$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231342e302f32342d3234203d3e203136353039.roa File: 352e38332e3231342e302f32342d3234203d3e203136353039.roa (raw, json) Hash identifier: L1wz3oF8Z7b+iJNkVL23KZQGKA0njy/lJ+SOCQCroHU= Subject key identifier: 64:DA:5F:CD:C8:68:54:73:65:01:89:4D:A0:02:E4:8B:93:64:92:76 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7BB4D3E63EE17DA7B665CD334189C45461A29E3D Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231342e302f32342d3234203d3e203136353039.roa Signing time: Mon 04 Mar 2024 19:20:37 +0000 ROA not before: Mon 04 Mar 2024 19:15:37 +0000 ROA not after: Mon 03 Mar 2025 19:20:37 +0000 asID: 16509 IP address blocks: 5.83.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 02 May 2024 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b4:d3:e6:3e:e1:7d:a7:b6:65:cd:33:41:89:c4:54:61:a2:9e:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 4 19:15:37 2024 GMT Not After : Mar 3 19:20:37 2025 GMT Subject: CN=64DA5FCDC86854736501894DA002E48B93649276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e1:95:5f:58:4b:9a:a5:7e:02:ba:ce:60:4c: c7:45:aa:53:a5:bb:d6:2c:86:3d:96:2e:b5:86:04: 19:7c:83:ee:4b:03:4a:ae:6e:5d:b2:3b:14:76:8c: 5a:21:5d:49:6d:d2:a9:78:0b:ba:9b:32:52:b7:b1: 9c:84:26:4b:74:7e:d1:25:ae:56:1e:0d:1d:b1:3d: b1:4e:e9:94:a9:26:71:85:60:85:c1:b0:b0:25:fc: cc:fa:2c:d9:b1:33:1a:ec:9f:b6:f7:0c:9f:60:07: 49:71:9f:54:7c:4f:ce:8a:07:95:0e:7f:15:c9:12: 75:c8:39:60:ce:08:4f:90:07:6d:c9:90:d3:39:a6: 59:c5:45:05:9d:62:16:26:87:bc:48:cb:b2:16:d2: 87:43:6f:60:d0:58:12:73:48:c8:24:7b:49:52:39: fe:f3:d2:04:32:04:25:f1:0b:ca:13:4c:ba:25:bb: b8:8d:7a:ed:1f:55:3f:ff:d5:0f:c7:9f:19:bc:1e: 8e:9c:92:4a:b2:a1:de:92:8e:b0:fc:d4:48:73:cc: ab:78:53:35:63:ab:f3:e2:47:bc:07:98:0a:58:a6: 10:2e:36:40:2c:1e:45:fc:ab:04:77:45:9f:d5:26: 93:5c:f5:ac:01:80:d7:ed:56:24:b7:df:e4:5f:c8: e9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DA:5F:CD:C8:68:54:73:65:01:89:4D:A0:02:E4:8B:93:64:92:76 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231342e302f32342d3234203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.214.0/24 Signature Algorithm: sha256WithRSAEncryption 74:27:ec:b9:35:bf:ae:06:2c:e6:e6:d6:56:61:fa:44:83:59: da:85:11:26:c5:b2:68:ef:05:a6:21:93:44:09:3a:08:bb:ec: 3c:34:25:39:22:82:ad:26:65:56:ad:bd:a0:f0:74:6b:3c:dc: 0f:27:81:a5:3c:1b:ec:4d:ae:cf:90:60:ec:3f:5c:a4:16:7f: dd:39:48:4d:df:16:c5:50:f6:e9:fe:ec:63:36:3e:a8:80:cb: 76:59:85:8e:17:2a:d3:b9:a3:a2:90:ea:be:b4:ab:42:ba:27: 26:ce:fa:57:fa:b8:a3:2b:0f:09:af:b0:02:63:7e:6d:d4:8b: 89:e3:d4:35:22:10:90:5a:d4:0d:dc:35:58:31:50:54:ab:e9: 78:7b:af:ac:8f:20:4e:20:b7:a8:f7:c6:77:5a:a5:38:4a:bc: ae:9a:07:bd:51:76:34:63:9f:b9:32:17:a8:37:43:85:c7:5f: e2:62:49:9d:59:e7:8a:d9:2a:a8:bd:9d:58:55:ba:95:98:67: 58:57:4f:63:30:12:2e:b4:99:e3:4c:85:fc:08:04:3e:df:0e: 1b:4c:ca:c1:9d:c2:fc:d9:da:01:bc:a7:8d:66:14:7f:57:a2: 00:75:9d:31:f7:4f:32:3e:30:74:78:03:73:be:19:4a:5c:1e: 69:1e:f7:2c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUe7TT5j7hfae2Zc0zQYnEVGGinj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDAzMDQxOTE1MzdaFw0yNTAzMDMxOTIwMzdaMDMxMTAvBgNV BAMTKDY0REE1RkNEQzg2ODU0NzM2NTAxODk0REEwMDJFNDhCOTM2NDkyNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY4ZVfWEuapX4Cus5gTMdFqlOl u9Yshj2WLrWGBBl8g+5LA0qubl2yOxR2jFohXUlt0ql4C7qbMlK3sZyEJkt0ftEl rlYeDR2xPbFO6ZSpJnGFYIXBsLAl/Mz6LNmxMxrsn7b3DJ9gB0lxn1R8T86KB5UO fxXJEnXIOWDOCE+QB23JkNM5plnFRQWdYhYmh7xIy7IW0odDb2DQWBJzSMgke0lS Of7z0gQyBCXxC8oTTLolu7iNeu0fVT//1Q/Hnxm8Ho6ckkqyod6SjrD81EhzzKt4 UzVjq/PiR7wHmApYphAuNkAsHkX8qwR3RZ/VJpNc9awBgNftViS33+RfyOllAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUZNpfzchoVHNlAYlNoALki5NkknYwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPWMA0GCSqGSIb3DQEB CwUAA4IBAQB0J+y5Nb+uBizm5tZWYfpEg1nahREmxbJo7wWmIZNECToIu+w8NCU5 IoKtJmVWrb2g8HRrPNwPJ4GlPBvsTa7PkGDsP1ykFn/dOUhN3xbFUPbp/uxjNj6o gMt2WYWOFyrTuaOikOq+tKtCuicmzvpX+rijKw8Jr7ACY35t1IuJ49Q1IhCQWtQN 3DVYMVBUq+l4e6+sjyBOILeo98Z3WqU4Sryumge9UXY0Y5+5MheoN0OFx1/iYkmd WeeK2SqovZ1YVbqVmGdYV09jMBIutJnjTIX8CAQ+3w4bTMrBncL82doBvKeNZhR/ V6IAdZ0x908yPjB0eANzvhlKXB5pHvcs -----END CERTIFICATE-----Generated at Thu May 2 04:01:02 2024 by rpki-client on console-fra.rpki-client.org