$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231312e302f32342d3234203d3e203538303631.roa File: 352e38332e3231312e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: hMGKsnkM2UwJHsAYukCWifWR8dv7NiCYvBLCOxHpKC4= Subject key identifier: 22:6A:46:83:EB:DD:6D:6C:65:72:3A:E0:70:78:40:6D:26:EF:4A:94 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5C5930991AB26AE6E3719E47030830F8C728F231 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231312e302f32342d3234203d3e203538303631.roa Signing time: Tue 27 Feb 2024 00:53:10 +0000 ROA not before: Tue 27 Feb 2024 00:48:10 +0000 ROA not after: Tue 25 Feb 2025 00:53:10 +0000 asID: 58061 IP address blocks: 5.83.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 12:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:59:30:99:1a:b2:6a:e6:e3:71:9e:47:03:08:30:f8:c7:28:f2:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 27 00:48:10 2024 GMT Not After : Feb 25 00:53:10 2025 GMT Subject: CN=226A4683EBDD6D6C65723AE07078406D26EF4A94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2d:eb:db:59:8d:27:77:34:b2:a4:7c:bb:25: 8f:4a:36:32:1e:2e:0e:fe:be:ad:ce:bc:83:cf:49: b2:1a:3a:da:c8:a4:43:b8:6d:19:8b:f7:5a:9d:56: 67:f1:0e:28:b8:89:5e:b5:02:06:63:ac:b8:7d:7b: cb:75:64:f6:ef:3d:34:c7:05:11:e6:b9:08:36:f6: 5c:04:d1:42:0a:a1:14:75:d0:56:48:ba:13:9f:f9: 1a:d5:ea:7d:0d:b8:7f:f6:19:5f:17:51:db:a8:a1: d9:e7:5a:52:ea:ad:47:a7:27:01:74:bb:6a:55:78: 78:e3:20:ba:28:04:f0:74:2e:6f:77:d5:9d:5b:c0: d0:88:19:be:6c:58:55:e3:6c:e4:71:ce:34:59:e8: 9a:6c:15:13:f2:75:1a:f9:32:e8:28:e9:0c:99:6d: c9:a2:e9:b3:51:fe:87:ab:af:73:42:96:ed:26:8d: 75:fe:fd:09:20:4d:bf:5e:3f:f9:21:71:9b:13:c6: 5f:0d:2f:52:2f:ec:00:28:33:3a:25:b4:5c:d4:dd: f9:64:eb:a2:a9:50:ff:fa:4f:72:c1:a9:ce:d3:0b: 33:31:41:24:eb:02:e0:34:3b:d7:5d:48:ce:99:84: 24:f5:86:ce:21:20:6a:21:41:36:6c:e7:90:c2:3c: f3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6A:46:83:EB:DD:6D:6C:65:72:3A:E0:70:78:40:6D:26:EF:4A:94 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231312e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.211.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4d:69:65:c9:72:8a:3f:90:9a:bc:34:10:f9:2c:b1:e0:6f: d1:e4:bc:d8:f4:07:f2:92:2b:b9:46:91:34:f6:3e:eb:f4:2c: 01:04:73:4c:dc:db:1e:39:49:0f:28:e8:6e:4c:1a:0f:e1:74: 7b:80:e0:11:4e:ac:ec:f9:9d:f3:aa:03:95:d1:c2:ea:66:4a: 77:da:3e:b9:61:1e:89:60:8c:04:3a:f2:73:4f:62:f4:e6:65: 58:6c:fe:47:aa:78:04:d2:ce:4a:ff:b4:fc:3d:7e:80:78:1d: 66:a5:b3:0b:64:be:05:1c:5f:98:52:04:4e:79:02:8a:29:cb: 91:b4:7f:bb:40:d6:b8:22:b1:f0:b7:bb:05:15:77:61:2a:4e: ae:02:3d:82:a4:20:d6:53:b2:f6:11:d5:8b:0a:5a:2f:44:b3: 96:bc:ad:cf:db:2f:22:a4:3a:57:8e:01:4c:60:81:6c:39:fb: 73:9e:31:d4:ec:47:1c:10:d2:a7:b5:30:4a:2d:7f:8e:a5:7a: 4a:00:14:4b:30:ca:73:91:3b:2f:ba:34:94:30:18:b8:f6:7a: 93:47:07:2e:a1:19:b7:25:57:85:4b:14:aa:8e:31:55:4d:a9: 5f:20:01:f0:94:67:6c:70:f7:73:b8:b0:e1:87:16:39:d8:f4: 05:ec:84:31 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUXFkwmRqyaubjcZ5HAwgw+Mco8jEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDAyMjcwMDQ4MTBaFw0yNTAyMjUwMDUzMTBaMDMxMTAvBgNV BAMTKDIyNkE0NjgzRUJERDZENkM2NTcyM0FFMDcwNzg0MDZEMjZFRjRBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXLevbWY0ndzSypHy7JY9KNjIe Lg7+vq3OvIPPSbIaOtrIpEO4bRmL91qdVmfxDii4iV61AgZjrLh9e8t1ZPbvPTTH BRHmuQg29lwE0UIKoRR10FZIuhOf+RrV6n0NuH/2GV8XUduoodnnWlLqrUenJwF0 u2pVeHjjILooBPB0Lm931Z1bwNCIGb5sWFXjbORxzjRZ6JpsFRPydRr5Mugo6QyZ bcmi6bNR/oerr3NClu0mjXX+/QkgTb9eP/khcZsTxl8NL1Iv7AAoMzoltFzU3flk 66KpUP/6T3LBqc7TCzMxQSTrAuA0O9ddSM6ZhCT1hs4hIGohQTZs55DCPPMRAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUImpGg+vdbWxlcjrgcHhAbSbvSpQwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzEyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzAzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPTMA0GCSqGSIb3DQEB CwUAA4IBAQChTWllyXKKP5CavDQQ+Syx4G/R5LzY9Afykiu5RpE09j7r9CwBBHNM 3NseOUkPKOhuTBoP4XR7gOARTqzs+Z3zqgOV0cLqZkp32j65YR6JYIwEOvJzT2L0 5mVYbP5HqngE0s5K/7T8PX6AeB1mpbMLZL4FHF+YUgROeQKKKcuRtH+7QNa4IrHw t7sFFXdhKk6uAj2CpCDWU7L2EdWLClovRLOWvK3P2y8ipDpXjgFMYIFsOftznjHU 7EccENKntTBKLX+OpXpKABRLMMpzkTsvujSUMBi49nqTRwcuoRm3JVeFSxSqjjFV TalfIAHwlGdscPdzuLDhhxY52PQF7IQx -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:10 2024 by rpki-client on console-ams.rpki-client.org