$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e2037303138.roa File: 352e38332e3231332e302f32342d3234203d3e2037303138.roa (raw, json) Hash identifier: bk5Av5ZRytRHp3SG5Zts8V55G5zl2FDOq5AuQ3XDjxY= Subject key identifier: 67:DE:BF:05:6A:A4:02:3E:B0:AC:71:D3:EF:84:BE:64:E3:9B:E3:EF Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 515A4BD324119D9E10FD722E884329939581E76A Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e2037303138.roa Signing time: Mon 18 Nov 2024 15:24:19 +0000 ROA not before: Mon 18 Nov 2024 15:19:19 +0000 ROA not after: Mon 17 Nov 2025 15:24:19 +0000 asID: 7018 IP address blocks: 5.83.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 12:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:5a:4b:d3:24:11:9d:9e:10:fd:72:2e:88:43:29:93:95:81:e7:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Nov 18 15:19:19 2024 GMT Not After : Nov 17 15:24:19 2025 GMT Subject: CN=67DEBF056AA4023EB0AC71D3EF84BE64E39BE3EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1c:a6:96:00:b2:8b:de:94:5e:ec:e2:2c:5f: 13:bb:0a:33:d6:4e:8a:2f:63:a5:9a:06:64:10:d7: 77:82:29:fa:de:be:24:6d:22:c4:fe:42:f1:22:45: ae:42:e6:d8:c3:13:e2:44:e8:4b:b1:72:b5:ed:b0: db:e8:41:ab:38:af:82:ec:82:ce:ac:3e:1f:5f:94: 1e:f5:db:db:4b:97:d7:34:5f:48:e9:d0:da:5f:d3: f3:95:92:25:2d:e7:0b:29:d8:4d:af:46:34:d6:54: b5:70:5d:c0:04:8e:55:a1:29:5e:6f:2f:6d:3b:46: 03:14:af:22:86:7d:db:b8:66:7d:de:aa:70:df:80: 95:54:f3:a0:0e:c5:41:20:fa:0e:65:ed:e4:4d:4d: 49:4f:fb:3b:1a:cf:37:1d:a9:49:73:47:eb:6e:40: 0c:26:4f:40:41:45:9a:53:78:0b:d1:b1:24:94:5e: 89:11:ba:97:87:a4:5f:12:bf:25:52:92:cf:43:8d: ad:a4:65:f3:17:4e:e6:7a:30:48:8a:a4:5d:d4:28: 74:96:1a:6b:e5:75:fc:94:a3:67:a4:0d:a2:70:16: 86:62:9f:94:0a:49:50:2f:55:d1:c9:ef:85:61:f9: 72:2f:2b:8b:5f:20:2c:d9:02:b0:8f:03:fd:a4:a6: 09:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DE:BF:05:6A:A4:02:3E:B0:AC:71:D3:EF:84:BE:64:E3:9B:E3:EF X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e2037303138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.213.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:69:b9:a3:81:80:72:65:db:d2:4e:e5:61:cf:28:be:ca:f2: 00:d3:3d:ab:40:5e:c0:13:c0:80:c3:9f:bc:bc:76:80:9f:ad: 75:80:4c:a8:79:d3:f8:a9:aa:8c:93:ee:82:a9:8c:5f:66:19: 35:e0:5e:5a:a9:44:79:51:7f:1a:8a:00:2e:cd:8a:14:ed:26: c7:be:94:dd:bc:50:1f:4d:5e:6e:0b:27:43:6d:28:e8:ce:a3: 35:2e:26:a7:8e:b2:93:43:17:fa:92:15:b0:14:6d:c0:8e:32: 01:65:d7:e4:cb:d4:ef:81:68:cc:b8:d7:3b:da:92:07:10:2b: b1:a4:45:1d:3f:09:ed:6c:67:1b:86:d7:a9:84:8c:44:32:98: b9:fb:9b:de:96:66:f8:84:b9:99:31:27:ac:51:d1:b7:32:9f: eb:43:9e:1a:1d:bb:c6:d2:e6:a8:aa:80:10:4f:f0:28:bf:0b: bb:e8:99:39:36:2e:27:53:09:b7:b0:d3:64:95:7e:ac:5e:7c: 6f:d0:91:ad:b5:ff:67:3f:55:54:e7:37:0f:bb:f3:9f:b3:c7: 96:f6:b9:2e:12:c3:53:ce:fb:ef:d7:20:19:2b:e5:b0:4f:a2: 19:27:90:9b:73:ca:a8:92:ba:c7:f8:d9:d0:20:f5:c1:6d:f3: 51:89:7e:86 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUUVpL0yQRnZ4Q/XIuiEMpk5WB52owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDExMTgxNTE5MTlaFw0yNTExMTcxNTI0MTlaMDMxMTAvBgNV BAMTKDY3REVCRjA1NkFBNDAyM0VCMEFDNzFEM0VGODRCRTY0RTM5QkUzRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVHKaWALKL3pRe7OIsXxO7CjPW ToovY6WaBmQQ13eCKfreviRtIsT+QvEiRa5C5tjDE+JE6EuxcrXtsNvoQas4r4Ls gs6sPh9flB7129tLl9c0X0jp0Npf0/OVkiUt5wsp2E2vRjTWVLVwXcAEjlWhKV5v L207RgMUryKGfdu4Zn3eqnDfgJVU86AOxUEg+g5l7eRNTUlP+zsazzcdqUlzR+tu QAwmT0BBRZpTeAvRsSSUXokRupeHpF8SvyVSks9Dja2kZfMXTuZ6MEiKpF3UKHSW GmvldfyUo2ekDaJwFoZin5QKSVAvVdHJ74Vh+XIvK4tfICzZArCPA/2kpgl7AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUZ96/BWqkAj6wrHHT74S+ZOOb4+8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGdBggrBgEFBQcBCwSBkDCBjTCBigYIKwYBBQUHMAuGfnJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzEzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM3MzAzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPVMA0GCSqGSIb3DQEBCwUA A4IBAQB/abmjgYByZdvSTuVhzyi+yvIA0z2rQF7AE8CAw5+8vHaAn611gEyoedP4 qaqMk+6CqYxfZhk14F5aqUR5UX8aigAuzYoU7SbHvpTdvFAfTV5uCydDbSjozqM1 LianjrKTQxf6khWwFG3AjjIBZdfky9TvgWjMuNc72pIHECuxpEUdPwntbGcbhtep hIxEMpi5+5velmb4hLmZMSesUdG3Mp/rQ54aHbvG0uaoqoAQT/Aovwu76Jk5Ni4n Uwm3sNNklX6sXnxv0JGttf9nP1VU5zcPu/Ofs8eW9rkuEsNTzvvv1yAZK+WwT6IZ J5Cbc8qokrrH+NnQIPXBbfNRiX6G -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:10 2024 by rpki-client on console-ams.rpki-client.org