$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e203634323637.roa File: 33372e3233302e35342e302f32342d3234203d3e203634323637.roa (raw, json) Hash identifier: XFykwoX84I2erf1RHfv9NByauLjl3SDDMJRcXFy3LVg= Subject key identifier: 25:09:95:E9:65:40:41:B6:2F:E4:0B:78:B4:01:D7:38:15:D3:E8:39 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 4E33851B1F817609DB312006A45293C2ECB58370 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e203634323637.roa Signing time: Tue 22 Oct 2024 15:43:25 +0000 ROA not before: Tue 22 Oct 2024 15:38:25 +0000 ROA not after: Tue 21 Oct 2025 15:43:25 +0000 asID: 64267 IP address blocks: 37.230.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:33:85:1b:1f:81:76:09:db:31:20:06:a4:52:93:c2:ec:b5:83:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Oct 22 15:38:25 2024 GMT Not After : Oct 21 15:43:25 2025 GMT Subject: CN=250995E9654041B62FE40B78B401D73815D3E839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1d:58:4f:86:bd:6b:ff:de:49:36:2d:54:8c: c5:11:2a:a0:dd:b3:36:81:c7:ec:b6:1f:1b:1f:a9: 5b:b6:cc:a8:fa:77:1e:95:0e:75:ed:32:07:64:d4: 4c:97:85:d9:4e:d7:25:ec:e5:9b:22:95:2c:af:81: f4:2e:66:e0:02:71:bd:2c:62:66:79:bf:35:8d:90: 97:af:5f:91:f7:98:ee:bc:9d:c8:41:6e:2e:92:48: 0a:63:7f:63:1c:56:9a:44:de:5e:53:88:d7:95:be: 38:e4:de:3c:50:e0:1c:28:4d:ab:62:c0:ea:4a:98: 24:e8:41:9a:b8:54:83:ab:7a:5c:b1:87:13:de:65: d9:f2:0d:a7:70:2b:ee:bb:fd:f9:24:9a:9e:9c:7e: 47:cd:74:93:36:ae:54:df:6c:fd:ef:08:87:ac:f9: 26:3f:cc:4d:74:b4:75:a1:1a:04:11:e0:c5:22:8a: d7:4e:41:15:37:af:5e:40:ff:92:6a:49:d9:0e:83: 55:62:d6:03:4d:66:1b:f9:7f:66:03:0d:04:bb:9d: f7:6f:94:8e:df:08:6d:ac:4b:70:0d:c0:34:95:c3: b6:00:17:46:d9:9b:9d:3b:85:3f:25:4b:7c:fb:10: 29:d6:1f:46:08:5f:d5:14:8e:e3:91:55:bc:c5:2c: ec:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:09:95:E9:65:40:41:B6:2F:E4:0B:78:B4:01:D7:38:15:D3:E8:39 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35342e302f32342d3234203d3e203634323637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.54.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:31:ea:eb:82:46:f6:80:97:19:0a:60:78:32:36:89:05:b6: 44:84:40:60:be:d5:21:ac:cb:63:07:6f:7f:1e:32:0d:78:bd: 2d:da:51:f5:17:79:9c:e4:1b:6b:47:43:d5:c4:2e:a8:d3:42: 0d:d8:c1:11:4b:3e:1d:97:8d:a8:03:b9:e3:1d:ca:17:c3:1e: 8e:7c:ba:ae:1c:c1:c7:20:b6:3b:23:57:42:7e:24:c1:3c:a9: d5:eb:26:c1:7e:92:e5:ef:a4:46:d3:26:25:07:23:6d:01:53: 53:85:9a:5e:bf:cb:60:bc:1f:a7:8a:1c:82:fc:53:52:25:49: fc:08:d4:a4:b6:64:53:3f:51:4d:fc:6d:6f:6a:f6:ab:22:8e: 34:8c:ff:41:26:12:ec:5a:1a:10:27:c2:b6:4a:b2:fa:d1:f2: 50:fe:0d:e8:86:f9:b4:4a:34:41:7f:34:d3:8f:26:13:be:94: 14:b1:38:0c:f5:18:8a:f7:0e:7d:0e:af:a6:ec:50:fa:8c:a1: a6:44:e8:a4:f7:25:01:0e:5a:6d:05:ad:36:b4:e8:15:0a:1a: 4a:9e:b8:1f:e7:a1:c1:51:b5:f5:2e:e9:4c:ba:2f:70:13:66: b0:17:5d:26:4a:65:c5:e9:ca:cf:3b:08:0f:32:6f:e8:a2:70: 92:2e:2d:66 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUTjOFGx+BdgnbMSAGpFKTwuy1g3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDEwMjIxNTM4MjVaFw0yNTEwMjExNTQzMjVaMDMxMTAvBgNV BAMTKDI1MDk5NUU5NjU0MDQxQjYyRkU0MEI3OEI0MDFENzM4MTVEM0U4MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoHVhPhr1r/95JNi1UjMURKqDd szaBx+y2HxsfqVu2zKj6dx6VDnXtMgdk1EyXhdlO1yXs5ZsilSyvgfQuZuACcb0s YmZ5vzWNkJevX5H3mO68nchBbi6SSApjf2McVppE3l5TiNeVvjjk3jxQ4BwoTati wOpKmCToQZq4VIOrelyxhxPeZdnyDadwK+67/fkkmp6cfkfNdJM2rlTfbP3vCIes +SY/zE10tHWhGgQR4MUiitdOQRU3r15A/5JqSdkOg1Vi1gNNZhv5f2YDDQS7nfdv lI7fCG2sS3ANwDSVw7YAF0bZm507hT8lS3z7ECnWH0YIX9UUjuORVbzFLOxzAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUJQmV6WVAQbYv5At4tAHXOBXT6DkwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzQzMjM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5jYwDQYJKoZIhvcN AQELBQADggEBAB8x6uuCRvaAlxkKYHgyNokFtkSEQGC+1SGsy2MHb38eMg14vS3a UfUXeZzkG2tHQ9XELqjTQg3YwRFLPh2XjagDueMdyhfDHo58uq4cwccgtjsjV0J+ JME8qdXrJsF+kuXvpEbTJiUHI20BU1OFml6/y2C8H6eKHIL8U1IlSfwI1KS2ZFM/ UU38bW9q9qsijjSM/0EmEuxaGhAnwrZKsvrR8lD+DeiG+bRKNEF/NNOPJhO+lBSx OAz1GIr3Dn0Or6bsUPqMoaZE6KT3JQEOWm0FrTa06BUKGkqeuB/nocFRtfUu6Uy6 L3ATZrAXXSZKZcXpys87CA8yb+iicJIuLWY= -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org