$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203136323736.roa File: 33372e3233302e36332e302f32342d3234203d3e203136323736.roa (raw, json) Hash identifier: Ak2iOyzYPVx1U2Y4aafCzk3EVWcPPFdLy4DeVbBgxpA= Subject key identifier: 48:30:BB:F3:82:66:93:42:08:E3:13:C0:CC:52:35:D7:D4:CD:45:3F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 4A50C4DDE3F89947D5138BCC06EADA6545F4989F Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203136323736.roa Signing time: Thu 13 Feb 2025 13:12:20 +0000 ROA not before: Thu 13 Feb 2025 13:07:20 +0000 ROA not after: Thu 12 Feb 2026 13:12:20 +0000 asID: 16276 IP address blocks: 37.230.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 12 Mar 2025 12:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:50:c4:dd:e3:f8:99:47:d5:13:8b:cc:06:ea:da:65:45:f4:98:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 13 13:07:20 2025 GMT Not After : Feb 12 13:12:20 2026 GMT Subject: CN=4830BBF38266934208E313C0CC5235D7D4CD453F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c3:df:f8:71:f8:ba:0b:eb:6a:e5:68:bc:41: 82:cc:69:2f:de:96:93:32:89:81:b5:53:69:d1:e5: 80:4b:3d:b4:f8:64:64:b2:a9:9a:47:8f:57:15:61: b9:46:e3:af:2e:03:ab:64:fc:12:d2:28:d0:13:77: 55:b6:6f:ec:ff:a5:5a:7a:31:c6:f3:07:c6:30:65: 6f:8d:05:6e:36:e8:b4:48:22:ed:49:c5:39:90:e0: 92:0f:25:98:4a:ff:0d:c7:6f:e9:0e:52:c5:c4:f6: c8:cb:15:5c:98:24:f0:c8:4a:50:71:38:2b:bf:a3: 22:d8:b3:cc:93:b0:87:85:55:3b:b1:a8:46:d8:98: d7:be:55:21:71:5f:5c:38:d9:d8:02:b0:54:42:84: 48:60:b7:2b:9a:0d:5c:e5:4e:67:bf:f6:92:a4:35: 59:03:91:1d:1d:50:74:37:8b:e5:e6:da:7e:b8:38: 23:78:46:5c:d9:90:6c:bd:5b:db:be:61:78:92:49: b5:2f:f1:1c:77:40:c0:3f:4e:14:1f:f5:08:7c:6e: 91:8a:81:6a:fb:46:80:e2:ae:ff:0e:fd:10:01:26: b2:e1:ec:83:1c:2c:6f:aa:2c:26:79:52:a0:bb:24: 7f:c0:b4:52:d1:bf:2f:90:9e:d1:ad:64:a6:35:28: 25:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:30:BB:F3:82:66:93:42:08:E3:13:C0:CC:52:35:D7:D4:CD:45:3F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203136323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.63.0/24 Signature Algorithm: sha256WithRSAEncryption 52:3e:1b:74:51:6b:85:15:30:7c:68:a6:98:6c:4a:7d:74:cf: 53:af:21:c8:db:b2:18:81:39:41:37:a6:a1:67:ca:61:98:9a: 18:ec:4a:29:0d:ef:0a:3b:e5:04:37:63:32:a3:c7:44:ff:21: 7b:a6:ca:75:d0:90:7b:6e:3b:18:a1:c3:72:bf:14:e2:aa:9d: 5f:31:29:9c:6d:bb:54:2f:6b:06:02:fe:9c:11:5e:4c:08:31: c1:11:74:91:63:39:17:2d:a5:27:3a:b9:ce:f9:65:eb:a9:f6: 93:67:eb:b8:3c:11:5b:fb:a9:76:47:d3:2c:e2:42:82:d1:2e: f9:98:3d:12:50:7e:c0:0a:be:a1:bb:80:d9:25:44:19:eb:b1: e1:65:37:0b:2c:88:ab:5b:47:c8:5c:91:aa:23:fa:17:21:a4: 8e:04:14:a5:ce:83:32:13:48:82:37:71:de:de:56:f1:37:a1: 71:e0:e8:17:62:24:c1:29:62:06:66:f0:dd:c4:94:d5:fb:86: 21:3b:66:6c:8c:2f:ab:36:91:92:d3:cb:c3:68:9f:37:14:55: 42:0d:13:91:2f:18:c1:30:1d:5a:10:4d:e1:8c:b2:81:75:52: 38:2e:61:4d:a9:88:e6:bd:17:a3:59:63:62:28:4e:31:d7:ff: f8:28:fc:86 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUSlDE3eP4mUfVE4vMBuraZUX0mJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAyMTMxMzA3MjBaFw0yNjAyMTIxMzEyMjBaMDMxMTAvBgNV BAMTKDQ4MzBCQkYzODI2NjkzNDIwOEUzMTNDMENDNTIzNUQ3RDRDRDQ1M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgw9/4cfi6C+tq5Wi8QYLMaS/e lpMyiYG1U2nR5YBLPbT4ZGSyqZpHj1cVYblG468uA6tk/BLSKNATd1W2b+z/pVp6 McbzB8YwZW+NBW426LRIIu1JxTmQ4JIPJZhK/w3Hb+kOUsXE9sjLFVyYJPDISlBx OCu/oyLYs8yTsIeFVTuxqEbYmNe+VSFxX1w42dgCsFRChEhgtyuaDVzlTme/9pKk NVkDkR0dUHQ3i+Xm2n64OCN4RlzZkGy9W9u+YXiSSbUv8Rx3QMA/ThQf9Qh8bpGK gWr7RoDirv8O/RABJrLh7IMcLG+qLCZ5UqC7JH/AtFLRvy+QntGtZKY1KCXlAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUSDC784Jmk0II4xPAzFI119TNRT8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzYzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzYzMjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAl5j8wDQYJKoZIhvcN AQELBQADggEBAFI+G3RRa4UVMHxopphsSn10z1OvIcjbshiBOUE3pqFnymGYmhjs SikN7wo75QQ3YzKjx0T/IXumynXQkHtuOxihw3K/FOKqnV8xKZxtu1QvawYC/pwR XkwIMcERdJFjORctpSc6uc75Zeup9pNn67g8EVv7qXZH0yziQoLRLvmYPRJQfsAK vqG7gNklRBnrseFlNwssiKtbR8hckaoj+hchpI4EFKXOgzITSII3cd7eVvE3oXHg 6BdiJMEpYgZm8N3ElNX7hiE7ZmyML6s2kZLTy8NonzcUVUINE5EvGMEwHVoQTeGM soF1UjguYU2piOa9F6NZY2IoTjHX//go/IY= -----END CERTIFICATE-----Generated at Wed Mar 12 04:57:58 2025 by rpki-client