$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e203630343436.roa File: 352e38332e3230392e302f32342d3234203d3e203630343436.roa (raw, json) Hash identifier: g0V+q6D2wJSS6biE/jJwO92cpmWxTlTgWh8koLOm5io= Subject key identifier: DB:B8:1E:61:15:3C:6F:5B:13:B1:5B:44:FF:DE:D8:9C:02:74:68:8A Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 55ABA788CB56C85794C794CE0C36DFA5C416477B Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e203630343436.roa Signing time: Mon 19 May 2025 10:19:16 +0000 ROA not before: Mon 19 May 2025 10:14:16 +0000 ROA not after: Mon 18 May 2026 10:19:16 +0000 asID: 60446 IP address blocks: 5.83.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ab:a7:88:cb:56:c8:57:94:c7:94:ce:0c:36:df:a5:c4:16:47:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 19 10:14:16 2025 GMT Not After : May 18 10:19:16 2026 GMT Subject: CN=DBB81E61153C6F5B13B15B44FFDED89C0274688A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:67:ad:77:fb:8e:c5:57:e8:7c:1b:3d:67: d4:03:94:a8:0a:75:7e:7b:0f:c7:2d:e5:2c:53:33: 9c:2c:60:0b:26:8a:a7:70:8a:73:83:15:e0:a9:41: de:9b:2e:ae:12:23:b5:64:db:2d:7e:20:3a:6f:30: 08:82:55:5f:1e:e1:32:31:a4:da:70:b8:16:ce:f0: e8:d6:04:9d:5b:22:cc:2e:12:ea:5d:76:32:82:f9: df:ce:de:19:ad:a5:7a:01:97:93:b9:bf:41:61:69: 4b:b3:31:b6:33:44:c8:fd:69:ac:57:64:c7:1f:1b: 30:1a:0a:63:d2:ba:5b:07:75:8a:ed:f9:ef:f9:93: 5c:cf:8c:6b:b4:aa:2b:93:6c:cd:d7:bc:0b:cd:2c: 37:32:fe:95:d9:7e:c6:92:2d:04:d0:f6:d6:f2:31: c8:5f:9d:66:d2:02:58:1d:76:50:21:ec:8a:33:e4: dc:fa:bc:e1:84:a9:80:c7:32:02:31:7f:d0:0b:f1: d9:50:01:a9:ce:d1:a5:f6:22:a0:0f:5c:31:97:ad: 53:7d:00:79:7f:c8:45:c2:39:04:df:cb:02:75:7b: 90:5b:95:11:cd:96:40:aa:2c:39:3f:ff:f8:04:dd: fe:17:23:9e:6d:c0:87:52:c8:73:c6:ef:09:2b:85: 1f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B8:1E:61:15:3C:6F:5B:13:B1:5B:44:FF:DE:D8:9C:02:74:68:8A X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e203630343436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.209.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:ab:2e:3f:f3:3f:76:5a:5f:8c:bf:ef:d2:0c:14:21:1c:ee: 0f:fa:b1:e6:ad:ba:7f:f6:7b:9f:03:bb:1e:f2:de:fe:16:4e: da:eb:38:62:e9:1b:0a:a5:48:39:69:b8:d1:7c:b0:b1:11:ca: 96:f0:23:44:58:3c:36:a5:90:f5:69:d0:6b:5a:14:95:b7:e7: 15:d9:6b:ee:bf:fc:bf:ed:49:cc:7b:7f:db:df:fb:13:8c:02: c6:bc:7c:c1:26:2f:eb:92:7b:d3:6e:88:05:01:b1:27:1d:58: 34:c6:7f:f2:91:d0:7e:ec:b2:58:b2:4c:83:53:99:ae:69:d2: 6a:7f:a4:ed:97:01:3e:41:2f:d4:f5:63:a4:bf:a0:ce:29:92: 6d:73:1d:6f:b3:22:12:f9:80:45:8c:79:64:06:88:19:fc:7b: 28:87:f0:b8:02:80:b1:e3:1d:4f:fb:a8:94:6b:d6:43:45:10: 1f:00:5c:3e:8b:33:97:93:78:22:c6:97:a4:71:2a:ad:35:89: 03:bc:a4:bd:83:aa:fd:1d:c7:34:7f:53:ea:f1:fd:fd:8c:ec: ba:a4:c0:13:af:9f:e7:4a:7e:95:42:aa:4c:79:c6:18:76:63: c5:ea:95:dd:35:3d:80:f3:88:e2:ae:d0:92:c7:80:0c:39:d9: 87:3e:98:dc -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUVauniMtWyFeUx5TODDbfpcQWR3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA1MTkxMDE0MTZaFw0yNjA1MTgxMDE5MTZaMDMxMTAvBgNV BAMTKERCQjgxRTYxMTUzQzZGNUIxM0IxNUI0NEZGREVEODlDMDI3NDY4OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJYmetd/uOxVfofBs9Z9QDlKgK dX57D8ct5SxTM5wsYAsmiqdwinODFeCpQd6bLq4SI7Vk2y1+IDpvMAiCVV8e4TIx pNpwuBbO8OjWBJ1bIswuEupddjKC+d/O3hmtpXoBl5O5v0FhaUuzMbYzRMj9aaxX ZMcfGzAaCmPSulsHdYrt+e/5k1zPjGu0qiuTbM3XvAvNLDcy/pXZfsaSLQTQ9tby MchfnWbSAlgddlAh7Ioz5Nz6vOGEqYDHMgIxf9AL8dlQAanO0aX2IqAPXDGXrVN9 AHl/yEXCOQTfywJ1e5BblRHNlkCqLDk///gE3f4XI55twIdSyHPG7wkrhR9TAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU27geYRU8b1sTsVtE/97YnAJ0aIowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMwMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNjMwMzQzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPRMA0GCSqGSIb3DQEB CwUAA4IBAQBuqy4/8z92Wl+Mv+/SDBQhHO4P+rHmrbp/9nufA7se8t7+Fk7a6zhi 6RsKpUg5abjRfLCxEcqW8CNEWDw2pZD1adBrWhSVt+cV2Wvuv/y/7UnMe3/b3/sT jALGvHzBJi/rknvTbogFAbEnHVg0xn/ykdB+7LJYskyDU5muadJqf6TtlwE+QS/U 9WOkv6DOKZJtcx1vsyIS+YBFjHlkBogZ/Hsoh/C4AoCx4x1P+6iUa9ZDRRAfAFw+ izOXk3gixpekcSqtNYkDvKS9g6r9Hcc0f1Pq8f39jOy6pMATr5/nSn6VQqpMecYY dmPF6pXdNT2A84jirtCSx4AMOdmHPpjc -----END CERTIFICATE-----Generated at Fri Jun 6 16:22:14 2025 by rpki-client