$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa File: 33372e3233302e35362e302f32322d3234203d3e20323730303532.roa (raw, json) Hash identifier: hLmUiodZwEHKPEWC2MOU+4R3Fd5BkkU2X5tDRcNthHg= Subject key identifier: 0E:5B:49:00:9B:49:28:C3:5E:B8:0E:DB:09:E3:18:FD:36:7C:1D:68 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 18501D3AC7C786D1282DF76D6A764FDFBFF886A2 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa Signing time: Fri 19 Apr 2024 12:48:59 +0000 ROA not before: Fri 19 Apr 2024 12:43:59 +0000 ROA not after: Fri 18 Apr 2025 12:48:59 +0000 asID: 270052 IP address blocks: 37.230.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 07 May 2024 20:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:50:1d:3a:c7:c7:86:d1:28:2d:f7:6d:6a:76:4f:df:bf:f8:86:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 19 12:43:59 2024 GMT Not After : Apr 18 12:48:59 2025 GMT Subject: CN=0E5B49009B4928C35EB80EDB09E318FD367C1D68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:93:84:2d:a8:3e:7a:55:e1:77:86:a7:f5:42: 6d:0c:b8:1f:58:a9:96:d9:96:8e:45:07:3c:fc:57: f5:33:36:54:6f:5e:f3:c3:3c:d8:2b:c8:1d:c3:5d: 73:6a:a8:02:59:b5:a0:d2:f6:bb:c3:aa:4c:13:c5: 6b:a6:cc:fa:b5:72:9d:3c:26:56:ed:75:28:c0:bb: e0:d9:cc:08:16:88:f6:88:42:48:37:19:78:d9:28: c6:68:65:5b:34:ad:6c:bd:e1:97:cf:b9:9d:14:bb: c5:68:25:54:a8:fa:93:86:03:d1:ce:0e:8f:72:9a: d5:e3:ff:25:0b:f6:96:b0:61:49:4a:69:45:79:3f: e8:5d:25:8e:f0:c7:53:b0:e6:67:19:36:40:70:8a: ef:b8:d0:1d:a6:38:c5:a6:5c:e4:e9:77:b9:32:6f: 96:30:4f:c9:46:ab:cd:4a:45:01:8a:2f:c3:d2:f2: 74:e5:80:fe:0a:be:07:58:d7:f5:6d:5c:de:c5:6a: 8e:f6:16:ff:7a:87:1b:3a:80:37:64:7f:12:1c:f6: c2:2f:a5:d1:55:45:a6:77:a3:1b:92:e7:c7:a2:ba: f0:bd:7e:cb:00:e3:3e:86:fa:39:fa:b1:e0:e1:21: 24:48:19:1a:96:14:ef:08:92:17:8a:6a:fb:f0:a8: a9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:5B:49:00:9B:49:28:C3:5E:B8:0E:DB:09:E3:18:FD:36:7C:1D:68 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.56.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:b4:0f:fa:42:58:53:fd:58:d3:06:80:57:51:24:09:8c:f6: 5d:ed:f3:58:0e:fd:8a:13:7d:e4:94:f9:f7:90:5e:7d:31:fd: bf:be:e8:42:72:0a:10:cf:7d:bd:d0:70:72:98:e8:b8:a8:a5: 80:ab:39:ac:a6:b1:f5:c5:8f:3c:1f:60:2e:f7:69:6d:56:d6: 8f:91:bd:66:0c:7d:7e:e3:41:a5:70:36:24:4c:ba:20:ac:cb: 01:5b:c0:a4:a3:17:e8:38:2a:d6:07:ed:65:c4:31:ea:62:53: db:e4:6c:bd:04:74:e2:96:a6:5c:be:14:56:5a:65:9e:79:3c: 86:c3:dc:fa:c6:a7:be:4e:32:1b:cd:e2:60:4d:56:75:c5:bf: 2e:48:3e:c8:04:de:5a:ea:a4:12:ca:7b:0b:4a:dd:e4:67:d0: 23:e0:f6:44:ad:cb:ec:c0:87:21:2a:70:39:d2:28:61:b3:e5: 6e:78:20:17:7b:fd:13:70:0a:cc:94:3b:a4:54:d9:f7:9c:01: aa:76:bf:64:41:5c:28:a5:7b:df:eb:0b:29:5e:2f:b5:47:3f: 41:49:71:79:7c:d1:10:b1:d0:05:d6:cc:77:6d:40:3d:05:4d: 15:b4:1a:ec:eb:88:71:8a:bb:8f:e3:c2:44:d3:f7:66:d7:39: 2c:c8:43:a7 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUGFAdOsfHhtEoLfdtanZP37/4hqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA0MTkxMjQzNTlaFw0yNTA0MTgxMjQ4NTlaMDMxMTAvBgNV BAMTKDBFNUI0OTAwOUI0OTI4QzM1RUI4MEVEQjA5RTMxOEZEMzY3QzFENjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtk4QtqD56VeF3hqf1Qm0MuB9Y qZbZlo5FBzz8V/UzNlRvXvPDPNgryB3DXXNqqAJZtaDS9rvDqkwTxWumzPq1cp08 JlbtdSjAu+DZzAgWiPaIQkg3GXjZKMZoZVs0rWy94ZfPuZ0Uu8VoJVSo+pOGA9HO Do9ymtXj/yUL9pawYUlKaUV5P+hdJY7wx1Ow5mcZNkBwiu+40B2mOMWmXOTpd7ky b5YwT8lGq81KRQGKL8PS8nTlgP4KvgdY1/VtXN7Fao72Fv96hxs6gDdkfxIc9sIv pdFVRaZ3oxuS58eiuvC9fssA4z6G+jn6seDhISRIGRqWFO8IkheKavvwqKkxAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUDltJAJtJKMNeuA7bCeMY/TZ8HWgwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiXmODANBgkqhkiG 9w0BAQsFAAOCAQEATrQP+kJYU/1Y0waAV1EkCYz2Xe3zWA79ihN95JT595BefTH9 v77oQnIKEM99vdBwcpjouKilgKs5rKax9cWPPB9gLvdpbVbWj5G9Zgx9fuNBpXA2 JEy6IKzLAVvApKMX6Dgq1gftZcQx6mJT2+RsvQR04pamXL4UVlplnnk8hsPc+san vk4yG83iYE1WdcW/Lkg+yATeWuqkEsp7C0rd5GfQI+D2RK3L7MCHISpwOdIoYbPl bnggF3v9E3AKzJQ7pFTZ95wBqna/ZEFcKKV73+sLKV4vtUc/QUlxeXzRELHQBdbM d21APQVNFbQa7OuIcYq7j+PCRNP3Ztc5LMhDpw== -----END CERTIFICATE-----Generated at Tue May 7 11:40:57 2024 by rpki-client on console-ams.rpki-client.org