$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa File: 352e38332e3231302e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: cC+8YOnlwJLZmkmT8UFK36X5i2lMEFvmSUiob5DS7tE= Subject key identifier: 94:92:81:B3:DE:1B:69:81:44:AF:44:32:1A:7D:25:B0:10:80:DA:6C Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 544B25A42BDFF1864CCEFAFB434EFC625B1849D4 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa Signing time: Mon 27 Jan 2025 00:53:52 +0000 ROA not before: Mon 27 Jan 2025 00:48:52 +0000 ROA not after: Mon 26 Jan 2026 00:53:52 +0000 asID: 58061 IP address blocks: 5.83.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 15 Feb 2025 03:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:4b:25:a4:2b:df:f1:86:4c:ce:fa:fb:43:4e:fc:62:5b:18:49:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jan 27 00:48:52 2025 GMT Not After : Jan 26 00:53:52 2026 GMT Subject: CN=949281B3DE1B698144AF44321A7D25B01080DA6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ae:d4:ef:d0:9c:09:1d:40:a8:d0:f0:6d:9e: 5c:c2:9a:29:be:4a:62:54:d0:fd:08:8a:25:24:7b: e4:dd:29:5c:1d:ba:07:01:e6:f8:00:14:2c:4f:d3: b5:41:b8:4a:37:25:1b:bc:f8:83:3d:0c:3b:1d:07: f2:98:0c:82:fe:eb:15:c5:37:50:58:4a:53:24:ac: ef:8a:2c:2c:6f:52:a8:d6:c9:95:28:b8:6f:4c:09: bb:1d:88:22:69:10:ed:2a:15:25:9a:64:f5:9d:74: cf:af:c8:dd:ca:48:b9:e5:24:43:da:cd:9b:c2:56: ef:09:33:1b:b7:81:09:bc:d5:41:2e:4b:5d:0e:70: 19:aa:11:60:94:77:ec:32:03:ac:5e:c4:d6:37:e9: ed:c0:94:b8:7f:8c:72:f5:a9:0e:90:cd:44:e4:6c: 28:c7:4d:72:c6:ca:be:23:fe:b4:29:24:5e:3c:30: a9:00:f2:db:0b:f4:d1:19:b0:e3:65:65:b0:ab:95: 0f:44:ba:8f:47:bd:75:54:fb:95:43:8f:c6:fd:a4: 3a:e1:30:89:82:3d:a7:4e:81:3d:a1:64:bd:c5:11: 54:ce:66:3c:5f:ba:72:f1:d9:4f:ad:a1:3a:b6:50: e8:db:13:22:89:9e:ac:9d:9b:40:56:29:55:ec:7e: ac:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:92:81:B3:DE:1B:69:81:44:AF:44:32:1A:7D:25:B0:10:80:DA:6C X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.210.0/24 Signature Algorithm: sha256WithRSAEncryption 69:76:d3:6d:47:86:cb:67:b4:30:2e:14:93:6a:ba:48:22:42: e9:29:ba:04:70:bb:61:45:61:39:0d:2f:0c:4b:cc:09:52:75: d3:a8:6d:88:db:f2:1f:56:9e:9f:35:19:da:4a:bb:8e:4c:be: aa:49:75:78:02:92:67:15:6d:27:50:8b:52:e3:09:e0:ce:67: 02:81:28:e3:78:20:f6:23:1d:2d:a2:af:b0:ee:f0:f1:7e:59: c5:b1:ef:d4:f6:3b:76:ba:e3:f9:66:1f:86:3e:4f:42:94:04: 25:36:16:f9:b2:19:e6:7c:b5:72:64:db:1c:1c:36:26:6d:d5: de:9c:39:04:52:bd:37:1a:f5:91:d9:23:2e:16:6f:ac:39:a4: d8:4a:fa:77:f5:e0:bc:b0:82:7c:36:2c:53:9c:e7:f5:65:c4: 04:5f:e1:41:6d:03:f1:0b:e9:dd:14:96:cb:ed:b1:14:cf:ec: 32:40:ed:dd:20:19:0e:73:07:be:dc:66:97:46:b9:37:ad:df: 85:57:c4:5e:63:49:f4:5e:72:a4:cf:27:38:9e:f0:ba:5e:10: 5c:f5:95:3e:02:51:78:b3:03:b1:c7:09:26:72:b8:8d:53:ee: b7:73:c3:3d:2e:b0:29:1a:13:04:35:38:20:0c:22:76:b9:af: f8:68:fe:ea -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUVEslpCvf8YZMzvr7Q078YlsYSdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAxMjcwMDQ4NTJaFw0yNjAxMjYwMDUzNTJaMDMxMTAvBgNV BAMTKDk0OTI4MUIzREUxQjY5ODE0NEFGNDQzMjFBN0QyNUIwMTA4MERBNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3rtTv0JwJHUCo0PBtnlzCmim+ SmJU0P0IiiUke+TdKVwdugcB5vgAFCxP07VBuEo3JRu8+IM9DDsdB/KYDIL+6xXF N1BYSlMkrO+KLCxvUqjWyZUouG9MCbsdiCJpEO0qFSWaZPWddM+vyN3KSLnlJEPa zZvCVu8JMxu3gQm81UEuS10OcBmqEWCUd+wyA6xexNY36e3AlLh/jHL1qQ6QzUTk bCjHTXLGyr4j/rQpJF48MKkA8tsL9NEZsONlZbCrlQ9Euo9HvXVU+5VDj8b9pDrh MImCPadOgT2hZL3FEVTOZjxfunLx2U+toTq2UOjbEyKJnqydm0BWKVXsfqyZAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUlJKBs94baYFEr0QyGn0lsBCA2mwwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzAzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPSMA0GCSqGSIb3DQEB CwUAA4IBAQBpdtNtR4bLZ7QwLhSTarpIIkLpKboEcLthRWE5DS8MS8wJUnXTqG2I 2/IfVp6fNRnaSruOTL6qSXV4ApJnFW0nUItS4wngzmcCgSjjeCD2Ix0toq+w7vDx flnFse/U9jt2uuP5Zh+GPk9ClAQlNhb5shnmfLVyZNscHDYmbdXenDkEUr03GvWR 2SMuFm+sOaTYSvp39eC8sIJ8NixTnOf1ZcQEX+FBbQPxC+ndFJbL7bEUz+wyQO3d IBkOcwe+3GaXRrk3rd+FV8ReY0n0XnKkzyc4nvC6XhBc9ZU+AlF4swOxxwkmcriN U+63c8M9LrApGhMENTggDCJ2ua/4aP7q -----END CERTIFICATE-----Generated at Fri Feb 14 15:38:27 2025 by rpki-client