$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32332d3234203d3e20323730303532.roa File: 33372e3233302e35382e302f32332d3234203d3e20323730303532.roa (raw, json) Hash identifier: KoUkzZjrqyCwvE8CD++4hbTdS9gqIpvkGv1ti94FCOo= Subject key identifier: 2B:73:9C:09:C0:16:66:B2:D3:52:B1:AA:1D:90:83:05:CF:CF:B1:5F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 01BC589F3BD04AC39AEB6F2280BC1BA28B98F497 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32332d3234203d3e20323730303532.roa Signing time: Thu 23 May 2024 12:02:52 +0000 ROA not before: Thu 23 May 2024 11:57:52 +0000 ROA not after: Thu 22 May 2025 12:02:52 +0000 asID: 270052 IP address blocks: 37.230.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:bc:58:9f:3b:d0:4a:c3:9a:eb:6f:22:80:bc:1b:a2:8b:98:f4:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 23 11:57:52 2024 GMT Not After : May 22 12:02:52 2025 GMT Subject: CN=2B739C09C01666B2D352B1AA1D908305CFCFB15F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:59:77:d6:01:a9:01:0d:2f:91:8b:b7:68:88: ef:a7:1c:4a:12:9a:c2:59:93:93:3a:a1:4b:f0:e7: 7d:da:5e:17:34:81:1d:6d:a4:5e:34:40:1f:02:20: 82:57:f2:37:5e:ca:5f:2a:67:85:6b:f2:b6:05:ea: fc:f8:65:3a:e3:a1:63:46:3a:a5:0d:9e:05:72:39: 71:c1:76:5b:a1:1f:17:d2:4d:6f:61:b6:46:fc:f7: 5a:e7:3a:74:51:08:95:a7:75:48:7b:11:c3:81:a6: 3c:ae:b0:d0:34:1b:ae:69:54:0e:f5:3e:8f:e6:68: 41:29:ae:80:3e:05:e9:25:cf:ea:eb:37:a0:b2:c4: 34:5a:64:cd:61:82:08:11:50:32:7f:cb:91:85:84: 0d:93:78:0f:af:49:28:09:24:ce:e9:b3:a0:f2:c2: 16:d7:57:d6:b9:7d:9b:c6:27:13:f0:64:46:4e:70: 45:ac:7a:19:05:6a:74:5e:cd:fb:9e:fd:60:6b:78: 3f:81:72:0e:62:5f:3f:21:79:9c:6a:cd:b0:7b:47: 5e:f8:50:f6:2f:71:c9:dc:0c:ea:3f:88:46:18:41: 2b:12:ab:b1:bf:48:34:52:99:98:e9:72:a2:a0:d3: 06:7f:15:7d:39:dc:e8:e4:4e:7a:e9:f2:95:b9:23: 43:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:73:9C:09:C0:16:66:B2:D3:52:B1:AA:1D:90:83:05:CF:CF:B1:5F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32332d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.58.0/23 Signature Algorithm: sha256WithRSAEncryption 43:8f:a7:37:a9:d9:a1:00:d5:89:71:38:ca:f0:a0:28:12:73: 29:32:cd:92:18:51:4b:59:b1:e4:55:3a:71:f4:95:6e:da:40: 88:72:aa:e2:29:aa:1f:1e:ce:74:50:b1:52:8a:bf:fc:73:47: 3b:73:89:c6:68:0c:b2:bf:c5:b6:02:94:c3:20:64:4e:92:f5: 96:11:03:d9:6e:cc:0a:27:cd:c9:cb:fd:59:c1:ee:60:7e:97: 37:ce:0d:00:c5:91:53:fe:27:c8:77:25:ef:5d:61:ba:7b:03: 38:65:f3:03:00:15:94:af:a0:e4:93:44:a9:ce:db:e3:47:46: 2c:83:e8:ea:06:2c:28:a1:3f:84:a1:e2:c7:1f:30:9d:59:8f: 1f:9c:5d:bc:9e:d1:42:87:c9:2f:c6:c4:b5:1e:c4:b8:20:57: bf:b2:3e:c1:cb:f9:56:2a:d6:e6:7d:ef:24:e7:64:73:8d:ad: 45:25:d9:45:4d:56:af:f3:d8:41:4d:36:21:7b:5c:ab:1f:3a: d8:0f:12:e2:9b:b8:68:93:2f:0d:40:3d:84:d3:79:49:30:57: 6c:92:c9:3a:a0:dc:4e:b6:0b:97:7e:53:da:7c:9d:e7:62:cf: 79:f9:17:cb:cc:e0:97:b3:b3:d5:3b:cd:7d:91:85:c9:e6:cc: 3b:85:f6:83 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUAbxYnzvQSsOa628igLwboouY9JcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA1MjMxMTU3NTJaFw0yNTA1MjIxMjAyNTJaMDMxMTAvBgNV BAMTKDJCNzM5QzA5QzAxNjY2QjJEMzUyQjFBQTFEOTA4MzA1Q0ZDRkIxNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHWXfWAakBDS+Ri7doiO+nHEoS msJZk5M6oUvw533aXhc0gR1tpF40QB8CIIJX8jdeyl8qZ4Vr8rYF6vz4ZTrjoWNG OqUNngVyOXHBdluhHxfSTW9htkb891rnOnRRCJWndUh7EcOBpjyusNA0G65pVA71 Po/maEEproA+Beklz+rrN6CyxDRaZM1hgggRUDJ/y5GFhA2TeA+vSSgJJM7ps6Dy whbXV9a5fZvGJxPwZEZOcEWsehkFanRezfue/WBreD+Bcg5iXz8heZxqzbB7R174 UPYvccncDOo/iEYYQSsSq7G/SDRSmZjpcqKg0wZ/FX053OjkTnrp8pW5I0OVAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUK3OcCcAWZrLTUrGqHZCDBc/PsV8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASXmOjANBgkqhkiG 9w0BAQsFAAOCAQEAQ4+nN6nZoQDViXE4yvCgKBJzKTLNkhhRS1mx5FU6cfSVbtpA iHKq4imqHx7OdFCxUoq//HNHO3OJxmgMsr/FtgKUwyBkTpL1lhED2W7MCifNycv9 WcHuYH6XN84NAMWRU/4nyHcl711hunsDOGXzAwAVlK+g5JNEqc7b40dGLIPo6gYs KKE/hKHixx8wnVmPH5xdvJ7RQofJL8bEtR7EuCBXv7I+wcv5VirW5n3vJOdkc42t RSXZRU1Wr/PYQU02IXtcqx862A8S4pu4aJMvDUA9hNN5STBXbJLJOqDcTrYLl35T 2nyd52LPefkXy8zgl7Oz1TvNfZGFyebMO4X2gw== -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org