$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32342d3234203d3e20313939363134.roa File: 352e38332e3232302e302f32342d3234203d3e20313939363134.roa (raw, json) Hash identifier: ZuYNMRGd/hC4kRiuob80tK8kFTlv7M7MDGYKQifgmoY= Subject key identifier: 4F:17:7E:83:DA:3A:C4:B4:26:84:6A:70:99:1D:C5:B1:6C:DA:7C:FD Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 6076192E71B0428E6DE914318B7BD3A89DCDD2D0 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32342d3234203d3e20313939363134.roa Signing time: Sat 08 Feb 2025 20:53:53 +0000 ROA not before: Sat 08 Feb 2025 20:48:53 +0000 ROA not after: Sat 07 Feb 2026 20:53:53 +0000 asID: 199614 IP address blocks: 5.83.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:76:19:2e:71:b0:42:8e:6d:e9:14:31:8b:7b:d3:a8:9d:cd:d2:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 8 20:48:53 2025 GMT Not After : Feb 7 20:53:53 2026 GMT Subject: CN=4F177E83DA3AC4B426846A70991DC5B16CDA7CFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:07:63:e1:c0:ea:c4:de:73:e9:53:49:85:fd: 20:b7:5d:59:04:1c:4f:3f:9e:ef:a3:5e:17:2a:16: 96:f9:54:1f:54:a0:e0:98:88:f6:c3:bc:d2:78:9b: da:8c:8e:d1:59:8d:4e:87:87:4f:10:93:49:71:c0: 23:d2:8c:74:0d:be:04:35:03:db:c6:9e:74:65:1c: 75:0e:bc:d6:cc:95:69:49:e9:1e:79:fb:8f:c1:c0: 42:ff:9e:0f:61:00:25:d5:6f:e8:30:de:2e:84:1b: 32:46:c4:16:fa:88:59:13:80:7b:85:d5:56:82:97: fb:fc:19:d1:87:c6:f7:6b:cf:51:d9:97:1c:f3:73: a6:54:5b:61:49:26:61:65:f8:17:fc:bf:8a:01:5c: 8b:11:ba:29:ba:d9:fc:bc:b4:f9:3c:7d:b7:5d:05: 72:da:1e:8b:52:be:14:89:36:d1:85:ba:10:9d:fe: 35:16:5b:5b:4e:c8:15:db:93:f8:80:1c:9a:dd:79: f2:c3:5c:2e:39:06:f6:ce:3a:42:96:43:b7:52:30: 38:b1:2e:e3:e7:34:58:c7:fb:f7:04:88:47:5c:e8: 30:51:d8:1b:03:ff:6f:fc:86:de:a3:f3:1e:79:a0: 48:fd:c9:74:00:ec:0c:8b:a7:08:9c:1a:60:1d:8e: 94:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:17:7E:83:DA:3A:C4:B4:26:84:6A:70:99:1D:C5:B1:6C:DA:7C:FD X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32342d3234203d3e20313939363134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.220.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:59:fb:01:74:ba:48:d2:79:62:fa:66:33:ba:4c:2d:e9:9a: 6b:b5:f4:38:6b:5f:cf:fa:ac:ca:6b:3e:6e:8e:98:8e:63:0a: 5d:9d:b7:5f:29:48:df:a4:50:17:83:a4:18:90:84:b7:54:38: df:e6:5d:89:eb:c4:44:bf:06:cc:6b:98:fa:f5:a4:93:36:31: 98:a4:5a:94:04:54:a5:a6:a4:21:12:4f:c5:8c:9d:c3:07:c9: 6e:17:c5:b7:9c:39:59:98:a0:9a:46:f1:37:8a:dd:9e:10:2e: bf:c9:ae:31:a2:1b:3a:8d:b6:22:9e:7f:0a:b5:30:17:4c:2b: 9e:e8:db:63:b4:67:a5:9f:a5:b5:3c:60:a7:48:aa:3a:18:03: 89:b6:20:a2:d8:75:59:08:11:3e:ef:46:09:3b:e1:85:72:ec: 09:13:b3:3c:6e:06:e3:cd:bb:1d:30:32:bc:4c:b7:03:67:d5: 41:f0:e9:41:68:82:05:34:9d:87:a5:66:b4:f8:4b:ec:2c:66: da:4b:23:85:d3:df:21:07:94:8e:4a:01:20:e9:ba:1d:5d:e3: 46:8a:f6:93:74:12:cc:88:03:e9:92:d9:f2:0f:65:aa:16:b3: 85:38:ce:93:c3:05:d7:68:59:5f:e8:eb:00:b5:16:0b:ca:e9: a1:90:f3:f0 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUYHYZLnGwQo5t6RQxi3vTqJ3N0tAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAyMDgyMDQ4NTNaFw0yNjAyMDcyMDUzNTNaMDMxMTAvBgNV BAMTKDRGMTc3RTgzREEzQUM0QjQyNjg0NkE3MDk5MURDNUIxNkNEQTdDRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUB2PhwOrE3nPpU0mF/SC3XVkE HE8/nu+jXhcqFpb5VB9UoOCYiPbDvNJ4m9qMjtFZjU6Hh08Qk0lxwCPSjHQNvgQ1 A9vGnnRlHHUOvNbMlWlJ6R55+4/BwEL/ng9hACXVb+gw3i6EGzJGxBb6iFkTgHuF 1VaCl/v8GdGHxvdrz1HZlxzzc6ZUW2FJJmFl+Bf8v4oBXIsRuim62fy8tPk8fbdd BXLaHotSvhSJNtGFuhCd/jUWW1tOyBXbk/iAHJrdefLDXC45BvbOOkKWQ7dSMDix LuPnNFjH+/cEiEdc6DBR2BsD/2/8ht6j8x55oEj9yXQA7AyLpwicGmAdjpRlAgMB AAGjggJgMIICXDAdBgNVHQ4EFgQUTxd+g9o6xLQmhGpwmR3FsWzafP0wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMyMzAyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM5MzkzNjMxMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFU9wwDQYJKoZIhvcN AQELBQADggEBAFxZ+wF0ukjSeWL6ZjO6TC3pmmu19DhrX8/6rMprPm6OmI5jCl2d t18pSN+kUBeDpBiQhLdUON/mXYnrxES/BsxrmPr1pJM2MZikWpQEVKWmpCEST8WM ncMHyW4XxbecOVmYoJpG8TeK3Z4QLr/JrjGiGzqNtiKefwq1MBdMK57o22O0Z6Wf pbU8YKdIqjoYA4m2IKLYdVkIET7vRgk74YVy7AkTszxuBuPNux0wMrxMtwNn1UHw 6UFoggU0nYelZrT4S+wsZtpLI4XT3yEHlI5KASDpuh1d40aK9pN0EsyIA+mS2fIP ZaoWs4U4zpPDBddoWV/o6wC1FgvK6aGQ8/A= -----END CERTIFICATE-----Generated at Sun Apr 6 09:05:28 2025 by rpki-client