$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231352e302f32342d3234203d3e203432383331.roa File: 352e38332e3231352e302f32342d3234203d3e203432383331.roa (raw, json) Hash identifier: k77yUKu5LRhZ2tCvQLqzsXa7ILaN3sKf63PxvKG4DCA= Subject key identifier: C0:4E:0A:20:97:7F:39:1B:EA:AD:18:4E:0E:3C:D3:E7:41:77:53:1B Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 2D9A4BEA3F4781C8D63F609D5729BD6BD39906BF Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231352e302f32342d3234203d3e203432383331.roa Signing time: Thu 29 Aug 2024 13:01:31 +0000 ROA not before: Thu 29 Aug 2024 12:56:31 +0000 ROA not after: Thu 28 Aug 2025 13:01:31 +0000 asID: 42831 IP address blocks: 5.83.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:9a:4b:ea:3f:47:81:c8:d6:3f:60:9d:57:29:bd:6b:d3:99:06:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Aug 29 12:56:31 2024 GMT Not After : Aug 28 13:01:31 2025 GMT Subject: CN=C04E0A20977F391BEAAD184E0E3CD3E74177531B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ee:61:c2:b8:8c:8e:a5:05:a4:6a:24:5e:25: b8:79:3a:66:3c:71:38:e9:47:53:85:e7:1a:ab:96: e6:83:9f:f2:be:c1:df:d8:f5:c5:72:78:4e:43:43: 03:8c:f7:cd:48:79:b0:d5:e6:6a:3d:88:e0:98:ef: 0a:57:d8:76:73:55:27:ea:ff:9f:6d:a2:36:dc:1d: af:d7:9a:85:68:12:19:8d:18:82:34:c2:04:3b:83: 2d:5d:68:2e:b9:4b:c0:32:7a:8d:7f:19:85:57:66: 34:b2:18:8d:83:29:36:1e:cd:85:34:72:98:c6:56: 50:87:63:21:c7:3f:b3:1d:ca:01:64:76:f9:b4:87: 8a:e9:60:bd:ef:9e:67:90:47:43:a7:5d:4f:07:fd: 1c:2a:07:02:67:ea:cd:c0:40:dc:61:ee:36:08:83: 0e:58:1a:c3:e0:6e:6f:cf:a7:9e:24:1f:84:35:37: 92:6c:ef:43:e8:84:91:2a:e2:c6:e1:a0:8c:fa:f8: 41:61:94:2d:4c:f1:92:44:5b:86:7a:5d:15:c8:32: 13:55:0e:93:9f:23:2f:ea:eb:c1:c2:75:7a:f9:fd: 9c:08:48:7b:72:0a:fc:ec:1b:0c:d1:81:15:81:88: 79:44:76:0e:f0:13:2f:8f:aa:a5:80:68:6c:e6:7d: 80:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4E:0A:20:97:7F:39:1B:EA:AD:18:4E:0E:3C:D3:E7:41:77:53:1B X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231352e302f32342d3234203d3e203432383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.215.0/24 Signature Algorithm: sha256WithRSAEncryption 64:d6:da:8e:7f:b3:ec:b4:cf:8f:68:2e:01:6c:e9:a9:50:e9: b1:a7:35:c5:e2:21:63:db:a7:28:b0:6a:41:78:18:8b:0d:0a: ca:fa:92:a5:8d:24:ac:79:87:01:5f:89:4c:b5:f0:0b:a1:b4: d7:c9:d7:fa:da:0c:63:2e:dc:ea:fa:6b:23:18:a8:c0:19:55: e2:62:5d:af:1a:c8:ab:59:72:bf:7b:10:83:07:80:33:93:fd: 6a:ad:02:95:b3:b3:4a:16:eb:6d:bc:0c:bc:72:1e:8c:98:53: 55:16:a5:97:8b:59:33:f6:f4:7b:ad:35:f4:d2:de:70:ec:9a: b4:a5:a0:24:08:7e:28:5c:61:24:b6:4f:0a:5f:83:ea:c3:38: a5:c3:28:a9:68:26:54:d0:57:0f:6c:07:28:3e:b6:d6:a6:8f: 61:4e:f2:4f:15:19:88:fb:81:8f:30:3e:77:1d:ec:d6:47:b0: a7:2f:d5:9b:a0:2e:b0:79:61:5c:4e:10:29:b2:4b:00:a1:a8: ee:29:6f:24:97:94:f9:92:94:be:5b:37:3c:11:a8:91:ae:0b: 9f:9b:7e:01:79:d8:51:e6:e6:20:5d:5c:f9:35:f7:ca:1a:a9: 33:97:b9:e1:6f:23:cb:78:79:67:45:5e:17:58:4d:ca:e7:5d: 7a:ff:ea:d0 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIULZpL6j9HgcjWP2CdVym9a9OZBr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA4MjkxMjU2MzFaFw0yNTA4MjgxMzAxMzFaMDMxMTAvBgNV BAMTKEMwNEUwQTIwOTc3RjM5MUJFQUFEMTg0RTBFM0NEM0U3NDE3NzUzMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf7mHCuIyOpQWkaiReJbh5OmY8 cTjpR1OF5xqrluaDn/K+wd/Y9cVyeE5DQwOM981IebDV5mo9iOCY7wpX2HZzVSfq /59tojbcHa/XmoVoEhmNGII0wgQ7gy1daC65S8Ayeo1/GYVXZjSyGI2DKTYezYU0 cpjGVlCHYyHHP7MdygFkdvm0h4rpYL3vnmeQR0OnXU8H/RwqBwJn6s3AQNxh7jYI gw5YGsPgbm/Pp54kH4Q1N5Js70PohJEq4sbhoIz6+EFhlC1M8ZJEW4Z6XRXIMhNV DpOfIy/q68HCdXr5/ZwISHtyCvzsGwzRgRWBiHlEdg7wEy+PqqWAaGzmfYD9AgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUwE4KIJd/ORvqrRhODjzT50F3UxswHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzUyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNDMyMzgzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPXMA0GCSqGSIb3DQEB CwUAA4IBAQBk1tqOf7PstM+PaC4BbOmpUOmxpzXF4iFj26cosGpBeBiLDQrK+pKl jSSseYcBX4lMtfALobTXydf62gxjLtzq+msjGKjAGVXiYl2vGsirWXK/exCDB4Az k/1qrQKVs7NKFuttvAy8ch6MmFNVFqWXi1kz9vR7rTX00t5w7Jq0paAkCH4oXGEk tk8KX4PqwzilwyipaCZU0FcPbAcoPrbWpo9hTvJPFRmI+4GPMD53HezWR7CnL9Wb oC6weWFcThApsksAoajuKW8kl5T5kpS+Wzc8EaiRrgufm34BedhR5uYgXVz5NffK Gqkzl7nhbyPLeHlnRV4XWE3K5116/+rQ -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:23 2024 by rpki-client on console-ams.rpki-client.org