$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35372e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: WXZKl8um5GEdDuCkDiGQ14vQOPQ1wmbu1ae4MHBxahg= Subject key identifier: 6F:8B:B2:59:85:92:AE:E3:25:7E:A4:2A:D5:F5:FA:FA:56:92:6B:7F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 677DAA472C9CB403282AD306798867D832219518 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa Signing time: Thu 23 May 2024 12:02:40 +0000 ROA not before: Thu 23 May 2024 11:57:40 +0000 ROA not after: Thu 22 May 2025 12:02:40 +0000 asID: 270052 IP address blocks: 37.230.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 12:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7d:aa:47:2c:9c:b4:03:28:2a:d3:06:79:88:67:d8:32:21:95:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 23 11:57:40 2024 GMT Not After : May 22 12:02:40 2025 GMT Subject: CN=6F8BB2598592AEE3257EA42AD5F5FAFA56926B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2e:98:01:3f:96:2a:0e:61:ec:4c:34:33:41: 77:d9:cb:b5:0a:c6:86:06:e6:f8:2a:d4:22:e6:e7: 9e:a2:87:36:c6:8b:e9:1b:d9:b1:45:ae:1b:30:dc: b6:9e:3f:da:f8:11:23:46:7a:aa:2d:a2:f8:0a:9f: 81:4f:42:09:24:9b:2d:74:f8:62:94:9a:84:52:c0: d2:5d:06:c9:d3:ce:a6:18:06:5b:dc:ed:bd:1b:81: 36:f9:a6:d7:a9:4c:0a:50:2d:8a:37:34:62:0c:7e: 65:01:18:c3:34:76:ab:ca:b0:1c:92:e5:50:16:a1: 31:57:10:51:52:fc:bf:d8:7d:42:1b:9b:69:93:95: a1:70:fd:cf:b6:5c:d6:b4:02:6c:23:cd:0a:b9:14: 2e:df:64:72:7d:61:b2:52:46:fc:e4:77:03:c5:0e: dd:b0:8b:7f:a2:a6:57:6e:9a:9e:9c:e7:ea:72:5b: 4b:9b:bc:35:af:21:6e:65:df:7e:b0:5f:d1:19:9a: 4b:43:c8:0c:a7:34:27:3b:88:23:d7:ba:8f:71:45: ab:b3:8e:59:05:90:80:37:71:9a:90:ad:a0:08:67: 71:c1:ba:41:36:f5:bb:a4:e9:3c:d5:b0:fe:5b:64: 41:dc:7a:2b:76:b0:59:5d:e9:f7:6b:df:56:b5:0c: c6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8B:B2:59:85:92:AE:E3:25:7E:A4:2A:D5:F5:FA:FA:56:92:6B:7F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.57.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:53:e1:1b:06:72:fc:ce:5e:2f:8b:ed:61:1f:d5:21:b9:dd: 60:ee:af:95:d3:7a:72:16:f7:9a:fe:5e:7b:0a:d8:4f:24:a3: 14:a5:8a:b5:82:5b:30:b5:e2:a2:63:72:b3:dc:4a:7b:01:2e: 37:81:42:d0:b0:a1:93:cb:38:41:33:ac:f3:29:88:d2:bc:91: 38:60:2f:71:cc:cb:38:29:14:97:d3:81:be:6e:1b:8a:e2:c9: 93:58:66:02:9f:e4:ec:cf:7b:0d:32:d3:9a:b7:36:3d:db:78: eb:b3:be:03:e6:ca:6b:c0:94:47:00:ed:0d:b0:e9:9d:97:43: 26:09:0d:8f:bd:f2:fc:c7:28:e9:0e:2f:85:fb:46:03:88:d8: 67:0b:aa:9b:a6:bb:08:5c:70:d2:36:ec:35:c7:af:28:b0:f5: ff:94:11:1a:f2:65:af:58:43:d5:e8:22:9d:72:1f:71:01:22: 8e:7c:bb:20:58:66:d3:36:65:25:aa:30:e3:cc:34:87:ba:0d: ce:eb:0e:16:c1:4c:30:c4:b0:c5:a0:23:81:4b:b9:35:76:55: b4:26:6b:fd:ee:1a:fe:31:1e:c9:b4:10:9b:71:14:ee:9a:29: c6:7d:7b:59:9d:1b:8b:aa:ba:08:5c:0c:48:5e:20:80:02:46: 0d:6a:e7:a1 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUZ32qRyyctAMoKtMGeYhn2DIhlRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA1MjMxMTU3NDBaFw0yNTA1MjIxMjAyNDBaMDMxMTAvBgNV BAMTKDZGOEJCMjU5ODU5MkFFRTMyNTdFQTQyQUQ1RjVGQUZBNTY5MjZCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcLpgBP5YqDmHsTDQzQXfZy7UK xoYG5vgq1CLm556ihzbGi+kb2bFFrhsw3LaeP9r4ESNGeqotovgKn4FPQgkkmy10 +GKUmoRSwNJdBsnTzqYYBlvc7b0bgTb5ptepTApQLYo3NGIMfmUBGMM0dqvKsByS 5VAWoTFXEFFS/L/YfUIbm2mTlaFw/c+2XNa0AmwjzQq5FC7fZHJ9YbJSRvzkdwPF Dt2wi3+ipldump6c5+pyW0ubvDWvIW5l336wX9EZmktDyAynNCc7iCPXuo9xRauz jlkFkIA3cZqQraAIZ3HBukE29buk6TzVsP5bZEHceit2sFld6fdr31a1DMZxAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUb4uyWYWSruMlfqQq1fX6+laSa38wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOTANBgkqhkiG 9w0BAQsFAAOCAQEAmlPhGwZy/M5eL4vtYR/VIbndYO6vldN6chb3mv5eewrYTySj FKWKtYJbMLXiomNys9xKewEuN4FC0LChk8s4QTOs8ymI0ryROGAvcczLOCkUl9OB vm4biuLJk1hmAp/k7M97DTLTmrc2Pdt467O+A+bKa8CURwDtDbDpnZdDJgkNj73y /Mco6Q4vhftGA4jYZwuqm6a7CFxw0jbsNcevKLD1/5QRGvJlr1hD1eginXIfcQEi jny7IFhm0zZlJaow48w0h7oNzusOFsFMMMSwxaAjgUu5NXZVtCZr/e4a/jEeybQQ m3EU7popxn17WZ0bi6q6CFwMSF4ggAJGDWrnoQ== -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:10 2024 by rpki-client on console-ams.rpki-client.org