$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36302e302f32342d3234203d3e20323134333832.roa File: 33372e3233302e36302e302f32342d3234203d3e20323134333832.roa (raw, json) Hash identifier: 9kp0RSY8IUh8ho6SJGHyGIPebU82vQeo9j2rXfSpuwo= Subject key identifier: BF:40:85:56:47:0E:77:4E:91:30:E0:32:A3:D4:31:60:F6:74:B9:0A Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 6DFAA03B576B9AF5171BD995FAFF377F6E7AE2AD Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36302e302f32342d3234203d3e20323134333832.roa Signing time: Tue 11 Mar 2025 13:23:37 +0000 ROA not before: Tue 11 Mar 2025 13:18:37 +0000 ROA not after: Tue 10 Mar 2026 13:23:37 +0000 asID: 214382 IP address blocks: 37.230.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fa:a0:3b:57:6b:9a:f5:17:1b:d9:95:fa:ff:37:7f:6e:7a:e2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 11 13:18:37 2025 GMT Not After : Mar 10 13:23:37 2026 GMT Subject: CN=BF408556470E774E9130E032A3D43160F674B90A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5f:4c:7c:d3:c6:a1:03:58:d4:36:15:29:08: d9:94:07:fe:55:4d:ab:93:32:4b:93:11:d6:27:cd: b5:5f:55:82:3c:7c:5d:6e:5a:3f:50:d0:50:40:a9: ec:55:48:51:f7:23:bb:13:ed:aa:c2:47:11:7d:7f: cd:96:6c:3c:1b:33:c5:3d:f7:5e:38:0a:77:89:37: ec:46:04:86:c8:28:a3:a7:d8:03:39:9e:d0:a2:b1: 6f:47:c5:15:b3:31:f7:9f:44:bf:9e:12:06:bd:db: 9a:ce:c4:8a:6e:97:27:ef:13:60:22:26:a4:67:44: e1:26:1f:14:35:d0:d9:69:0b:1f:15:05:eb:28:63: 39:e8:06:30:08:e8:0f:fd:64:6f:97:c4:c9:1a:8d: b7:7e:b7:60:55:4f:0d:7a:e0:47:e7:69:e1:4e:3e: 93:8e:4f:0d:d9:d4:77:89:d4:8f:05:98:53:1f:3a: f4:cf:b2:f7:78:44:37:91:66:40:45:93:86:ba:f3: 93:80:51:8b:8c:9c:cf:09:2b:8e:02:49:1f:fc:f9: 8b:ce:1c:43:08:9a:b1:06:2d:44:23:c8:6a:e7:fe: 67:56:9c:91:22:9c:b3:f1:ac:a2:3f:6b:38:f3:7b: e6:18:a6:d0:07:37:96:18:0b:58:1e:21:d1:e3:e1: 61:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:40:85:56:47:0E:77:4E:91:30:E0:32:A3:D4:31:60:F6:74:B9:0A X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36302e302f32342d3234203d3e20323134333832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.60.0/24 Signature Algorithm: sha256WithRSAEncryption 76:ff:28:ad:76:bb:f0:a0:13:40:cd:b8:4e:66:b5:80:bf:10: 20:87:3d:32:c1:59:7e:6a:75:27:89:3c:fc:09:fe:e4:c2:25: 38:31:dd:29:e9:7d:d2:21:7e:42:23:66:99:36:62:3f:dd:ca: 3f:db:f9:f7:37:25:f6:a0:4d:ed:cd:24:c9:97:7f:01:20:2e: 06:8c:8a:6f:c9:21:df:e8:b3:0e:11:fc:8b:67:2f:83:a7:93: 37:95:df:31:c8:5b:59:5b:b3:2d:92:7e:d0:27:23:08:e4:98: 54:02:84:a9:81:07:63:a3:8c:cc:eb:af:2f:36:07:fb:8f:7a: 2f:d1:a3:0e:52:b2:ff:27:32:07:35:f8:1a:84:4f:c2:77:88: a3:77:1f:a4:a0:de:8f:d4:70:02:c6:7e:b8:de:14:dc:12:e8: 28:4c:d1:00:b6:38:9c:21:66:6f:e0:d7:f1:b4:77:12:65:19: e3:ef:83:58:9b:4f:32:43:d5:b1:35:3a:3b:9d:38:d3:fb:e2: 07:be:24:8f:2d:68:cd:5f:bb:cf:da:d1:7d:94:80:c7:fb:4c: 4f:ba:8a:65:3c:2b:96:e3:b7:66:c0:9b:27:58:5d:c8:0d:ed: 00:42:90:a1:18:a5:9c:1c:33:39:df:9f:0f:41:4c:d2:98:e8: 0c:52:6b:09 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUbfqgO1drmvUXG9mV+v83f2564q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAzMTExMzE4MzdaFw0yNjAzMTAxMzIzMzdaMDMxMTAvBgNV BAMTKEJGNDA4NTU2NDcwRTc3NEU5MTMwRTAzMkEzRDQzMTYwRjY3NEI5MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyX0x808ahA1jUNhUpCNmUB/5V TauTMkuTEdYnzbVfVYI8fF1uWj9Q0FBAqexVSFH3I7sT7arCRxF9f82WbDwbM8U9 9144CneJN+xGBIbIKKOn2AM5ntCisW9HxRWzMfefRL+eEga925rOxIpulyfvE2Ai JqRnROEmHxQ10NlpCx8VBesoYznoBjAI6A/9ZG+XxMkajbd+t2BVTw164EfnaeFO PpOOTw3Z1HeJ1I8FmFMfOvTPsvd4RDeRZkBFk4a685OAUYuMnM8JK44CSR/8+YvO HEMImrEGLUQjyGrn/mdWnJEinLPxrKI/azjze+YYptAHN5YYC1geIdHj4WHtAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUv0CFVkcOd06RMOAyo9QxYPZ0uQowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzNDMzMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmPDANBgkqhkiG 9w0BAQsFAAOCAQEAdv8orXa78KATQM24Tma1gL8QIIc9MsFZfmp1J4k8/An+5MIl ODHdKel90iF+QiNmmTZiP93KP9v59zcl9qBN7c0kyZd/ASAuBoyKb8kh3+izDhH8 i2cvg6eTN5XfMchbWVuzLZJ+0CcjCOSYVAKEqYEHY6OMzOuvLzYH+496L9GjDlKy /ycyBzX4GoRPwneIo3cfpKDej9RwAsZ+uN4U3BLoKEzRALY4nCFmb+DX8bR3EmUZ 4++DWJtPMkPVsTU6O5040/viB74kjy1ozV+7z9rRfZSAx/tMT7qKZTwrluO3ZsCb J1hdyA3tAEKQoRilnBwzOd+fD0FM0pjoDFJrCQ== -----END CERTIFICATE-----Generated at Sun Apr 6 09:05:19 2025 by rpki-client