fb:3a:3f:b8:5e:0f:2b:16:08:b7:40: 21:91:7f:f0:f8:a4:8b:30:5d:df:9d:52:f3:d8:da: 68:5c:33:5e:c5:59:08:5e:04:75:c0:fb:09:5a:62: 3a:04:74:e5:53:67:45:a4:57:ca:4d:2c:09:7a:f2: 35:f7:9c:12:fb:8c:05:a7:3a:c1:06:bd:cf:6e:36: b6:f4:34:39:c9:c6:08:3b:66:91:40:7a:bb:ae:d2: de:8d:78:4a:af:a5:a2:46:b8:43:93:d9:4f:1e:60: c7:d2:10:71:e3:06:b8:4e:59:9a:25:82:32:40:19: 47:6a:ab:a1:bd:94:b8:45:78:7f:4b:8c:6b:34:4c: cb:53:d0:12:a6:f1:25:b4:72:76:17:b4:b8:37:e3: cc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1E:D3:37:6E:BA:E4:2C:9E:D5:9E:F8:C4:FA:8E:89:F6:5D:98:C5 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3233312e302f32342d3234203d3e203631333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.231.0/24 Signature Algorithm: sha256WithRSAEncryption 11:3f:f5:0d:9d:36:73:50:09:8f:9b:0c:6c:1e:9c:1b:6d:10: ae:36:f5:eb:f0:6a:fe:d2:23:d8:05:5f:b1:90:1e:13:3a:6a: dc:5d:cc:b4:ef:6b:96:6c:f2:cc:22:3e:a7:b7:0a:c2:75:4f: e1:4e:7f:d3:47:a2:ea:ff:61:93:48:ec:81:d6:f1:0f:0e:10: d7:02:b9:07:18:9e:21:5a:d9:88:55:3c:d9:b8:d1:74:e2:7a: 87:5d:fe:80:d6:c6:6e:dd:fe:2c:eb:68:14:9f:48:71:bc:77: b4:25:8d:9d:57:91:43:69:95:58:19:94:8a:3b:51:d9:f7:e2: 31:3a:b6:5e:06:1e:8f:c4:c8:b2:44:ef:b8:ed:54:84:a4:f1: ae:63:8c:c7:37:8e:81:14:c7:38:0c:c8:8f:5f:1f:18:92:48: cb:79:b3:79:7b:93:75:eb:6d:b0:45:6c:92:cf:b0:8a:a5:95: ec:b2:86:ce:e9:f4:f3:26:8d:ef:d9:42:74:f2:6f:20:ed:0d: 84:5f:d3:c3:df:a3:2c:b6:ad:99:c2:22:41:1e:0b:e4:ea:d6: 5b:f3:0d:73:cd:bc:2d:46:90:2f:07:f3:94:84:c8:ed:4e:2f: f3:66:20:c3:7d:ee:8c:60:74:f4:79:c0:50:2b:65:d5:16:fd: 61:09:88:75 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUHvZjtjYhHnusDF9Sm8Yw2489SG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMDgxMTM4MjJaFw0yNTEwMDcxMTQzMjJaMDMxMTAvBgNV BAMTKDZDMUVEMzM3NkVCQUU0MkM5RUQ1OUVGOEM0RkE4RTg5RjY1RDk4QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNx7rCjTzTa33DigDueKtSq2Dz UPHukyMUg+UISPle5ropm4Zd7pmiL5NRwsPT/AyE39nzVzqGzcex73ByTWxx8qEk VECgpalvbDPl0/f167Qlsr07EDrxcJN3ZZ36j9qn6yBNfShZVzkSC2P7Oj+4Xg8r Fgi3QCGRf/D4pIswXd+dUvPY2mhcM17FWQheBHXA+wlaYjoEdOVTZ0WkV8pNLAl6 8jX3nBL7jAWnOsEGvc9uNrb0NDnJxgg7ZpFAeruu0t6NeEqvpaJGuEOT2U8eYMfS EHHjBrhOWZolgjJAGUdqq6G9lLhFeH9LjGs0TMtT0BKm8SW0cnYXtLg348xDAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUbB7TN2665Cye1Z74xPqOifZdmMUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMzMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMxMzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHnMA0GCSqGSIb3DQEB CwUAA4IBAQARP/UNnTZzUAmPmwxsHpwbbRCuNvXr8Gr+0iPYBV+xkB4TOmrcXcy0 72uWbPLMIj6ntwrCdU/hTn/TR6Lq/2GTSOyB1vEPDhDXArkHGJ4hWtmIVTzZuNF0 4nqHXf6A1sZu3f4s62gUn0hxvHe0JY2dV5FDaZVYGZSKO1HZ9+IxOrZeBh6PxMiy RO+47VSEpPGuY4zHN46BFMc4DMiPXx8YkkjLebN5e5N1622wRWySz7CKpZXssobO 6fTzJo3v2UJ08m8g7Q2EX9PD36Mstq2ZwiJBHgvk6tZb8w1zzbwtRpAvB/OUhMjt Ti/zZiDDfe6MYHT0ecBQK2XVFv1hCYh1 -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org