$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35392e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: 8iHoeA3timTCA6nzfpPb6TD0g4oCFUH8RZnIM8z2Ee4= Subject key identifier: B4:5C:B9:F5:50:B7:15:74:5F:11:E9:4E:80:AB:B9:8B:75:6A:83:C9 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 35D3A34318AEC375574A78089E23158075BFFA81 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa Signing time: Thu 23 May 2024 12:03:15 +0000 ROA not before: Thu 23 May 2024 11:58:15 +0000 ROA not after: Thu 22 May 2025 12:03:15 +0000 asID: 270052 IP address blocks: 37.230.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d3:a3:43:18:ae:c3:75:57:4a:78:08:9e:23:15:80:75:bf:fa:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 23 11:58:15 2024 GMT Not After : May 22 12:03:15 2025 GMT Subject: CN=B45CB9F550B715745F11E94E80ABB98B756A83C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1d:cf:c1:19:08:a9:2d:fb:27:d6:05:f0:7a: 87:fe:43:07:6c:4a:7e:43:6c:fb:36:cd:51:c2:7f: 07:5b:78:8c:75:73:46:e9:ba:e2:9c:57:67:8c:c9: c9:96:65:8e:b6:1e:10:e0:58:5b:2a:ec:4e:6b:04: 2a:21:ec:72:4a:54:c7:18:fa:24:04:f1:6a:27:70: ec:3d:fa:a2:03:d1:0e:a1:90:ce:9e:ef:96:58:46: 58:3f:0b:2b:5e:75:84:99:23:00:01:27:2b:6c:b0: 5c:3b:62:ec:54:c6:1d:4b:c3:d8:d4:8e:4d:0f:27: fb:50:4e:98:2f:2e:ec:21:48:ad:94:8e:27:77:d7: b2:83:16:bc:62:87:3e:05:aa:77:48:21:34:09:f4: 52:f9:6c:1f:1a:ff:48:7e:da:6f:b5:8f:01:96:99: 3b:2b:b7:2b:2c:89:a8:5f:9b:fd:d0:58:88:6b:2b: 7a:44:df:ae:be:02:bf:9b:40:e7:82:05:d3:2c:81: ba:4e:5d:13:bb:13:62:80:bb:d9:7a:26:fc:70:03: 5b:6f:4b:99:52:9c:3a:1a:5d:94:4d:57:92:7a:7a: 8b:0c:42:11:36:f0:5c:9e:a4:e4:10:fb:2c:0d:e7: ea:c8:09:52:db:34:02:0e:9a:5f:5c:79:51:60:af: 12:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5C:B9:F5:50:B7:15:74:5F:11:E9:4E:80:AB:B9:8B:75:6A:83:C9 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.59.0/24 Signature Algorithm: sha256WithRSAEncryption 12:cf:6d:75:23:1e:6d:1b:5f:e5:e6:ac:8b:2a:da:44:22:99: 57:46:fc:e4:24:48:01:36:b6:57:11:73:e9:13:42:1a:59:23: 7b:7f:22:73:d1:90:67:b2:88:e0:c6:ba:bf:ba:e9:31:77:53: d4:c7:5d:3a:18:dc:f8:32:e6:1b:c7:25:0e:1d:e0:b7:57:65: bf:cf:48:40:bd:30:8b:5e:e9:99:a7:f5:a1:b8:be:ac:cb:94: 20:a3:f2:40:e4:3c:ff:1c:63:a2:7c:ac:ad:69:6d:b4:7d:91: 36:bb:95:cd:e5:fb:c5:d3:55:7a:d5:f0:83:5c:98:71:76:4c: e4:f9:9e:3e:b0:af:93:0b:5f:ee:8c:62:80:a0:b1:b4:94:ba: 3e:fe:a0:f7:2d:8b:15:6c:95:ec:c5:a7:d8:0a:8a:74:1f:9b: f0:6c:ef:c7:27:b3:74:67:29:58:9f:21:3e:9b:b6:c1:4a:dd: 62:90:fe:44:58:9f:02:d5:70:41:88:2b:a9:6b:03:b3:24:a5: 0f:07:e2:2e:e9:c3:6c:d2:9d:78:19:9f:5d:b6:95:29:0d:d5: e4:11:12:42:ca:d2:6c:09:fb:2d:2d:7e:7b:f4:ca:e8:04:12: 56:3f:9c:d2:cb:6e:c1:bc:bf:ad:63:72:76:3b:28:60:51:4e: ae:04:f0:e2 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUNdOjQxiuw3VXSngIniMVgHW/+oEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA1MjMxMTU4MTVaFw0yNTA1MjIxMjAzMTVaMDMxMTAvBgNV BAMTKEI0NUNCOUY1NTBCNzE1NzQ1RjExRTk0RTgwQUJCOThCNzU2QTgzQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Hc/BGQipLfsn1gXweof+Qwds Sn5DbPs2zVHCfwdbeIx1c0bpuuKcV2eMycmWZY62HhDgWFsq7E5rBCoh7HJKVMcY +iQE8WoncOw9+qID0Q6hkM6e75ZYRlg/CytedYSZIwABJytssFw7YuxUxh1Lw9jU jk0PJ/tQTpgvLuwhSK2Ujid317KDFrxihz4FqndIITQJ9FL5bB8a/0h+2m+1jwGW mTsrtyssiahfm/3QWIhrK3pE366+Ar+bQOeCBdMsgbpOXRO7E2KAu9l6JvxwA1tv S5lSnDoaXZRNV5J6eosMQhE28FyepOQQ+ywN5+rICVLbNAIOml9ceVFgrxLVAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUtFy59VC3FXRfEelOgKu5i3Vqg8kwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOzANBgkqhkiG 9w0BAQsFAAOCAQEAEs9tdSMebRtf5easiyraRCKZV0b85CRIATa2VxFz6RNCGlkj e38ic9GQZ7KI4Ma6v7rpMXdT1MddOhjc+DLmG8clDh3gt1dlv89IQL0wi17pmaf1 obi+rMuUIKPyQOQ8/xxjonysrWlttH2RNruVzeX7xdNVetXwg1yYcXZM5PmePrCv kwtf7oxigKCxtJS6Pv6g9y2LFWyV7MWn2AqKdB+b8GzvxyezdGcpWJ8hPpu2wUrd YpD+RFifAtVwQYgrqWsDsySlDwfiLunDbNKdeBmfXbaVKQ3V5BESQsrSbAn7LS1+ e/TK6AQSVj+c0stuwby/rWNydjsoYFFOrgTw4g== -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org