$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa File: 33372e3233302e35362e302f32322d3234203d3e20323730303532.roa (raw, json) Hash identifier: fgcbIMNAB7h/wnC77ng8A1h8W2Fuy1969OmFhQzR17U= Subject key identifier: 80:3A:16:B7:A0:BC:C6:1A:A3:5B:13:4A:0B:60:15:DA:30:08:D0:1B Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 190E656B0B028B094945C2FF26FE5853F506FC22 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa Signing time: Fri 21 Mar 2025 12:53:58 +0000 ROA not before: Fri 21 Mar 2025 12:48:58 +0000 ROA not after: Fri 20 Mar 2026 12:53:58 +0000 asID: 270052 IP address blocks: 37.230.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0e:65:6b:0b:02:8b:09:49:45:c2:ff:26:fe:58:53:f5:06:fc:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 21 12:48:58 2025 GMT Not After : Mar 20 12:53:58 2026 GMT Subject: CN=803A16B7A0BCC61AA35B134A0B6015DA3008D01B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c5:60:87:1d:2c:8d:42:da:70:f9:b1:90:55: da:dc:f3:44:b5:23:2b:e8:91:1d:fb:a9:05:23:57: c1:e5:90:84:01:ed:41:3c:ab:e6:ab:d4:0e:b1:24: f4:00:a8:a1:70:be:80:a0:3e:82:e5:4e:6a:a3:34: db:15:11:05:05:31:f8:d0:9d:8a:de:9b:40:39:9b: 61:71:73:66:16:92:4f:71:e0:31:0f:b9:71:6f:a0: 8c:3d:61:a8:fa:42:10:a8:8e:33:b0:a8:18:4c:46: 86:0e:cc:ec:48:58:d6:c2:c4:e9:47:75:29:4e:9f: 47:5c:c6:ad:a0:fc:1d:fa:95:15:aa:79:e4:12:47: 5c:3b:d2:49:8b:40:2f:06:0f:c8:43:99:a1:a4:46: 8c:56:db:bb:87:45:05:ff:3f:f3:d6:90:bb:0e:bb: aa:9f:63:31:70:5a:45:38:b4:39:a0:d3:7c:ed:5d: 61:df:19:23:6a:0b:62:6f:9f:18:30:f6:1c:b4:2d: 8f:6f:54:27:c4:6c:64:a3:c5:4c:98:e9:87:c2:47: 44:eb:61:64:a3:56:f5:f4:fc:36:3a:a3:4c:00:1c: 38:6c:66:af:6d:1e:52:27:f3:60:02:c5:50:8d:84: 40:14:d7:2d:22:cb:49:2d:3f:eb:a0:69:8a:4b:82: 9a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3A:16:B7:A0:BC:C6:1A:A3:5B:13:4A:0B:60:15:DA:30:08:D0:1B X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32322d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.56.0/22 Signature Algorithm: sha256WithRSAEncryption a2:9b:c0:4d:8f:ca:d3:35:cb:36:5c:dd:4b:a4:bd:19:63:15: 69:b4:bc:65:cd:98:85:b5:78:57:60:85:40:f7:ed:2f:28:0f: de:c2:7f:c0:c0:07:86:4f:5f:52:17:74:09:0d:42:e9:0e:a4: 72:ed:85:6f:e0:7d:c0:f3:56:34:a0:6d:30:85:dd:3a:ca:81: 6b:5a:d4:59:95:e1:69:6d:f0:4f:ba:2c:4d:de:ed:ee:38:51: 86:88:57:c6:50:fb:6f:60:50:e6:9b:85:58:a2:45:7e:85:6d: 73:29:a3:0d:41:54:fd:7e:97:14:4e:ee:ea:54:eb:dd:d6:2e: 16:83:14:bb:1b:2e:49:9c:17:07:59:2b:27:d3:52:ca:b8:67: f1:db:b5:71:b2:ef:ef:e1:31:05:de:f6:ea:5c:bf:22:7f:fd: f1:69:0a:71:38:d4:ec:af:8a:98:84:5e:43:21:c0:54:e2:01: a5:19:58:2e:eb:4f:3e:c0:3f:a4:3f:1d:48:0e:2a:6d:ff:27: 67:33:1e:64:5c:4a:89:15:63:e0:57:39:2e:7b:43:17:dc:56: 64:70:7e:49:6d:df:af:69:90:36:e0:99:83:65:b8:3b:e4:7b: f1:45:f3:08:d1:3d:37:5f:50:a5:70:18:27:a6:40:6e:e4:7e: c0:9f:02:de -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUGQ5lawsCiwlJRcL/Jv5YU/UG/CIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAzMjExMjQ4NThaFw0yNjAzMjAxMjUzNThaMDMxMTAvBgNV BAMTKDgwM0ExNkI3QTBCQ0M2MUFBMzVCMTM0QTBCNjAxNURBMzAwOEQwMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXxWCHHSyNQtpw+bGQVdrc80S1 IyvokR37qQUjV8HlkIQB7UE8q+ar1A6xJPQAqKFwvoCgPoLlTmqjNNsVEQUFMfjQ nYrem0A5m2Fxc2YWkk9x4DEPuXFvoIw9Yaj6QhCojjOwqBhMRoYOzOxIWNbCxOlH dSlOn0dcxq2g/B36lRWqeeQSR1w70kmLQC8GD8hDmaGkRoxW27uHRQX/P/PWkLsO u6qfYzFwWkU4tDmg03ztXWHfGSNqC2Jvnxgw9hy0LY9vVCfEbGSjxUyY6YfCR0Tr YWSjVvX0/DY6o0wAHDhsZq9tHlIn82ACxVCNhEAU1y0iy0ktP+ugaYpLgpoTAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUgDoWt6C8xhqjWxNKC2AV2jAI0BswHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiXmODANBgkqhkiG 9w0BAQsFAAOCAQEAopvATY/K0zXLNlzdS6S9GWMVabS8Zc2YhbV4V2CFQPftLygP 3sJ/wMAHhk9fUhd0CQ1C6Q6kcu2Fb+B9wPNWNKBtMIXdOsqBa1rUWZXhaW3wT7os Td7t7jhRhohXxlD7b2BQ5puFWKJFfoVtcymjDUFU/X6XFE7u6lTr3dYuFoMUuxsu SZwXB1krJ9NSyrhn8du1cbLv7+ExBd726ly/In/98WkKcTjU7K+KmIReQyHAVOIB pRlYLutPPsA/pD8dSA4qbf8nZzMeZFxKiRVj4Fc5LntDF9xWZHB+SW3fr2mQNuCZ g2W4O+R78UXzCNE9N19QpXAYJ6ZAbuR+wJ8C3g== -----END CERTIFICATE-----Generated at Sun Apr 6 09:05:27 2025 by rpki-client