$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35332e302f32342d3234203d3e203634323637.roa File: 33372e3233302e35332e302f32342d3234203d3e203634323637.roa (raw, json) Hash identifier: Pkv9jDCjyNjQ/UoBOJR7pUfU/aSuuL6BMV/91HxtON8= Subject key identifier: AC:0F:99:1A:F7:55:45:9E:DD:8A:F6:41:00:2B:0D:06:6C:76:7B:3F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 12A2366907BB738588FC4034382104D44548EB14 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35332e302f32342d3234203d3e203634323637.roa Signing time: Tue 22 Oct 2024 15:43:25 +0000 ROA not before: Tue 22 Oct 2024 15:38:25 +0000 ROA not after: Tue 21 Oct 2025 15:43:25 +0000 asID: 64267 IP address blocks: 37.230.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a2:36:69:07:bb:73:85:88:fc:40:34:38:21:04:d4:45:48:eb:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 22 15:38:25 2024 GMT Not After : Oct 21 15:43:25 2025 GMT Subject: CN=AC0F991AF755459EDD8AF641002B0D066C767B3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3d:7a:0e:04:95:05:28:62:5f:d6:c8:b2:86: 83:55:ae:e4:79:f7:01:44:ef:40:3a:35:d6:91:a9: f5:2b:d0:52:0c:97:6c:59:24:39:e5:95:88:c6:6a: bf:e3:cf:bc:0c:bc:60:05:ed:1d:f9:bb:47:ec:85: e3:53:91:25:11:30:e4:2c:ea:f4:4a:ee:39:a7:1e: 97:85:fe:24:c1:5f:4d:9a:41:d6:93:77:41:32:42: fd:95:2f:b9:d9:ba:d8:18:49:a6:94:b3:b6:af:32: bf:21:01:38:0b:e5:25:a6:6a:58:4a:82:6a:ed:b0: 15:c0:cb:22:77:18:bf:f8:cc:0b:9d:f7:ed:ba:05: 9f:4c:3e:ec:75:c5:e3:a7:da:cb:57:45:78:58:c9: ee:4e:14:d9:a3:89:ec:6e:07:f3:91:63:7c:ee:c2: af:e9:8b:f5:a7:82:0d:45:12:a9:a0:1a:28:a8:0e: 84:07:51:e9:f7:56:80:96:51:34:5a:32:df:9a:5d: ed:ed:fc:b5:40:ed:00:86:37:bd:4a:c5:c4:49:52: 32:05:22:25:a6:f4:42:b2:4b:38:93:aa:56:c2:54: 02:60:08:76:db:8e:29:73:6e:e5:79:aa:78:fe:f6: 39:1d:e6:fb:49:d8:b0:09:43:f6:72:d1:c8:22:27: 4c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0F:99:1A:F7:55:45:9E:DD:8A:F6:41:00:2B:0D:06:6C:76:7B:3F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35332e302f32342d3234203d3e203634323637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.53.0/24 Signature Algorithm: sha256WithRSAEncryption 32:9c:99:6c:5c:0f:ae:ec:d6:00:7d:6b:2e:f0:33:33:11:41: 17:2a:b5:a5:01:d4:07:74:ad:cf:61:65:11:4b:1c:19:ed:eb: a0:7f:59:24:50:27:79:bb:c0:63:27:31:8b:48:2a:0c:6d:79: 30:23:06:78:1c:ee:c8:e3:5a:7b:9e:d7:9f:2a:5c:cd:a2:4c: 58:7f:bd:a9:a7:50:b7:b0:8f:ae:f5:12:4a:50:e3:f2:00:1d: 2c:27:e4:a6:a2:b8:64:93:68:fe:66:95:3a:1f:ca:ad:29:8d: 15:58:f8:50:85:29:cd:b3:6f:fb:dd:30:8f:f0:68:18:90:af: f4:f0:3b:0d:af:2e:24:8c:62:9b:4e:63:e2:42:86:a8:cc:f3: 25:1a:f4:ac:c5:39:5c:c6:60:9b:05:af:5d:15:e9:0e:87:39: 4f:14:13:05:f7:c7:47:4d:49:8d:c7:2e:55:b8:a4:31:81:0d: 64:cc:e4:03:d3:76:f0:30:00:3b:a8:62:70:6a:22:18:74:26: 9f:78:5f:a5:e4:fe:9e:63:c8:38:cb:0b:30:b6:63:aa:2c:b6: a6:ea:9c:16:8a:79:ff:ef:9e:d3:b8:87:d4:22:49:56:db:85: 39:1e:ee:f8:9d:e5:5f:3f:18:85:41:b0:95:6d:aa:a0:48:52: b8:12:5f:9a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEqI2aQe7c4WI/EA0OCEE1EVI6xQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMjIxNTM4MjVaFw0yNTEwMjExNTQzMjVaMDMxMTAvBgNV BAMTKEFDMEY5OTFBRjc1NTQ1OUVERDhBRjY0MTAwMkIwRDA2NkM3NjdCM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoPXoOBJUFKGJf1siyhoNVruR5 9wFE70A6NdaRqfUr0FIMl2xZJDnllYjGar/jz7wMvGAF7R35u0fsheNTkSURMOQs 6vRK7jmnHpeF/iTBX02aQdaTd0EyQv2VL7nZutgYSaaUs7avMr8hATgL5SWmalhK gmrtsBXAyyJ3GL/4zAud9+26BZ9MPux1xeOn2stXRXhYye5OFNmjiexuB/ORY3zu wq/pi/Wngg1FEqmgGiioDoQHUen3VoCWUTRaMt+aXe3t/LVA7QCGN71KxcRJUjIF IiWm9EKySziTqlbCVAJgCHbbjilzbuV5qnj+9jkd5vtJ2LAJQ/Zy0cgiJ0w9AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUrA+ZGvdVRZ7divZBACsNBmx2ez8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzQzMjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5jUwDQYJKoZIhvcN AQELBQADggEBADKcmWxcD67s1gB9ay7wMzMRQRcqtaUB1Ad0rc9hZRFLHBnt66B/ WSRQJ3m7wGMnMYtIKgxteTAjBngc7sjjWnue158qXM2iTFh/vamnULewj671EkpQ 4/IAHSwn5KaiuGSTaP5mlTofyq0pjRVY+FCFKc2zb/vdMI/waBiQr/TwOw2vLiSM YptOY+JChqjM8yUa9KzFOVzGYJsFr10V6Q6HOU8UEwX3x0dNSY3HLlW4pDGBDWTM 5APTdvAwADuoYnBqIhh0Jp94X6Xk/p5jyDjLCzC2Y6ostqbqnBaKef/vntO4h9Qi SVbbhTke7vid5V8/GIVBsJVtqqBIUrgSX5o= -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org