$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3233203d3e20343030393039.roa File: 352e38332e3230382e302f32332d3233203d3e20343030393039.roa (raw, json) Hash identifier: EZ2buMZC5e21ZvwIPLtxhmbTM3BCLk9o65zd9WJwr08= Subject key identifier: 7E:FE:43:06:93:BF:E6:8C:04:E6:F6:7B:1C:DA:43:57:48:77:06:9B Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 122D849409332EE35289B586CEF2192E2A911FB1 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3233203d3e20343030393039.roa Signing time: Sat 25 Jan 2025 21:53:52 +0000 ROA not before: Sat 25 Jan 2025 21:48:52 +0000 ROA not after: Sat 24 Jan 2026 21:53:52 +0000 asID: 400909 IP address blocks: 5.83.208.0/23 maxlen: 23 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 15 Feb 2025 03:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:2d:84:94:09:33:2e:e3:52:89:b5:86:ce:f2:19:2e:2a:91:1f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jan 25 21:48:52 2025 GMT Not After : Jan 24 21:53:52 2026 GMT Subject: CN=7EFE430693BFE68C04E6F67B1CDA43574877069B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b3:d2:99:1c:ed:42:db:8a:ed:6b:87:4c:48: 8f:7a:56:f6:a1:02:6d:a4:86:0a:1e:e9:63:cc:48: 82:b7:4e:cf:8f:bc:d9:71:c0:2d:c0:ef:4b:d9:a2: d8:db:a0:85:54:f3:f9:e2:7d:b1:95:26:12:71:fc: 94:e3:8c:85:af:f9:dd:43:9d:92:d5:74:9d:d2:bf: d0:13:ad:b7:3d:e6:41:f9:28:a8:71:99:3d:b6:83: b3:08:37:f4:2f:27:c5:8b:fe:a5:91:20:4c:c3:50: cc:4b:c6:9b:ed:ab:81:22:c9:06:c9:33:30:4a:b0: e9:af:4f:5f:10:7e:dc:f5:e3:87:bf:fd:62:d2:ed: 21:11:6c:54:a1:f7:69:2b:9b:40:1b:0c:1e:89:71: bc:23:4d:02:ae:89:04:2b:a1:cb:96:9b:42:e5:36: 48:f0:62:28:34:69:3a:41:af:6d:e9:fc:37:ab:f5: 20:cd:74:35:9a:33:f8:29:cb:c3:7e:69:27:f7:ad: 9a:ae:68:fc:7e:30:80:aa:72:41:5d:9f:a0:30:96: a8:b6:fe:b2:be:7d:9f:de:ae:b4:c2:5a:e2:ce:2b: f6:fb:26:a5:62:6d:9c:99:c5:d5:0d:c4:45:67:a1: 61:40:e7:0d:c9:f8:94:6a:fa:41:10:ff:fc:4b:1a: ae:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FE:43:06:93:BF:E6:8C:04:E6:F6:7B:1C:DA:43:57:48:77:06:9B X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3233203d3e20343030393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.208.0/23 Signature Algorithm: sha256WithRSAEncryption 02:99:a6:f3:20:90:03:29:63:96:0f:02:04:45:66:d5:6d:e4: 8b:48:20:e3:64:94:f0:35:aa:12:bd:a7:dc:1b:ea:eb:23:aa: a5:24:2b:da:49:1a:b4:da:b7:0c:79:0d:d2:5c:42:16:e6:3c: 31:60:e5:df:28:cd:c9:68:ff:b3:54:6a:48:13:99:3c:da:b5: d3:68:d5:ed:fb:5a:a8:45:da:03:12:d5:20:db:b1:26:8e:45: 4d:bf:de:56:63:c0:e5:99:42:cf:e1:0a:70:ec:35:48:51:cc: 1e:39:c3:03:6f:39:86:ea:ce:74:6b:39:9b:79:98:eb:f0:dd: 35:e3:b2:68:4a:e5:6a:a8:50:52:01:c6:cd:d3:81:6d:cc:18: e3:5d:b5:b0:c9:b9:f6:e8:c0:2b:e6:8c:d8:5b:c0:dd:53:13: c4:20:b5:ff:4d:ed:bd:ff:66:7b:37:77:8e:8c:0a:84:4f:67: 70:26:d2:0a:27:ed:c3:b8:78:b1:93:6a:12:ac:6f:51:48:c9: ea:c7:f2:fc:1d:45:3f:45:b1:02:56:c6:10:51:8f:21:bf:84: 46:39:34:96:c8:98:11:16:56:2f:5c:f9:57:d5:d2:2e:49:6c: fd:db:6d:2c:79:0a:a5:6e:18:40:21:34:74:18:92:44:80:52: b7:b0:26:01 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUEi2ElAkzLuNSibWGzvIZLiqRH7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAxMjUyMTQ4NTJaFw0yNjAxMjQyMTUzNTJaMDMxMTAvBgNV BAMTKDdFRkU0MzA2OTNCRkU2OEMwNEU2RjY3QjFDREE0MzU3NDg3NzA2OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCes9KZHO1C24rta4dMSI96Vvah Am2khgoe6WPMSIK3Ts+PvNlxwC3A70vZotjboIVU8/nifbGVJhJx/JTjjIWv+d1D nZLVdJ3Sv9ATrbc95kH5KKhxmT22g7MIN/QvJ8WL/qWRIEzDUMxLxpvtq4EiyQbJ MzBKsOmvT18Qftz144e//WLS7SERbFSh92krm0AbDB6JcbwjTQKuiQQrocuWm0Ll NkjwYig0aTpBr23p/Der9SDNdDWaM/gpy8N+aSf3rZquaPx+MICqckFdn6Awlqi2 /rK+fZ/errTCWuLOK/b7JqVibZyZxdUNxEVnoWFA5w3J+JRq+kEQ//xLGq49AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUfv5DBpO/5owE5vZ7HNpDV0h3BpswHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMwMzgyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzNDMwMzAzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEFU9AwDQYJKoZIhvcN AQELBQADggEBAAKZpvMgkAMpY5YPAgRFZtVt5ItIIONklPA1qhK9p9wb6usjqqUk K9pJGrTatwx5DdJcQhbmPDFg5d8ozclo/7NUakgTmTzatdNo1e37WqhF2gMS1SDb sSaORU2/3lZjwOWZQs/hCnDsNUhRzB45wwNvOYbqznRrOZt5mOvw3TXjsmhK5Wqo UFIBxs3TgW3MGONdtbDJufbowCvmjNhbwN1TE8Qgtf9N7b3/Zns3d46MCoRPZ3Am 0gon7cO4eLGTahKsb1FIyerH8vwdRT9FsQJWxhBRjyG/hEY5NJbImBEWVi9c+VfV 0i5JbP3bbSx5CqVuGEAhNHQYkkSAUrewJgE= -----END CERTIFICATE-----Generated at Fri Feb 14 14:54:07 2025 by rpki-client