$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323132333335.roa File: 33372e3233302e34392e302f32342d3234203d3e20323132333335.roa (raw, json) Hash identifier: vFPESEKT7Yw376CSMtCldlglO8PwaambeHB1pfZ8PDY= Subject key identifier: F1:6A:4C:D3:C9:D1:9A:41:98:A2:52:0C:6F:2B:9F:A1:53:8A:C8:D3 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 4163E210281B958417A2BC4EDF9B187200D870AC Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323132333335.roa Signing time: Thu 21 Mar 2024 07:32:50 +0000 ROA not before: Thu 21 Mar 2024 07:27:50 +0000 ROA not after: Thu 20 Mar 2025 07:32:50 +0000 asID: 212335 IP address blocks: 37.230.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 19:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:63:e2:10:28:1b:95:84:17:a2:bc:4e:df:9b:18:72:00:d8:70:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 21 07:27:50 2024 GMT Not After : Mar 20 07:32:50 2025 GMT Subject: CN=F16A4CD3C9D19A4198A2520C6F2B9FA1538AC8D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:8f:9b:1e:c7:58:27:59:09:91:96:89:99:78: 0a:06:11:54:c5:76:db:de:30:51:83:ea:eb:86:c2: a5:77:ff:1b:17:48:47:a6:0d:de:d9:6a:27:e2:6c: 6e:9c:04:78:9e:3e:bb:a3:01:70:ef:45:ce:9c:7a: ac:bf:02:32:b6:58:84:7f:34:68:05:92:4f:f7:f3: ee:e6:94:51:da:06:0a:9b:67:71:80:d6:ba:01:b3: 71:37:74:63:ce:2d:1e:71:1a:9e:fc:5b:0f:42:59: 3a:10:f3:ee:0b:58:9d:c5:f3:d3:de:35:84:09:4c: ba:87:35:16:c3:25:54:94:59:2b:d1:93:75:9b:1a: 88:f9:ce:eb:86:3a:30:ef:d7:18:0b:06:61:aa:22: 04:ba:c7:28:d2:6a:ed:5b:51:10:73:0f:6b:fa:73: 1e:3d:ec:89:00:14:76:fc:8d:b2:50:51:f6:30:bc: 2d:eb:02:c6:a0:c8:7e:b7:72:b5:28:c3:7d:06:89: db:58:26:76:96:56:73:04:96:5f:46:55:17:5c:28: b1:9c:db:c6:07:b1:2a:91:24:b2:65:86:93:8c:e0: 2a:d7:ec:ab:c0:43:63:50:d5:2e:3d:a1:1b:3c:36: 0b:73:2d:d7:1e:8c:1f:2c:59:1a:4f:d8:cb:c7:54: 82:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6A:4C:D3:C9:D1:9A:41:98:A2:52:0C:6F:2B:9F:A1:53:8A:C8:D3 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323132333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.49.0/24 Signature Algorithm: sha256WithRSAEncryption 85:b8:b5:2a:eb:d2:74:80:26:d6:4d:7a:b4:ae:b3:c0:da:1b: ce:d1:58:aa:4e:fa:31:19:15:18:d0:b1:8e:fd:39:07:f0:37: 1e:1d:c7:56:2d:aa:75:31:4b:7c:10:51:a3:2a:83:b7:d6:24: 8c:03:12:91:4a:a5:a1:5b:9a:38:4a:97:e2:75:ef:c3:ee:d2: ad:09:cd:d5:be:fc:ad:e1:3c:16:fc:22:7d:73:2f:9b:cd:ba: 93:45:66:66:69:2c:3d:bf:26:5a:4a:f8:de:bf:76:13:7b:57: de:6f:13:3d:48:5c:a8:e1:25:5b:96:58:0f:05:1a:4a:9d:f6: 34:f2:11:0c:f9:b4:91:1f:70:37:1e:1b:a5:7b:7c:9a:b3:a1: 09:3e:b6:b7:32:c5:94:93:7b:77:5b:00:90:a6:a7:54:5b:c9: 77:ed:5e:93:ee:06:4d:71:8f:3c:d6:9d:c0:88:a8:dd:53:7a: 9e:e4:1c:da:84:75:41:33:a6:9d:75:52:02:9d:d3:ad:fe:6c: 8f:a8:3b:74:4e:17:f8:ef:f2:ca:0f:25:96:b1:79:28:71:fe: 07:a5:1c:d2:3d:e7:f3:8c:4e:cf:6b:7d:91:6d:81:b7:6e:dc: 7a:88:d3:ff:c4:c3:dc:7c:39:ca:11:f2:79:71:59:5f:68:24: 42:95:d2:bf -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUQWPiECgblYQXorxO35sYcgDYcKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDAzMjEwNzI3NTBaFw0yNTAzMjAwNzMyNTBaMDMxMTAvBgNV BAMTKEYxNkE0Q0QzQzlEMTlBNDE5OEEyNTIwQzZGMkI5RkExNTM4QUM4RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXj5sex1gnWQmRlomZeAoGEVTF dtveMFGD6uuGwqV3/xsXSEemDd7ZaifibG6cBHiePrujAXDvRc6ceqy/AjK2WIR/ NGgFkk/38+7mlFHaBgqbZ3GA1roBs3E3dGPOLR5xGp78Ww9CWToQ8+4LWJ3F89Pe NYQJTLqHNRbDJVSUWSvRk3WbGoj5zuuGOjDv1xgLBmGqIgS6xyjSau1bURBzD2v6 cx497IkAFHb8jbJQUfYwvC3rAsagyH63crUow30GidtYJnaWVnMEll9GVRdcKLGc 28YHsSqRJLJlhpOM4CrX7KvAQ2NQ1S49oRs8NgtzLdcejB8sWRpP2MvHVIK5AgMB AAGjggJiMIICXjAdBgNVHQ4EFgQU8WpM08nRmkGYolIMbyufoVOKyNMwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzQzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzMjMzMzMzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmMTANBgkqhkiG 9w0BAQsFAAOCAQEAhbi1KuvSdIAm1k16tK6zwNobztFYqk76MRkVGNCxjv05B/A3 Hh3HVi2qdTFLfBBRoyqDt9YkjAMSkUqloVuaOEqX4nXvw+7SrQnN1b78reE8Fvwi fXMvm826k0VmZmksPb8mWkr43r92E3tX3m8TPUhcqOElW5ZYDwUaSp32NPIRDPm0 kR9wNx4bpXt8mrOhCT62tzLFlJN7d1sAkKanVFvJd+1ek+4GTXGPPNadwIio3VN6 nuQc2oR1QTOmnXVSAp3Trf5sj6g7dE4X+O/yyg8llrF5KHH+B6Uc0j3n84xOz2t9 kW2Bt27ceojT/8TD3Hw5yhHyeXFZX2gkQpXSvw== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:02 2024 by rpki-client on console-fra.rpki-client.org