$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa File: 352e38332e3231302e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: PXNDHKb+gJj2S9ms6rA4mVcZIw7Rm52iQ/xB61pOr+o= Subject key identifier: 9B:7D:EF:C3:D1:A2:BE:67:3A:65:21:A3:05:0E:11:34:D8:D7:86:B4 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0FF5119EB40101AA44DB346EFF8DA22AD5BEA375 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa Signing time: Mon 26 Feb 2024 00:36:26 +0000 ROA not before: Mon 26 Feb 2024 00:31:26 +0000 ROA not after: Mon 24 Feb 2025 00:36:26 +0000 asID: 58061 IP address blocks: 5.83.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 11:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f5:11:9e:b4:01:01:aa:44:db:34:6e:ff:8d:a2:2a:d5:be:a3:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 26 00:31:26 2024 GMT Not After : Feb 24 00:36:26 2025 GMT Subject: CN=9B7DEFC3D1A2BE673A6521A3050E1134D8D786B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:60:08:8d:7d:12:ef:4b:9a:62:09:fc:a6:32: e5:21:99:84:3c:13:ff:77:2c:82:b8:60:5d:1c:37: 59:5f:c9:ff:76:fc:2e:fd:18:75:1f:39:8d:f2:72: c9:6d:af:84:5e:b9:b2:54:8f:d4:66:a4:1f:08:ec: 8b:54:52:03:81:55:f8:fd:d7:2a:5b:e1:26:d0:b3: 3b:9b:4a:cc:31:c5:fe:d3:35:79:b8:7a:34:0d:a2: c2:03:81:05:73:29:6c:c2:24:86:a8:10:3b:0c:38: 91:e6:ff:88:87:23:34:c6:ac:e2:be:da:64:6b:10: 1a:af:bd:af:7f:4d:97:e9:c3:8c:e0:41:ae:a1:b7: a6:dc:86:93:bb:08:91:07:5b:30:29:29:62:ac:25: 8c:80:c5:b4:57:15:8d:80:bf:69:67:52:c5:30:f2: db:90:4d:d4:b0:7f:e6:e2:eb:fc:87:35:bf:a7:ab: 87:7c:8a:55:4d:da:0e:5d:c1:7d:13:81:ae:6d:9c: 88:88:6b:8c:84:72:58:74:11:2c:13:70:3f:e5:63: 3f:5c:76:b7:c4:53:2a:53:07:9a:2b:ac:e1:ce:04: 56:a2:16:0f:6d:6b:20:a4:77:bc:a2:7c:3a:4a:1b: 6d:79:7a:c6:1a:0e:6e:a4:82:e1:8e:8f:48:d2:43: c8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7D:EF:C3:D1:A2:BE:67:3A:65:21:A3:05:0E:11:34:D8:D7:86:B4 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.210.0/24 Signature Algorithm: sha256WithRSAEncryption 42:3a:c0:67:77:04:72:c1:9f:f3:b8:e2:eb:97:30:12:d5:a4: 51:05:f7:5f:ab:c8:98:f7:3e:2a:ae:1f:6e:0b:de:1e:3a:e8: 21:cf:0a:32:7c:9a:07:52:92:20:a5:97:36:18:60:5d:b0:eb: 91:83:be:13:a0:8c:4b:05:7d:c7:e8:e1:a8:59:44:0b:7e:cf: be:02:3a:23:33:e3:97:26:e6:e5:2e:fd:1c:06:f5:74:92:e2: 94:6c:6a:96:d4:2b:47:07:fb:2a:e6:a8:85:d8:1b:ac:81:b2: 71:44:9a:28:98:9a:d4:93:6a:49:59:ea:84:da:21:8e:41:8e: b2:a3:02:2c:ec:56:cb:b8:3c:d7:53:3a:c8:a6:1e:dd:e6:c7: 92:d4:96:f9:bc:9d:f9:d6:6d:4e:4b:a0:0e:a6:d5:a1:5e:81: 5f:3e:ca:51:60:20:fa:87:30:08:a8:16:99:ce:4a:cf:df:d8: 0e:0f:f9:e7:96:3b:2d:27:24:46:5e:7e:82:59:5c:94:b0:db: 51:01:41:7a:cf:ff:0c:6f:b6:7e:24:50:be:fe:fb:5b:3e:45: fb:e5:62:8f:97:69:57:0a:7e:16:9c:37:27:cf:cc:84:32:48: 10:d3:64:a8:75:84:ac:c2:fe:7b:94:00:97:1f:36:9b:dd:8b: c4:a9:24:28 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUD/URnrQBAapE2zRu/42iKtW+o3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDAyMjYwMDMxMjZaFw0yNTAyMjQwMDM2MjZaMDMxMTAvBgNV BAMTKDlCN0RFRkMzRDFBMkJFNjczQTY1MjFBMzA1MEUxMTM0RDhENzg2QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSYAiNfRLvS5piCfymMuUhmYQ8 E/93LIK4YF0cN1lfyf92/C79GHUfOY3ycsltr4ReubJUj9RmpB8I7ItUUgOBVfj9 1ypb4SbQszubSswxxf7TNXm4ejQNosIDgQVzKWzCJIaoEDsMOJHm/4iHIzTGrOK+ 2mRrEBqvva9/TZfpw4zgQa6ht6bchpO7CJEHWzApKWKsJYyAxbRXFY2Av2lnUsUw 8tuQTdSwf+bi6/yHNb+nq4d8ilVN2g5dwX0Tga5tnIiIa4yEclh0ESwTcD/lYz9c drfEUypTB5orrOHOBFaiFg9tayCkd7yifDpKG215esYaDm6kguGOj0jSQ8iHAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUm33vw9Givmc6ZSGjBQ4RNNjXhrQwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzAzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPSMA0GCSqGSIb3DQEB CwUAA4IBAQBCOsBndwRywZ/zuOLrlzAS1aRRBfdfq8iY9z4qrh9uC94eOughzwoy fJoHUpIgpZc2GGBdsOuRg74ToIxLBX3H6OGoWUQLfs++AjojM+OXJublLv0cBvV0 kuKUbGqW1CtHB/sq5qiF2BusgbJxRJoomJrUk2pJWeqE2iGOQY6yowIs7FbLuDzX UzrIph7d5seS1Jb5vJ351m1OS6AOptWhXoFfPspRYCD6hzAIqBaZzkrP39gOD/nn ljstJyRGXn6CWVyUsNtRAUF6z/8Mb7Z+JFC+/vtbPkX75WKPl2lXCn4WnDcnz8yE MkgQ02SodYSswv57lACXHzab3YvEqSQo -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org